Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/56ebd2-8185-48bd-bbd4-9ceeba8ba24c/1/g357xLRFKE8xFkrvh_0goqrjYgg.roa
File: g357xLRFKE8xFkrvh_0goqrjYgg.roa (raw, json)
Hash identifier: Xr6Vdh4/sm3zdEjt+z9xg47cBitgm7QXN1rD1vQdQy8=
Subject key identifier: 83:7E:7B:C4:B4:45:28:4F:31:16:4A:EF:87:FD:20:A2:AA:E3:62:08
Certificate issuer: /CN=d81bef5a1a31ef5cfc036b9c2b70a42abd04007e
Certificate serial: 01CF0F3F
Authority key identifier: D8:1B:EF:5A:1A:31:EF:5C:FC:03:6B:9C:2B:70:A4:2A:BD:04:00:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BvvWhox71z8A2ucK3CkKr0EAH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/56ebd2-8185-48bd-bbd4-9ceeba8ba24c/1/g357xLRFKE8xFkrvh_0goqrjYgg.roa
Signing time: Sat 01 Jan 2022 05:56:31 +0000
ROA not before: Sat 01 Jan 2022 05:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204536
IP address blocks: 185.87.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30347071 (0x1cf0f3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81bef5a1a31ef5cfc036b9c2b70a42abd04007e
Validity
Not Before: Jan 1 05:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=837e7bc4b445284f31164aef87fd20a2aae36208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:e3:76:42:5b:2e:92:60:26:6a:0a:8d:95:
95:e3:b3:70:34:ca:44:2e:7b:41:9b:87:81:c9:54:
64:e4:58:58:5a:4f:45:62:6a:11:cc:07:41:57:10:
81:77:e2:f9:76:e1:be:4c:ee:7a:25:41:5c:5f:09:
ff:26:00:e2:25:6d:22:04:bb:7c:20:21:54:d4:13:
36:1e:80:e8:bf:dd:0c:40:71:ac:22:bc:6c:22:85:
08:9b:0a:1f:70:db:42:0f:c9:9a:d4:af:6a:c0:98:
07:c2:88:62:b5:b2:40:61:ad:eb:17:03:67:d5:92:
9a:43:35:81:eb:94:d4:40:19:2d:37:39:e1:9b:20:
3b:d6:a7:30:76:e4:f3:a2:31:65:47:35:e2:7f:b7:
6b:37:0b:75:e0:9d:fa:0c:0d:46:43:db:2d:4d:87:
c1:3a:ad:92:ea:14:e9:48:b9:a6:f2:93:be:e9:f4:
29:cd:c7:dd:e3:4c:a1:02:2f:20:9b:d3:ae:d4:bb:
e0:62:a6:2f:61:e7:53:8f:d1:10:71:0f:2c:3f:dd:
97:85:57:40:96:08:94:2b:fd:30:c7:2e:37:a0:10:
e8:50:47:2e:7a:6d:39:3d:fe:9f:7d:93:18:97:97:
5f:4f:28:44:f0:44:f6:58:41:9a:76:9a:43:db:95:
b5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7E:7B:C4:B4:45:28:4F:31:16:4A:EF:87:FD:20:A2:AA:E3:62:08
X509v3 Authority Key Identifier:
keyid:D8:1B:EF:5A:1A:31:EF:5C:FC:03:6B:9C:2B:70:A4:2A:BD:04:00:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BvvWhox71z8A2ucK3CkKr0EAH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/56ebd2-8185-48bd-bbd4-9ceeba8ba24c/1/g357xLRFKE8xFkrvh_0goqrjYgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/56ebd2-8185-48bd-bbd4-9ceeba8ba24c/1/2BvvWhox71z8A2ucK3CkKr0EAH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.180.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:22:7c:1a:a4:4c:10:ba:04:57:cb:39:cf:4c:8c:df:ad:e3:
