Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9e5f54-ba3f-4b6e-9da9-bfafd622e89f/1/ILgMAwHYOJbA9Bhc4eaF1Nu-Eac.roa
File: ILgMAwHYOJbA9Bhc4eaF1Nu-Eac.roa (raw, json)
Hash identifier: i7POIfS5SXF2RD1BZSmksTf7sPNpWlfc8kxWLfYLM1Y=
Subject key identifier: 20:B8:0C:03:01:D8:38:96:C0:F4:18:5C:E1:E6:85:D4:DB:BE:11:A7
Certificate issuer: /CN=1d6b6b6a5061a4115d53040cffdc64b3b0d71a78
Certificate serial: 15FDCE81
Authority key identifier: 1D:6B:6B:6A:50:61:A4:11:5D:53:04:0C:FF:DC:64:B3:B0:D7:1A:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWtralBhpBFdUwQM_9xks7DXGng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9e5f54-ba3f-4b6e-9da9-bfafd622e89f/1/ILgMAwHYOJbA9Bhc4eaF1Nu-Eac.roa
Signing time: Sat 01 Jan 2022 13:55:24 +0000
ROA not before: Sat 01 Jan 2022 13:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200706
IP address blocks: 185.88.16.0/24 maxlen: 24
185.88.17.0/24 maxlen: 24
185.88.16.0/22 maxlen: 22
185.88.19.0/24 maxlen: 24
185.88.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368955009 (0x15fdce81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d6b6b6a5061a4115d53040cffdc64b3b0d71a78
Validity
Not Before: Jan 1 13:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20b80c0301d83896c0f4185ce1e685d4dbbe11a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fc:13:46:39:ef:40:95:b0:88:32:5c:00:bb:
34:96:6f:7e:da:6c:36:af:96:d6:a5:57:9b:e3:94:
01:61:9e:7f:6f:a0:ff:93:5e:56:94:9a:26:48:61:
a0:aa:8d:1f:38:6d:65:53:17:de:6e:a4:7f:93:12:
40:9e:9b:9c:be:3a:5e:14:d8:42:81:66:33:a5:96:
7e:c7:70:63:18:1c:9f:30:89:e1:8b:82:06:eb:e3:
4f:9d:ef:40:ab:e8:72:1a:75:60:47:3c:22:38:32:
b6:e6:24:2d:c6:e0:ae:1a:d7:97:c0:05:eb:f5:08:
3d:06:bb:80:fe:7e:54:04:6c:08:88:2f:f0:75:4b:
d3:45:df:c4:96:64:9b:ed:ae:9d:31:59:76:b6:29:
0e:46:d0:70:8a:52:40:96:e0:3c:69:02:67:c0:c8:
eb:36:bc:db:a3:95:7f:89:5e:cb:1b:80:80:83:64:
c6:ca:f0:90:fc:cb:86:55:29:4b:e0:2f:35:3e:90:
d9:9a:3c:39:00:76:da:e4:14:9d:b9:b3:9e:62:12:
3f:74:c1:77:c3:5a:29:07:92:61:74:87:c8:c3:69:
a3:b7:a1:22:bb:82:36:0c:cb:12:3f:0f:ea:58:a6:
d3:c7:a9:d5:13:4a:41:7c:40:df:15:f7:dd:64:4b:
16:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:B8:0C:03:01:D8:38:96:C0:F4:18:5C:E1:E6:85:D4:DB:BE:11:A7
X509v3 Authority Key Identifier:
keyid:1D:6B:6B:6A:50:61:A4:11:5D:53:04:0C:FF:DC:64:B3:B0:D7:1A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWtralBhpBFdUwQM_9xks7DXGng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9e5f54-ba3f-4b6e-9da9-bfafd622e89f/1/ILgMAwHYOJbA9Bhc4eaF1Nu-Eac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9e5f54-ba3f-4b6e-9da9-bfafd622e89f/1/HWtralBhpBFdUwQM_9xks7DXGng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.16.0/22
