Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/bVR_zxVTPue1QJ6u0vyz00YxakQ.roa
File: bVR_zxVTPue1QJ6u0vyz00YxakQ.roa (raw, json)
Hash identifier: /qU7fgf9zXqg81ku3MFJU/IVhM9NgUtN/KKqAUAwJ00=
Subject key identifier: 6D:54:7F:CF:15:53:3E:E7:B5:40:9E:AE:D2:FC:B3:D3:46:31:6A:44
Certificate issuer: /CN=c7ab6b2254e45730aafa45ab51973203614bb6cc
Certificate serial: 03E20FD4
Authority key identifier: C7:AB:6B:22:54:E4:57:30:AA:FA:45:AB:51:97:32:03:61:4B:B6:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x6trIlTkVzCq-kWrUZcyA2FLtsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/bVR_zxVTPue1QJ6u0vyz00YxakQ.roa
Signing time: Sat 01 Jan 2022 16:05:29 +0000
ROA not before: Sat 01 Jan 2022 16:05:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204781
IP address blocks: 185.229.1.0/24 maxlen: 24
185.229.0.0/23 maxlen: 23
185.229.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65146836 (0x3e20fd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7ab6b2254e45730aafa45ab51973203614bb6cc
Validity
Not Before: Jan 1 16:05:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d547fcf15533ee7b5409eaed2fcb3d346316a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:19:bd:d6:27:b9:60:82:d4:7e:8c:fb:7f:a7:
d6:6d:9d:4e:1f:b4:e2:19:1b:25:01:05:67:92:9e:
4c:2b:50:3f:10:91:5b:3a:53:89:e0:e9:cd:02:10:
86:d0:84:75:18:43:96:15:2e:6d:81:29:fb:1b:41:
c6:4c:c4:56:9c:04:d3:52:14:93:cf:30:f2:6c:07:
52:c6:43:5c:3e:0b:d4:ac:75:0c:02:2f:15:26:c2:
d8:b6:b3:6c:16:64:a3:9d:45:8e:24:d8:2b:5e:88:
7c:c5:9b:04:f1:5e:27:94:28:31:b2:2b:f4:ab:e3:
4b:51:e1:1a:6a:f6:45:f6:0c:20:59:4c:28:22:9b:
c6:3e:09:74:51:57:92:38:b0:c7:fb:1c:1a:95:c4:
1d:b9:47:c5:ac:e5:18:3b:c7:ba:49:38:2e:e5:33:
67:b0:c9:de:f2:2e:bb:c4:52:2e:5d:ca:d3:99:da:
c1:a6:01:30:39:40:a6:e4:02:be:0c:4e:7a:eb:7a:
d4:0f:b4:98:38:a5:d7:49:4a:fc:1a:a2:b9:7d:88:
9b:29:5c:ac:64:55:67:79:03:37:b8:de:df:ff:3a:
a6:45:eb:cf:3c:e7:15:04:26:96:47:0e:7b:b0:76:
02:66:cb:ec:44:9c:3a:6f:f5:08:f5:70:f1:a3:36:
11:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:54:7F:CF:15:53:3E:E7:B5:40:9E:AE:D2:FC:B3:D3:46:31:6A:44
X509v3 Authority Key Identifier:
keyid:C7:AB:6B:22:54:E4:57:30:AA:FA:45:AB:51:97:32:03:61:4B:B6:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x6trIlTkVzCq-kWrUZcyA2FLtsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/bVR_zxVTPue1QJ6u0vyz00YxakQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/x6trIlTkVzCq-kWrUZcyA2FLtsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.0.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:f8:97:2e:80:92:af:b4:1f:2e:00:7e:83:37:6a:77:82:a4:
03:da:f6:da:64:44:da:55:3f:b6:4a:e2:03:e2:a8:84:b9:64:
86:23:76:08:c8:8d:5a:1e:5a:29:c7:2e:21:ca:8f:67:d6:43:
3d:fc:25:cf:d9:6d:da:91:e5:a7:35:1e:6c:9a:5c:a9:b6:95:
86:f9:75:c1:b5:06:56:38:1e:83:c0:ca:52:b1:1c:e7:21:af:
c4:89:db:18:4b:79:44:44:59:fe:9d:90:37:bc:95:39:20:c0:
0a:10:b7:66:17:e0:1f:1f:4c:f7:ac:e4:81:c2:fa:c3:a9:8b:
7b:3a:f3:b6:0d:bd:72:da:2c:2c:d1:1f:d6:68:42:75:41:78:
89:b5:11:06:a6:f3:6d:79:c3:d4:5b:b5:69:28:1b:d9:27:53:
9f:bd:18:35:ae:d9:e0:c0:3c:1b:b8:3c:9b:43:61:62:e9:09:
28:fd:6b:74:9f:b1:89:29:40:a9:81:63:bd:94:cd:2a:f2:a3:
b8:39:fb:c3:16:d7:21:5a:df:77:17:4e:4d:96:bb:a3:3b:87:
2b:f1:fe:50:b9:f2:d8:93:82:6b:8f:c2:a4:80:a9:de:03:a9:
51:8d:1f:91:16:a6:7e:06:80:f3:9c:03:5c:ef:76:80:22:79:
3a:53:a7:17
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA+IP1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
N2FiNmIyMjU0ZTQ1NzMwYWFmYTQ1YWI1MTk3MzIwMzYxNGJiNmNjMB4XDTIyMDEw
MTE2MDUyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmQ1NDdmY2YxNTUz
M2VlN2I1NDA5ZWFlZDJmY2IzZDM0NjMxNmE0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANUZvdYnuWCC1H6M+3+n1m2dTh+04hkbJQEFZ5KeTCtQPxCR
WzpTieDpzQIQhtCEdRhDlhUubYEp+xtBxkzEVpwE01IUk88w8mwHUsZDXD4L1Kx1
DAIvFSbC2LazbBZko51FjiTYK16IfMWbBPFeJ5QoMbIr9KvjS1HhGmr2RfYMIFlM
KCKbxj4JdFFXkjiwx/scGpXEHblHxazlGDvHukk4LuUzZ7DJ3vIuu8RSLl3K05na
waYBMDlApuQCvgxOeut61A+0mDil10lK/BqiuX2ImylcrGRVZ3kDN7je3/86pkXr
zzznFQQmlkcOe7B2AmbL7EScOm/1CPVw8aM2EZsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRtVH/PFVM+57VAnq7S/LPTRjFqRDAfBgNVHSMEGDAWgBTHq2siVORXMKr6
RatRlzIDYUu2zDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3g2dHJJbFRrVnpDcS1rV3JVWmN5QTJGTHRzdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvMzNiNjlkLWY0Y2EtNDNhYS05NzgwLTFkNTVkNTkyOWNlYy8x
L2JWUl96eFZUUHVlMVFKNnUwdnl6MDBZeGFrUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
MzNiNjlkLWY0Y2EtNDNhYS05NzgwLTFkNTVkNTkyOWNlYy8xL3g2dHJJbFRrVnpD
cS1rV3JVWmN5QTJGTHRzdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnlADANBgkqhkiG9w0BAQsFAAOC
AQEAo/iXLoCSr7QfLgB+gzdqd4KkA9r22mRE2lU/tkriA+KohLlkhiN2CMiNWh5a
KccuIcqPZ9ZDPfwlz9lt2pHlpzUebJpcqbaVhvl1wbUGVjgeg8DKUrEc5yGvxInb
GEt5RERZ/p2QN7yVOSDAChC3ZhfgHx9M96zkgcL6w6mLezrztg29ctosLNEf1mhC
dUF4ibURBqbzbXnD1Fu1aSgb2SdTn70YNa7Z4MA8G7g8m0NhYukJKP1rdJ+xiSlA
qYFjvZTNKvKjuDn7wxbXIVrfdxdOTZa7ozuHK/H+ULny2JOCa4/CpICp3gOpUY0f
kRamfgaA85wDXO92gCJ5OlOnFw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:41 2024 by rpki-client on console-fra.rpki-client.org