Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/2q85lBVM6Kudsr6rGqwk5ZBWLGY.roa
File: 2q85lBVM6Kudsr6rGqwk5ZBWLGY.roa (raw, json)
Hash identifier: kq5AOU4i64hRL2kldayjlzT5hnYJotJ19wJKw1Fs2cY=
Subject key identifier: DA:AF:39:94:15:4C:E8:AB:9D:B2:BE:AB:1A:AC:24:E5:90:56:2C:66
Certificate issuer: /CN=9a5550e908a9b9688c29aac9895353dea836c45a
Certificate serial: 095EB617
Authority key identifier: 9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/2q85lBVM6Kudsr6rGqwk5ZBWLGY.roa
Signing time: Sat 01 Jan 2022 15:05:55 +0000
ROA not before: Sat 01 Jan 2022 15:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.11.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157201943 (0x95eb617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a5550e908a9b9688c29aac9895353dea836c45a
Validity
Not Before: Jan 1 15:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=daaf3994154ce8ab9db2beab1aac24e590562c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c3:63:a2:82:c8:1f:14:1b:a1:0e:f4:b2:c0:
ac:ac:7b:6d:9d:81:60:0e:85:6b:ce:9d:ba:4e:7c:
d2:d5:52:08:5f:7b:01:e9:d8:d6:35:e3:26:74:c3:
29:7a:97:63:4a:a1:9c:5f:3d:fd:44:0b:cf:e9:0e:
23:17:4d:8a:50:98:fc:6d:9d:36:1f:54:94:cb:51:
eb:a8:63:2c:fd:54:fd:cc:65:32:16:ad:da:c4:d9:
4a:79:f1:eb:eb:af:cf:3e:52:20:e3:7a:8f:bf:39:
8f:e4:b6:e1:d1:63:37:25:cd:74:41:26:68:17:68:
42:68:b6:8c:53:c0:af:73:b9:11:57:c6:2d:d2:dc:
d9:a8:01:21:1f:11:5f:0c:24:be:d4:47:ea:5e:a5:
ad:2e:70:b6:9e:c2:cf:1b:2b:f0:7c:4f:bd:2d:bc:
c2:b8:ce:b1:af:f8:32:1e:e2:3e:fe:42:82:65:7e:
67:76:76:89:7b:e0:09:17:be:c5:a4:1d:ec:f9:42:
42:52:b7:df:17:14:47:a8:9f:d4:78:bb:db:89:f5:
2b:a8:c2:fc:b4:69:9d:55:9d:64:be:bd:d1:7f:d1:
18:46:9d:db:4e:bb:54:b2:ba:5b:21:7a:eb:28:64:
59:5b:81:30:14:55:a5:6b:f2:46:d7:11:b0:a5:22:
cf:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:AF:39:94:15:4C:E8:AB:9D:B2:BE:AB:1A:AC:24:E5:90:56:2C:66
X509v3 Authority Key Identifier:
keyid:9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/2q85lBVM6Kudsr6rGqwk5ZBWLGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/mlVQ6QipuWiMKarJiVNT3qg2xFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.126.0/24
Signature Algorithm: sha256WithRSAEncryption
86:d7:39:55:7c:4d:01:dc:01:62:56:62:c9:e8:57:16:a1:b6:
3a:22:84:8d:ea:03:b1:3f:26:5a:06:02:81:01:38:3b:b5:8a:
43:b1:77:c2:b0:5e:cd:00:54:96:16:bc:f3:3e:e5:8b:1f:0a:
01:d4:8a:7c:50:dd:b0:16:19:db:26:be:5b:30:2b:00:4e:1f:
59:32:be:5a:88:6d:6b:cf:df:5f:50:6f:93:f2:99:0b:17:96:
a2:0e:1d:40:04:04:66:03:5e:27:95:bd:f4:10:c8:88:8a:2b:
9d:19:52:53:c8:40:aa:dc:8a:5e:8d:e5:11:2f:cb:22:e2:cc:
9b:94:b5:88:b2:65:53:1d:3c:80:78:d0:dd:9f:cd:e8:87:e3:
c5:99:21:8b:80:42:3c:56:8a:00:5f:a4:c3:fb:ee:33:e5:72:
ca:5c:14:23:1f:aa:2f:de:b8:56:16:28:5f:bf:53:05:07:dd:
fc:6f:33:bb:24:fe:f3:ab:88:97:b7:30:18:7d:11:01:d1:0a:
18:d7:85:25:a7:0f:fd:79:ee:85:b8:10:95:2d:78:fc:cd:e0:
e5:12:95:4f:6c:a6:05:d7:88:75:d2:8a:8f:46:d5:f5:48:5c:
4a:35:87:aa:39:db:aa:59:0d:75:40:4e:b5:56:da:3e:4a:42:
12:ea:05:61
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECV62FzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YTU1NTBlOTA4YTliOTY4OGMyOWFhYzk4OTUzNTNkZWE4MzZjNDVhMB4XDTIyMDEw
MTE1MDU1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGFhZjM5OTQxNTRj
ZThhYjlkYjJiZWFiMWFhYzI0ZTU5MDU2MmM2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMzDY6KCyB8UG6EO9LLArKx7bZ2BYA6Fa86duk580tVSCF97
AenY1jXjJnTDKXqXY0qhnF89/UQLz+kOIxdNilCY/G2dNh9UlMtR66hjLP1U/cxl
Mhat2sTZSnnx6+uvzz5SION6j785j+S24dFjNyXNdEEmaBdoQmi2jFPAr3O5EVfG
LdLc2agBIR8RXwwkvtRH6l6lrS5wtp7Czxsr8HxPvS28wrjOsa/4Mh7iPv5CgmV+
Z3Z2iXvgCRe+xaQd7PlCQlK33xcUR6if1Hi724n1K6jC/LRpnVWdZL690X/RGEad
2067VLK6WyF66yhkWVuBMBRVpWvyRtcRsKUiz8ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTarzmUFUzoq52yvqsarCTlkFYsZjAfBgNVHSMEGDAWgBSaVVDpCKm5aIwp
qsmJU1PeqDbEWjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21sVlE2UWlwdVdpTUthckppVk5UM3FnMnhGby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvYmJiMzBiLTI2ODgtNGE2ZS1iMmEyLTEzOTlhMjgyMjI3YS8x
LzJxODVsQlZNNkt1ZHNyNnJHcXdrNVpCV0xHWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
YmJiMzBiLTI2ODgtNGE2ZS1iMmEyLTEzOTlhMjgyMjI3YS8xL21sVlE2UWlwdVdp
TUthckppVk5UM3FnMnhGby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkLfjANBgkqhkiG9w0BAQsFAAOC
AQEAhtc5VXxNAdwBYlZiyehXFqG2OiKEjeoDsT8mWgYCgQE4O7WKQ7F3wrBezQBU
lha88z7lix8KAdSKfFDdsBYZ2ya+WzArAE4fWTK+Wohta8/fX1Bvk/KZCxeWog4d
QAQEZgNeJ5W99BDIiIornRlSU8hAqtyKXo3lES/LIuLMm5S1iLJlUx08gHjQ3Z/N
6IfjxZkhi4BCPFaKAF+kw/vuM+VyylwUIx+qL964VhYoX79TBQfd/G8zuyT+86uI
l7cwGH0RAdEKGNeFJacP/XnuhbgQlS14/M3g5RKVT2ymBdeIddKKj0bV9UhcSjWH
qjnbqlkNdUBOtVbaPkpCEuoFYQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-ams.rpki-client.org