Signature Algorithm: sha256WithRSAEncryption
74:08:d8:6c:4f:c2:5f:63:42:be:ce:c3:97:c5:05:d3:5d:73:
02:e2:fc:65:db:77:2e:75:07:24:6d:57:cd:3a:84:b9:4f:17:
bb:4d:3c:2e:6d:51:ed:9d:35:ad:db:a6:ba:16:aa:18:c2:da:
d5:7f:b3:e7:2a:81:5c:05:3e:92:58:44:a8:94:06:51:e4:6f:
14:2a:48:46:5a:7a:d6:73:31:b6:fa:51:42:24:cb:63:5c:7e:
5e:3f:3b:e4:4d:1d:77:0e:23:21:9c:6d:e0:7d:9c:9e:52:6c:
0f:2c:43:63:54:74:8a:b2:e2:20:63:c4:df:80:d7:65:41:8e:
57:ec:55:af:09:e9:c2:ab:ef:eb:ae:83:10:14:04:0a:8e:62:
45:4d:56:6e:c4:61:c3:6d:59:1d:f6:c0:b6:a8:47:78:4a:3a:
85:8e:29:81:df:b7:57:d3:70:b4:ab:33:60:c0:95:ac:81:98:
63:2a:9d:c4:dc:39:9b:75:f8:79:5f:62:27:3c:9a:59:f7:c3:
42:cb:f7:49:fd:f9:94:78:e4:e2:ea:0a:03:59:ba:c5:5a:44:
79:f3:14:68:da:89:b3:0a:43:29:e8:cb:f3:d7:21:32:1b:aa:
99:e8:71:a1:66:31:8e:3e:31:12:e3:70:be:0b:3c:c0:0f:0c:
f2:a1:a8:75
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFf3OgTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDZiNmI2YTUwNjFhNDExNWQ1MzA0MGNmZmRjNjRiM2IwZDcxYTc4MB4XDTIyMDEw
MTEzNTUyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjBiODBjMDMwMWQ4
Mzg5NmMwZjQxODVjZTFlNjg1ZDRkYmJlMTFhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANj8E0Y570CVsIgyXAC7NJZvftpsNq+W1qVXm+OUAWGef2+g
/5NeVpSaJkhhoKqNHzhtZVMX3m6kf5MSQJ6bnL46XhTYQoFmM6WWfsdwYxgcnzCJ
4YuCBuvjT53vQKvochp1YEc8IjgytuYkLcbgrhrXl8AF6/UIPQa7gP5+VARsCIgv
8HVL00XfxJZkm+2unTFZdrYpDkbQcIpSQJbgPGkCZ8DI6za826OVf4leyxuAgINk
xsrwkPzLhlUpS+AvNT6Q2Zo8OQB22uQUnbmznmISP3TBd8NaKQeSYXSHyMNpo7eh
IruCNgzLEj8P6lim08ep1RNKQXxA3xX33WRLFhMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQguAwDAdg4lsD0GFzh5oXU274RpzAfBgNVHSMEGDAWgBQda2tqUGGkEV1T
BAz/3GSzsNcaeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hXdHJhbEJocEJGZFV3UU1fOXhrczdEWEduZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvOWU1ZjU0LWJhM2YtNGI2ZS05ZGE5LWJmYWZkNjIyZTg5Zi8x
L0lMZ01Bd0hZT0piQTlCaGM0ZWFGMU51LUVhYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
OWU1ZjU0LWJhM2YtNGI2ZS05ZGE5LWJmYWZkNjIyZTg5Zi8xL0hXdHJhbEJocEJG
ZFV3UU1fOXhrczdEWEduZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlYEDANBgkqhkiG9w0BAQsFAAOC
AQEAdAjYbE/CX2NCvs7Dl8UF011zAuL8Zdt3LnUHJG1XzTqEuU8Xu008Lm1R7Z01
rdumuhaqGMLa1X+z5yqBXAU+klhEqJQGUeRvFCpIRlp61nMxtvpRQiTLY1x+Xj87
5E0ddw4jIZxt4H2cnlJsDyxDY1R0irLiIGPE34DXZUGOV+xVrwnpwqvv666DEBQE
Co5iRU1WbsRhw21ZHfbAtqhHeEo6hY4pgd+3V9NwtKszYMCVrIGYYyqdxNw5m3X4
eV9iJzyaWffDQsv3Sf35lHjk4uoKA1m6xVpEefMUaNqJswpDKejL89chMhuqmehx
oWYxjj4xEuNwvgs8wA8M8qGodQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:15 2023 by rpki-client on console-ams.rpki-client.org