Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/f405IFR4DDkmlMauABffm1UQw6s.roa
File: f405IFR4DDkmlMauABffm1UQw6s.roa (raw, json)
Hash identifier: lzuaWNuB+2AqfkkWavknqb++qDjxqc6z8giIaodVipU=
Subject key identifier: 7F:8D:39:20:54:78:0C:39:26:94:C6:AE:00:17:DF:9B:55:10:C3:AB
Certificate issuer: /CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Certificate serial: 18514416
Authority key identifier: 04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/f405IFR4DDkmlMauABffm1UQw6s.roa
Signing time: Sat 01 Jan 2022 14:56:53 +0000
ROA not before: Sat 01 Jan 2022 14:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212603
IP address blocks: 185.60.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407979030 (0x18514416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Validity
Not Before: Jan 1 14:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f8d392054780c392694c6ae0017df9b5510c3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:30:fd:b0:97:1b:61:61:e8:20:65:df:00:3e:
7a:41:ba:f6:c9:a0:6b:e7:ea:35:95:1b:60:a6:53:
4f:45:9a:5b:41:a9:d6:83:d2:7d:ff:06:e5:f3:c0:
9a:6a:dd:55:e0:4c:3b:76:9e:76:c3:0d:cc:68:85:
7b:d4:56:d9:f7:b0:dd:e9:b0:57:c9:98:ff:19:52:
b1:aa:90:c3:5e:52:c8:b0:42:53:dc:f7:79:42:1d:
b2:4f:ce:cb:4e:30:0f:33:77:79:6c:52:35:02:d9:
d3:ff:ed:58:04:e9:3f:0d:bc:87:39:49:d5:2e:58:
df:39:b4:8b:68:e2:91:47:6c:d2:61:f7:55:e9:bb:
b6:98:d5:ef:60:de:74:15:d5:15:8d:4a:75:40:e0:
8e:ba:ae:ec:d3:65:72:75:93:85:be:6c:c7:53:02:
93:32:c4:4e:4a:5e:db:3b:a4:92:56:bc:d0:1b:4a:
66:7d:cc:86:f1:40:62:a9:05:08:a0:67:88:c4:20:
df:6d:c9:99:87:9d:2f:c2:13:2b:4f:fe:36:ac:39:
a4:c3:4b:9b:85:52:55:fe:bf:b9:ba:af:8a:b6:c1:
d0:37:a0:73:ed:97:e8:e3:67:35:d1:cd:97:b2:a0:
87:73:4b:c9:7b:92:14:bd:a2:d6:ea:4d:fe:30:11:
24:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:8D:39:20:54:78:0C:39:26:94:C6:AE:00:17:DF:9B:55:10:C3:AB
X509v3 Authority Key Identifier:
keyid:04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/f405IFR4DDkmlMauABffm1UQw6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.20.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a8:17:ef:a8:b8:a5:0c:b3:59:fb:c3:09:f7:1c:44:55:fb:
d4:43:88:f6:5c:9c:1d:b5:d1:62:cb:9f:28:b2:1d:b2:cd:5d:
76:c7:3e:ca:2a:24:3b:b1:af:0d:80:cb:14:e1:e9:e7:19:3e:
b3:37:7f:c7:5a:1f:d8:7e:c8:6b:cc:18:a0:85:7e:7a:3f:f1:
5e:7c:82:a9:18:9b:12:cc:6b:7e:e1:c8:fc:97:a8:73:4b:d7:
69:f0:3d:c5:8a:16:84:57:81:63:9e:08:be:19:6c:ae:a1:74:
f7:4c:8d:fd:da:a6:72:6e:5e:e1:2a:1b:18:70:53:75:e4:cc:
02:d2:7f:9c:5c:d3:0d:9a:ba:20:92:72:7e:97:df:0d:09:76:
60:bb:e5:82:cd:ac:fb:70:5c:3c:34:4a:08:87:9d:a7:6e:4c:
76:c8:49:70:b2:f9:2d:72:48:15:dd:ec:93:7b:77:95:a8:a3:
e4:d6:5f:5e:9e:f5:6a:33:dd:0d:3e:36:20:75:09:66:df:0a:
3b:15:0b:bf:b8:2e:19:93:de:ca:24:eb:9f:49:86:57:6a:81:
a4:eb:28:bf:4b:57:3a:a1:62:99:32:a1:41:0e:2b:8d:65:7b:
f7:03:39:ee:e0:f4:3d:1d:2c:8e:b8:3b:35:d6:32:96:53:d2:
a8:fe:6e:91
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGFFEFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NGE1ZWM1ZjUyNjY4YmU1MGI0NTE4YjY4N2NmOGJkOTU5MzBhZTM5MB4XDTIyMDEw
MTE0NTY1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Y4ZDM5MjA1NDc4
MGMzOTI2OTRjNmFlMDAxN2RmOWI1NTEwYzNhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALcw/bCXG2Fh6CBl3wA+ekG69smga+fqNZUbYKZTT0WaW0Gp
1oPSff8G5fPAmmrdVeBMO3aedsMNzGiFe9RW2few3emwV8mY/xlSsaqQw15SyLBC
U9z3eUIdsk/Oy04wDzN3eWxSNQLZ0//tWATpPw28hzlJ1S5Y3zm0i2jikUds0mH3
Vem7tpjV72DedBXVFY1KdUDgjrqu7NNlcnWThb5sx1MCkzLETkpe2zukkla80BtK
Zn3MhvFAYqkFCKBniMQg323JmYedL8ITK0/+Nqw5pMNLm4VSVf6/ubqvirbB0Deg
c+2X6ONnNdHNl7Kgh3NLyXuSFL2i1upN/jARJAsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR/jTkgVHgMOSaUxq4AF9+bVRDDqzAfBgNVHSMEGDAWgBQEpexfUmaL5QtF
GLaHz4vZWTCuOTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JLWHNYMUptaS1VTFJSaTJoOC1MMlZrd3Jqay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvMDBlMzNlLWZkNzQtNDU4My05ODRlLWM2Yjg0Y2M1ODYxMC8x
L2Y0MDVJRlI0RERrbWxNYXVBQmZmbTFVUXc2cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
MDBlMzNlLWZkNzQtNDU4My05ODRlLWM2Yjg0Y2M1ODYxMC8xL0JLWHNYMUptaS1V
TFJSaTJoOC1MMlZrd3Jqay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALk8FDANBgkqhkiG9w0BAQsFAAOC
AQEAe6gX76i4pQyzWfvDCfccRFX71EOI9lycHbXRYsufKLIdss1ddsc+yiokO7Gv
DYDLFOHp5xk+szd/x1of2H7Ia8wYoIV+ej/xXnyCqRibEsxrfuHI/Jeoc0vXafA9
xYoWhFeBY54IvhlsrqF090yN/dqmcm5e4SobGHBTdeTMAtJ/nFzTDZq6IJJyfpff
DQl2YLvlgs2s+3BcPDRKCIedp25MdshJcLL5LXJIFd3sk3t3laij5NZfXp71ajPd
DT42IHUJZt8KOxULv7guGZPeyiTrn0mGV2qBpOsov0tXOqFimTKhQQ4rjWV79wM5
7uD0PR0sjrg7NdYyllPSqP5ukQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:17 2023 by rpki-client on console-ams.rpki-client.org