Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/amU2CvcJ2CWXzBqfzNKOvqDo54Y.roa
File: amU2CvcJ2CWXzBqfzNKOvqDo54Y.roa (raw, json)
Hash identifier: rdrnmMV7vyBKqbvfe9ZqccT1rCxhOKs0220rByKaUkk=
Subject key identifier: 6A:65:36:0A:F7:09:D8:25:97:CC:1A:9F:CC:D2:8E:BE:A0:E8:E7:86
Certificate issuer: /CN=f5346d3edbec6da72780722c0a41abeea63661d8
Certificate serial: 09CA5F6D
Authority key identifier: F5:34:6D:3E:DB:EC:6D:A7:27:80:72:2C:0A:41:AB:EE:A6:36:61:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9TRtPtvsbacngHIsCkGr7qY2Ydg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/amU2CvcJ2CWXzBqfzNKOvqDo54Y.roa
Signing time: Sat 01 Jan 2022 09:06:35 +0000
ROA not before: Sat 01 Jan 2022 09:06:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.57.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164257645 (0x9ca5f6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5346d3edbec6da72780722c0a41abeea63661d8
Validity
Not Before: Jan 1 09:06:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a65360af709d82597cc1a9fccd28ebea0e8e786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:40:c2:36:de:62:db:8f:ca:61:70:f3:a8:42:
14:d7:4d:b5:90:f1:b7:d8:4d:a2:62:93:46:53:47:
8d:9c:5e:c7:30:24:9e:ef:c9:2a:10:51:9a:3d:83:
a2:62:a8:b2:93:fe:6f:6a:17:83:cc:dc:88:70:51:
43:d8:66:f2:79:f3:ed:0f:21:bd:82:ef:bd:fd:28:
df:90:56:a9:4f:3d:14:e0:54:75:55:ad:1f:38:b7:
fc:98:1e:40:b5:75:aa:61:09:80:ad:3b:82:2a:81:
fc:4a:5c:02:0e:7e:82:29:26:fc:a3:93:11:e7:31:
d9:33:25:e8:c8:fc:5b:df:0f:82:29:14:93:7d:f6:
91:1b:de:87:a2:d8:92:1d:e1:a7:8b:95:8c:ea:28:
28:42:44:ac:12:9c:fc:a0:75:9f:e0:6c:bd:27:6b:
79:2c:48:c8:cd:46:00:57:e5:4a:44:2d:53:26:43:
4c:4e:b5:01:ac:c2:62:91:68:06:15:d0:e8:a8:e7:
cc:3c:72:bd:85:8a:5b:da:94:bd:79:d6:51:a7:2a:
a9:f1:56:92:cb:e1:5c:37:06:b1:b0:0d:13:26:7e:
12:74:17:8f:e4:15:c8:64:f5:a2:42:49:97:18:15:
ad:51:29:68:eb:c2:c9:9c:7e:a0:8a:e4:c1:40:be:
b3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:65:36:0A:F7:09:D8:25:97:CC:1A:9F:CC:D2:8E:BE:A0:E8:E7:86
X509v3 Authority Key Identifier:
keyid:F5:34:6D:3E:DB:EC:6D:A7:27:80:72:2C:0A:41:AB:EE:A6:36:61:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9TRtPtvsbacngHIsCkGr7qY2Ydg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/amU2CvcJ2CWXzBqfzNKOvqDo54Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/9TRtPtvsbacngHIsCkGr7qY2Ydg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.216.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:83:5f:1b:29:98:52:1f:68:89:6d:a9:41:98:30:63:b7:3d:
