Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/dj8-Q-7wpyv5LN7gTOnncbq5UwU.roa
File: dj8-Q-7wpyv5LN7gTOnncbq5UwU.roa (raw, json)
Hash identifier: NdF+WKcY3tz6XfV3jQaC7PuhFz+hYD/mxYrekEQw3WE=
Subject key identifier: 76:3F:3E:43:EE:F0:A7:2B:F9:2C:DE:E0:4C:E9:E7:71:BA:B9:53:05
Certificate issuer: /CN=d38cd9440552e7dab9cd5631d4ab872451535b7a
Certificate serial: 0184E2B8FB7572886B0B8ED66C67C885CDB2
Authority key identifier: D3:8C:D9:44:05:52:E7:DA:B9:CD:56:31:D4:AB:87:24:51:53:5B:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04zZRAVS59q5zVYx1KuHJFFTW3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/dj8-Q-7wpyv5LN7gTOnncbq5UwU.roa
Signing time: Mon 05 Dec 2022 14:38:04 +0000
ROA not before: Mon 05 Dec 2022 14:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.180.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:b8:fb:75:72:88:6b:0b:8e:d6:6c:67:c8:85:cd:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38cd9440552e7dab9cd5631d4ab872451535b7a
Validity
Not Before: Dec 5 14:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=763f3e43eef0a72bf92cdee04ce9e771bab95305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ef:34:2d:40:21:ab:5d:98:92:12:86:48:79:
02:f3:a6:c6:41:ed:14:47:61:30:c4:4b:53:60:0c:
56:8a:3d:9a:63:8d:ff:3d:3f:36:8c:96:a2:81:7e:
b2:f0:71:9f:cf:2f:1f:09:b6:19:09:55:fb:93:18:
65:49:9c:dc:fd:73:c4:a4:cc:64:fb:78:72:99:83:
d4:66:ae:36:3f:34:94:24:12:e7:74:cf:3b:a3:9e:
b3:cc:74:b8:65:eb:58:1d:49:19:f4:b0:6c:7f:53:
d0:23:12:7b:96:3f:ee:a9:d2:46:f4:1c:be:4e:ec:
9f:a5:fa:68:a3:d2:3a:09:80:f4:1a:41:76:88:99:
4e:ed:96:c7:c4:04:bb:0e:56:95:29:c3:e1:35:32:
6f:ce:6b:17:c6:93:ec:96:1b:99:67:a8:f8:93:f6:
8f:3e:e7:a0:c5:41:1b:11:38:9c:08:ea:58:41:e5:
1c:8e:77:54:f8:26:e2:9b:d3:da:72:d6:5c:07:8b:
dd:74:d4:3b:50:7f:b7:2c:8a:95:8f:20:cc:cc:12:
61:4b:9c:4d:69:9b:67:8b:44:79:50:7f:e6:af:96:
a6:dd:40:93:f6:44:ef:ff:f8:78:73:9e:e7:54:4c:
61:ad:4e:b9:f9:68:6a:8f:8f:13:d1:9c:f8:c7:92:
41:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3F:3E:43:EE:F0:A7:2B:F9:2C:DE:E0:4C:E9:E7:71:BA:B9:53:05
X509v3 Authority Key Identifier:
keyid:D3:8C:D9:44:05:52:E7:DA:B9:CD:56:31:D4:AB:87:24:51:53:5B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04zZRAVS59q5zVYx1KuHJFFTW3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/dj8-Q-7wpyv5LN7gTOnncbq5UwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/04zZRAVS59q5zVYx1KuHJFFTW3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.144.0/24
Signature Algorithm: sha256WithRSAEncryption
