Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PcTBIbj_dQo_LiEJ5j6njB2tz_c.roa
File: PcTBIbj_dQo_LiEJ5j6njB2tz_c.roa (raw, json)
Hash identifier: mBHLXkd4XigD64MGCj6uAqWFTqMXIMoLAploQZ53lZM=
Subject key identifier: 3D:C4:C1:21:B8:FF:75:0A:3F:2E:21:09:E6:3E:A7:8C:1D:AD:CF:F7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0650D182
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PcTBIbj_dQo_LiEJ5j6njB2tz_c.roa
Signing time: Sat 01 Jan 2022 06:52:45 +0000
ROA not before: Sat 01 Jan 2022 06:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212017
IP address blocks: 185.128.52.0/22 maxlen: 22
185.121.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105959810 (0x650d182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3dc4c121b8ff750a3f2e2109e63ea78c1dadcff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9f:87:78:8a:51:70:72:65:e6:24:0a:44:71:
1e:0e:ab:cd:2e:f7:2c:ca:e4:0a:97:9b:48:b9:d0:
1e:18:16:22:9b:44:b2:fd:54:97:29:df:f5:2d:60:
cd:d2:b2:06:4c:60:43:cd:60:90:41:d8:63:af:44:
94:3f:3a:78:8e:f9:63:71:fc:ca:3c:5c:91:a8:ed:
65:e7:42:33:9e:66:37:e5:26:a8:f8:7e:0c:dc:a7:
ab:b0:fc:0f:79:79:d8:de:bb:b7:85:80:07:fc:4b:
b7:44:f7:a2:4a:c6:ef:7b:15:a6:57:3c:0c:e8:93:
43:4e:ef:fe:44:de:06:94:b6:b7:fb:3a:dd:75:e6:
71:f9:26:46:c3:c7:fe:3c:ee:0d:5b:65:fc:fe:b9:
7f:2a:7f:f3:be:2a:5a:7b:78:18:bd:ef:9d:88:8d:
6a:ac:27:94:27:57:6b:0f:c3:b4:64:63:a1:24:9d:
67:ea:d6:08:70:28:92:12:92:38:80:6b:d2:95:2f:
6b:55:c3:10:b8:8f:9b:94:4d:14:81:43:fc:64:be:
2f:43:cb:7f:9e:f0:13:55:cc:ba:3e:5f:7e:36:14:
86:24:2d:20:cd:fc:d0:66:c5:ad:cf:bb:da:bd:b6:
c1:87:c1:df:c1:cc:74:c9:2f:5e:c2:8f:99:3e:1e:
e9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C4:C1:21:B8:FF:75:0A:3F:2E:21:09:E6:3E:A7:8C:1D:AD:CF:F7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PcTBIbj_dQo_LiEJ5j6njB2tz_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.12.0/22
185.128.52.0/22
Signature Algorithm: sha256WithRSAEncryption
97:82:5f:39:82:9d:90:90:7e:19:62:41:2b:91:c9:d6:6b:6a:
70:4d:9a:95:15:01:95:f0:70:ab:f5:6a:18:95:d9:2d:e6:09:
8b:86:89:fe:2b:15:b7:8c:da:91:7b:dc:ee:e1:fb:6f:2b:70:
61:9c:8b:6e:cd:c2:65:14:fa:9c:78:57:df:8f:81:9f:6c:b4:
40:82:88:8c:80:ac:a0:10:73:50:8c:21:70:92:b3:85:75:a6:
7e:89:f5:5a:b6:ce:b2:61:28:91:44:36:49:c3:2f:2f:ae:78:
a7:d9:0e:63:a2:2a:51:f0:bd:c9:58:c0:af:28:d0:c8:db:38:
19:ac:17:bf:9b:13:65:51:ac:10:85:29:24:99:b2:de:26:a7:
92:b2:63:47:d4:e0:f0:5f:28:61:da:0a:ec:1c:df:df:11:28:
56:4e:ae:50:c6:01:73:5c:67:65:76:53:2d:a7:ff:d2:42:3d:
c5:a4:f7:d3:55:8c:d6:11:7f:5f:49:ec:18:e2:d7:fc:a6:04:
ad:dd:63:30:d4:97:b8:f8:03:d2:b3:e2:cc:bf:4d:25:9e:c1:
53:f8:e5:70:f4:dd:bf:0d:35:fd:e4:31:39:a8:66:11:74:14:
6c:60:30:c5:90:9a:4c:e4:67:e6:b7:39:9e:a0:25:0f:60:d6:
34:f8:46:b4
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBlDRgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDEw
MTA2NTI0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2RjNGMxMjFiOGZm
NzUwYTNmMmUyMTA5ZTYzZWE3OGMxZGFkY2ZmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ+fh3iKUXByZeYkCkRxHg6rzS73LMrkCpebSLnQHhgWIptE
sv1Ulynf9S1gzdKyBkxgQ81gkEHYY69ElD86eI75Y3H8yjxckajtZedCM55mN+Um
qPh+DNynq7D8D3l52N67t4WAB/xLt0T3okrG73sVplc8DOiTQ07v/kTeBpS2t/s6
3XXmcfkmRsPH/jzuDVtl/P65fyp/874qWnt4GL3vnYiNaqwnlCdXaw/DtGRjoSSd
Z+rWCHAokhKSOIBr0pUva1XDELiPm5RNFIFD/GS+L0PLf57wE1XMuj5ffjYUhiQt
IM380GbFrc+72r22wYfB38HMdMkvXsKPmT4e6XsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQ9xMEhuP91Cj8uIQnmPqeMHa3P9zAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L1BjVEJJYmpfZFFvX0xpRUo1ajZuakIydHpfYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArl5DAMEArmANDANBgkqhkiG9w0B
AQsFAAOCAQEAl4JfOYKdkJB+GWJBK5HJ1mtqcE2alRUBlfBwq/VqGJXZLeYJi4aJ
/isVt4zakXvc7uH7bytwYZyLbs3CZRT6nHhX34+Bn2y0QIKIjICsoBBzUIwhcJKz
hXWmfon1WrbOsmEokUQ2ScMvL654p9kOY6IqUfC9yVjAryjQyNs4GawXv5sTZVGs
EIUpJJmy3iankrJjR9Tg8F8oYdoK7Bzf3xEoVk6uUMYBc1xnZXZTLaf/0kI9xaT3
01WM1hF/X0nsGOLX/KYErd1jMNSXuPgD0rPizL9NJZ7BU/jlcPTdvw01/eQxOahm
EXQUbGAwxZCaTORn5rc5nqAlD2DWNPhGtA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org