Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/pMLEY4yClH75QpCtNDFUuzWtrE0.roa
File: pMLEY4yClH75QpCtNDFUuzWtrE0.roa (raw, json)
Hash identifier: YApIslWF7mSgnJnRNhjERYgRXEsIkDT6UQhhgYnWxgo=
Subject key identifier: A4:C2:C4:63:8C:82:94:7E:F9:42:90:AD:34:31:54:BB:35:AD:AC:4D
Certificate issuer: /CN=49378660f5f01923946c35d94be5ccd7d2b71051
Certificate serial: 0182D5E156A57BDA76CCC656A6B18FE2D085
Authority key identifier: 49:37:86:60:F5:F0:19:23:94:6C:35:D9:4B:E5:CC:D7:D2:B7:10:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STeGYPXwGSOUbDXZS-XM19K3EFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/pMLEY4yClH75QpCtNDFUuzWtrE0.roa
Signing time: Thu 25 Aug 2022 16:41:30 +0000
ROA not before: Thu 25 Aug 2022 16:41:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203593
IP address blocks: 185.129.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:e1:56:a5:7b:da:76:cc:c6:56:a6:b1:8f:e2:d0:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49378660f5f01923946c35d94be5ccd7d2b71051
Validity
Not Before: Aug 25 16:41:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4c2c4638c82947ef94290ad343154bb35adac4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:88:93:ed:6e:bc:bb:ce:65:a0:41:ef:14:d0:
07:72:85:b9:80:4b:84:bc:b6:5e:25:d7:b1:71:c6:
f4:dd:d2:bd:64:e1:a2:4a:16:32:fb:37:1a:ea:6f:
e8:bf:f4:df:c7:7d:5b:b4:40:69:91:4f:6e:92:2a:
94:d0:08:c7:3a:15:89:1d:d1:d9:0d:76:96:f5:8b:
63:22:91:0e:ee:98:a3:52:87:0f:9b:29:c9:b5:a0:
b3:b4:aa:ea:9e:c6:9e:e9:5e:77:47:c6:0c:ea:75:
05:19:cf:fa:97:14:04:31:c0:33:92:79:c3:c8:9e:
d6:97:96:66:b2:3b:51:fe:e5:aa:28:a1:5a:ba:1e:
fd:20:d2:ca:92:2c:e9:23:75:26:21:6d:a2:13:dd:
94:94:19:24:b4:20:bb:01:23:1a:a2:6d:39:3c:91:
86:fc:38:0d:62:a3:51:1c:c7:a6:a9:f1:af:66:c6:
e1:7b:34:79:1c:e5:a3:03:77:a1:5d:bf:ba:c2:a6:
fe:87:27:cf:64:73:92:d2:13:bd:bd:29:c9:bd:22:
c0:d8:e8:a7:de:28:23:09:2e:45:22:ad:5a:cd:d9:
2e:96:02:b6:ec:40:eb:cf:44:86:a4:f9:3e:fc:ef:
21:f8:e5:8a:6c:2c:eb:64:ac:30:5e:9f:41:34:06:
35:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C2:C4:63:8C:82:94:7E:F9:42:90:AD:34:31:54:BB:35:AD:AC:4D
X509v3 Authority Key Identifier:
keyid:49:37:86:60:F5:F0:19:23:94:6C:35:D9:4B:E5:CC:D7:D2:B7:10:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STeGYPXwGSOUbDXZS-XM19K3EFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/pMLEY4yClH75QpCtNDFUuzWtrE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/STeGYPXwGSOUbDXZS-XM19K3EFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.255.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:63:74:2a:16:9c:7b:32:1a:98:9a:9e:46:ed:b4:c1:a8:e7:
