Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0nyoH78y_WI0R2Z78aolIyhqfu4.roa
File: 0nyoH78y_WI0R2Z78aolIyhqfu4.roa (raw, json)
Hash identifier: UnaPJfOilCBZnKlTcEiRxkpMwsfn/twrM836fa4Lth4=
Subject key identifier: D2:7C:A8:1F:BF:32:FD:62:34:47:66:7B:F1:AA:25:23:28:6A:7E:EE
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17C288F3
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0nyoH78y_WI0R2Z78aolIyhqfu4.roa
Signing time: Sat 01 Jan 2022 04:54:20 +0000
ROA not before: Sat 01 Jan 2022 04:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56894
IP address blocks: 185.214.71.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398625011 (0x17c288f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d27ca81fbf32fd623447667bf1aa2523286a7eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4d:be:40:7c:a1:0e:bd:39:70:5b:38:4f:d0:
27:f2:63:bd:7b:64:d8:b4:a9:7f:67:0b:54:4c:bb:
39:3a:ce:d9:d2:d0:af:be:8e:de:72:29:4d:c3:9b:
e2:0f:e0:57:55:7c:bc:1d:1e:68:5e:c7:2e:35:b3:
9e:66:c6:6d:35:9d:90:8a:02:ae:d7:fb:0e:29:08:
f4:24:6c:04:12:b4:20:e5:cb:c9:d8:e6:b1:17:01:
5f:cc:ce:a1:f3:b2:2f:f7:f8:8a:ed:1b:52:aa:64:
7a:eb:c0:0b:1c:8a:7a:5b:82:d0:b1:80:14:68:2c:
7d:e7:16:d4:44:58:c0:42:b5:12:e2:e0:d3:56:cb:
e3:d1:3f:1f:b9:45:6b:3b:67:05:7f:56:4a:e1:e4:
e8:92:fa:f4:1d:26:ea:34:da:d9:26:1e:c6:f7:ff:
b7:06:c5:a8:b2:9b:4f:6e:62:d2:66:41:89:ec:b9:
b1:a4:a9:2d:06:6b:96:b5:31:fb:8d:9a:75:9f:45:
17:a4:ec:33:f7:17:ca:39:13:58:c2:db:39:43:e1:
30:6b:85:1c:12:05:a1:07:b7:c4:5e:29:a7:52:bc:
96:42:28:64:0a:88:54:57:7c:31:90:99:9d:62:bf:
ef:f0:a4:2e:b3:25:dc:bc:08:eb:1f:1a:aa:b4:cc:
6c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7C:A8:1F:BF:32:FD:62:34:47:66:7B:F1:AA:25:23:28:6A:7E:EE
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0nyoH78y_WI0R2Z78aolIyhqfu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.71.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:3a:51:37:06:2f:89:23:2b:46:a5:3f:ef:ae:8c:01:db:44:
83:d7:1e:7a:0a:49:bf:0e:91:91:f6:df:e1:03:49:05:5a:ca:
ee:95:18:ff:f8:0c:25:88:8b:c9:84:6f:72:99:91:87:79:25:
b0:0e:85:ab:db:57:82:5e:cb:0c:eb:11:b5:4a:f0:be:34:a2:
ce:25:55:0a:a8:49:dd:a7:d6:5d:48:de:61:50:d7:fa:08:d5:
00:a0:2a:2d:2a:0d:a3:22:9f:6f:b2:f5:de:a7:f6:9e:49:11:
a9:79:3b:bf:11:5d:0c:23:9a:eb:7f:51:10:9e:43:3d:a2:d9:
38:cd:7f:1d:84:00:b2:a8:ef:6d:d2:6e:ad:a1:4a:49:3a:b3:
10:7b:00:c5:cf:f5:93:3b:d1:1f:f6:5a:bd:f6:33:14:ba:4a:
eb:e7:a1:85:62:0d:e0:de:91:84:3e:bb:ba:0f:12:19:b4:93:
e4:2e:c8:df:a0:c1:46:38:36:69:e9:50:a8:f7:1a:c7:e5:96:
b2:6e:a7:ef:32:55:06:19:d8:19:d4:34:2e:de:23:70:d9:45:
71:e8:f8:6b:58:02:e6:0b:3b:fe:e9:f8:99:d0:a1:b4:8e:25:
0e:6e:24:c2:3c:d9:1e:32:d4:02:d1:26:24:9a:7a:88:e9:d1:
b2:38:53:81
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF8KI8zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDI3Y2E4MWZiZjMy
ZmQ2MjM0NDc2NjdiZjFhYTI1MjMyODZhN2VlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALJNvkB8oQ69OXBbOE/QJ/JjvXtk2LSpf2cLVEy7OTrO2dLQ
r76O3nIpTcOb4g/gV1V8vB0eaF7HLjWznmbGbTWdkIoCrtf7DikI9CRsBBK0IOXL
ydjmsRcBX8zOofOyL/f4iu0bUqpkeuvACxyKeluC0LGAFGgsfecW1ERYwEK1EuLg
01bL49E/H7lFaztnBX9WSuHk6JL69B0m6jTa2SYexvf/twbFqLKbT25i0mZBiey5
saSpLQZrlrUx+42adZ9FF6TsM/cXyjkTWMLbOUPhMGuFHBIFoQe3xF4pp1K8lkIo
ZAqIVFd8MZCZnWK/7/CkLrMl3LwI6x8aqrTMbD8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTSfKgfvzL9YjRHZnvxqiUjKGp+7jAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
LzBueW9INzh5X1dJMFIyWjc4YW9sSXlocWZ1NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnWRzANBgkqhkiG9w0BAQsFAAOC
AQEADzpRNwYviSMrRqU/766MAdtEg9ceegpJvw6Rkfbf4QNJBVrK7pUY//gMJYiL
yYRvcpmRh3klsA6Fq9tXgl7LDOsRtUrwvjSiziVVCqhJ3afWXUjeYVDX+gjVAKAq
LSoNoyKfb7L13qf2nkkRqXk7vxFdDCOa639REJ5DPaLZOM1/HYQAsqjvbdJuraFK
STqzEHsAxc/1kzvRH/ZavfYzFLpK6+ehhWIN4N6RhD67ug8SGbST5C7I36DBRjg2
aelQqPcax+WWsm6n7zJVBhnYGdQ0Lt4jcNlFcej4a1gC5gs7/un4mdChtI4lDm4k
wjzZHjLUAtEmJJp6iOnRsjhTgQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org