27:c3:18:95:83:9e:2f:df:01:b2:3c:3f:98:0d:e5:fd:49:1d:
3b:93:6d:d1:27:68:ee:f4:eb:08:ee:2f:16:8a:a5:ee:ea:7d:
5f:51:b2:ce:4f:59:b5:e6:27:3b:8b:f1:c3:cf:b2:c1:43:ce:
29:ca:cd:d3:18:fa:2b:e7:35:8b:18:52:4a:ab:3c:33:78:01:
b4:82:a1:02:ad:cc:83:7e:b8:07:9d:7a:32:92:d9:03:f4:5e:
fb:ed:1c:37:14:12:ab:48:35:99:7d:4b:7b:cf:26:98:5e:53:
71:c0:01:3c:9b:9d:c3:9c:22:54:10:ef:94:62:29:6d:31:9d:
ba:18:fd:e1:2d:fa:d2:60:fe:f6:11:66:09:35:28:3f:c3:ca:
fa:50:79:68:94:fd:dd:49:24:58:75:4a:10:4a:8b:bc:79:52:
45:c6:a7:80:8a:ab:9e:62:b1:92:a9:99:9f:88:ca:e7:75:59:
7f:17:21:bd:f9:ab:c0:e3:c1:89:37:2e:64:99:19:57:43:31:
09:9a:96:d9:84:82:78:b6:25:c2:0f:d2:4f:0e:d2:bb:76:75:
e7:c5:c0:15:29:41:1a:98:ed:72:80:5c:34:43:9c:ec:c1:87:
86:07:3f:11:0b:20:51:96:2a:f0:fb:ae:77:97:f6:d4:30:c1:
6a:4e:d6:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTiuPt1cohrC47WbGfIhc2yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzOGNkOTQ0MDU1MmU3ZGFiOWNkNTYzMWQ0YWI4NzI0NTE1
MzViN2EwHhcNMjIxMjA1MTQzODA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjNmM2U0M2VlZjBhNzJiZjkyY2RlZTA0Y2U5ZTc3MWJhYjk1MzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnu80LUAhq12YkhKGSHkC86bGQe0U
R2EwxEtTYAxWij2aY43/PT82jJaigX6y8HGfzy8fCbYZCVX7kxhlSZzc/XPEpMxk
+3hymYPUZq42PzSUJBLndM87o56zzHS4ZetYHUkZ9LBsf1PQIxJ7lj/uqdJG9By+
Tuyfpfpoo9I6CYD0GkF2iJlO7ZbHxAS7DlaVKcPhNTJvzmsXxpPslhuZZ6j4k/aP
PuegxUEbETicCOpYQeUcjndU+Cbim9PactZcB4vddNQ7UH+3LIqVjyDMzBJhS5xN
aZtni0R5UH/mr5am3UCT9kTv//h4c57nVExhrU65+Whqj48T0Zz4x5JBIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHY/PkPu8Kcr+Sze4Ezp53G6uVMFMB8GA1UdIwQY
MBaAFNOM2UQFUufauc1WMdSrhyRRU1t6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDR6WlJBVlM1OXE1elZZeDFLdUhKRkZUVzNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80YzMxNjAtZGUxMi00OTI5LWE0ODMt
N2M2NWE4NTJmMDkyLzEvZGo4LVEtN3dweXY1TE43Z1RPbm5jYnE1VXdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi80YzMxNjAtZGUxMi00OTI5LWE0ODMtN2M2NWE4NTJmMDky
LzEvMDR6WlJBVlM1OXE1elZZeDFLdUhKRkZUVzNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubSQMA0G
CSqGSIb3DQEBCwUAA4IBAQAnwxiVg54v3wGyPD+YDeX9SR07k23RJ2ju9OsI7i8W
iqXu6n1fUbLOT1m15ic7i/HDz7LBQ84pys3TGPor5zWLGFJKqzwzeAG0gqECrcyD
frgHnXoyktkD9F777Rw3FBKrSDWZfUt7zyaYXlNxwAE8m53DnCJUEO+UYiltMZ26
GP3hLfrSYP72EWYJNSg/w8r6UHlolP3dSSRYdUoQSou8eVJFxqeAiqueYrGSqZmf
iMrndVl/FyG9+avA48GJNy5kmRlXQzEJmpbZhIJ4tiXCD9JPDtK7dnXnxcAVKUEa
mO1ygFw0Q5zswYeGBz8RCyBRlirw+653l/bUMMFqTtYx
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:14 2023 by rpki-client on console-fra.rpki-client.org