Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/N1-guHCS73CP4gzOpkKUK9dXLFc.roa
File: N1-guHCS73CP4gzOpkKUK9dXLFc.roa (raw, json)
Hash identifier: vWR3/PC37TLDGpM9JMg4AaoHAlqcxYXifOCGRq9b3Zw=
Subject key identifier: 37:5F:A0:B8:70:92:EF:70:8F:E2:0C:CE:A6:42:94:2B:D7:57:2C:57
Certificate issuer: /CN=9a2f0701d7a63cf3d193695c395d1a1f78335ccf
Certificate serial: 037F3950
Authority key identifier: 9A:2F:07:01:D7:A6:3C:F3:D1:93:69:5C:39:5D:1A:1F:78:33:5C:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mi8HAdemPPPRk2lcOV0aH3gzXM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/N1-guHCS73CP4gzOpkKUK9dXLFc.roa
Signing time: Sat 01 Jan 2022 15:58:32 +0000
ROA not before: Sat 01 Jan 2022 15:58:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208693
IP address blocks: 185.185.204.0/22 maxlen: 24
2a00:7420:8000::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58669392 (0x37f3950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a2f0701d7a63cf3d193695c395d1a1f78335ccf
Validity
Not Before: Jan 1 15:58:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=375fa0b87092ef708fe20ccea642942bd7572c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b3:ca:9d:e2:5f:03:e0:e5:a7:b1:77:62:c6:
72:01:70:19:33:80:08:0a:74:f2:9e:fa:f9:93:b2:
5a:f1:33:d6:f8:c1:3a:22:43:69:7d:4c:2c:74:5b:
23:b9:f9:40:c6:8f:24:74:59:34:d6:1c:a2:02:8c:
94:29:b0:22:28:cd:3f:1e:59:cd:e9:de:82:ef:23:
3c:f7:b7:a5:f6:f3:43:52:ea:5c:96:20:bf:84:49:
35:76:1e:bb:0c:e5:c4:d9:75:12:d8:20:5e:47:5b:
73:e7:24:4a:36:fc:59:0f:21:60:f1:aa:cc:4f:f3:
30:60:c5:15:16:12:2f:02:06:fc:04:43:9d:b0:73:
83:32:d0:81:71:c5:97:3c:3f:d6:d1:63:7b:f3:6d:
8d:50:1d:3d:bf:75:c9:a3:fd:a1:7e:79:d3:62:16:
82:f0:8b:3e:a8:26:55:3f:01:04:5e:13:70:13:cd:
bd:f9:d2:33:f1:f2:65:42:58:7a:04:35:bb:6a:c4:
69:c5:5a:d6:89:91:0d:3c:b2:5e:37:21:55:fa:6b:
f6:cf:de:a8:ff:9b:96:cb:b8:28:bc:2b:15:ac:a5:
f6:90:fd:19:a3:db:d4:cc:58:b1:f7:66:4e:c4:05:
14:f0:08:8a:6a:00:2f:8b:ff:e2:d7:a3:88:fc:3c:
b4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5F:A0:B8:70:92:EF:70:8F:E2:0C:CE:A6:42:94:2B:D7:57:2C:57
X509v3 Authority Key Identifier:
keyid:9A:2F:07:01:D7:A6:3C:F3:D1:93:69:5C:39:5D:1A:1F:78:33:5C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mi8HAdemPPPRk2lcOV0aH3gzXM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/N1-guHCS73CP4gzOpkKUK9dXLFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/mi8HAdemPPPRk2lcOV0aH3gzXM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.204.0/22
IPv6:
2a00:7420:8000::/33
Signature Algorithm: sha256WithRSAEncryption
