Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/THNBwMwn01TQHNFZYBEvZgzhAD4.roa
File: THNBwMwn01TQHNFZYBEvZgzhAD4.roa (raw, json)
Hash identifier: Z3ZOzrtncBYEPGKaf7GvkEPTUm9xlQ2M3hsyFxttXRQ=
Subject key identifier: 4C:73:41:C0:CC:27:D3:54:D0:1C:D1:59:60:11:2F:66:0C:E1:00:3E
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 13B4939E
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/THNBwMwn01TQHNFZYBEvZgzhAD4.roa
Signing time: Mon 04 Apr 2022 06:31:18 +0000
ROA not before: Mon 04 Apr 2022 06:31:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16347
IP address blocks: 185.14.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330601374 (0x13b4939e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Apr 4 06:31:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c7341c0cc27d354d01cd15960112f660ce1003e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1e:23:01:0d:77:84:52:19:9b:b4:a8:a2:b7:
24:eb:6b:c1:de:fe:77:9f:d0:a3:a6:0b:3c:fc:91:
1a:69:1b:b8:9d:26:98:db:4b:4f:bb:bf:8f:56:10:
d7:48:1e:74:d2:10:24:c3:b1:9d:12:65:bb:67:c1:
26:f7:79:d3:01:46:1f:97:59:80:aa:01:bf:a8:86:
ee:a3:11:38:df:52:14:62:7e:76:7f:23:fb:27:98:
ff:19:a0:e6:94:62:a1:3f:ef:4b:56:db:b6:6c:78:
a1:ac:6d:c4:14:23:b5:e4:78:40:98:ef:3c:65:30:
3b:c8:9a:52:c4:2c:6e:0d:02:23:23:55:08:86:73:
b7:eb:0f:8d:0c:ff:33:2c:fe:2b:63:3d:47:62:d5:
3e:2f:9d:58:52:81:7b:89:14:c2:2a:c7:0b:e2:e7:
b8:00:3f:a3:ac:29:42:03:78:1a:99:dd:d5:5a:5a:
85:5b:a4:42:22:52:01:d4:41:b4:52:ed:33:58:04:
63:f2:ab:c9:23:47:14:eb:19:ea:2b:cd:5d:49:98:
50:61:e1:d8:eb:4d:07:39:be:2f:cf:74:9c:62:17:
d1:54:1f:70:18:36:d6:a9:df:aa:30:bf:18:4e:17:
59:90:db:2e:7d:36:56:ae:e1:59:b1:db:4b:b2:00:
cf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:73:41:C0:CC:27:D3:54:D0:1C:D1:59:60:11:2F:66:0C:E1:00:3E
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/THNBwMwn01TQHNFZYBEvZgzhAD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.179.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:0c:bb:0a:8b:fd:c5:11:55:36:99:df:fa:3f:19:db:2b:b9:
39:f1:1a:17:80:28:28:70:85:64:b7:cf:ba:76:3a:6d:b9:fa:
1b:80:09:06:92:27:1c:53:c4:96:fc:0c:b7:fd:f2:ae:fd:86:
fd:4f:59:84:33:56:d9:68:48:f5:0d:95:ed:a9:02:70:3f:6b:
a8:f4:81:dd:27:39:0c:84:c8:ea:59:1a:ee:d1:fd:8b:c5:ce:
72:cb:10:37:34:f6:36:0d:af:bf:d6:1c:83:e4:45:90:f8:7a:
56:a6:df:f0:6b:5b:2b:04:36:ab:62:97:c8:60:4e:5d:57:9b:
cf:73:a2:c4:61:2d:72:a9:31:b4:60:50:22:fb:d1:26:14:77:
fb:60:03:5d:7a:52:49:d3:5a:e2:5f:d0:29:68:5f:18:ac:3d:
49:83:f7:a0:62:84:26:0c:45:42:66:2b:8d:dd:21:c4:8a:95:
a9:7e:87:0e:f9:91:19:9c:c9:fd:cb:58:81:6a:40:b1:b2:22:
bc:82:a8:3b:db:f8:73:9c:5e:17:da:9a:89:6d:aa:12:da:d5:
08:64:1f:21:3a:ce:6e:ca:b0:22:79:e6:68:78:30:44:4a:d5:
6c:78:be:85:5c:88:b4:b8:da:8b:9b:0b:0c:2b:11:c3:b8:2e:
18:f7:34:3b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEE7STnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MGYxYmE2MTExYzhmMWQzZjM3YzFiN2MxYTVlZDczNzQwMjE5MmYyMB4XDTIyMDQw
NDA2MzExOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGM3MzQxYzBjYzI3
ZDM1NGQwMWNkMTU5NjAxMTJmNjYwY2UxMDAzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOweIwENd4RSGZu0qKK3JOtrwd7+d5/Qo6YLPPyRGmkbuJ0m
mNtLT7u/j1YQ10gedNIQJMOxnRJlu2fBJvd50wFGH5dZgKoBv6iG7qMRON9SFGJ+
dn8j+yeY/xmg5pRioT/vS1bbtmx4oaxtxBQjteR4QJjvPGUwO8iaUsQsbg0CIyNV
CIZzt+sPjQz/Myz+K2M9R2LVPi+dWFKBe4kUwirHC+LnuAA/o6wpQgN4Gpnd1Vpa
hVukQiJSAdRBtFLtM1gEY/KrySNHFOsZ6ivNXUmYUGHh2OtNBzm+L890nGIX0VQf
cBg21qnfqjC/GE4XWZDbLn02Vq7hWbHbS7IAz30CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRMc0HAzCfTVNAc0VlgES9mDOEAPjAfBgNVHSMEGDAWgBQw8bphEcjx0/N8
G3waXtc3QCGS8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01QRzZZUkhJOGRQemZCdDhHbDdYTjBBaGt2SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvOGQ3YzU3LWJhNjUtNDdmYy1iY2M0LWMzMzAxODYzM2QzMy8x
L1RITkJ3TXduMDFUUUhORlpZQkV2Wmd6aEFENC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
OGQ3YzU3LWJhNjUtNDdmYy1iY2M0LWMzMzAxODYzM2QzMy8xL01QRzZZUkhJOGRQ
emZCdDhHbDdYTjBBaGt2SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkOszANBgkqhkiG9w0BAQsFAAOC
AQEAbAy7Cov9xRFVNpnf+j8Z2yu5OfEaF4AoKHCFZLfPunY6bbn6G4AJBpInHFPE
lvwMt/3yrv2G/U9ZhDNW2WhI9Q2V7akCcD9rqPSB3Sc5DITI6lka7tH9i8XOcssQ
NzT2Ng2vv9Ycg+RFkPh6Vqbf8GtbKwQ2q2KXyGBOXVebz3OixGEtcqkxtGBQIvvR
JhR3+2ADXXpSSdNa4l/QKWhfGKw9SYP3oGKEJgxFQmYrjd0hxIqVqX6HDvmRGZzJ
/ctYgWpAsbIivIKoO9v4c5xeF9qaiW2qEtrVCGQfITrObsqwInnmaHgwRErVbHi+
hVyItLjai5sLDCsRw7guGPc0Ow==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org