Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ac6b91-edaf-4486-934e-05db497ac455/1/CaOxsKWyAhrJdTNuEsxayqFXDbo.roa
File: CaOxsKWyAhrJdTNuEsxayqFXDbo.roa (raw, json)
Hash identifier: AApXoHpVJh/pPeF2BjuDeuImdfkOvLTOJZUAohVKJiM=
Subject key identifier: 09:A3:B1:B0:A5:B2:02:1A:C9:75:33:6E:12:CC:5A:CA:A1:57:0D:BA
Certificate issuer: /CN=bcce590711ae7fcb016eeb7376b0a7fc7661cb13
Certificate serial: 1B2E6705
Authority key identifier: BC:CE:59:07:11:AE:7F:CB:01:6E:EB:73:76:B0:A7:FC:76:61:CB:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vM5ZBxGuf8sBbutzdrCn_HZhyxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ac6b91-edaf-4486-934e-05db497ac455/1/CaOxsKWyAhrJdTNuEsxayqFXDbo.roa
Signing time: Sat 01 Jan 2022 10:58:49 +0000
ROA not before: Sat 01 Jan 2022 10:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.34.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 456025861 (0x1b2e6705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcce590711ae7fcb016eeb7376b0a7fc7661cb13
Validity
Not Before: Jan 1 10:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09a3b1b0a5b2021ac975336e12cc5acaa1570dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:71:42:7d:ac:1a:28:fd:2d:bc:eb:80:e2:52:
71:cb:09:ea:95:4d:85:83:83:8d:24:3e:84:3d:16:
9d:13:aa:84:d7:f9:cd:69:94:26:9a:7e:0b:48:39:
b6:54:5a:46:73:5d:65:6d:ba:4b:dc:f0:a6:8d:29:
1f:01:06:ed:74:aa:95:9b:a0:13:cd:1b:99:02:4c:
c3:55:ba:7f:45:cf:01:83:68:2b:0b:bb:0d:dd:de:
d1:fb:c2:98:ae:fd:dc:ce:d9:74:ac:7b:17:6e:8d:
ee:0b:dd:1e:cb:ac:88:3e:c7:26:7c:ab:d0:3d:09:
79:89:aa:61:6b:48:28:0d:05:e6:74:e7:38:23:24:
aa:9c:98:59:e6:a1:42:a9:e5:2d:05:31:49:29:aa:
2a:b0:c6:fb:bc:45:aa:64:30:c3:0c:1e:d6:95:4e:
12:4f:5d:10:3a:cf:0f:8e:fd:c7:99:d4:19:c2:73:
01:86:05:fc:75:46:9d:82:68:22:89:ee:60:08:65:
d4:2e:be:76:43:7d:98:76:c9:9f:86:97:f6:2f:57:
35:0e:08:4b:86:aa:25:ce:33:2e:91:87:8c:e7:7c:
85:22:8c:88:f7:4c:7e:07:e7:27:1a:ff:01:a8:70:
29:97:31:db:17:be:81:60:05:26:0a:d5:c1:8e:5f:
b2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A3:B1:B0:A5:B2:02:1A:C9:75:33:6E:12:CC:5A:CA:A1:57:0D:BA
X509v3 Authority Key Identifier:
keyid:BC:CE:59:07:11:AE:7F:CB:01:6E:EB:73:76:B0:A7:FC:76:61:CB:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vM5ZBxGuf8sBbutzdrCn_HZhyxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ac6b91-edaf-4486-934e-05db497ac455/1/CaOxsKWyAhrJdTNuEsxayqFXDbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ac6b91-edaf-4486-934e-05db497ac455/1/vM5ZBxGuf8sBbutzdrCn_HZhyxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.56.0/22
