Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/b12gdDrLykZqDVBOj884OzaYBgo.roa
File: b12gdDrLykZqDVBOj884OzaYBgo.roa (raw, json)
Hash identifier: SFllL648alWkX4ds40tEMaDr7NQpOP4bxI0iAe0ohOQ=
Subject key identifier: 6F:5D:A0:74:3A:CB:CA:46:6A:0D:50:4E:8F:CF:38:3B:36:98:06:0A
Certificate issuer: /CN=0acf0a954639c83582974bd29c1992272b3683a3
Certificate serial: 0118BCC7
Authority key identifier: 0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/b12gdDrLykZqDVBOj884OzaYBgo.roa
Signing time: Sat 01 Jan 2022 13:05:10 +0000
ROA not before: Sat 01 Jan 2022 13:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200023
IP address blocks: 185.202.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18398407 (0x118bcc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf0a954639c83582974bd29c1992272b3683a3
Validity
Not Before: Jan 1 13:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f5da0743acbca466a0d504e8fcf383b3698060a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9e:52:ea:6e:e3:4d:fb:34:af:d9:61:7f:df:
43:cc:f6:96:fe:23:59:c2:c6:3f:9b:14:45:32:d3:
46:d6:51:a2:a9:bb:c6:69:29:22:0a:6b:1c:fd:b7:
44:6f:04:0d:6c:a7:10:cc:80:92:f0:7e:8c:c7:90:
d2:67:ba:69:98:16:13:ef:27:aa:25:88:dd:9b:e2:
04:71:d3:ce:0e:e0:47:ad:c3:40:c4:60:10:0a:fa:
5d:ba:2b:39:b6:81:90:45:7d:a1:3e:59:e0:c1:06:
20:29:0b:c6:d8:cb:1b:af:b1:32:c5:cd:a7:91:a5:
e8:e0:cd:2f:64:f3:7b:ee:9e:5a:41:e2:37:ab:bc:
d8:1c:9d:a5:9a:f5:76:88:dc:13:c0:ad:44:f3:4f:
8e:c8:14:c6:f4:08:8f:8a:63:a7:12:16:68:ea:65:
2c:1b:cd:93:f4:c1:ac:c7:61:f9:48:23:d2:25:d7:
e8:b5:99:af:ba:e1:ea:e2:23:34:f0:bb:d5:4f:aa:
44:eb:3c:c7:84:a2:e8:5a:1e:e3:f6:a2:c4:eb:cf:
51:04:02:f9:22:b5:02:97:98:6f:96:90:63:63:d3:
14:49:16:c4:5f:e1:0a:dd:84:f4:13:72:87:52:dd:
9e:f8:7e:f6:aa:62:e4:07:0c:e4:ce:be:17:55:de:
37:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5D:A0:74:3A:CB:CA:46:6A:0D:50:4E:8F:CF:38:3B:36:98:06:0A
X509v3 Authority Key Identifier:
keyid:0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/b12gdDrLykZqDVBOj884OzaYBgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/Cs8KlUY5yDWCl0vSnBmSJys2g6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.110.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:d5:0b:a2:07:24:fb:2e:f2:45:29:05:75:2b:fb:8b:f1:33:
04:d9:38:6f:a7:40:0d:d0:4b:f9:03:19:b1:96:5f:7b:3d:0c:
17:ac:de:51:f5:14:64:15:6f:60:58:29:87:27:b9:a7:df:55:
72:72:38:a9:23:3d:f2:aa:b1:b8:de:2f:6a:45:64:cf:88:d5:
bc:fa:e7:36:80:1c:b6:75:2c:58:0a:5d:f1:26:5e:03:88:d5:
80:56:e2:14:9e:87:f0:b7:99:6a:6b:13:cc:6b:77:42:1a:95:
c9:e0:f4:04:7e:44:ee:bb:1e:b1:05:97:0d:1c:77:fb:6a:da:
20:7c:f9:f7:2e:01:86:3a:2f:7c:54:b0:dd:e1:e5:59:6b:a9:
67:63:e1:a1:48:fc:1f:61:82:f1:2f:7f:8e:62:de:b4:72:f0:
3c:75:0c:c2:b6:29:a7:9b:1b:48:c0:f3:9d:31:10:19:37:b3:
65:f1:df:aa:d0:63:10:8e:d2:88:48:6d:d0:c1:e6:24:87:87:
58:b0:07:10:eb:42:a5:3e:44:12:78:48:cb:b4:6e:81:7f:62:
b5:a7:6b:61:c2:fd:93:08:c1:a4:a1:a8:1e:84:60:55:c7:5a:
c2:d4:04:5f:d4:92:4e:c2:19:c0:d9:79:4a:77:56:3d:3b:07:
14:d9:88:d2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEARi8xzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YWNmMGE5NTQ2MzljODM1ODI5NzRiZDI5YzE5OTIyNzJiMzY4M2EzMB4XDTIyMDEw
MTEzMDUxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmY1ZGEwNzQzYWNi
Y2E0NjZhMGQ1MDRlOGZjZjM4M2IzNjk4MDYwYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ+eUupu4037NK/ZYX/fQ8z2lv4jWcLGP5sURTLTRtZRoqm7
xmkpIgprHP23RG8EDWynEMyAkvB+jMeQ0me6aZgWE+8nqiWI3ZviBHHTzg7gR63D
QMRgEAr6XborObaBkEV9oT5Z4MEGICkLxtjLG6+xMsXNp5Gl6ODNL2Tze+6eWkHi
N6u82BydpZr1dojcE8CtRPNPjsgUxvQIj4pjpxIWaOplLBvNk/TBrMdh+Ugj0iXX
6LWZr7rh6uIjNPC71U+qROs8x4Si6Foe4/aixOvPUQQC+SK1ApeYb5aQY2PTFEkW
xF/hCt2E9BNyh1Ldnvh+9qpi5AcM5M6+F1XeN7UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRvXaB0OsvKRmoNUE6Pzzg7NpgGCjAfBgNVHSMEGDAWgBQKzwqVRjnINYKX
S9KcGZInKzaDozAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NzOEtsVVk1eURXQ2wwdlNuQm1TSnlzMmc2TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWMvNDZjYTI1LTc1OTUtNGU3Zi1hNGIxLTIzMzg2NzQ5ZmJkZi8x
L2IxMmdkRHJMeWtacURWQk9qODg0T3phWUJnby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMv
NDZjYTI1LTc1OTUtNGU3Zi1hNGIxLTIzMzg2NzQ5ZmJkZi8xL0NzOEtsVVk1eURX
Q2wwdlNuQm1TSnlzMmc2TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnKbjANBgkqhkiG9w0BAQsFAAOC
AQEAotULogck+y7yRSkFdSv7i/EzBNk4b6dADdBL+QMZsZZfez0MF6zeUfUUZBVv
YFgphye5p99VcnI4qSM98qqxuN4vakVkz4jVvPrnNoActnUsWApd8SZeA4jVgFbi
FJ6H8LeZamsTzGt3QhqVyeD0BH5E7rsesQWXDRx3+2raIHz59y4BhjovfFSw3eHl
WWupZ2PhoUj8H2GC8S9/jmLetHLwPHUMwrYpp5sbSMDznTEQGTezZfHfqtBjEI7S
iEht0MHmJIeHWLAHEOtCpT5EEnhIy7RugX9itadrYcL9kwjBpKGoHoRgVcdawtQE
X9SSTsIZwNl5SndWPTsHFNmI0g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:05 2023 by rpki-client on console-fra.rpki-client.org