fc:98:0a:f5:11:7b:52:e9:3a:9b:59:98:cc:16:c0:d1:23:0c:
1c:a2:e3:58:d3:58:e7:04:3c:2c:dc:c5:c1:e6:ec:e4:71:62:
89:bd:3b:5f:04:d2:5c:8d:91:47:6b:b3:17:9f:c5:53:6e:88:
6d:93:ee:6b:be:ae:4b:7e:66:76:f1:af:38:79:27:57:71:03:
68:d5:37:c2:f5:09:19:e2:8b:6e:36:ce:ab:5d:35:b7:5b:ab:
8b:b2:15:8c:35:a6:0d:18:32:9c:3e:12:7e:dd:32:82:f7:50:
ab:6c:2d:18:cc:da:d6:3c:66:29:fd:c3:89:9d:c4:59:e0:5d:
a2:e2:c4:53:48:27:df:50:d1:53:6f:e1:21:b4:d2:cf:a2:50:
5f:48:6c:57:06:59:a0:a4:a0:c9:a7:1f:ac:43:b4:40:b9:22:
66:d6:45:b0:33:b8:89:98:9c:a9:fc:4f:3b:0f:f4:a2:88:b5:
2c:19:7f:2e:9f:4f:c7:cf:4c:0b:44:b3:88:a2:2f:75:36:21:
dd:32:72:33:f6:ae:eb:23:e1:72:6d:2e:cc:43:f2:92:11:76:
f9:16:ff:8a:f7:59:52:d5:85:5c:68:a5:cd:cd:3f:67:fc:8b:
76:1c:b6:ef
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECcpfbTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NTM0NmQzZWRiZWM2ZGE3Mjc4MDcyMmMwYTQxYWJlZWE2MzY2MWQ4MB4XDTIyMDEw
MTA5MDYzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmE2NTM2MGFmNzA5
ZDgyNTk3Y2MxYTlmY2NkMjhlYmVhMGU4ZTc4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ9AwjbeYtuPymFw86hCFNdNtZDxt9hNomKTRlNHjZxexzAk
nu/JKhBRmj2DomKospP+b2oXg8zciHBRQ9hm8nnz7Q8hvYLvvf0o35BWqU89FOBU
dVWtHzi3/JgeQLV1qmEJgK07giqB/EpcAg5+gikm/KOTEecx2TMl6Mj8W98PgikU
k332kRveh6LYkh3hp4uVjOooKEJErBKc/KB1n+BsvSdreSxIyM1GAFflSkQtUyZD
TE61AazCYpFoBhXQ6KjnzDxyvYWKW9qUvXnWUacqqfFWksvhXDcGsbANEyZ+EnQX
j+QVyGT1okJJlxgVrVEpaOvCyZx+oIrkwUC+sycCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRqZTYK9wnYJZfMGp/M0o6+oOjnhjAfBgNVHSMEGDAWgBT1NG0+2+xtpyeA
ciwKQavupjZh2DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlUUnRQdHZzYmFjbmdISXNDa0dyN3FZMllkZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvYmU4MDY0LTllMTEtNDYxYS05MzZkLWZhNzBiZDkwZTg5NC8x
L2FtVTJDdmNKMkNXWHpCcWZ6TktPdnFEbzU0WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
YmU4MDY0LTllMTEtNDYxYS05MzZkLWZhNzBiZDkwZTg5NC8xLzlUUnRQdHZzYmFj
bmdISXNDa0dyN3FZMllkZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArk52DANBgkqhkiG9w0BAQsFAAOC
AQEAuYNfGymYUh9oiW2pQZgwY7c9/JgK9RF7Uuk6m1mYzBbA0SMMHKLjWNNY5wQ8
LNzFwebs5HFiib07XwTSXI2RR2uzF5/FU26IbZPua76uS35mdvGvOHknV3EDaNU3
wvUJGeKLbjbOq101t1uri7IVjDWmDRgynD4Sft0ygvdQq2wtGMza1jxmKf3DiZ3E
WeBdouLEU0gn31DRU2/hIbTSz6JQX0hsVwZZoKSgyacfrEO0QLkiZtZFsDO4iZic
qfxPOw/0ooi1LBl/Lp9Px89MC0SziKIvdTYh3TJyM/au6yPhcm0uzEPykhF2+Rb/
ivdZUtWFXGilzc0/Z/yLdhy27w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:35 2024 by rpki-client on console-ams.rpki-client.org