Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/c6OXf1dLRWB1lZKg4gRYwZiSo3s.roa
File: c6OXf1dLRWB1lZKg4gRYwZiSo3s.roa (raw, json)
Hash identifier: Ummbt7W5Sj8u84laAqUyjPUsQ7pz2wLiPrkMiGvtCZQ=
Subject key identifier: 73:A3:97:7F:57:4B:45:60:75:95:92:A0:E2:04:58:C1:98:92:A3:7B
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185304F1525EC3181887BA79A32C078C77E
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/c6OXf1dLRWB1lZKg4gRYwZiSo3s.roa
Signing time: Tue 20 Dec 2022 16:12:47 +0000
ROA not before: Tue 20 Dec 2022 16:12:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44188
IP address blocks: 185.165.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:4f:15:25:ec:31:81:88:7b:a7:9a:32:c0:78:c7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 20 16:12:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73a3977f574b4560759592a0e20458c19892a37b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:99:36:44:2b:79:2c:3c:e8:d2:79:55:84:9f:
81:48:76:ec:0c:e0:5b:46:8b:3b:6b:60:e1:16:74:
c4:0b:29:5f:3f:49:45:fd:27:d5:45:ac:f3:8a:6d:
e7:57:fa:16:0f:35:75:3f:13:24:95:ff:2a:06:ef:
44:c6:31:b8:52:3e:ce:e1:84:86:26:08:7d:a1:f5:
93:99:9c:92:a7:65:80:f8:81:99:61:2d:91:3c:90:
f5:f9:9a:d8:3d:ad:6f:b7:4d:be:91:30:ed:e1:d5:
1a:5b:24:39:a7:3f:8d:56:d0:b0:d7:16:e9:63:89:
77:25:ad:22:8e:1d:10:64:0f:ac:26:88:7d:2e:09:
11:b2:a0:60:e4:22:5f:8f:3d:21:ec:ee:c8:82:7f:
40:8c:82:c2:55:3c:9b:2f:00:7b:4f:4e:96:72:d6:
21:da:0b:f6:e2:1b:10:29:2b:43:60:79:82:2f:f7:
a1:10:df:33:50:e3:d1:52:c3:73:77:ec:ed:e0:fa:
da:6f:e0:a5:f8:16:a9:10:0b:30:ea:16:d9:11:14:
0c:83:f8:37:07:67:9f:6d:dd:98:f9:1f:19:e9:af:
aa:9b:12:89:66:8a:95:72:2c:e7:ed:05:89:4d:ad:
38:16:b0:69:8c:78:52:b9:ce:c3:e2:01:38:c4:a4:
45:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A3:97:7F:57:4B:45:60:75:95:92:A0:E2:04:58:C1:98:92:A3:7B
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/c6OXf1dLRWB1lZKg4gRYwZiSo3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.4.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:1a:1f:78:eb:46:29:2f:c6:a7:68:6b:07:91:47:ed:cf:bf:
b6:58:e2:13:ae:ff:29:e2:83:66:a3:71:e4:53:ad:3a:0b:3c:
39:75:d1:60:9b:5e:3f:68:5f:d3:24:12:55:14:e3:65:99:77:
46:49:7a:ea:3c:ab:2b:2e:82:01:69:db:78:1d:06:93:37:e1:
5d:55:72:8e:e4:e1:f4:9f:b7:7f:fe:bc:bb:6c:05:79:d6:78:
c1:e4:92:8f:b8:b0:63:71:15:be:8b:47:7b:28:5e:1f:37:a8:
7c:e2:1a:61:11:a7:e0:5a:00:cd:cf:f8:93:c2:d1:35:6f:87:
e2:4f:04:87:75:a7:b3:98:be:39:af:05:b3:33:98:c4:bc:a6:
5c:90:13:5c:fb:02:f0:1b:51:57:e8:7e:ca:97:7c:aa:98:ff:
1e:ef:44:ba:79:5e:93:98:0c:e2:9b:d6:e1:6c:8a:df:5e:d7:
5f:55:1e:46:6a:ba:73:1e:06:3f:8b:4f:3e:8e:51:51:b1:56:
43:69:1d:ec:54:0d:fd:81:69:46:32:64:dc:61:db:59:c3:13:
4c:8c:43:5a:4c:a6:2c:77:e6:87:8c:3c:15:54:6d:44:8d:dd:
18:07:da:ee:6a:78:d2:38:63:1e:42:7c:64:44:ef:13:e1:59:
7d:69:5f:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUwTxUl7DGBiHunmjLAeMd+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjIxMjIwMTYxMjQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3M2EzOTc3ZjU3NGI0NTYwNzU5NTkyYTBlMjA0NThjMTk4OTJhMzdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZk2RCt5LDzo0nlVhJ+BSHbsDOBb
Ros7a2DhFnTECylfP0lF/SfVRazzim3nV/oWDzV1PxMklf8qBu9ExjG4Uj7O4YSG
Jgh9ofWTmZySp2WA+IGZYS2RPJD1+ZrYPa1vt02+kTDt4dUaWyQ5pz+NVtCw1xbp
Y4l3Ja0ijh0QZA+sJoh9LgkRsqBg5CJfjz0h7O7Ign9AjILCVTybLwB7T06WctYh
2gv24hsQKStDYHmCL/ehEN8zUOPRUsNzd+zt4Prab+Cl+BapEAsw6hbZERQMg/g3
B2efbd2Y+R8Z6a+qmxKJZoqVcizn7QWJTa04FrBpjHhSuc7D4gE4xKRF+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHOjl39XS0VgdZWSoOIEWMGYkqN7MB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvYzZPWGYxZExSV0IxbFpLZzRnUll3WmlTbzNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaUEMA0G
CSqGSIb3DQEBCwUAA4IBAQBrGh9460YpL8anaGsHkUftz7+2WOITrv8p4oNmo3Hk
U606Czw5ddFgm14/aF/TJBJVFONlmXdGSXrqPKsrLoIBadt4HQaTN+FdVXKO5OH0
n7d//ry7bAV51njB5JKPuLBjcRW+i0d7KF4fN6h84hphEafgWgDNz/iTwtE1b4fi
TwSHdaezmL45rwWzM5jEvKZckBNc+wLwG1FX6H7Kl3yqmP8e70S6eV6TmAzim9bh
bIrfXtdfVR5GarpzHgY/i08+jlFRsVZDaR3sVA39gWlGMmTcYdtZwxNMjENaTKYs
d+aHjDwVVG1Ejd0YB9ruanjSOGMeQnxkRO8T4Vl9aV+w
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org