Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/zIa3DjHJc1b8Z3SaHKfumhTNIiU.roa
File: zIa3DjHJc1b8Z3SaHKfumhTNIiU.roa (raw, json)
Hash identifier: SYfIlzknKk+NtEbFYawMQ/VE5gcModyr+ymWTFEDSXc=
Subject key identifier: CC:86:B7:0E:31:C9:73:56:FC:67:74:9A:1C:A7:EE:9A:14:CD:22:25
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185304F14E11BB6890295EB35F541CD8C50
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/zIa3DjHJc1b8Z3SaHKfumhTNIiU.roa
Signing time: Tue 20 Dec 2022 16:12:47 +0000
ROA not before: Tue 20 Dec 2022 16:12:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42006
IP address blocks: 185.210.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:4f:14:e1:1b:b6:89:02:95:eb:35:f5:41:cd:8c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 20 16:12:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc86b70e31c97356fc67749a1ca7ee9a14cd2225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:03:4b:7a:ba:5b:9c:82:36:91:63:84:d5:
64:91:1e:ea:c6:e0:e1:89:d1:62:f5:14:58:36:9b:
ff:a7:68:5b:7b:5f:1b:fa:53:12:11:24:bf:54:45:
4d:4e:87:ba:cc:ee:13:e4:b2:cc:39:2e:36:e3:6a:
05:13:b1:ea:82:56:03:f0:34:a7:7a:75:4c:88:50:
08:c0:9a:1b:f0:99:1a:c4:ad:f6:2c:c8:b8:26:8a:
aa:f4:de:95:7f:7f:63:41:40:ca:9b:97:58:3e:d2:
4b:1b:91:b4:86:49:7e:a8:2c:74:8b:73:16:23:98:
71:a2:7a:71:37:7d:df:c9:d0:54:8c:f6:d8:7e:5d:
d1:ed:4b:2d:5e:c0:64:64:4b:cd:54:53:87:25:2f:
54:e9:75:da:79:d5:30:e7:bc:00:b4:1b:ec:f6:b0:
69:2a:a7:bb:98:d6:04:7d:0e:05:df:7f:18:fc:e9:
a2:25:f4:3a:b9:11:4d:00:97:95:8d:e1:ec:ee:56:
85:5a:9b:9a:2f:26:3e:ab:6f:17:09:d6:6b:17:8d:
2e:9a:08:b9:07:a7:89:6a:0f:ef:a8:65:c6:da:be:
3a:ba:ad:23:e3:16:fd:4c:84:87:c6:83:99:54:94:
e3:da:99:7d:67:e0:9a:87:e9:8c:51:fd:ca:a2:64:
8e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:86:B7:0E:31:C9:73:56:FC:67:74:9A:1C:A7:EE:9A:14:CD:22:25
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/zIa3DjHJc1b8Z3SaHKfumhTNIiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.184.0/22
Signature Algorithm: sha256WithRSAEncryption
71:79:56:be:32:4b:83:d7:52:af:89:7f:1a:f7:6a:97:a5:70:
23:0f:2d:90:c4:b4:6b:c9:57:5b:4d:6e:6c:3f:ec:82:27:ba:
60:27:ec:8a:54:d9:9a:0f:82:9c:47:a2:21:b1:fc:77:03:84:
47:9b:86:1c:e4:c5:12:ec:1c:30:79:82:46:79:da:95:2f:91:
22:2a:41:85:fc:36:7d:73:e2:f9:84:03:54:2d:76:9a:bc:c4:
72:70:e9:d9:66:23:69:bc:57:04:bb:ef:59:c5:3c:b7:ff:2a:
74:87:9b:e0:b4:d0:f1:67:6a:58:5f:b5:f6:fe:48:f2:c6:9e:
bf:48:1b:f1:55:23:fd:31:e8:d4:e9:b6:d3:0e:9f:7f:d7:72:
06:2e:73:8f:be:88:c6:e4:c4:29:65:df:63:b9:e1:9b:dc:d4:
24:95:0e:48:12:c1:8a:9b:cd:ec:8d:2c:49:40:78:1c:f1:18:
85:65:f4:d5:3d:5e:7c:1a:56:50:e5:3e:22:c2:94:f3:7a:7f:
65:e3:9f:8c:78:7c:df:65:ad:6e:d1:64:e2:04:fd:03:42:46:
f9:00:ad:0b:79:05:71:b9:0c:e9:fd:2f:57:be:72:16:62:c9:
ac:4f:85:e2:10:d1:54:f2:5b:f0:e9:95:c7:b6:15:28:27:3d:
b6:01:63:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUwTxThG7aJApXrNfVBzYxQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjIxMjIwMTYxMjQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzg2YjcwZTMxYzk3MzU2ZmM2Nzc0OWExY2E3ZWU5YTE0Y2QyMjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaQDS3q6W5yCNpFjhNVkkR7qxuDh
idFi9RRYNpv/p2hbe18b+lMSESS/VEVNToe6zO4T5LLMOS4242oFE7HqglYD8DSn
enVMiFAIwJob8JkaxK32LMi4Joqq9N6Vf39jQUDKm5dYPtJLG5G0hkl+qCx0i3MW
I5hxonpxN33fydBUjPbYfl3R7UstXsBkZEvNVFOHJS9U6XXaedUw57wAtBvs9rBp
Kqe7mNYEfQ4F338Y/OmiJfQ6uRFNAJeVjeHs7laFWpuaLyY+q28XCdZrF40umgi5
B6eJag/vqGXG2r46uq0j4xb9TISHxoOZVJTj2pl9Z+Cah+mMUf3KomSOBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMyGtw4xyXNW/Gd0mhyn7poUzSIlMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEveklhM0RqSEpjMWI4WjNTYUhLZnVtaFROSWlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudK4MA0G
CSqGSIb3DQEBCwUAA4IBAQBxeVa+MkuD11KviX8a92qXpXAjDy2QxLRryVdbTW5s
P+yCJ7pgJ+yKVNmaD4KcR6Ihsfx3A4RHm4Yc5MUS7BwweYJGedqVL5EiKkGF/DZ9
c+L5hANULXaavMRycOnZZiNpvFcEu+9ZxTy3/yp0h5vgtNDxZ2pYX7X2/kjyxp6/
SBvxVSP9MejU6bbTDp9/13IGLnOPvojG5MQpZd9jueGb3NQklQ5IEsGKm83sjSxJ
QHgc8RiFZfTVPV58GlZQ5T4iwpTzen9l45+MeHzfZa1u0WTiBP0DQkb5AK0LeQVx
uQzp/S9XvnIWYsmsT4XiENFU8lvw6ZXHthUoJz22AWPt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org