Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/yoMCGAANawJHQP8KP0RXmZK-w8w.roa
File: yoMCGAANawJHQP8KP0RXmZK-w8w.roa (raw, json)
Hash identifier: 5/lhrVH42CmTLg+975v4DMPzuYXhUptUCqbe4VChO7I=
Subject key identifier: CA:83:02:18:00:0D:6B:02:47:40:FF:0A:3F:44:57:99:92:BE:C3:CC
Certificate issuer: /CN=bc31247f359a6d492dc9943ae0f00fc8be216c78
Certificate serial: 2378C52F
Authority key identifier: BC:31:24:7F:35:9A:6D:49:2D:C9:94:3A:E0:F0:0F:C8:BE:21:6C:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vDEkfzWabUktyZQ64PAPyL4hbHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/yoMCGAANawJHQP8KP0RXmZK-w8w.roa
Signing time: Sat 01 Jan 2022 13:03:49 +0000
ROA not before: Sat 01 Jan 2022 13:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60975
IP address blocks: 185.19.184.0/22 maxlen: 22
2a00:43e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 595117359 (0x2378c52f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc31247f359a6d492dc9943ae0f00fc8be216c78
Validity
Not Before: Jan 1 13:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca830218000d6b024740ff0a3f44579992bec3cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ef:0e:6f:ee:be:b4:ad:36:c8:db:7c:4f:ec:
50:30:b7:a9:c0:44:13:ff:4c:36:43:6f:18:71:5e:
87:bc:9f:e1:50:b0:8d:13:0b:c5:9e:a9:1f:d6:68:
81:a6:87:70:7b:fd:53:50:dd:c0:16:be:93:cc:03:
28:eb:50:f2:05:ad:01:42:63:72:9a:83:bb:2d:15:
f6:0c:e0:d7:d6:ea:a4:0f:3f:b6:8d:c1:40:d5:2b:
dc:25:97:c7:10:86:22:d6:da:ff:4d:8d:ee:dc:22:
11:20:52:7b:8c:a9:ff:cc:11:09:ba:22:ca:2a:35:
d6:97:26:bb:0c:c1:40:99:84:7a:66:0d:8d:07:f7:
2d:5e:7b:94:10:0e:75:d2:08:6e:b4:f1:32:c4:bf:
26:55:a3:6a:56:4d:85:73:de:85:b6:e9:25:a1:3e:
b2:4a:89:ad:ce:ed:5d:65:79:62:21:fd:91:94:74:
e6:f9:e2:a2:09:54:eb:66:be:46:d8:f5:8b:de:27:
ce:a5:43:8e:16:17:36:dc:c6:18:32:b7:db:b5:15:
f2:bb:27:a6:32:10:59:85:c9:e7:1f:e1:ea:3f:78:
22:5d:b9:f2:55:52:c2:bf:4e:72:0f:cb:14:fe:b7:
be:2d:85:34:c1:76:32:33:86:50:42:bc:fd:79:20:
23:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:83:02:18:00:0D:6B:02:47:40:FF:0A:3F:44:57:99:92:BE:C3:CC
X509v3 Authority Key Identifier:
keyid:BC:31:24:7F:35:9A:6D:49:2D:C9:94:3A:E0:F0:0F:C8:BE:21:6C:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDEkfzWabUktyZQ64PAPyL4hbHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/yoMCGAANawJHQP8KP0RXmZK-w8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/vDEkfzWabUktyZQ64PAPyL4hbHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.184.0/22
IPv6:
2a00:43e0::/32
Signature Algorithm: sha256WithRSAEncryption
