Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/1KP9Cj65Y_F8t7Nx6lEKDMYwwXA.roa
File: 1KP9Cj65Y_F8t7Nx6lEKDMYwwXA.roa (raw, json)
Hash identifier: 4X/ofl+zwjml34jyuyvodjvKAFl0GTs3c0csBzz2ocA=
Subject key identifier: D4:A3:FD:0A:3E:B9:63:F1:7C:B7:B3:71:EA:51:0A:0C:C6:30:C1:70
Certificate issuer: /CN=1d10e38ed55e3185aed6f079f8bb9bf12d4448db
Certificate serial: F03B49
Authority key identifier: 1D:10:E3:8E:D5:5E:31:85:AE:D6:F0:79:F8:BB:9B:F1:2D:44:48:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRDjjtVeMYWu1vB5-Lub8S1ESNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/1KP9Cj65Y_F8t7Nx6lEKDMYwwXA.roa
Signing time: Sat 01 Jan 2022 13:05:57 +0000
ROA not before: Sat 01 Jan 2022 13:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57256
IP address blocks: 185.164.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15743817 (0xf03b49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d10e38ed55e3185aed6f079f8bb9bf12d4448db
Validity
Not Before: Jan 1 13:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4a3fd0a3eb963f17cb7b371ea510a0cc630c170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:64:4c:7a:db:e4:a3:7f:d7:e3:50:38:fc:
bb:39:03:74:f7:26:b8:9e:18:34:52:56:c0:4f:e4:
b2:2d:ac:58:be:10:c6:83:67:ca:fd:d3:eb:d3:07:
e2:ed:78:d4:5b:d5:b8:d9:4e:3c:be:17:95:b6:87:
4d:a4:2b:ea:ed:c1:1a:16:61:d8:1a:ed:5c:06:00:
59:7d:41:02:92:42:7e:46:24:ab:52:85:5d:01:a2:
ae:29:3f:80:9a:4f:25:72:c9:8d:db:7d:d4:fe:c2:
d8:67:12:84:e8:20:38:70:94:81:c4:85:10:b2:a2:
fa:cd:d0:ac:3f:91:f5:7e:1c:d8:d9:4d:82:ca:c9:
96:d4:ca:4d:7d:e7:c1:cd:d5:4b:af:ad:53:6c:42:
39:01:22:14:87:de:5f:86:6d:65:4f:d4:87:ef:1e:
d5:71:47:3d:b2:16:49:be:b2:9d:50:be:4a:7f:c4:
ee:79:a3:69:6a:5c:f9:84:8c:ce:ee:73:b5:f2:5e:
43:e6:d2:84:5f:3d:5f:32:1b:da:12:2f:d7:44:dc:
e7:0b:8c:f4:05:da:8d:77:06:89:ae:a2:f5:c1:3b:
ff:52:6c:23:3e:f9:fa:0a:18:c6:cb:44:4b:25:4e:
8d:21:fa:81:86:2f:5d:9c:9b:e2:10:3f:dc:1d:eb:
06:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A3:FD:0A:3E:B9:63:F1:7C:B7:B3:71:EA:51:0A:0C:C6:30:C1:70
X509v3 Authority Key Identifier:
keyid:1D:10:E3:8E:D5:5E:31:85:AE:D6:F0:79:F8:BB:9B:F1:2D:44:48:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRDjjtVeMYWu1vB5-Lub8S1ESNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/1KP9Cj65Y_F8t7Nx6lEKDMYwwXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/HRDjjtVeMYWu1vB5-Lub8S1ESNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.104.0/24
Signature Algorithm: sha256WithRSAEncryption