Signature Algorithm: sha256WithRSAEncryption
66:24:3d:04:c4:97:69:14:85:47:9e:0b:df:96:25:24:16:23:
32:21:d0:1d:e3:9e:d6:23:f4:d1:24:6c:cd:51:fb:8b:86:82:
99:a5:ee:64:7f:f5:17:f2:f9:5b:7f:f2:f5:9a:c0:a6:1e:4d:
33:82:ba:37:5a:83:1a:d7:96:a7:7b:43:2d:24:d6:98:ee:54:
2a:2a:b9:6b:29:92:c3:f9:c9:56:fa:9f:93:21:fa:c1:ce:49:
7a:47:77:35:a0:31:9b:85:08:13:fc:9f:93:7c:c0:57:bd:b9:
ef:1f:c0:db:42:fa:1c:24:82:c7:3c:e5:b7:3f:40:39:96:9e:
8e:d3:7a:f8:0b:93:5b:58:c2:c5:3a:9f:ba:12:55:22:92:94:
d9:c9:84:de:c9:25:4b:8c:8a:c3:7e:0a:2c:d6:4e:a7:24:be:
f0:f5:e2:37:cb:a8:e4:39:c0:28:4d:e2:db:36:a6:4c:13:be:
c7:ae:19:ac:e8:5a:00:43:cc:b0:27:44:f1:56:43:74:37:80:
d3:6e:94:13:2b:92:93:c2:0b:63:4a:78:ac:c3:0b:70:e8:5f:
d1:d1:0a:d0:03:aa:1a:23:8b:b0:0e:5e:e1:c6:73:45:21:8f:
14:d7:e3:d1:cb:2d:36:2a:73:14:f8:45:92:25:45:ee:00:05:
9f:10:a9:63
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGy5nBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
Y2NlNTkwNzExYWU3ZmNiMDE2ZWViNzM3NmIwYTdmYzc2NjFjYjEzMB4XDTIyMDEw
MTEwNTg0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDlhM2IxYjBhNWIy
MDIxYWM5NzUzMzZlMTJjYzVhY2FhMTU3MGRiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMJxQn2sGij9LbzrgOJSccsJ6pVNhYODjSQ+hD0WnROqhNf5
zWmUJpp+C0g5tlRaRnNdZW26S9zwpo0pHwEG7XSqlZugE80bmQJMw1W6f0XPAYNo
Kwu7Dd3e0fvCmK793M7ZdKx7F26N7gvdHsusiD7HJnyr0D0JeYmqYWtIKA0F5nTn
OCMkqpyYWeahQqnlLQUxSSmqKrDG+7xFqmQwwwwe1pVOEk9dEDrPD479x5nUGcJz
AYYF/HVGnYJoIonuYAhl1C6+dkN9mHbJn4aX9i9XNQ4IS4aqJc4zLpGHjOd8hSKM
iPdMfgfnJxr/AahwKZcx2xe+gWAFJgrVwY5fspkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQJo7GwpbICGsl1M24SzFrKoVcNujAfBgNVHSMEGDAWgBS8zlkHEa5/ywFu
63N2sKf8dmHLEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZNNVpCeEd1ZjhzQmJ1dHpkckNuX0haaHl4TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvYWM2YjkxLWVkYWYtNDQ4Ni05MzRlLTA1ZGI0OTdhYzQ1NS8x
L0NhT3hzS1d5QWhySmRUTnVFc3hheXFGWERiby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
YWM2YjkxLWVkYWYtNDQ4Ni05MzRlLTA1ZGI0OTdhYzQ1NS8xL3ZNNVpCeEd1Zjhz
QmJ1dHpkckNuX0haaHl4TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkiODANBgkqhkiG9w0BAQsFAAOC
AQEAZiQ9BMSXaRSFR54L35YlJBYjMiHQHeOe1iP00SRszVH7i4aCmaXuZH/1F/L5
W3/y9ZrAph5NM4K6N1qDGteWp3tDLSTWmO5UKiq5aymSw/nJVvqfkyH6wc5Jekd3
NaAxm4UIE/yfk3zAV7257x/A20L6HCSCxzzltz9AOZaejtN6+AuTW1jCxTqfuhJV
IpKU2cmE3sklS4yKw34KLNZOpyS+8PXiN8uo5DnAKE3i2zamTBO+x64ZrOhaAEPM
sCdE8VZDdDeA026UEyuSk8ILY0p4rMMLcOhf0dEK0AOqGiOLsA5e4cZzRSGPFNfj
0cstNipzFPhFkiVF7gAFnxCpYw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-ams.rpki-client.org