Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/kjztFFKv9jogjx3PmprDe7Hlf8U.roa
File: kjztFFKv9jogjx3PmprDe7Hlf8U.roa (raw, json)
Hash identifier: 8/qL0Xt7vlpJ5b/8SDiei3RiTPqStFg4LLQez9ddQ0E=
Subject key identifier: 92:3C:ED:14:52:AF:F6:3A:20:8F:1D:CF:9A:9A:C3:7B:B1:E5:7F:C5
Certificate issuer: /CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Certificate serial: 015CD951
Authority key identifier: 85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/kjztFFKv9jogjx3PmprDe7Hlf8U.roa
Signing time: Wed 09 Feb 2022 12:17:00 +0000
ROA not before: Wed 09 Feb 2022 12:17:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.212.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22862161 (0x15cd951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Validity
Not Before: Feb 9 12:17:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=923ced1452aff63a208f1dcf9a9ac37bb1e57fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:57:34:b2:82:65:ee:5f:cc:68:e6:dc:ce:
e4:5a:53:7f:d6:cf:39:72:b3:a3:0e:98:ec:21:72:
01:8c:17:22:24:31:ba:34:e9:2f:4b:f7:14:6c:6d:
01:e7:b2:5e:9b:97:96:7d:e3:87:d3:3e:bd:11:77:
c4:77:fb:0d:2f:a9:0f:d8:cb:d5:39:90:3b:40:77:
46:90:f3:0f:6b:ef:35:34:07:8f:88:8d:64:08:64:
90:e3:45:91:96:30:22:f4:2c:8e:88:5f:02:66:34:
ce:9e:71:85:34:1b:95:69:05:87:f0:d4:58:7b:48:
9f:ba:ea:d0:74:30:db:12:b9:cc:57:7c:28:d3:37:
5d:b5:33:0f:4e:2c:f3:5b:d6:9d:b6:10:02:db:6e:
4d:a3:81:cb:a3:1d:95:6c:20:f7:91:81:5f:29:25:
b7:fc:ea:d1:aa:e2:54:4f:01:c3:1a:6a:d6:31:bf:
5c:5e:b1:58:c1:31:d3:28:1c:f2:91:fd:a8:df:06:
45:d3:8b:fa:b8:7e:71:27:f5:82:7f:4a:e1:71:a6:
51:21:8f:7f:ef:28:21:2c:c9:9b:45:58:00:b7:01:
52:2a:e1:da:b8:71:26:21:a5:54:80:2e:fc:b8:20:
86:1c:24:e8:c4:a5:f7:79:61:40:ea:0f:cc:89:6d:
21:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3C:ED:14:52:AF:F6:3A:20:8F:1D:CF:9A:9A:C3:7B:B1:E5:7F:C5
X509v3 Authority Key Identifier:
keyid:85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/kjztFFKv9jogjx3PmprDe7Hlf8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/hcP2qehVDAkLw7JX9yuPZbaan2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.119.0/24
Signature Algorithm: sha256WithRSAEncryption
77:af:21:14:0a:ae:05:ea:60:b2:e9:06:35:eb:93:0a:b6:40:
e6:18:a7:e6:05:f7:78:f6:2f:d9:fe:b5:0b:db:73:7d:27:30:
29:f8:56:84:16:c1:75:67:24:cd:7d:d7:bf:a4:60:6c:35:35:
9d:c3:9e:32:17:af:de:68:c4:98:a3:f0:f0:68:94:b2:6d:e1:
6d:e7:bd:1c:40:1b:b8:6e:b7:90:aa:de:67:d0:f2:88:e0:1c:
2a:24:e3:55:76:93:47:8b:88:2e:b4:5c:61:bf:7c:41:c1:32:
9b:08:a6:bf:2b:17:36:cb:1c:d8:14:1e:fc:20:4b:bb:17:b7:
78:87:31:6b:3c:7f:df:e0:bf:cd:f1:49:aa:ff:07:ee:e4:fa:
a8:95:59:e9:34:85:e1:f9:2b:c1:9f:8f:92:08:1f:b0:19:ba:
92:29:f1:62:7d:00:28:1a:d0:c7:ec:4f:a7:3a:6b:32:ba:b8:
93:5c:28:ac:c8:4c:20:33:b3:20:18:13:a5:00:c7:aa:1c:5d:
32:5d:42:da:e1:16:26:51:ac:73:ae:e2:d3:23:f9:11:70:2b:
ed:28:6e:62:a9:4e:87:6c:e2:cd:11:59:64:8a:58:fb:ce:b7:
e6:5b:a6:66:91:f8:f2:0b:24:2b:1a:10:71:c4:ad:87:d5:ef:
d7:ef:8f:6c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVzZUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NWMzZjZhOWU4NTUwYzA5MGJjM2IyNTdmNzJiOGY2NWI2OWE5ZjYxMB4XDTIyMDIw
OTEyMTcwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTIzY2VkMTQ1MmFm
ZjYzYTIwOGYxZGNmOWE5YWMzN2JiMWU1N2ZjNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyDVzSygmXuX8xo5tzO5FpTf9bPOXKzow6Y7CFyAYwXIiQx
ujTpL0v3FGxtAeeyXpuXln3jh9M+vRF3xHf7DS+pD9jL1TmQO0B3RpDzD2vvNTQH
j4iNZAhkkONFkZYwIvQsjohfAmY0zp5xhTQblWkFh/DUWHtIn7rq0HQw2xK5zFd8
KNM3XbUzD04s81vWnbYQAttuTaOBy6MdlWwg95GBXyklt/zq0ariVE8Bwxpq1jG/
XF6xWMEx0ygc8pH9qN8GRdOL+rh+cSf1gn9K4XGmUSGPf+8oISzJm0VYALcBUirh
2rhxJiGlVIAu/Lgghhwk6MSl93lhQOoPzIltITsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSSPO0UUq/2OiCPHc+amsN7seV/xTAfBgNVHSMEGDAWgBSFw/ap6FUMCQvD
slf3K49ltpqfYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hjUDJxZWhWREFrTHc3Slg5eXVQWmJhYW4yRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGEvNTI0YmE1LTA5NmQtNDdmZi1hOGY0LWRjOGEyZDllYzZmMy8x
L2tqenRGRkt2OWpvZ2p4M1BtcHJEZTdIbGY4VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGEv
NTI0YmE1LTA5NmQtNDdmZi1hOGY0LWRjOGEyZDllYzZmMy8xL2hjUDJxZWhWREFr
THc3Slg5eXVQWmJhYW4yRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnUdzANBgkqhkiG9w0BAQsFAAOC
AQEAd68hFAquBepgsukGNeuTCrZA5hin5gX3ePYv2f61C9tzfScwKfhWhBbBdWck
zX3Xv6RgbDU1ncOeMhev3mjEmKPw8GiUsm3hbee9HEAbuG63kKreZ9DyiOAcKiTj
VXaTR4uILrRcYb98QcEymwimvysXNssc2BQe/CBLuxe3eIcxazx/3+C/zfFJqv8H
7uT6qJVZ6TSF4fkrwZ+PkggfsBm6kinxYn0AKBrQx+xPpzprMrq4k1worMhMIDOz
IBgTpQDHqhxdMl1C2uEWJlGsc67i0yP5EXAr7ShuYqlOh2zizRFZZIpY+8635lum
ZpH48gskKxoQccSth9Xv1++PbA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:51 2023 by rpki-client on console-fra.rpki-client.org