Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/f6mftK9uRGxAj8rd2FJuAU5TPCI.roa
File: f6mftK9uRGxAj8rd2FJuAU5TPCI.roa (raw, json)
Hash identifier: Qe62riZSeynsJUa+rI5PGuSz/sS+zBtfgCZ5rhs7ReI=
Subject key identifier: 7F:A9:9F:B4:AF:6E:44:6C:40:8F:CA:DD:D8:52:6E:01:4E:53:3C:22
Certificate issuer: /CN=23c02af4f58f11320af3196946e1fce9d050c906
Certificate serial: 12E96830
Authority key identifier: 23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/f6mftK9uRGxAj8rd2FJuAU5TPCI.roa
Signing time: Sat 01 Jan 2022 11:53:48 +0000
ROA not before: Sat 01 Jan 2022 11:53:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199229
IP address blocks: 185.85.144.0/22 maxlen: 22
2a05:ae80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317286448 (0x12e96830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23c02af4f58f11320af3196946e1fce9d050c906
Validity
Not Before: Jan 1 11:53:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fa99fb4af6e446c408fcaddd8526e014e533c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9f:dd:40:a0:fc:d0:d0:99:d3:1d:47:a9:e7:
9f:3a:17:16:bc:99:67:a9:98:63:f5:c3:b6:4c:62:
5a:17:56:ab:74:46:72:a6:85:c4:4f:c0:70:e5:cd:
d6:e8:05:2a:f1:dc:23:fe:40:2a:6d:67:06:c7:e9:
b3:b3:15:97:c1:3c:f8:f1:0d:20:15:2a:63:95:ca:
b2:ad:89:57:ae:c2:45:a1:e8:26:83:89:17:b3:03:
ce:44:04:b0:32:f9:2b:54:af:d6:33:c9:69:c6:82:
16:fe:10:3f:aa:4d:f6:23:c6:d6:4f:b0:2b:c4:9a:
da:f6:b1:ba:24:ab:fa:44:a3:1c:c9:e6:e2:5f:87:
40:99:f0:e7:a4:0d:66:0a:f4:8b:df:88:10:fb:a9:
3b:5b:91:1b:79:a1:c0:8c:90:28:67:44:77:c6:af:
c7:d5:9c:0b:3b:51:a3:14:15:24:dd:0b:33:88:f7:
18:04:ba:e2:47:2c:09:ab:8c:b1:66:c4:45:0c:9f:
b3:75:fc:a4:0a:f1:dc:e9:5c:a3:71:15:33:27:04:
92:f1:06:45:0a:69:8b:fe:99:ee:8e:16:4e:1b:be:
42:01:cf:98:5d:6c:00:79:27:ed:99:b3:f3:c9:c6:
4e:00:a9:c5:97:7d:d3:c1:89:c0:83:a8:74:c4:53:
17:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A9:9F:B4:AF:6E:44:6C:40:8F:CA:DD:D8:52:6E:01:4E:53:3C:22
X509v3 Authority Key Identifier:
keyid:23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/f6mftK9uRGxAj8rd2FJuAU5TPCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.144.0/22
IPv6:
2a05:ae80::/29
Signature Algorithm: sha256WithRSAEncryption
40:38:3b:39:7c:3b:e8:68:19:e3:cc:82:f6:4d:ab:1b:51:6b:
0e:a8:e5:f0:25:df:f3:ee:00:9e:89:28:b4:ff:b7:12:b1:9d:
a2:63:a1:a2:8b:00:ec:fe:d8:a4:11:82:92:3a:15:90:fc:ca:
