Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b7873e-2475-471d-b039-18ecd04a7b5e/1/dhNxRfcJ9SfPI0K3VrUL9fAYtLk.roa
File: dhNxRfcJ9SfPI0K3VrUL9fAYtLk.roa (raw, json)
Hash identifier: QEhg9C5jmwG9rit1Dn4uNdu3Cdet/Pj649hOVEaz5GE=
Subject key identifier: 76:13:71:45:F7:09:F5:27:CF:23:42:B7:56:B5:0B:F5:F0:18:B4:B9
Certificate issuer: /CN=77d18b0f6535fcbbb492f606cb880be7a26efcc2
Certificate serial: 72763D
Authority key identifier: 77:D1:8B:0F:65:35:FC:BB:B4:92:F6:06:CB:88:0B:E7:A2:6E:FC:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9GLD2U1_Lu0kvYGy4gL56Ju_MI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b7873e-2475-471d-b039-18ecd04a7b5e/1/dhNxRfcJ9SfPI0K3VrUL9fAYtLk.roa
Signing time: Sat 01 Jan 2022 01:52:09 +0000
ROA not before: Sat 01 Jan 2022 01:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206197
IP address blocks: 185.192.54.0/24 maxlen: 24
185.192.53.0/24 maxlen: 24
185.192.55.0/24 maxlen: 24
185.192.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7501373 (0x72763d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d18b0f6535fcbbb492f606cb880be7a26efcc2
Validity
Not Before: Jan 1 01:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76137145f709f527cf2342b756b50bf5f018b4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:05:99:90:63:3f:f5:79:e5:50:15:8b:f8:f4:
80:37:11:2c:24:7a:f2:91:69:2c:f0:bc:64:8b:02:
09:ac:17:61:ee:f6:41:b9:b4:af:b5:f7:1d:c6:77:
e4:03:91:07:41:41:1b:37:15:d1:b6:38:ae:aa:48:
31:37:ca:e7:fc:fa:62:21:06:ea:ef:0d:72:31:3a:
0e:ab:23:46:b9:89:8a:a7:24:08:22:b8:c4:30:d3:
76:a6:b5:f4:01:b9:dd:8f:76:65:f1:6d:19:87:02:
09:4e:f9:a4:bf:59:5a:31:af:38:12:1b:1e:c6:79:
a9:17:11:f9:5e:30:21:54:b9:bf:2b:9d:aa:a8:d1:
ef:ef:da:bf:7c:36:e0:c1:c8:08:3c:5d:71:e3:f5:
ca:cb:80:7f:aa:de:0a:33:f5:2b:5d:07:0a:c3:0f:
90:89:23:f9:b5:11:27:21:9c:6f:d4:96:47:68:a3:
79:ac:5c:6a:3d:e1:f6:08:45:8e:9b:ee:d2:b1:8d:
7a:06:07:45:c2:a4:40:18:54:42:9e:e8:4a:ce:97:
99:04:24:7f:0f:83:66:eb:5f:ef:69:31:02:01:50:
86:b4:44:dd:36:7b:11:05:31:61:87:c1:54:94:50:
80:90:48:6d:dd:0a:ca:5c:a7:92:f5:f6:4d:1f:be:
bc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:13:71:45:F7:09:F5:27:CF:23:42:B7:56:B5:0B:F5:F0:18:B4:B9
X509v3 Authority Key Identifier:
keyid:77:D1:8B:0F:65:35:FC:BB:B4:92:F6:06:CB:88:0B:E7:A2:6E:FC:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9GLD2U1_Lu0kvYGy4gL56Ju_MI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b7873e-2475-471d-b039-18ecd04a7b5e/1/dhNxRfcJ9SfPI0K3VrUL9fAYtLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b7873e-2475-471d-b039-18ecd04a7b5e/1/d9GLD2U1_Lu0kvYGy4gL56Ju_MI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.52.0/22
