Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ANHZL04HVyOGxWe8XRHh1EyJuFI.roa
File: ANHZL04HVyOGxWe8XRHh1EyJuFI.roa (raw, json)
Hash identifier: Ac/i0zKYAf2z8PfFLzUUInFVZzcMs2ovy5jHuix+pTg=
Subject key identifier: 00:D1:D9:2F:4E:07:57:23:86:C5:67:BC:5D:11:E1:D4:4C:89:B8:52
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018340FA1C04AFC325C9F8D7BA58FE41B324
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ANHZL04HVyOGxWe8XRHh1EyJuFI.roa
Signing time: Thu 15 Sep 2022 11:47:56 +0000
ROA not before: Thu 15 Sep 2022 11:47:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400039
IP address blocks: 185.234.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:fa:1c:04:af:c3:25:c9:f8:d7:ba:58:fe:41:b3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 15 11:47:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00d1d92f4e07572386c567bc5d11e1d44c89b852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:56:06:55:f4:1f:6b:2c:7b:5a:fb:5e:0f:ca:
e9:10:c0:d9:a8:c0:48:4f:4e:6b:b7:82:2e:a4:05:
e8:ba:03:0e:59:0e:22:a5:c7:08:a1:0d:23:e6:72:
89:ab:06:e6:8c:24:8c:7a:f2:d1:14:0f:c3:1d:6a:
bb:f2:4e:6b:bc:a3:d2:94:ea:9c:4c:59:8f:2f:8b:
bb:a9:b7:d0:2d:69:3e:38:f8:a8:54:8c:65:54:9e:
d2:cf:d0:22:87:fd:3e:7b:6d:44:3b:53:50:0c:49:
2b:21:cc:c8:8a:d9:05:68:ea:1e:e6:e6:2a:86:2b:
b4:94:93:36:2d:94:0f:d1:44:44:a7:8a:47:3f:63:
62:f6:fd:86:55:b5:ec:5d:a7:00:30:cf:3d:28:82:
a3:b0:c9:72:40:69:24:6e:52:c8:96:40:59:1f:c3:
25:c7:11:d7:c5:11:61:6b:3b:a7:11:8c:3c:4f:c7:
35:d1:52:ca:f5:49:87:47:cf:e2:6e:20:52:27:27:
83:1b:7e:3e:1e:b5:e6:aa:01:7c:27:cb:e7:53:f4:
8d:62:26:b9:9e:1c:bd:05:fd:20:36:c2:cd:79:bc:
28:25:3e:7a:53:81:f2:be:6d:b8:41:cc:b9:b5:7a:
71:98:b5:29:b1:a1:25:f2:90:47:b4:08:c6:d0:09:
f0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D1:D9:2F:4E:07:57:23:86:C5:67:BC:5D:11:E1:D4:4C:89:B8:52
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ANHZL04HVyOGxWe8XRHh1EyJuFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.23.0/24
Signature Algorithm: sha256WithRSAEncryption
03:91:85:f5:9b:b2:0c:0c:89:75:0c:ec:2e:d4:3f:41:84:61:
96:20:77:7b:9e:aa:6a:b6:8f:f9:fa:81:6a:62:d1:60:8f:ca:
9a:fe:41:3b:bf:fb:62:0a:ec:e4:90:4d:bf:bb:24:26:c4:4f:
5c:2b:36:2c:51:a3:3c:87:11:00:f1:ef:a3:a4:88:f3:5e:bd:
61:e8:73:7f:f8:73:38:57:70:6a:81:b9:e7:d5:2b:50:e6:a5:
44:2c:26:a6:5e:55:01:71:71:86:00:dc:4c:90:9b:81:78:aa:
76:45:9b:14:54:e5:eb:32:f5:7b:15:ad:46:15:73:75:ea:4a:
ca:18:4b:58:79:84:47:47:7f:36:41:c8:3a:96:95:ba:cf:55:
ab:55:61:86:8d:c1:b2:0a:88:dd:d8:2f:1d:b6:3f:8b:21:ae:
45:50:a7:39:2e:3e:8c:c8:fe:58:2d:17:4e:69:8b:c4:20:3f:
9d:7d:6e:17:6a:26:49:1f:6f:13:cf:0c:28:a8:98:df:53:69:
5a:ca:51:fa:40:37:94:85:80:01:8c:0e:62:74:60:5f:bf:9b:
7d:fd:b8:1e:08:2b:12:1e:e3:0b:7f:90:97:f2:bd:6a:53:cc:
67:ed:23:0d:6d:ef:04:15:a4:50:7d:6f:0f:90:5b:26:c5:fc:
66:24:ca:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNA+hwEr8MlyfjXulj+QbMkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjIwOTE1MTE0NzU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGQxZDkyZjRlMDc1NzIzODZjNTY3YmM1ZDExZTFkNDRjODliODUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFYGVfQfayx7WvteD8rpEMDZqMBI
T05rt4IupAXougMOWQ4ipccIoQ0j5nKJqwbmjCSMevLRFA/DHWq78k5rvKPSlOqc
TFmPL4u7qbfQLWk+OPioVIxlVJ7Sz9Aih/0+e21EO1NQDEkrIczIitkFaOoe5uYq
hiu0lJM2LZQP0UREp4pHP2Ni9v2GVbXsXacAMM89KIKjsMlyQGkkblLIlkBZH8Ml
xxHXxRFhazunEYw8T8c10VLK9UmHR8/ibiBSJyeDG34+HrXmqgF8J8vnU/SNYia5
nhy9Bf0gNsLNebwoJT56U4Hyvm24Qcy5tXpxmLUpsaEl8pBHtAjG0AnwxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFADR2S9OB1cjhsVnvF0R4dRMibhSMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvQU5IWkwwNEhWeU9HeFdlOFhSSGgxRXlKdUZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueoXMA0G
CSqGSIb3DQEBCwUAA4IBAQADkYX1m7IMDIl1DOwu1D9BhGGWIHd7nqpqto/5+oFq
YtFgj8qa/kE7v/tiCuzkkE2/uyQmxE9cKzYsUaM8hxEA8e+jpIjzXr1h6HN/+HM4
V3Bqgbnn1StQ5qVELCamXlUBcXGGANxMkJuBeKp2RZsUVOXrMvV7Fa1GFXN16krK
GEtYeYRHR382Qcg6lpW6z1WrVWGGjcGyCojd2C8dtj+LIa5FUKc5Lj6MyP5YLRdO
aYvEID+dfW4XaiZJH28TzwwoqJjfU2laylH6QDeUhYABjA5idGBfv5t9/bgeCCsS
HuMLf5CX8r1qU8xn7SMNbe8EFaRQfW8PkFsmxfxmJMo+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org