1a:13:08:bc:5f:8d:c6:a2:c3:ce:a5:4a:b0:34:1a:3e:d7:7b:
2d:06:cf:88:cc:85:47:f5:f6:91:ac:7e:01:55:00:a5:fe:03:
ae:a8:67:bf:0f:7f:1c:7c:cc:63:14:56:99:18:ce:9a:ec:5e:
08:82:6e:62:a8:ac:6c:6c:2f:93:f0:8d:31:f1:3d:85:2c:9d:
b5:f3:ef:aa:60:dc:ac:2c:f9:c4:de:b9:5f:22:e0:48:1b:78:
bb:5b:79:8d:c7:12:b1:fd:2b:9f:9f:08:d5:5b:4f:91:6e:fd:
ad:ed:e3:1c:50:40:01:91:08:c9:07:00:da:85:78:89:de:29:
fc:b7:eb:14:eb:91:60:f3:81:fa:c6:43:71:ae:6e:6e:0b:6a:
f9:0a:c6:fa:b5:3a:b9:6a:b0:08:61:e4:a4:01:a1:88:d8:74:
8a:59:07:b5:31:2b:7f:1c:ba:fd:15:e3:f9:a7:a8:79:96:d6:
d2:80:fe:96:09:6b:f9:5a:d8:03:44:9f:02:87:5a:54:66:4c:
c3:6f:d0:0e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEEuloMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
M2MwMmFmNGY1OGYxMTMyMGFmMzE5Njk0NmUxZmNlOWQwNTBjOTA2MB4XDTIyMDEw
MTExNTM0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2ZhOTlmYjRhZjZl
NDQ2YzQwOGZjYWRkZDg1MjZlMDE0ZTUzM2MyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKSf3UCg/NDQmdMdR6nnnzoXFryZZ6mYY/XDtkxiWhdWq3RG
cqaFxE/AcOXN1ugFKvHcI/5AKm1nBsfps7MVl8E8+PENIBUqY5XKsq2JV67CRaHo
JoOJF7MDzkQEsDL5K1Sv1jPJacaCFv4QP6pN9iPG1k+wK8Sa2vaxuiSr+kSjHMnm
4l+HQJnw56QNZgr0i9+IEPupO1uRG3mhwIyQKGdEd8avx9WcCztRoxQVJN0LM4j3
GAS64kcsCauMsWbERQyfs3X8pArx3Olco3EVMycEkvEGRQppi/6Z7o4WThu+QgHP
mF1sAHkn7Zmz88nGTgCpxZd908GJwIOodMRTF9MCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBR/qZ+0r25EbECPyt3YUm4BTlM8IjAfBgNVHSMEGDAWgBQjwCr09Y8RMgrz
GWlG4fzp0FDJBjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0k4QXE5UFdQRVRJSzh4bHBSdUg4NmRCUXlRWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvODEwNjhjLWFlZDctNDEyNy04OGU0LTYyY2I4YWNhOTYxOC8x
L2Y2bWZ0Szl1Ukd4QWo4cmQyRkp1QVU1VFBDSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
ODEwNjhjLWFlZDctNDEyNy04OGU0LTYyY2I4YWNhOTYxOC8xL0k4QXE5UFdQRVRJ
Szh4bHBSdUg4NmRCUXlRWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlVkDANBAIAAjAHAwUDKgWugDAN
BgkqhkiG9w0BAQsFAAOCAQEAQDg7OXw76GgZ48yC9k2rG1FrDqjl8CXf8+4Anoko
tP+3ErGdomOhoosA7P7YpBGCkjoVkPzKGhMIvF+NxqLDzqVKsDQaPtd7LQbPiMyF
R/X2kax+AVUApf4Drqhnvw9/HHzMYxRWmRjOmuxeCIJuYqisbGwvk/CNMfE9hSyd
tfPvqmDcrCz5xN65XyLgSBt4u1t5jccSsf0rn58I1VtPkW79re3jHFBAAZEIyQcA
2oV4id4p/LfrFOuRYPOB+sZDca5ubgtq+QrG+rU6uWqwCGHkpAGhiNh0ilkHtTEr
fxy6/RXj+aeoeZbW0oD+lglr+VrYA0SfAodaVGZMw2/QDg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:25 2023 by rpki-client on console-ams.rpki-client.org