55:57:16:ae:f8:09:e2:53:f3:e8:39:cb:fe:4f:c9:3f:10:19:
a4:38:59:93:d0:42:63:1b:a3:bc:69:8e:9f:af:e1:57:b0:85:
b5:ab:73:ab:f5:2f:cf:5f:06:98:ce:60:2c:39:52:09:b3:3a:
58:6f:b5:eb:79:9d:05:4e:60:1c:ad:80:5e:72:9a:89:e6:45:
86:bc:ae:0f:63:cb:41:15:09:0a:31:9e:47:52:53:0d:07:c5:
45:32:90:de:de:e9:95:c9:1c:67:4a:84:01:52:b5:15:3c:33:
ac:e3:de:b0:c8:8d:a0:4f:3b:6c:3a:25:0a:c1:64:6f:c8:61:
b3:31:15:af:89:aa:04:08:0a:e7:2b:16:85:39:14:c8:ce:77:
96:ab:bc:b6:31:d9:43:e9:47:c5:28:d4:0b:99:a8:0e:d9:3a:
94:88:79:c9:f4:aa:55:3f:c6:be:eb:56:86:e1:bb:e7:6e:0e:
c0:b4:72:a8:71:42:58:a4:07:30:6b:f0:0e:84:e5:ee:5f:ae:
0c:cf:a0:24:e1:31:f9:33:a7:f2:f7:85:b7:45:15:3b:36:8c:
68:db:c1:5a:e2:94:7a:f8:76:f9:e8:a5:66:b6:e8:0f:18:da:
bf:a7:1a:dc:d9:33:91:25:5f:1c:e0:cc:0b:67:4f:ab:40:20:
20:69:f1:56
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAPA7STANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDEwZTM4ZWQ1NWUzMTg1YWVkNmYwNzlmOGJiOWJmMTJkNDQ0OGRiMB4XDTIyMDEw
MTEzMDU1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDRhM2ZkMGEzZWI5
NjNmMTdjYjdiMzcxZWE1MTBhMGNjNjMwYzE3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALz0ZEx62+Sjf9fjUDj8uzkDdPcmuJ4YNFJWwE/ksi2sWL4Q
xoNnyv3T69MH4u141FvVuNlOPL4XlbaHTaQr6u3BGhZh2BrtXAYAWX1BApJCfkYk
q1KFXQGirik/gJpPJXLJjdt91P7C2GcShOggOHCUgcSFELKi+s3QrD+R9X4c2NlN
gsrJltTKTX3nwc3VS6+tU2xCOQEiFIfeX4ZtZU/Uh+8e1XFHPbIWSb6ynVC+Sn/E
7nmjaWpc+YSMzu5ztfJeQ+bShF89XzIb2hIv10Tc5wuM9AXajXcGia6i9cE7/1Js
Iz75+goYxstESyVOjSH6gYYvXZyb4hA/3B3rBo8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTUo/0KPrlj8Xy3s3HqUQoMxjDBcDAfBgNVHSMEGDAWgBQdEOOO1V4xha7W
8Hn4u5vxLURI2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hSRGpqdFZlTVlXdTF2QjUtTHViOFMxRVNOcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvZTIzOTY5LWZmYjAtNGU1Ny1hMzZhLTc2MGY2YjZhYWJjMS8x
LzFLUDlDajY1WV9GOHQ3Tng2bEVLRE1Zd3dYQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
ZTIzOTY5LWZmYjAtNGU1Ny1hMzZhLTc2MGY2YjZhYWJjMS8xL0hSRGpqdFZlTVlX
dTF2QjUtTHViOFMxRVNOcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmkaDANBgkqhkiG9w0BAQsFAAOC
AQEAVVcWrvgJ4lPz6DnL/k/JPxAZpDhZk9BCYxujvGmOn6/hV7CFtatzq/Uvz18G
mM5gLDlSCbM6WG+163mdBU5gHK2AXnKaieZFhryuD2PLQRUJCjGeR1JTDQfFRTKQ
3t7plckcZ0qEAVK1FTwzrOPesMiNoE87bDolCsFkb8hhszEVr4mqBAgK5ysWhTkU
yM53lqu8tjHZQ+lHxSjUC5moDtk6lIh5yfSqVT/GvutWhuG7524OwLRyqHFCWKQH
MGvwDoTl7l+uDM+gJOEx+TOn8veFt0UVOzaMaNvBWuKUevh2+eilZrboDxjav6ca
3NkzkSVfHODMC2dPq0AgIGnxVg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org