Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/12d8Xx8WrYtUWm8xaCDS-w_c5_0.roa
File: 12d8Xx8WrYtUWm8xaCDS-w_c5_0.roa (raw, json)
Hash identifier: LaaI1HVPpqR8MTFrfbPNj3YOEZUb7TABUuxbudSHNB0=
Subject key identifier: D7:67:7C:5F:1F:16:AD:8B:54:5A:6F:31:68:20:D2:FB:0F:DC:E7:FD
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0182FF04869E646706672FC23672B9EE202C
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/12d8Xx8WrYtUWm8xaCDS-w_c5_0.roa
Signing time: Fri 02 Sep 2022 16:24:22 +0000
ROA not before: Fri 02 Sep 2022 16:24:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272611
IP address blocks: 185.238.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ff:04:86:9e:64:67:06:67:2f:c2:36:72:b9:ee:20:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 2 16:24:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7677c5f1f16ad8b545a6f316820d2fb0fdce7fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:f6:ff:bb:8f:90:cc:7b:30:08:c5:5b:4f:
b1:ec:f6:e5:3b:3a:3b:3b:aa:f2:14:0b:3f:a0:ce:
6e:db:e2:55:59:cf:4b:01:a5:ab:e8:34:56:3d:a3:
ab:74:63:3e:39:a0:a9:b9:40:1c:26:0c:c3:76:d1:
6c:41:73:0c:87:45:f0:da:10:5f:42:aa:60:52:6e:
b6:bb:aa:6d:48:60:ca:01:d1:49:ee:82:52:95:8a:
a6:5b:35:6f:2d:81:73:9c:06:50:8a:43:5d:0c:8f:
1f:7a:e5:cf:0b:16:04:23:e9:64:9b:a8:79:7f:fe:
6f:5f:38:05:4b:f9:6d:0b:93:02:79:0f:d9:4b:16:
4c:3f:ee:6b:06:29:9c:c1:77:c2:b3:0e:05:2d:20:
7f:79:45:6b:dc:ca:0b:ad:57:00:cd:9d:47:12:98:
79:c5:ff:60:c6:f2:99:46:5e:12:06:0d:30:bc:89:
e0:69:94:79:cb:4f:e7:7d:b9:c7:aa:73:b1:0e:7c:
97:da:77:a9:e8:c0:05:0c:48:37:36:7c:81:c3:86:
05:1f:ce:b9:11:18:9f:5c:2e:24:6b:5e:3f:20:71:
b4:19:30:fa:0b:9e:81:e9:a4:f3:bc:30:cb:84:47:
f2:c2:bf:56:de:75:5a:0f:3e:f3:6e:18:e2:6a:97:
f2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:67:7C:5F:1F:16:AD:8B:54:5A:6F:31:68:20:D2:FB:0F:DC:E7:FD
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/12d8Xx8WrYtUWm8xaCDS-w_c5_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.230.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:b5:93:ca:78:a6:43:3a:9e:cb:93:bb:5f:cc:8b:78:c9:d9:
db:b5:73:3e:f7:04:48:68:a8:84:6f:66:71:e6:a3:52:c1:48:
c0:b1:81:de:ef:84:38:86:b4:f9:2a:c2:42:3d:b9:c7:02:79:
b8:f1:cf:c3:e5:13:b9:7e:b9:9a:ca:32:22:bb:22:5e:b9:de:
a5:3e:b0:62:77:fa:58:11:31:1b:cd:7a:88:be:f4:20:f3:cc:
66:e3:e2:ea:93:52:4c:6b:79:74:21:de:aa:6c:22:9f:b9:1e:
38:61:cc:f6:bb:2d:d3:d7:6a:30:d9:09:03:03:27:ee:7f:7b:
fc:5d:76:fa:57:8d:02:01:a3:13:da:d8:a7:0d:a9:50:45:b3:
e4:f0:23:76:50:20:cd:3f:1f:14:3c:6f:3c:d8:89:d8:94:13:
76:52:ee:ea:c0:f6:45:16:74:2c:03:3a:82:91:67:5b:40:44:
23:8e:83:8e:97:6b:9d:dd:f3:b8:eb:67:61:37:28:c9:9f:4c:
66:6a:33:a1:61:f4:60:7e:38:57:e7:9a:be:da:88:bc:aa:5e:
65:57:0d:1b:d4:cf:df:f3:97:d0:0c:3d:8b:95:56:53:4d:77:
84:58:04:e6:1f:f9:8a:3e:50:dc:35:f7:49:92:2a:c3:82:3c:
55:2e:39:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYL/BIaeZGcGZy/CNnK57iAsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjIwOTAyMTYyNDIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzY3N2M1ZjFmMTZhZDhiNTQ1YTZmMzE2ODIwZDJmYjBmZGNlN2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxP2/7uPkMx7MAjFW0+x7PblOzo7
O6ryFAs/oM5u2+JVWc9LAaWr6DRWPaOrdGM+OaCpuUAcJgzDdtFsQXMMh0Xw2hBf
QqpgUm62u6ptSGDKAdFJ7oJSlYqmWzVvLYFznAZQikNdDI8feuXPCxYEI+lkm6h5
f/5vXzgFS/ltC5MCeQ/ZSxZMP+5rBimcwXfCsw4FLSB/eUVr3MoLrVcAzZ1HEph5
xf9gxvKZRl4SBg0wvIngaZR5y0/nfbnHqnOxDnyX2nep6MAFDEg3NnyBw4YFH865
ERifXC4ka14/IHG0GTD6C56B6aTzvDDLhEfywr9W3nVaDz7zbhjiapfyrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNdnfF8fFq2LVFpvMWgg0vsP3Of9MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvMTJkOFh4OFdyWXRVV204eGFDRFMtd19jNV8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue7mMA0G
CSqGSIb3DQEBCwUAA4IBAQC/tZPKeKZDOp7Lk7tfzIt4ydnbtXM+9wRIaKiEb2Zx
5qNSwUjAsYHe74Q4hrT5KsJCPbnHAnm48c/D5RO5frmayjIiuyJeud6lPrBid/pY
ETEbzXqIvvQg88xm4+Lqk1JMa3l0Id6qbCKfuR44Ycz2uy3T12ow2QkDAyfuf3v8
XXb6V40CAaMT2tinDalQRbPk8CN2UCDNPx8UPG882InYlBN2Uu7qwPZFFnQsAzqC
kWdbQEQjjoOOl2ud3fO462dhNyjJn0xmajOhYfRgfjhX55q+2oi8ql5lVw0b1M/f
85fQDD2LlVZTTXeEWATmH/mKPlDcNfdJkirDgjxVLjkL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org