Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/IKx5tgvUxOJobdf_3YSJ6ELUCwc.roa
File: IKx5tgvUxOJobdf_3YSJ6ELUCwc.roa (raw, json)
Hash identifier: 78p+oa7T6cmyohv8bLJzsLCKK0y/p/hna+PPkkQRV/4=
Subject key identifier: 20:AC:79:B6:0B:D4:C4:E2:68:6D:D7:FF:DD:84:89:E8:42:D4:0B:07
Certificate issuer: /CN=a6e8a25a93792a58b3a2d80fb1aad959e65aeddf
Certificate serial: 0592C6F5
Authority key identifier: A6:E8:A2:5A:93:79:2A:58:B3:A2:D8:0F:B1:AA:D9:59:E6:5A:ED:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/IKx5tgvUxOJobdf_3YSJ6ELUCwc.roa
Signing time: Sat 01 Jan 2022 06:04:18 +0000
ROA not before: Sat 01 Jan 2022 06:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29070
IP address blocks: 185.103.21.0/24 maxlen: 24
185.103.23.0/24 maxlen: 24
185.103.20.0/24 maxlen: 24
185.103.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93505269 (0x592c6f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e8a25a93792a58b3a2d80fb1aad959e65aeddf
Validity
Not Before: Jan 1 06:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20ac79b60bd4c4e2686dd7ffdd8489e842d40b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:2e:ce:41:95:1a:5d:33:fb:1b:31:cb:ac:
99:7e:bb:0b:73:33:27:18:8d:80:90:cb:c8:8e:b1:
9b:e5:d4:d6:65:91:27:71:c4:2a:b5:8e:f4:33:c5:
e1:92:6c:83:58:22:bd:51:08:3d:5c:72:84:92:23:
15:14:0e:43:23:f0:2d:e0:a6:84:81:33:05:c6:bf:
7b:2b:ae:6a:e6:5f:29:9c:15:bf:3e:cf:d0:3b:c6:
47:a0:b1:67:8a:43:5e:23:f3:3a:1e:0c:4e:16:d0:
49:0c:3b:32:49:63:50:ce:a2:23:40:a1:bd:b4:5a:
f3:57:e7:60:bf:59:e5:fd:83:9f:c7:cf:06:6c:fd:
2e:d7:0c:62:16:91:4b:68:ff:b2:39:5b:44:25:de:
9e:ca:40:8d:22:f6:4b:5e:6d:bf:de:f9:0f:f5:87:
66:20:1d:e0:36:49:9d:bd:fa:66:f9:28:db:32:f6:
cb:e8:d9:e8:a2:ae:e7:8e:52:51:36:c0:77:17:e1:
6a:55:b7:32:8a:d8:fd:aa:c7:c5:51:79:ba:77:55:
36:b8:94:3f:83:7e:eb:99:d6:d2:2f:eb:e0:03:17:
21:3f:a5:1a:c8:74:53:ab:3f:74:06:3b:0a:58:e1:
96:84:ec:0c:6d:4c:e2:c0:73:9d:9d:b6:8e:be:2f:
d4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:AC:79:B6:0B:D4:C4:E2:68:6D:D7:FF:DD:84:89:E8:42:D4:0B:07
X509v3 Authority Key Identifier:
keyid:A6:E8:A2:5A:93:79:2A:58:B3:A2:D8:0F:B1:AA:D9:59:E6:5A:ED:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/IKx5tgvUxOJobdf_3YSJ6ELUCwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.20.0/22
Signature Algorithm: sha256WithRSAEncryption
03:df:45:40:0d:27:11:98:05:2a:4b:e3:a0:50:e5:df:52:79:
3b:86:70:af:7c:9a:f8:c5:bc:77:77:d0:72:53:87:8c:5d:b0:
