Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/q7vDpF3bzwXNxIrf4q1UqQD7ytc.roa
File: q7vDpF3bzwXNxIrf4q1UqQD7ytc.roa (raw, json)
Hash identifier: c7QHu+9DF+Lse5JdyvIOGbxxIBji7syrLakMBI1bLDc=
Subject key identifier: AB:BB:C3:A4:5D:DB:CF:05:CD:C4:8A:DF:E2:AD:54:A9:00:FB:CA:D7
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 0182E819028F65B67987B53D3EF20774E663
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/q7vDpF3bzwXNxIrf4q1UqQD7ytc.roa
Signing time: Mon 29 Aug 2022 05:35:29 +0000
ROA not before: Mon 29 Aug 2022 05:35:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202580
IP address blocks: 185.196.223.0/24 maxlen: 24
185.170.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e8:19:02:8f:65:b6:79:87:b5:3d:3e:f2:07:74:e6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Aug 29 05:35:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abbbc3a45ddbcf05cdc48adfe2ad54a900fbcad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4f:86:d9:54:c2:19:e9:1a:e4:9e:21:a1:89:
52:8c:ea:80:0f:47:bf:7a:97:43:09:1c:e1:19:15:
31:b1:a7:94:9a:0a:41:59:11:bc:6b:bc:39:64:58:
95:90:76:cf:38:07:18:d1:7b:51:45:5d:2d:07:75:
b3:b0:16:c0:e2:03:c8:44:ca:a0:40:06:6c:c7:c9:
8d:d0:3f:77:a0:ea:52:72:b9:28:41:ba:7a:b2:3f:
44:a6:1c:81:46:e5:c6:ca:87:34:0d:07:96:7b:e0:
64:ce:78:fb:ab:77:97:95:ee:6e:e1:d7:9f:dc:05:
f4:f0:bc:90:b8:93:9f:3a:bc:fe:08:fc:ca:82:0e:
a3:30:3f:83:49:62:66:ea:1f:c9:a8:46:8c:8b:00:
18:bc:c3:e0:73:ce:7b:2d:6e:81:40:1a:c3:36:35:
7a:a7:f7:61:d7:1b:0d:6f:58:48:cc:ed:03:ff:9f:
ce:eb:4c:8b:b1:57:58:5e:f9:2c:2a:47:93:51:70:
61:7e:f6:70:32:9c:8e:6e:7f:d3:e5:2e:28:cd:b3:
d1:6b:f9:bb:af:92:8a:11:db:be:b7:c5:d3:8a:f6:
d5:10:b7:f9:94:96:67:bc:5f:e2:b3:14:4b:dd:de:
48:76:09:18:b8:68:d6:b5:5f:fd:eb:38:88:e0:de:
9c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:BB:C3:A4:5D:DB:CF:05:CD:C4:8A:DF:E2:AD:54:A9:00:FB:CA:D7
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/q7vDpF3bzwXNxIrf4q1UqQD7ytc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.129.0/24
185.196.223.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:c9:f7:c3:e1:29:41:c1:5e:ed:47:c0:2f:19:a3:fc:28:e7:
6d:f1:98:ad:9a:0b:34:14:a3:56:bc:b8:ec:f1:55:4e:52:2f:
8f:4f:6f:83:3c:e3:a5:5a:4a:0b:0c:bd:33:b2:2b:bd:4b:74:
73:a9:34:d8:5b:26:f5:31:38:37:66:ae:3e:ee:e7:d8:81:ae:
3a:be:68:ab:39:4c:f2:69:ae:80:8a:b5:6d:71:26:bb:32:86:
1a:7d:9e:75:76:85:93:b6:45:a8:fa:a0:4d:fa:16:4d:f9:c3:
fd:a4:09:db:e0:cd:da:4f:39:fc:23:f5:e3:e6:0a:07:ec:80:
97:24:80:5f:12:d8:59:ef:a7:5b:b6:ad:84:95:8a:4e:bc:77:
24:d0:41:cd:91:b8:a9:78:8e:17:82:28:5f:05:2e:e4:fb:33:
e9:86:86:06:a1:00:5b:d0:a2:39:94:5b:08:41:4a:5d:24:a4:
41:9e:78:2b:1d:21:be:6c:8d:43:85:32:6e:9f:cd:af:5f:ad:
8b:9f:26:73:91:5f:bd:cc:11:17:2c:95:52:ed:64:47:14:58:
7b:c1:9a:11:e8:2d:4b:7c:b6:5c:52:36:af:b7:ff:e7:2f:fc:
22:f6:9e:d8:0a:ce:e8:ff:c9:c9:c0:45:bd:ba:29:df:70:bb:
9b:c3:88:63
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYLoGQKPZbZ5h7U9PvIHdOZjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5Y2U1NjlhMTRjMmRiMzc3MmYyMzE4N2NlNjhlNjU0MWVj
MDA0OGUwHhcNMjIwODI5MDUzNTI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmJiYzNhNDVkZGJjZjA1Y2RjNDhhZGZlMmFkNTRhOTAwZmJjYWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2U+G2VTCGeka5J4hoYlSjOqAD0e/
epdDCRzhGRUxsaeUmgpBWRG8a7w5ZFiVkHbPOAcY0XtRRV0tB3WzsBbA4gPIRMqg
QAZsx8mN0D93oOpScrkoQbp6sj9EphyBRuXGyoc0DQeWe+Bkznj7q3eXle5u4def
3AX08LyQuJOfOrz+CPzKgg6jMD+DSWJm6h/JqEaMiwAYvMPgc857LW6BQBrDNjV6
p/dh1xsNb1hIzO0D/5/O60yLsVdYXvksKkeTUXBhfvZwMpyObn/T5S4ozbPRa/m7
r5KKEdu+t8XTivbVELf5lJZnvF/isxRL3d5IdgkYuGjWtV/96ziI4N6cgwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKu7w6Rd288FzcSK3+KtVKkA+8rXMB8GA1UdIwQY
MBaAFJnOVpoUwts3cvIxh85o5lQewASOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQt
MTA5NTU0NGM2YzUwLzEvcTd2RHBGM2J6d1hOeElyZjRxMVVxUUQ3eXRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQtMTA5NTU0NGM2YzUw
LzEvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuaqBAwQA
ucTfMA0GCSqGSIb3DQEBCwUAA4IBAQCryffD4SlBwV7tR8AvGaP8KOdt8Zitmgs0
FKNWvLjs8VVOUi+PT2+DPOOlWkoLDL0zsiu9S3RzqTTYWyb1MTg3Zq4+7ufYga46
vmirOUzyaa6AirVtcSa7MoYafZ51doWTtkWo+qBN+hZN+cP9pAnb4M3aTzn8I/Xj
5goH7ICXJIBfEthZ76dbtq2ElYpOvHck0EHNkbipeI4XgihfBS7k+zPphoYGoQBb
0KI5lFsIQUpdJKRBnngrHSG+bI1DhTJun82vX62LnyZzkV+9zBEXLJVS7WRHFFh7
wZoR6C1LfLZcUjavt//nL/wi9p7YCs7o/8nJwEW9uinfcLubw4hj
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-fra.rpki-client.org