Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/4DbZqgwGgyf8V2EoWJl-e3sqzVY.roa
File: 4DbZqgwGgyf8V2EoWJl-e3sqzVY.roa (raw, json)
Hash identifier: 1YrDgzmaaPSOqgLYMVWYpf2pqRBseORTQ/xfXZKPE1A=
Subject key identifier: E0:36:D9:AA:0C:06:83:27:FC:57:61:28:58:99:7E:7B:7B:2A:CD:56
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0182977FF5CF74EC09AA38D994C8A3C3F4A2
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/4DbZqgwGgyf8V2EoWJl-e3sqzVY.roa
Signing time: Sat 13 Aug 2022 13:58:41 +0000
ROA not before: Sat 13 Aug 2022 13:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 185.155.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:97:7f:f5:cf:74:ec:09:aa:38:d9:94:c8:a3:c3:f4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Aug 13 13:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e036d9aa0c068327fc57612858997e7b7b2acd56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:af:2d:1b:74:08:f7:21:f5:01:11:01:24:7e:
23:99:60:83:4c:da:08:b2:2e:3c:2c:fc:4f:9c:5e:
fd:cf:a9:de:98:27:b2:c7:82:b3:4a:fd:47:eb:d0:
1c:d7:aa:c9:16:ae:df:b4:0c:90:7b:09:cf:2c:b6:
21:74:94:4a:09:ef:17:01:e1:fd:44:06:b8:f8:68:
25:a4:4a:6f:02:c1:99:6a:9f:53:7d:06:2d:ad:dd:
c3:d4:f0:c0:9e:20:94:09:fb:6c:bb:33:9a:fe:8c:
8f:a4:72:fa:a0:a4:ec:b3:b2:7b:a7:53:6b:69:6d:
79:04:4f:03:f3:8d:b2:7b:da:dc:98:a2:6d:7c:a6:
13:23:51:52:8b:ce:64:a7:e0:bc:29:f3:0b:2c:3f:
38:8d:32:a3:a4:9f:47:b0:5a:a3:6d:a1:dd:05:e7:
3e:01:d2:3c:3b:dc:0d:df:fe:d5:1a:2d:d9:cb:f6:
43:0d:01:30:13:84:86:ce:5b:41:ce:68:38:9e:c3:
86:3b:65:3f:e8:16:c0:5b:03:b8:ce:91:db:4c:4d:
bd:0a:e8:14:8a:bb:7f:9d:c7:07:86:85:64:bd:a4:
50:bb:a4:a3:1e:3b:1f:0c:18:37:36:b3:1f:a2:24:
e1:7a:d6:9d:de:1c:a7:b1:9c:ee:5c:bd:f1:cc:67:
3a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:36:D9:AA:0C:06:83:27:FC:57:61:28:58:99:7E:7B:7B:2A:CD:56
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/4DbZqgwGgyf8V2EoWJl-e3sqzVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.233.0/24
Signature Algorithm: sha256WithRSAEncryption
16:d0:f3:7b:dd:37:98:20:13:87:78:60:09:e3:74:5e:5e:92:
53:dd:17:de:02:88:6f:cf:61:df:71:03:51:28:e8:e5:b0:4d:
f1:a4:2e:05:8d:01:05:65:be:26:6a:c5:50:8f:b3:57:cd:1b:
8c:06:b9:f7:34:06:41:c3:ff:e9:1e:fe:f6:74:fd:6c:13:65:
70:3d:7b:7a:f3:33:4d:ef:69:76:81:a3:23:76:ff:98:50:9b:
4c:bf:ce:3a:bf:4c:1f:44:aa:b2:78:ba:94:85:08:a7:f5:6e:
bd:27:c5:ec:51:76:59:b7:74:3f:f1:95:0d:8e:98:e0:d3:ea:
ac:94:d0:49:ce:5b:63:22:4a:3d:36:44:38:0b:80:fc:27:1e:
5e:81:52:c1:69:ab:81:b5:78:35:80:83:87:89:fd:0e:92:f0:
7d:21:43:df:75:6e:a7:e7:27:26:8a:2a:c8:57:62:29:6d:ee:
10:3a:92:2d:16:db:cb:0f:7e:1e:0e:cf:ff:b1:f3:d1:3f:b5:
e1:79:2b:6e:71:49:ae:22:02:5d:f1:8d:e5:31:f6:4e:9c:ed:
09:b2:f9:d7:2a:c1:62:6f:b1:e0:14:e3:8b:66:c3:d5:5c:e8:
c0:cf:5a:5b:9e:cc:e2:dc:01:4e:78:7a:44:72:cd:6e:a1:7b:
e8:0e:ac:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKXf/XPdOwJqjjZlMijw/SiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MTdjOWRlOTI3ZmE3NWJlYWVmNzg4NWYwZDg4ZjZmNGQy
YTBlZDYwHhcNMjIwODEzMTM1ODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDM2ZDlhYTBjMDY4MzI3ZmM1NzYxMjg1ODk5N2U3YjdiMmFjZDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvq8tG3QI9yH1AREBJH4jmWCDTNoI
si48LPxPnF79z6nemCeyx4KzSv1H69Ac16rJFq7ftAyQewnPLLYhdJRKCe8XAeH9
RAa4+GglpEpvAsGZap9TfQYtrd3D1PDAniCUCftsuzOa/oyPpHL6oKTss7J7p1Nr
aW15BE8D842ye9rcmKJtfKYTI1FSi85kp+C8KfMLLD84jTKjpJ9HsFqjbaHdBec+
AdI8O9wN3/7VGi3Zy/ZDDQEwE4SGzltBzmg4nsOGO2U/6BbAWwO4zpHbTE29CugU
irt/nccHhoVkvaRQu6SjHjsfDBg3NrMfoiThetad3hynsZzuXL3xzGc6awIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOA22aoMBoMn/FdhKFiZfnt7Ks1WMB8GA1UdIwQY
MBaAFDUXyd6Sf6db6u94hfDYj29NKg7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTIt
ZmQzYjMwMDJjMGJiLzEvNERiWnFnd0dneWY4VjJFb1dKbC1lM3NxelZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTItZmQzYjMwMDJjMGJi
LzEvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZvpMA0G
CSqGSIb3DQEBCwUAA4IBAQAW0PN73TeYIBOHeGAJ43ReXpJT3RfeAohvz2HfcQNR
KOjlsE3xpC4FjQEFZb4masVQj7NXzRuMBrn3NAZBw//pHv72dP1sE2VwPXt68zNN
72l2gaMjdv+YUJtMv846v0wfRKqyeLqUhQin9W69J8XsUXZZt3Q/8ZUNjpjg0+qs
lNBJzltjIko9NkQ4C4D8Jx5egVLBaauBtXg1gIOHif0OkvB9IUPfdW6n5ycmiirI
V2Ipbe4QOpItFtvLD34eDs//sfPRP7XheStucUmuIgJd8Y3lMfZOnO0JsvnXKsFi
b7HgFOOLZsPVXOjAz1pbnszi3AFOeHpEcs1uoXvoDqwZ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:43 2023 by rpki-client on console-fra.rpki-client.org