be:14:cd:f0:52:6e:c3:64:72:2c:29:54:7d:59:fe:25:cd:4b:
05:7e:bd:be:e9:ff:10:78:6d:36:d3:99:24:e3:40:92:c6:30:
37:d4:7c:69:94:11:66:30:b9:c5:ba:20:3d:54:be:b5:32:a9:
b0:f0:fa:d1:93:17:bb:60:ac:5a:20:3a:73:4a:38:64:90:7f:
e8:fe:ab:d1:a0:5d:9a:7a:ab:fc:a8:8b:f7:4d:17:36:a3:77:
55:cd:36:a6:01:36:bc:8a:8d:f3:11:bc:97:22:b4:12:84:d4:
0a:4a:02:71:7d:7a:75:b6:02:94:57:46:83:56:54:2c:a8:c1:
42:0d:62:72:a9:43:86:98:61:49:e0:a9:fb:ee:7b:8d:d4:18:
ee:b4:2b:ab:66:6c:61:9d:db:4e:45:6a:5f:ad:e3:89:e5:3f:
c4:c4:43:92:cd:d5:2c:8d:e6:52:7e:e8:83:c0:66:4a:db:e0:
08:63:8e:a7:51:a0:82:aa:a9:f1:ed:2f:05:da:9b:77:e7:2a:
f3:3a:ed:b8:67:85:f9:ac:c1:d6:47:c9:21:c1:1d:7f:9c:2f:
c7:8c:1e:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBZLG9TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NmU4YTI1YTkzNzkyYTU4YjNhMmQ4MGZiMWFhZDk1OWU2NWFlZGRmMB4XDTIyMDEw
MTA2MDQxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjBhYzc5YjYwYmQ0
YzRlMjY4NmRkN2ZmZGQ4NDg5ZTg0MmQ0MGIwNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALvqLs5BlRpdM/sbMcusmX67C3MzJxiNgJDLyI6xm+XU1mWR
J3HEKrWO9DPF4ZJsg1givVEIPVxyhJIjFRQOQyPwLeCmhIEzBca/eyuuauZfKZwV
vz7P0DvGR6CxZ4pDXiPzOh4MThbQSQw7MkljUM6iI0ChvbRa81fnYL9Z5f2Dn8fP
Bmz9LtcMYhaRS2j/sjlbRCXenspAjSL2S15tv975D/WHZiAd4DZJnb36Zvko2zL2
y+jZ6KKu545SUTbAdxfhalW3MorY/arHxVF5undVNriUP4N+65nW0i/r4AMXIT+l
Gsh0U6s/dAY7CljhloTsDG1M4sBznZ22jr4v1OsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQgrHm2C9TE4mht1//dhInoQtQLBzAfBgNVHSMEGDAWgBSm6KJak3kqWLOi
2A+xqtlZ5lrt3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3B1aWlXcE41S2xpem90Z1BzYXJaV2VaYTdkOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvNGM2ZTc1LWE4MDAtNGQ0Zi04YWM3LTRlYWViMmEyM2IyNy8x
L0lLeDV0Z3ZVeE9Kb2JkZl8zWVNKNkVMVUN3Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
NGM2ZTc1LWE4MDAtNGQ0Zi04YWM3LTRlYWViMmEyM2IyNy8xL3B1aWlXcE41S2xp
em90Z1BzYXJaV2VaYTdkOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlnFDANBgkqhkiG9w0BAQsFAAOC
AQEAA99FQA0nEZgFKkvjoFDl31J5O4Zwr3ya+MW8d3fQclOHjF2wvhTN8FJuw2Ry
LClUfVn+Jc1LBX69vun/EHhtNtOZJONAksYwN9R8aZQRZjC5xbogPVS+tTKpsPD6
0ZMXu2CsWiA6c0o4ZJB/6P6r0aBdmnqr/KiL900XNqN3Vc02pgE2vIqN8xG8lyK0
EoTUCkoCcX16dbYClFdGg1ZULKjBQg1icqlDhphhSeCp++57jdQY7rQrq2ZsYZ3b
TkVqX63jieU/xMRDks3VLI3mUn7og8BmStvgCGOOp1Gggqqp8e0vBdqbd+cq8zrt
uGeF+azB1kfJIcEdf5wvx4weQg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:05 2024 by rpki-client on console-fra.rpki-client.org