Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Fq_rPdmSc1j_XQw8LoSrr7oYUSc.roa
File: Fq_rPdmSc1j_XQw8LoSrr7oYUSc.roa (raw, json)
Hash identifier: sU8ki/vvaUXlmGeU6Pps/f/8AlgvDUmfvnKqAuF1ius=
Subject key identifier: 16:AF:EB:3D:D9:92:73:58:FF:5D:0C:3C:2E:84:AB:AF:BA:18:51:27
Certificate issuer: /CN=4398b577b223b5a76351219a74fda446704890f7
Certificate serial: 03928E27
Authority key identifier: 43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Fq_rPdmSc1j_XQw8LoSrr7oYUSc.roa
Signing time: Sat 01 Jan 2022 01:52:48 +0000
ROA not before: Sat 01 Jan 2022 01:52:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212323
IP address blocks: 185.209.12.0/24 maxlen: 24
2a10:d200::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59936295 (0x3928e27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4398b577b223b5a76351219a74fda446704890f7
Validity
Not Before: Jan 1 01:52:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16afeb3dd9927358ff5d0c3c2e84abafba185127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a5:0f:4a:e3:b4:73:e2:a5:79:1d:c0:da:ca:
9b:6f:c7:b8:eb:d3:b7:13:c3:dd:01:a0:73:40:4b:
b3:f9:8e:6c:3e:a6:b1:0a:3c:98:f3:c6:f5:a0:af:
ce:11:dd:1c:a0:e3:5e:54:84:b6:d6:4c:f4:ae:61:
12:c7:22:0e:6b:51:8b:3e:fb:27:97:2a:17:04:84:
5a:87:7a:4b:01:a4:26:04:b9:58:8c:8a:d6:cf:41:
e6:3b:2a:24:06:95:7e:32:24:c2:09:3d:84:6d:e3:
1c:1b:a2:24:e0:11:92:f6:d2:7f:bf:52:38:09:85:
d4:23:da:dd:7e:47:7f:c7:ad:ff:ca:8d:1b:6e:e2:
7a:78:1d:d1:c7:49:4e:a0:a9:00:d0:74:a9:64:3c:
a7:31:63:61:b8:e0:1c:a2:00:e8:81:3b:81:3e:4f:
47:cd:d5:f2:7a:af:b7:85:71:3f:c3:eb:19:45:9d:
f4:90:c4:ea:5c:2e:a5:cb:5f:3c:09:a1:0a:b1:c8:
92:80:d7:e8:1c:dd:55:e2:9b:fb:8c:7c:65:7e:cd:
1d:e5:e8:47:f6:a6:da:c9:73:79:11:42:54:18:23:
bb:d1:ae:f8:19:96:8a:b9:03:14:0b:4e:e8:bc:93:
ec:3b:3e:63:e8:a8:a1:28:82:4a:0b:b9:4e:fd:87:
12:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:AF:EB:3D:D9:92:73:58:FF:5D:0C:3C:2E:84:AB:AF:BA:18:51:27
X509v3 Authority Key Identifier:
keyid:43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Fq_rPdmSc1j_XQw8LoSrr7oYUSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.12.0/24
IPv6:
2a10:d200::/29
Signature Algorithm: sha256WithRSAEncryption
74:c1:a3:90:bb:6e:e5:5c:f1:78:c5:1c:21:56:16:e5:9a:c5:
d6:95:92:a0:7d:29:d5:30:7e:37:d6:70:aa:2c:d0:d3:7e:c1:
9b:05:b0:0a:a8:a9:b6:18:62:79:cc:5d:62:da:9e:33:01:fd:
7a:36:c0:52:3a:be:9a:d9:31:9f:96:e2:72:dd:d1:16:e6:28:
79:82:f6:75:3f:1c:20:15:23:bd:37:2e:9b:ab:0b:82:80:cc:
32:4f:3c:b2:fe:00:46:64:26:c1:39:5f:25:da:94:8c:e1:80:
36:12:16:79:58:7f:6a:58:fd:17:67:9a:45:00:f9:ff:b6:9b:
b2:49:37:4a:db:8b:d1:aa:7b:85:bb:f6:88:85:f6:2e:ce:27:
b3:0c:2b:55:14:29:1a:00:04:a5:d3:98:60:f4:c9:b1:f2:8f:
96:19:42:66:18:76:3a:db:de:d5:6b:83:5d:6a:93:e6:a0:b0:
45:85:c3:bd:28:ff:e6:51:1d:a3:17:4d:34:7a:c7:9a:3b:e1:
20:2b:e6:40:9b:e9:19:5a:91:7e:d1:ae:9c:00:fd:1f:85:2f:
9c:7d:01:f9:97:bc:81:bf:3f:a6:57:8e:0f:83:b8:50:87:ed:
df:1d:05:94:43:65:5d:b8:01:7a:ee:a2:58:c1:c8:c4:69:7b:
41:ba:ef:0f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEA5KOJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
Mzk4YjU3N2IyMjNiNWE3NjM1MTIxOWE3NGZkYTQ0NjcwNDg5MGY3MB4XDTIyMDEw
MTAxNTI0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTZhZmViM2RkOTky
NzM1OGZmNWQwYzNjMmU4NGFiYWZiYTE4NTEyNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIqlD0rjtHPipXkdwNrKm2/HuOvTtxPD3QGgc0BLs/mObD6m
sQo8mPPG9aCvzhHdHKDjXlSEttZM9K5hEsciDmtRiz77J5cqFwSEWod6SwGkJgS5
WIyK1s9B5jsqJAaVfjIkwgk9hG3jHBuiJOARkvbSf79SOAmF1CPa3X5Hf8et/8qN
G27iengd0cdJTqCpANB0qWQ8pzFjYbjgHKIA6IE7gT5PR83V8nqvt4VxP8PrGUWd
9JDE6lwupctfPAmhCrHIkoDX6BzdVeKb+4x8ZX7NHeXoR/am2slzeRFCVBgju9Gu
+BmWirkDFAtO6LyT7Ds+Y+iooSiCSgu5Tv2HEn8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQWr+s92ZJzWP9dDDwuhKuvuhhRJzAfBgNVHSMEGDAWgBRDmLV3siO1p2NR
IZp0/aRGcEiQ9zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1E1aTFkN0lqdGFkalVTR2FkUDJrUm5CSWtQYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTEvNTgyNjk1LTYxYTEtNDhlNy1iNmFjLTdiYzQ1MzQwZGQyOC8x
L0ZxX3JQZG1TYzFqX1hRdzhMb1NycjdvWVVTYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTEv
NTgyNjk1LTYxYTEtNDhlNy1iNmFjLTdiYzQ1MzQwZGQyOC8xL1E1aTFkN0lqdGFk
alVTR2FkUDJrUm5CSWtQYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALnRDDANBAIAAjAHAwUDKhDSADAN
BgkqhkiG9w0BAQsFAAOCAQEAdMGjkLtu5VzxeMUcIVYW5ZrF1pWSoH0p1TB+N9Zw
qizQ037BmwWwCqipthhiecxdYtqeMwH9ejbAUjq+mtkxn5bict3RFuYoeYL2dT8c
IBUjvTcum6sLgoDMMk88sv4ARmQmwTlfJdqUjOGANhIWeVh/alj9F2eaRQD5/7ab
skk3StuL0ap7hbv2iIX2Ls4nswwrVRQpGgAEpdOYYPTJsfKPlhlCZhh2Otve1WuD
XWqT5qCwRYXDvSj/5lEdoxdNNHrHmjvhICvmQJvpGVqRftGunAD9H4UvnH0B+Ze8
gb8/pleOD4O4UIft3x0FlENlXbgBeu6iWMHIxGl7QbrvDw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:13 2023 by rpki-client on console-fra.rpki-client.org