7e:ac:5e:21:42:fc:f0:60:dd:6c:b6:aa:30:70:66:90:3c:9f:
70:a5:f0:cd:e1:05:0a:36:a4:c5:fd:98:9d:71:89:ce:96:a0:
cc:5b:84:71:0a:36:54:ec:b5:c9:84:ca:95:f3:b2:c6:f3:c4:
d9:a3:d1:11:48:1a:b6:b7:66:8d:ac:02:d9:29:3d:e4:a9:a8:
ea:1c:92:c8:e2:4c:3d:3c:1a:39:42:f5:28:40:68:e2:b0:8e:
fa:6f:be:ad:0a:e7:ad:dd:34:fd:6b:1e:1b:fe:ba:a6:82:26:
24:9b:e5:bb:85:1d:87:27:44:ad:2c:e2:e6:0e:bd:9c:4d:15:
89:8d:86:c5:ee:96:ac:6e:34:02:3f:68:4b:48:40:17:00:e2:
ce:81:f7:2f:48:3b:e8:1c:41:79:24:de:19:37:78:d8:17:48:
f4:5f:49:14:69:df:2e:ed:9f:53:f6:f4:d5:7c:f8:3e:50:75:
45:aa:78:4f:88:f5:a4:12:49:30:80:25:1c:26:ac:18:a8:c0:
89:70:76:5e:5c:22:0a:99:b4:39:d0:a8:60:8e:e3:56:25:6a:
ca:b4:32:0a:31:21:a5:0a:3c:6a:85:b6:31:61:7e:fa:55:3d:
3f:4b:f1:27
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAc8PPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ODFiZWY1YTFhMzFlZjVjZmMwMzZiOWMyYjcwYTQyYWJkMDQwMDdlMB4XDTIyMDEw
MTA1NTYzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODM3ZTdiYzRiNDQ1
Mjg0ZjMxMTY0YWVmODdmZDIwYTJhYWUzNjIwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1G43ZCWy6SYCZqCo2VleOzcDTKRC57QZuHgclUZORYWFpP
RWJqEcwHQVcQgXfi+XbhvkzueiVBXF8J/yYA4iVtIgS7fCAhVNQTNh6A6L/dDEBx
rCK8bCKFCJsKH3DbQg/JmtSvasCYB8KIYrWyQGGt6xcDZ9WSmkM1geuU1EAZLTc5
4ZsgO9anMHbk86IxZUc14n+3azcLdeCd+gwNRkPbLU2HwTqtkuoU6Ui5pvKTvun0
Kc3H3eNMoQIvIJvTrtS74GKmL2HnU4/REHEPLD/dl4VXQJYIlCv9MMcuN6AQ6FBH
LnptOT3+n32TGJeXX08oRPBE9lhBmnaaQ9uVtRECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSDfnvEtEUoTzEWSu+H/SCiquNiCDAfBgNVHSMEGDAWgBTYG+9aGjHvXPwD
a5wrcKQqvQQAfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJCdnZXaG94NzF6OEEydWNLM0NrS3IwRUFINC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvNTZlYmQyLTgxODUtNDhiZC1iYmQ0LTljZWViYThiYTI0Yy8x
L2czNTd4TFJGS0U4eEZrcnZoXzBnb3FyallnZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
NTZlYmQyLTgxODUtNDhiZC1iYmQ0LTljZWViYThiYTI0Yy8xLzJCdnZXaG94NzF6
OEEydWNLM0NrS3IwRUFINC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlXtDANBgkqhkiG9w0BAQsFAAOC
AQEApCJ8GqRMELoEV8s5z0yM363jfqxeIUL88GDdbLaqMHBmkDyfcKXwzeEFCjak
xf2YnXGJzpagzFuEcQo2VOy1yYTKlfOyxvPE2aPREUgatrdmjawC2Sk95Kmo6hyS
yOJMPTwaOUL1KEBo4rCO+m++rQrnrd00/WseG/66poImJJvlu4UdhydErSzi5g69
nE0ViY2Gxe6WrG40Aj9oS0hAFwDizoH3L0g76BxBeSTeGTd42BdI9F9JFGnfLu2f
U/b01Xz4PlB1Rap4T4j1pBJJMIAlHCasGKjAiXB2XlwiCpm0OdCoYI7jViVqyrQy
CjEhpQo8aoW2MWF++lU9P0vxJw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org