Signature Algorithm: sha256WithRSAEncryption
10:91:78:0a:4e:02:ba:ee:ab:c2:4e:7f:36:3d:59:2c:0f:22:
20:1c:90:cf:67:ba:4a:89:0d:c7:3e:71:69:2d:b7:c5:99:1a:
8b:1f:d4:30:31:9c:c7:9c:5d:2f:ff:49:4d:37:98:d7:cf:20:
21:e8:a3:65:be:cb:6a:90:2a:6a:91:46:6e:0d:8f:33:0a:50:
88:53:9e:3c:7e:15:8b:7a:fb:6d:c6:a2:09:4b:69:28:8c:0b:
f5:9d:db:a7:48:fa:cb:b6:3c:d6:2d:bc:88:ff:ad:e6:ca:8c:
9e:b8:6c:70:3e:db:16:32:92:3d:46:e3:e6:62:d7:42:b0:0b:
a0:98:39:5e:62:99:b2:b6:b3:87:f1:98:bf:25:00:58:c7:76:
63:4d:b0:ac:6a:44:d6:af:73:69:8e:fa:4e:87:99:12:39:50:
7f:ed:2c:2e:89:7e:d3:77:ac:c8:83:5d:e4:56:55:62:cf:b3:
fb:7b:1f:00:54:87:d7:d9:6c:90:c6:9f:7f:1b:a2:a5:a6:60:
ea:15:a2:64:6a:c0:51:32:a2:02:85:66:35:55:ec:58:a8:9d:
6d:ac:af:a1:8f:aa:26:31:61:ef:c6:b9:c7:80:95:f5:df:3e:
6a:7a:89:52:1e:7b:d7:1a:29:df:6b:ee:01:0f:a2:3d:2a:2a:
0a:8d:f2:09
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDcnY9MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc3
ZDE4YjBmNjUzNWZjYmJiNDkyZjYwNmNiODgwYmU3YTI2ZWZjYzIwHhcNMjIwMTAx
MDE1MjA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3NjEzNzE0NWY3MDlm
NTI3Y2YyMzQyYjc1NmI1MGJmNWYwMThiNGI5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAxQWZkGM/9XnlUBWL+PSANxEsJHrykWks8LxkiwIJrBdh7vZB
ubSvtfcdxnfkA5EHQUEbNxXRtjiuqkgxN8rn/PpiIQbq7w1yMToOqyNGuYmKpyQI
IrjEMNN2prX0Abndj3Zl8W0ZhwIJTvmkv1laMa84EhsexnmpFxH5XjAhVLm/K52q
qNHv79q/fDbgwcgIPF1x4/XKy4B/qt4KM/UrXQcKww+QiSP5tREnIZxv1JZHaKN5
rFxqPeH2CEWOm+7SsY16BgdFwqRAGFRCnuhKzpeZBCR/D4Nm61/vaTECAVCGtETd
NnsRBTFhh8FUlFCAkEht3QrKXKeS9fZNH768mwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFHYTcUX3CfUnzyNCt1a1C/XwGLS5MB8GA1UdIwQYMBaAFHfRiw9lNfy7tJL2
BsuIC+eibvzCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZDlHTEQyVTFfTHUwa3ZZR3k0Z0w1Nkp1X01JLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mMy9iNzg3M2UtMjQ3NS00NzFkLWIwMzktMThlY2QwNGE3YjVlLzEv
ZGhOeFJmY0o5U2ZQSTBLM1ZyVUw5ZkFZdExrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9i
Nzg3M2UtMjQ3NS00NzFkLWIwMzktMThlY2QwNGE3YjVlLzEvZDlHTEQyVTFfTHUw
a3ZZR3k0Z0w1Nkp1X01JLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucA0MA0GCSqGSIb3DQEBCwUAA4IB
AQAQkXgKTgK67qvCTn82PVksDyIgHJDPZ7pKiQ3HPnFpLbfFmRqLH9QwMZzHnF0v
/0lNN5jXzyAh6KNlvstqkCpqkUZuDY8zClCIU548fhWLevttxqIJS2kojAv1ndun
SPrLtjzWLbyI/63myoyeuGxwPtsWMpI9RuPmYtdCsAugmDleYpmytrOH8Zi/JQBY
x3ZjTbCsakTWr3NpjvpOh5kSOVB/7SwuiX7Td6zIg13kVlViz7P7ex8AVIfX2WyQ
xp9/G6KlpmDqFaJkasBRMqIChWY1VexYqJ1trK+hj6omMWHvxrnHgJX13z5qeolS
HnvXGinfa+4BD6I9KioKjfIJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:33 2024 by rpki-client on console-fra.rpki-client.org