Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/RydHWDLn4J5siDMI0VGL6dvOOaI.roa
File: RydHWDLn4J5siDMI0VGL6dvOOaI.roa (raw, json)
Hash identifier: e9fU6wNtLRhcaadp03J96zgg+2gAp8PnxHzrbkSSg4o=
Subject key identifier: 47:27:47:58:32:E7:E0:9E:6C:88:33:08:D1:51:8B:E9:DB:CE:39:A2
Certificate issuer: /CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Certificate serial: 09F4C87A
Authority key identifier: 5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/RydHWDLn4J5siDMI0VGL6dvOOaI.roa
Signing time: Sat 01 Jan 2022 14:08:07 +0000
ROA not before: Sat 01 Jan 2022 14:08:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.133.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167037050 (0x9f4c87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Validity
Not Before: Jan 1 14:08:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4727475832e7e09e6c883308d1518be9dbce39a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d6:0f:d7:f0:12:87:cc:bd:05:78:67:0d:a8:
55:38:75:df:3e:60:67:9b:da:af:a1:e1:ba:1e:9a:
4b:13:3d:7c:66:9d:71:85:54:18:22:4f:e2:64:82:
85:50:0c:16:48:23:26:08:bf:cb:06:c4:d7:df:f5:
20:db:70:1d:ec:53:ed:b9:e0:27:cf:50:e8:06:93:
16:b6:b3:5a:28:69:49:82:f3:6e:e3:b7:06:fa:be:
c7:b5:fe:f3:86:57:ad:a6:54:e2:37:60:82:e3:73:
09:e6:92:62:12:e2:64:df:cc:cb:59:51:9a:ac:e3:
22:58:55:91:09:42:5e:d4:16:0e:1e:f2:92:ed:f3:
16:c5:02:f8:1a:8b:cc:0e:27:e1:73:d2:53:ab:f8:
99:eb:a1:bf:dd:dd:cc:5c:d8:b7:a7:00:23:6d:6c:
ac:af:52:77:a2:3b:0f:d5:bf:1a:2b:d8:8c:0c:08:
74:51:53:0f:da:6c:80:28:c7:d8:d3:23:52:df:92:
69:f8:26:7e:84:31:1e:56:f1:3f:f6:2e:6e:e2:a5:
6b:3f:7b:3c:62:9f:39:60:91:4c:ee:99:06:11:74:
b9:58:21:78:11:2e:c0:44:64:2f:f2:85:22:b6:fe:
e9:77:64:3b:93:65:c8:93:9f:c7:7d:1f:0a:72:dc:
27:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:27:47:58:32:E7:E0:9E:6C:88:33:08:D1:51:8B:E9:DB:CE:39:A2
X509v3 Authority Key Identifier:
keyid:5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/RydHWDLn4J5siDMI0VGL6dvOOaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/XP44gfPER3T1HMde5-b5HFVlpgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.70.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:e9:92:ae:28:ea:4c:a4:91:e4:72:2a:c4:fc:cd:cb:9f:ab:
fe:e2:0b:f1:50:bb:00:ed:a0:84:be:45:ee:90:35:d7:0b:75:
94:45:fe:70:75:79:b0:1d:00:a7:b3:65:0c:22:19:70:85:0f:
c3:f1:0c:64:76:fe:d6:c7:5f:77:99:bd:44:0a:0b:90:cf:cc:
37:b6:31:6e:0c:fc:3c:80:b1:bf:1e:02:82:65:6d:e2:f6:77:
66:b3:1e:39:70:a7:7b:9f:e4:09:b8:c5:81:ce:4d:17:f6:64:
45:d7:98:72:f6:55:1f:4c:4c:17:6e:df:21:87:89:d6:46:63:
95:c9:5c:16:db:22:ce:eb:4c:b6:1e:23:e7:82:be:82:d1:86:
f4:e9:ec:9c:67:e2:af:de:3e:f7:f9:95:3f:49:e5:31:b3:46:
da:f5:ab:f9:43:93:fe:9c:81:b1:41:e3:96:1e:34:6b:bf:33:
3f:2d:d3:6f:2f:af:3b:7d:4d:de:ee:3c:79:e4:95:02:a1:07:
1a:e0:ee:e7:07:65:41:ca:31:9b:f4:60:5d:a6:ef:83:50:d3:
b9:c3:1f:55:9a:15:c0:8c:dd:b5:17:28:d5:27:1a:c3:2b:b6:
b4:dc:f7:b6:4a:55:a9:51:92:80:87:61:99:f9:44:c3:e3:07:
0e:62:37:cb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECfTIejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
Y2ZlMzg4MWYzYzQ0Nzc0ZjUxY2M3NWVlN2U2ZjkxYzU1NjVhNjA2MB4XDTIyMDEw
MTE0MDgwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDcyNzQ3NTgzMmU3
ZTA5ZTZjODgzMzA4ZDE1MThiZTlkYmNlMzlhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKbWD9fwEofMvQV4Zw2oVTh13z5gZ5var6Hhuh6aSxM9fGad
cYVUGCJP4mSChVAMFkgjJgi/ywbE19/1INtwHexT7bngJ89Q6AaTFrazWihpSYLz
buO3Bvq+x7X+84ZXraZU4jdgguNzCeaSYhLiZN/My1lRmqzjIlhVkQlCXtQWDh7y
ku3zFsUC+BqLzA4n4XPSU6v4meuhv93dzFzYt6cAI21srK9Sd6I7D9W/GivYjAwI
dFFTD9psgCjH2NMjUt+SafgmfoQxHlbxP/YubuKlaz97PGKfOWCRTO6ZBhF0uVgh
eBEuwERkL/KFIrb+6XdkO5NlyJOfx30fCnLcJ10CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHJ0dYMufgnmyIMwjRUYvp2845ojAfBgNVHSMEGDAWgBRc/jiB88RHdPUc
x17n5vkcVWWmBjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hQNDRnZlBFUjNUMUhNZGU1LWI1SEZWbHBnWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDUvNTI2MGQwLTE4NTUtNGYzMC1iOGVmLTdjOTk4MDc5YTZhOS8x
L1J5ZEhXRExuNEo1c2lETUkwVkdMNmR2T09hSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUv
NTI2MGQwLTE4NTUtNGYzMC1iOGVmLTdjOTk4MDc5YTZhOS8xL1hQNDRnZlBFUjNU
MUhNZGU1LWI1SEZWbHBnWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmFRjANBgkqhkiG9w0BAQsFAAOC
AQEAaumSrijqTKSR5HIqxPzNy5+r/uIL8VC7AO2ghL5F7pA11wt1lEX+cHV5sB0A
p7NlDCIZcIUPw/EMZHb+1sdfd5m9RAoLkM/MN7Yxbgz8PICxvx4CgmVt4vZ3ZrMe
OXCne5/kCbjFgc5NF/ZkRdeYcvZVH0xMF27fIYeJ1kZjlclcFtsizutMth4j54K+
gtGG9OnsnGfir94+9/mVP0nlMbNG2vWr+UOT/pyBsUHjlh40a78zPy3Tby+vO31N
3u48eeSVAqEHGuDu5wdlQcoxm/RgXabvg1DTucMfVZoVwIzdtRco1Scawyu2tNz3
tkpVqVGSgIdhmflEw+MHDmI3yw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:25 2024 by rpki-client on console-fra.rpki-client.org