ec:8a:48:e7:5c:0d:4e:18:ba:d1:92:c5:e1:fa:fc:2d:f5:69:
cf:8b:b4:64:b6:54:6b:01:88:ec:0b:40:ef:56:50:33:b9:4c:
ca:84:54:f6:ae:c8:2f:fb:f0:4b:18:04:da:0a:91:31:7d:ce:
1c:d1:b2:dc:10:0d:26:f5:f4:f1:93:10:65:a8:88:51:9a:76:
a2:7c:35:cc:d2:1c:b2:13:f9:70:1d:4b:e2:d9:a7:38:55:7c:
ea:45:56:4e:1a:b1:43:3a:af:15:b7:e9:af:60:42:a3:2e:86:
bd:00:4e:dc:05:d6:a4:e4:9d:19:06:5e:3e:88:87:8d:dd:74:
b5:8b:db:67:73:9b:05:61:3d:cc:2d:08:c9:15:d2:f4:f2:c4:
16:5c:12:90:ea:cd:56:d9:88:e9:02:c3:ca:ab:cd:db:68:c3:
42:5f:7e:bf:1e:38:e7:47:79:5d:a3:20:a2:43:ed:51:b5:e1:
7c:38:36:95:50:fe:f6:8a:9d:2f:2d:60:9a:d8:71:02:50:fd:
77:3a:85:3f:bf:9c:0c:a5:7d:39:b9:e5:a6:18:89:37:0f:90:
25:08:e8:e1:bd:3f:1e:2a:79:55:e9:e3:4e:9a:0f:16:33:40:
9a:5c:47:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLV4Vale9p2zMZWprGP4tCFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5Mzc4NjYwZjVmMDE5MjM5NDZjMzVkOTRiZTVjY2Q3ZDJi
NzEwNTEwHhcNMjIwODI1MTY0MTMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGMyYzQ2MzhjODI5NDdlZjk0MjkwYWQzNDMxNTRiYjM1YWRhYzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYiT7W68u85loEHvFNAHcoW5gEuE
vLZeJdexccb03dK9ZOGiShYy+zca6m/ov/Tfx31btEBpkU9ukiqU0AjHOhWJHdHZ
DXaW9YtjIpEO7pijUocPmynJtaCztKrqnsae6V53R8YM6nUFGc/6lxQEMcAzknnD
yJ7Wl5ZmsjtR/uWqKKFauh79INLKkizpI3UmIW2iE92UlBkktCC7ASMaom05PJGG
/DgNYqNRHMemqfGvZsbhezR5HOWjA3ehXb+6wqb+hyfPZHOS0hO9vSnJvSLA2Oin
3igjCS5FIq1azdkulgK27EDrz0SGpPk+/O8h+OWKbCzrZKwwXp9BNAY1ZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKTCxGOMgpR++UKQrTQxVLs1raxNMB8GA1UdIwQY
MBaAFEk3hmD18BkjlGw12UvlzNfStxBRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1RlR1lQWHdHU09VYkRYWlMtWE0xOUszRUZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8wN2NkY2YtODg3NS00NzcwLThjNzUt
NDFiNzQ1YmY1M2RiLzEvcE1MRVk0eUNsSDc1UXBDdE5ERlV1eld0ckUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8wN2NkY2YtODg3NS00NzcwLThjNzUtNDFiNzQ1YmY1M2Ri
LzEvU1RlR1lQWHdHU09VYkRYWlMtWE0xOUszRUZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYH/MA0G
CSqGSIb3DQEBCwUAA4IBAQCuY3QqFpx7MhqYmp5G7bTBqOfsikjnXA1OGLrRksXh
+vwt9WnPi7RktlRrAYjsC0DvVlAzuUzKhFT2rsgv+/BLGATaCpExfc4c0bLcEA0m
9fTxkxBlqIhRmnaifDXM0hyyE/lwHUvi2ac4VXzqRVZOGrFDOq8Vt+mvYEKjLoa9
AE7cBdak5J0ZBl4+iIeN3XS1i9tnc5sFYT3MLQjJFdL08sQWXBKQ6s1W2YjpAsPK
q83baMNCX36/HjjnR3ldoyCiQ+1RteF8ODaVUP72ip0vLWCa2HECUP13OoU/v5wM
pX05ueWmGIk3D5AlCOjhvT8eKnlV6eNOmg8WM0CaXEdn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:52 2024 by rpki-client on console-fra.rpki-client.org