Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/F6AiTjZpK4kpT5JKj__rscV9HjE.roa
File: F6AiTjZpK4kpT5JKj__rscV9HjE.roa (raw, json)
Hash identifier: mT+HKWRWpptFAAZNwc4lVC2WmwBGPG+3PIzwmDlbBJQ=
Subject key identifier: 17:A0:22:4E:36:69:2B:89:29:4F:92:4A:8F:FF:EB:B1:C5:7D:1E:31
Certificate issuer: /CN=79d437584abdb48213630dcaa5f00c9d2c3cc179
Certificate serial: 01DF3C39
Authority key identifier: 79:D4:37:58:4A:BD:B4:82:13:63:0D:CA:A5:F0:0C:9D:2C:3C:C1:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edQ3WEq9tIITYw3KpfAMnSw8wXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/F6AiTjZpK4kpT5JKj__rscV9HjE.roa
Signing time: Sat 01 Jan 2022 07:55:48 +0000
ROA not before: Sat 01 Jan 2022 07:55:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203183
IP address blocks: 185.143.92.0/22 maxlen: 24
144.2.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31407161 (0x1df3c39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d437584abdb48213630dcaa5f00c9d2c3cc179
Validity
Not Before: Jan 1 07:55:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17a0224e36692b89294f924a8fffebb1c57d1e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:93:e0:79:60:9e:3e:33:3d:43:97:e1:6c:b0:
54:01:79:1e:15:ec:59:b0:78:57:6c:4b:85:c2:0e:
57:c5:b9:1d:7b:e5:39:ac:91:04:d7:d1:73:22:60:
6d:3a:fd:78:e5:d6:9c:07:f4:25:5b:07:ec:52:5d:
27:24:58:9d:1b:cf:fc:61:2c:66:d6:6c:b3:6b:74:
af:44:ed:c0:3a:59:99:2a:af:34:86:60:74:e2:7d:
cc:7e:98:68:9f:33:93:1e:44:6d:7c:b9:9a:49:4b:
8f:5c:41:e9:e2:2f:46:a4:ce:5f:4a:64:2d:2a:00:
e3:db:fc:d9:8d:52:d4:48:35:ce:a7:64:c2:2c:24:
d9:b8:dd:fd:55:40:a5:15:02:88:ea:7a:a1:a2:1e:
0d:20:ad:d5:be:3d:91:80:5f:b9:e4:88:6b:1f:b2:
3d:f3:56:12:03:76:be:23:07:f2:2b:ef:6f:82:66:
b1:bc:ea:ab:cf:6a:5a:68:e6:9a:b8:53:dd:4b:4a:
71:92:fe:76:5d:01:f9:4a:16:7a:4b:54:dd:95:3c:
a2:24:0a:ae:91:30:08:f7:a1:53:a7:2d:29:93:38:
62:e2:00:6d:86:97:00:87:9c:3b:dd:3d:3a:b8:f5:
7f:0c:5a:4b:52:13:33:ed:72:6a:84:92:e4:dc:5d:
0f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A0:22:4E:36:69:2B:89:29:4F:92:4A:8F:FF:EB:B1:C5:7D:1E:31
X509v3 Authority Key Identifier:
keyid:79:D4:37:58:4A:BD:B4:82:13:63:0D:CA:A5:F0:0C:9D:2C:3C:C1:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edQ3WEq9tIITYw3KpfAMnSw8wXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/F6AiTjZpK4kpT5JKj__rscV9HjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/edQ3WEq9tIITYw3KpfAMnSw8wXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.160.0/22
185.143.92.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:d4:67:f1:a8:8b:64:4f:43:1d:b2:31:91:a8:3c:ba:a2:83:
c8:7a:ea:6a:ef:f1:f2:ba:e2:f9:32:7d:19:84:4b:c2:a7:e2:
ac:fe:e8:7c:dc:9e:d9:78:d8:29:cd:a0:8c:ea:e3:27:d7:b4:
b8:e1:17:a9:b9:7e:09:63:c0:30:7d:85:dd:89:56:f0:28:83:
21:e3:f2:79:4c:3a:98:dd:a2:9d:ad:30:c2:94:c6:6f:bd:aa:
d3:c0:d6:1c:7b:8d:5f:85:7c:9b:15:85:d8:85:0c:11:c8:7c:
26:f1:03:ff:4d:88:cc:fd:72:24:71:34:50:2d:39:98:7c:92:
68:95:9a:df:4e:17:03:3c:da:aa:09:ff:88:fd:bf:4e:c4:74:
ef:00:e4:fe:65:01:fc:7c:2d:15:8f:8b:84:60:c6:58:86:81:
bb:81:c2:ae:51:05:2e:b9:20:78:ff:ca:45:ff:60:34:7b:25:
18:f9:78:c0:d3:01:66:31:1d:7c:db:65:7a:5c:5c:bc:32:cb:
d2:d9:3b:50:56:a7:c3:bc:f1:e5:f1:81:8e:51:63:1f:78:25:
1e:bb:e8:7d:b5:2a:a9:22:26:51:8c:26:94:46:6f:25:de:f8:
8a:63:2f:fc:84:ad:ff:1d:64:31:fb:f3:04:c1:6d:da:f8:0b:
6d:70:a8:72
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAd88OTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OWQ0Mzc1ODRhYmRiNDgyMTM2MzBkY2FhNWYwMGM5ZDJjM2NjMTc5MB4XDTIyMDEw
MTA3NTU0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTdhMDIyNGUzNjY5
MmI4OTI5NGY5MjRhOGZmZmViYjFjNTdkMWUzMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANiT4Hlgnj4zPUOX4WywVAF5HhXsWbB4V2xLhcIOV8W5HXvl
OayRBNfRcyJgbTr9eOXWnAf0JVsH7FJdJyRYnRvP/GEsZtZss2t0r0TtwDpZmSqv
NIZgdOJ9zH6YaJ8zkx5EbXy5mklLj1xB6eIvRqTOX0pkLSoA49v82Y1S1Eg1zqdk
wiwk2bjd/VVApRUCiOp6oaIeDSCt1b49kYBfueSIax+yPfNWEgN2viMH8ivvb4Jm
sbzqq89qWmjmmrhT3UtKcZL+dl0B+UoWektU3ZU8oiQKrpEwCPehU6ctKZM4YuIA
bYaXAIecO909Orj1fwxaS1ITM+1yaoSS5NxdD18CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQXoCJONmkriSlPkkqP/+uxxX0eMTAfBgNVHSMEGDAWgBR51DdYSr20ghNj
Dcql8AydLDzBeTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VkUTNXRXE5dElJVFl3M0twZkFNblN3OHdYay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvMzQ5NmE0LWNjOWYtNDQxOS1hZDgxLWFhYTIzODA5ODJiYy8x
L0Y2QWlUalpwSzRrcFQ1SktqX19yc2NWOUhqRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
MzQ5NmE0LWNjOWYtNDQxOS1hZDgxLWFhYTIzODA5ODJiYy8xL2VkUTNXRXE5dElJ
VFl3M0twZkFNblN3OHdYay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEApACoAMEArmPXDANBgkqhkiG9w0B
AQsFAAOCAQEALtRn8aiLZE9DHbIxkag8uqKDyHrqau/x8rri+TJ9GYRLwqfirP7o
fNye2XjYKc2gjOrjJ9e0uOEXqbl+CWPAMH2F3YlW8CiDIePyeUw6mN2ina0wwpTG
b72q08DWHHuNX4V8mxWF2IUMEch8JvED/02IzP1yJHE0UC05mHySaJWa304XAzza
qgn/iP2/TsR07wDk/mUB/HwtFY+LhGDGWIaBu4HCrlEFLrkgeP/KRf9gNHslGPl4
wNMBZjEdfNtlelxcvDLL0tk7UFanw7zx5fGBjlFjH3glHrvofbUqqSImUYwmlEZv
Jd74imMv/ISt/x1kMfvzBMFt2vgLbXCocg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:42 2023 by rpki-client on console-ams.rpki-client.org