Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/a9kx-T_dGOMR8RhuptafvTt5oco.roa
File: a9kx-T_dGOMR8RhuptafvTt5oco.roa (raw, json)
Hash identifier: NMSJxEf/uEH87kzRj2wAZlaKFKWIV3Z29qDAimSvQuM=
Subject key identifier: 6B:D9:31:F9:3F:DD:18:E3:11:F1:18:6E:A6:D6:9F:BD:3B:79:A1:CA
Certificate issuer: /CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Certificate serial: 01843F82D683C788367E6196CA0565875779
Authority key identifier: 52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/a9kx-T_dGOMR8RhuptafvTt5oco.roa
Signing time: Thu 03 Nov 2022 22:00:49 +0000
ROA not before: Thu 03 Nov 2022 22:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207713
IP address blocks: 185.143.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3f:82:d6:83:c7:88:36:7e:61:96:ca:05:65:87:57:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Validity
Not Before: Nov 3 22:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bd931f93fdd18e311f1186ea6d69fbd3b79a1ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:34:52:c1:43:01:9b:4c:68:7e:53:28:90:22:
89:06:1b:5e:ee:5a:23:f1:35:88:86:b2:4d:ac:61:
4a:fd:29:f0:e4:41:8e:9c:0c:d8:af:8d:0f:67:ac:
ec:a3:a4:66:47:e8:4b:d7:5a:43:55:6d:c0:b5:88:
a2:b1:91:1c:c2:59:d7:58:39:7a:04:8b:5f:9c:28:
f2:5e:d4:a4:3e:a9:8b:06:1e:56:9b:b6:47:c9:2f:
d1:21:63:0a:5f:19:fc:a4:d2:f6:8c:e6:e2:4f:a1:
3d:15:57:5c:77:2a:b9:1f:e3:01:92:4c:88:15:c6:
f9:ac:6a:6c:d4:78:8f:90:83:ea:03:2f:9c:76:0b:
30:01:46:37:22:03:8e:14:bd:4d:f8:a2:67:b7:57:
c2:66:5e:9b:7b:cc:98:f9:0b:9a:17:bd:d6:0e:85:
e5:b3:e4:dd:7c:aa:ab:55:43:9f:83:2f:f9:59:03:
5f:01:1f:0f:f6:bd:de:30:42:ff:6b:9a:b4:41:5a:
ee:db:ec:e9:8b:17:de:06:5c:f8:91:26:92:2f:b9:
7f:45:c2:ef:30:4a:ef:81:38:b9:ce:67:17:13:63:
e3:7d:43:ae:12:dd:93:65:12:05:78:2d:c5:c8:f7:
4e:79:99:af:50:b6:fc:23:fc:26:63:7b:b0:cd:06:
54:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D9:31:F9:3F:DD:18:E3:11:F1:18:6E:A6:D6:9F:BD:3B:79:A1:CA
X509v3 Authority Key Identifier:
keyid:52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/a9kx-T_dGOMR8RhuptafvTt5oco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/UqFl3Dqvvixi4mX_EEMno-Z1-J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.223.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:93:ac:40:69:a8:c7:be:c8:d8:fb:45:27:d9:5f:61:28:a7:
ba:34:0d:2d:b1:3b:7d:06:3e:78:b9:34:80:6b:27:6e:33:ef:
63:96:ce:8e:19:63:c1:89:85:dc:90:fe:fe:1a:4d:2d:9c:e3:
78:c2:5e:e2:c1:3b:72:a5:98:6a:0c:11:22:7a:65:71:a8:5f:
97:56:ea:dc:76:b6:90:f8:b2:dc:fd:57:7e:ff:2b:4d:93:b7:
37:9f:ce:ef:8f:60:bc:50:3f:ad:b1:d5:5f:b0:c9:8d:93:5b:
dc:45:5b:86:58:a2:35:3d:57:77:c5:1d:7e:95:15:6e:aa:77:
43:c9:e2:ee:b9:d2:e5:98:0d:01:c8:82:41:93:14:eb:38:94:
24:39:bd:36:34:d2:b5:95:19:e7:7a:a2:41:1a:7e:64:2c:d3:
3c:d6:e0:a2:96:96:60:12:80:43:64:87:49:2b:22:b9:b3:a7:
e9:ec:8f:53:b1:a1:97:bc:4b:e4:bf:c9:08:3f:d2:7c:11:78:
c8:60:57:85:86:62:4e:ee:18:3e:da:39:c9:69:91:07:3e:af:
51:d1:8d:1a:42:24:05:36:50:a9:a2:dc:b6:66:f2:5c:bb:ba:
b0:d7:e1:92:09:a1:16:42:eb:95:78:db:39:7b:af:81:55:82:
65:38:b1:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQ/gtaDx4g2fmGWygVlh1d5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYTE2NWRjM2FhZmJlMmM2MmUyNjVmZjEwNDMyN2EzZTY3
NWY4OWYwHhcNMjIxMTAzMjIwMDQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmQ5MzFmOTNmZGQxOGUzMTFmMTE4NmVhNmQ2OWZiZDNiNzlhMWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhzRSwUMBm0xoflMokCKJBhte7loj
8TWIhrJNrGFK/Snw5EGOnAzYr40PZ6zso6RmR+hL11pDVW3AtYiisZEcwlnXWDl6
BItfnCjyXtSkPqmLBh5Wm7ZHyS/RIWMKXxn8pNL2jObiT6E9FVdcdyq5H+MBkkyI
Fcb5rGps1HiPkIPqAy+cdgswAUY3IgOOFL1N+KJnt1fCZl6be8yY+QuaF73WDoXl
s+TdfKqrVUOfgy/5WQNfAR8P9r3eMEL/a5q0QVru2+zpixfeBlz4kSaSL7l/RcLv
MErvgTi5zmcXE2PjfUOuEt2TZRIFeC3FyPdOeZmvULb8I/wmY3uwzQZUuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGvZMfk/3RjjEfEYbqbWn707eaHKMB8GA1UdIwQY
MBaAFFKhZdw6r74sYuJl/xBDJ6PmdfifMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXFGbDNEcXZ2aXhpNG1YX0VFTW5vLVoxLUo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy84MGFjZWItNTBlMi00MGMwLWE4NTIt
ZTI5OGI0MWI2YzgxLzEvYTlreC1UX2RHT01SOFJodXB0YWZ2VHQ1b2NvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy84MGFjZWItNTBlMi00MGMwLWE4NTItZTI5OGI0MWI2Yzgx
LzEvVXFGbDNEcXZ2aXhpNG1YX0VFTW5vLVoxLUo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuY/fMA0G
CSqGSIb3DQEBCwUAA4IBAQCtk6xAaajHvsjY+0Un2V9hKKe6NA0tsTt9Bj54uTSA
ayduM+9jls6OGWPBiYXckP7+Gk0tnON4wl7iwTtypZhqDBEiemVxqF+XVurcdraQ
+LLc/Vd+/ytNk7c3n87vj2C8UD+tsdVfsMmNk1vcRVuGWKI1PVd3xR1+lRVuqndD
yeLuudLlmA0ByIJBkxTrOJQkOb02NNK1lRnneqJBGn5kLNM81uCilpZgEoBDZIdJ
KyK5s6fp7I9TsaGXvEvkv8kIP9J8EXjIYFeFhmJO7hg+2jnJaZEHPq9R0Y0aQiQF
NlCpoty2ZvJcu7qw1+GSCaEWQuuVeNs5e6+BVYJlOLH5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:31 2024 by rpki-client on console-ams.rpki-client.org