85:31:44:1c:37:85:53:c4:3f:29:25:de:fb:d9:49:bd:6f:36:
9c:a4:b3:d8:88:c4:94:d1:56:4e:7f:83:4b:c7:a2:22:d5:07:
ee:63:79:04:1c:20:89:54:51:63:4d:6d:85:df:2e:fb:74:5b:
f3:7e:a3:64:b6:d5:b5:d3:4f:26:4e:de:e2:e9:2a:89:fd:fb:
14:8f:3b:54:68:2e:d6:89:6b:59:8b:29:a6:08:18:a7:de:d9:
92:00:d7:b5:2c:4d:99:77:53:f5:df:4c:89:05:78:5b:10:0f:
15:e3:13:40:92:fe:48:95:e2:3a:f9:ab:6b:90:ec:f1:9b:14:
c8:43:43:6b:c2:db:38:6a:b2:67:f3:86:f4:7a:29:73:34:28:
28:bf:8a:6e:26:97:29:f9:d1:b0:04:8c:e6:e1:32:2f:78:31:
74:a9:c7:66:ec:1c:34:b2:82:91:ab:f9:ae:37:4e:34:97:18:
d6:55:23:dd:2b:c0:11:01:d3:50:0f:7f:3f:57:15:54:6f:79:
1f:07:f2:d3:83:0f:cb:5a:5f:d8:27:dd:58:08:c3:1d:1d:bc:
6d:46:80:f5:2b:3b:d9:93:11:98:ca:8c:40:23:ae:a0:d6:4e:
94:f6:62:fc:bb:81:fd:60:c6:85:f5:69:21:d8:38:a9:87:d7:
70:c9:9f:1f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEI3jFLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YzMxMjQ3ZjM1OWE2ZDQ5MmRjOTk0M2FlMGYwMGZjOGJlMjE2Yzc4MB4XDTIyMDEw
MTEzMDM0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2E4MzAyMTgwMDBk
NmIwMjQ3NDBmZjBhM2Y0NDU3OTk5MmJlYzNjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJTvDm/uvrStNsjbfE/sUDC3qcBEE/9MNkNvGHFeh7yf4VCw
jRMLxZ6pH9ZogaaHcHv9U1DdwBa+k8wDKOtQ8gWtAUJjcpqDuy0V9gzg19bqpA8/
to3BQNUr3CWXxxCGItba/02N7twiESBSe4yp/8wRCboiyio11pcmuwzBQJmEemYN
jQf3LV57lBAOddIIbrTxMsS/JlWjalZNhXPehbbpJaE+skqJrc7tXWV5YiH9kZR0
5vnioglU62a+Rtj1i94nzqVDjhYXNtzGGDK327UV8rsnpjIQWYXJ5x/h6j94Il25
8lVSwr9Ocg/LFP63vi2FNMF2MjOGUEK8/XkgI/ECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTKgwIYAA1rAkdA/wo/RFeZkr7DzDAfBgNVHSMEGDAWgBS8MSR/NZptSS3J
lDrg8A/IviFseDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZERWtmeldhYlVrdHlaUTY0UEFQeUw0aGJIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjQvMzQ2YmVmLTBhNWUtNDQwMC05Zjg0LTU2ODA1Y2ExMWMzMy8x
L3lvTUNHQUFOYXdKSFFQOEtQMFJYbVpLLXc4dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQv
MzQ2YmVmLTBhNWUtNDQwMC05Zjg0LTU2ODA1Y2ExMWMzMy8xL3ZERWtmeldhYlVr
dHlaUTY0UEFQeUw0aGJIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkTuDANBAIAAjAHAwUAKgBD4DAN
BgkqhkiG9w0BAQsFAAOCAQEAhTFEHDeFU8Q/KSXe+9lJvW82nKSz2IjElNFWTn+D
S8eiItUH7mN5BBwgiVRRY01thd8u+3Rb836jZLbVtdNPJk7e4ukqif37FI87VGgu
1olrWYsppggYp97ZkgDXtSxNmXdT9d9MiQV4WxAPFeMTQJL+SJXiOvmra5Ds8ZsU
yENDa8LbOGqyZ/OG9HopczQoKL+KbiaXKfnRsASM5uEyL3gxdKnHZuwcNLKCkav5
rjdONJcY1lUj3SvAEQHTUA9/P1cVVG95Hwfy04MPy1pf2CfdWAjDHR28bUaA9Ss7
2ZMRmMqMQCOuoNZOlPZi/LuB/WDGhfVpIdg4qYfXcMmfHw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:38 2024 by rpki-client on console-ams.rpki-client.org