31:ff:f4:38:7e:b9:6e:f0:fe:0e:85:78:0f:1b:1c:45:1a:d0:
2c:4f:6f:8f:8b:b2:62:27:be:a6:5e:4c:9d:b2:8b:2b:e4:47:
eb:36:f4:45:db:5f:83:3f:83:ab:e1:74:18:d5:d8:05:08:c6:
60:e5:e7:40:1c:32:22:ae:2b:c7:d4:db:56:1b:b8:33:2e:5f:
26:96:0d:ed:8f:b9:36:23:87:66:b8:02:c0:53:26:00:fb:90:
1c:ae:ec:17:7a:b7:86:3f:4c:55:90:0e:2f:06:89:21:0c:e7:
21:91:0b:c1:66:2e:48:c3:c5:05:7c:af:ba:57:11:bb:8d:cb:
1f:d0:ad:cf:55:56:d8:00:52:6b:83:d0:2e:f1:13:99:ea:b2:
e1:9e:dd:b4:8d:7c:2a:f9:0e:e5:d8:4b:c5:66:a7:96:2d:5b:
76:c3:34:61:be:64:a1:a4:b3:55:54:63:f4:8d:78:b8:3d:48:
c2:a7:39:4b:61:6b:65:5f:bb:13:1e:5a:90:34:96:40:dc:78:
c5:17:96:1c:51:aa:06:98:19:8b:d9:2f:45:a0:0f:ae:19:1f:
f5:76:ac:ae:20:da:c8:d4:02:d5:b6:d8:84:7c:b8:44:96:28:
39:22:f3:61:1a:26:92:c1:28:62:f9:56:49:10:5c:a8:f1:c2:
7c:68:a9:ac
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIEA385UDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YTJmMDcwMWQ3YTYzY2YzZDE5MzY5NWMzOTVkMWExZjc4MzM1Y2NmMB4XDTIyMDEw
MTE1NTgzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzc1ZmEwYjg3MDky
ZWY3MDhmZTIwY2NlYTY0Mjk0MmJkNzU3MmM1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIuzyp3iXwPg5aexd2LGcgFwGTOACAp08p76+ZOyWvEz1vjB
OiJDaX1MLHRbI7n5QMaPJHRZNNYcogKMlCmwIijNPx5Zzenegu8jPPe3pfbzQ1Lq
XJYgv4RJNXYeuwzlxNl1EtggXkdbc+ckSjb8WQ8hYPGqzE/zMGDFFRYSLwIG/ARD
nbBzgzLQgXHFlzw/1tFje/NtjVAdPb91yaP9oX5502IWgvCLPqgmVT8BBF4TcBPN
vfnSM/HyZUJYegQ1u2rEacVa1omRDTyyXjchVfpr9s/eqP+blsu4KLwrFayl9pD9
GaPb1MxYsfdmTsQFFPAIimoAL4v/4tejiPw8tLcCAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBQ3X6C4cJLvcI/iDM6mQpQr11csVzAfBgNVHSMEGDAWgBSaLwcB16Y889GT
aVw5XRofeDNczzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21pOEhBZGVtUFBQUmsybGNPVjBhSDNnelhNOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTUvNWVmYWQ2LWM5YTQtNDgzOC1iZDY3LTczNzE3YzU2YjZmMy8x
L04xLWd1SENTNzNDUDRnek9wa0tVSzlkWExGYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTUv
NWVmYWQ2LWM5YTQtNDgzOC1iZDY3LTczNzE3YzU2YjZmMy8xL21pOEhBZGVtUFBQ
UmsybGNPVjBhSDNnelhNOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAv
BggrBgEFBQcBBwEB/wQgMB4wDAQCAAEwBgMEArm5zDAOBAIAAjAIAwYHKgB0IIAw
DQYJKoZIhvcNAQELBQADggEBADH/9Dh+uW7w/g6FeA8bHEUa0CxPb4+LsmInvqZe
TJ2yiyvkR+s29EXbX4M/g6vhdBjV2AUIxmDl50AcMiKuK8fU21YbuDMuXyaWDe2P
uTYjh2a4AsBTJgD7kByu7Bd6t4Y/TFWQDi8GiSEM5yGRC8FmLkjDxQV8r7pXEbuN
yx/Qrc9VVtgAUmuD0C7xE5nqsuGe3bSNfCr5DuXYS8Vmp5YtW3bDNGG+ZKGks1VU
Y/SNeLg9SMKnOUtha2VfuxMeWpA0lkDceMUXlhxRqgaYGYvZL0WgD64ZH/V2rK4g
2sjUAtW22IR8uESWKDki82EaJpLBKGL5VkkQXKjxwnxoqaw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:38 2024 by rpki-client on console-ams.rpki-client.org