Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/lI1CRMjrckccDC1Zoq_1RIj8CnU.roa
File: lI1CRMjrckccDC1Zoq_1RIj8CnU.roa (raw, json)
Hash identifier: 3qDVGBVHNrN9/hMbyhKFPqtlJcFD7uJvvyVKe68vhbY=
Subject key identifier: 94:8D:42:44:C8:EB:72:47:1C:0C:2D:59:A2:AF:F5:44:88:FC:0A:75
Certificate issuer: /CN=2aa8202b4d0c5c111d374f1e98b73db4924d64b1
Certificate serial: 04C710
Authority key identifier: 2A:A8:20:2B:4D:0C:5C:11:1D:37:4F:1E:98:B7:3D:B4:92:4D:64:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqggK00MXBEdN08emLc9tJJNZLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/lI1CRMjrckccDC1Zoq_1RIj8CnU.roa
Signing time: Mon 27 Jun 2022 15:48:32 +0000
ROA not before: Mon 27 Jun 2022 15:48:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202311
IP address blocks: 185.53.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 313104 (0x4c710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa8202b4d0c5c111d374f1e98b73db4924d64b1
Validity
Not Before: Jun 27 15:48:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=948d4244c8eb72471c0c2d59a2aff54488fc0a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b3:a3:3e:fd:e4:fa:63:ff:89:38:66:e5:74:
af:72:31:76:d0:f7:b8:d9:1c:ad:7c:98:c5:57:ed:
3c:5f:07:3f:bb:7f:a6:9b:4b:28:d9:6f:e7:94:9d:
80:a4:1e:c7:00:88:0e:68:b3:00:e7:52:00:2c:89:
f1:5a:1b:f7:bb:70:4a:3e:c7:7b:5d:c8:33:6d:50:
83:38:9c:0c:73:00:a2:1a:5f:d5:20:a3:d5:39:a2:
de:cc:94:0e:28:c0:73:f5:09:49:5e:78:67:74:65:
9c:73:00:b8:c2:a3:9a:62:56:7f:85:1b:4b:34:a3:
bb:a5:36:71:09:fe:fe:d3:ee:1b:8e:7f:c4:f5:c6:
d2:1f:a7:a6:0d:32:83:c7:38:c1:57:94:be:ff:de:
29:60:e5:3d:2e:fd:96:bb:73:fd:22:7d:7d:ee:aa:
a2:38:8b:66:b7:6d:75:4a:76:d4:f5:50:e1:76:59:
09:b2:76:91:2b:ad:ae:bd:9e:9c:ec:18:e6:46:43:
a1:c4:12:54:40:02:dc:7e:ef:49:cb:17:6f:6c:c8:
62:c4:e1:8f:aa:3e:54:64:08:ce:31:c0:cb:bc:95:
86:07:68:12:ae:96:a6:57:8d:e8:75:b3:98:07:a0:
e6:b4:da:9d:d2:2d:42:01:3c:db:ba:29:8c:d3:37:
48:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8D:42:44:C8:EB:72:47:1C:0C:2D:59:A2:AF:F5:44:88:FC:0A:75
X509v3 Authority Key Identifier:
keyid:2A:A8:20:2B:4D:0C:5C:11:1D:37:4F:1E:98:B7:3D:B4:92:4D:64:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqggK00MXBEdN08emLc9tJJNZLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/lI1CRMjrckccDC1Zoq_1RIj8CnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/KqggK00MXBEdN08emLc9tJJNZLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.191.0/24
Signature Algorithm: sha256WithRSAEncryption
22:cb:46:2b:51:7e:6e:0b:85:73:ae:8d:31:cc:84:a1:62:28:
ca:38:f0:8e:c4:37:df:65:1a:8c:f2:12:43:7c:36:ab:ec:12:
ee:8f:bb:fc:20:20:1e:6a:31:d7:b8:3e:c2:53:b9:51:46:14:
55:53:4a:ce:81:9a:3a:0f:c1:b4:3a:0e:29:18:ec:11:86:59:
8e:69:ef:68:b7:6a:18:a6:53:cc:0c:3b:1d:73:f3:40:f1:f7:
69:49:d6:64:14:2d:00:9a:88:76:7e:53:92:98:ca:ae:81:4a:
d8:79:c8:f4:2a:6c:be:40:19:95:28:05:72:6f:07:fa:d7:f0:
24:21:63:bc:d8:b1:6f:25:0a:a5:bf:63:7b:38:af:3f:4f:f0:
15:2b:56:32:c5:90:9f:0f:b2:52:67:13:b4:e1:d9:4a:03:2f:
9d:1f:60:21:0c:64:0c:59:86:db:f4:97:5f:b2:91:85:92:2f:
33:49:8b:98:38:64:90:f8:0b:3a:28:e8:e3:b9:7e:b6:7d:5c:
65:d6:0d:60:47:18:dc:01:98:bb:33:f9:35:59:5c:a4:91:66:
e8:f2:8c:dc:da:01:8c:96:f2:71:7b:32:ad:32:10:de:90:03:
bf:78:21:c4:3a:2f:5a:21:8c:31:72:d2:2f:cc:03:a2:95:bc:
73:1f:58:9d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDBMcQMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDJh
YTgyMDJiNGQwYzVjMTExZDM3NGYxZTk4YjczZGI0OTI0ZDY0YjEwHhcNMjIwNjI3
MTU0ODMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5NDhkNDI0NGM4ZWI3
MjQ3MWMwYzJkNTlhMmFmZjU0NDg4ZmMwYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAx7OjPv3k+mP/iThm5XSvcjF20Pe42RytfJjFV+08Xwc/u3+m
m0so2W/nlJ2ApB7HAIgOaLMA51IALInxWhv3u3BKPsd7XcgzbVCDOJwMcwCiGl/V
IKPVOaLezJQOKMBz9QlJXnhndGWccwC4wqOaYlZ/hRtLNKO7pTZxCf7+0+4bjn/E
9cbSH6emDTKDxzjBV5S+/94pYOU9Lv2Wu3P9In197qqiOItmt211SnbU9VDhdlkJ
snaRK62uvZ6c7BjmRkOhxBJUQALcfu9JyxdvbMhixOGPqj5UZAjOMcDLvJWGB2gS
rpamV43odbOYB6DmtNqd0i1CATzbuimM0zdIoQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJSNQkTI63JHHAwtWaKv9USI/Ap1MB8GA1UdIwQYMBaAFCqoICtNDFwRHTdP
Hpi3PbSSTWSxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
S3FnZ0swME1YQkVkTjA4ZW1MYzl0SkpOWkxFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mNC8yN2IzYjMtNGIyMi00NzQwLWE2NWEtNmU3YmFlNWZmODk4LzEv
bEkxQ1JNanJja2NjREMxWm9xXzFSSWo4Q25VLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8y
N2IzYjMtNGIyMi00NzQwLWE2NWEtNmU3YmFlNWZmODk4LzEvS3FnZ0swME1YQkVk
TjA4ZW1MYzl0SkpOWkxFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTW/MA0GCSqGSIb3DQEBCwUAA4IB
AQAiy0YrUX5uC4Vzro0xzIShYijKOPCOxDffZRqM8hJDfDar7BLuj7v8ICAeajHX
uD7CU7lRRhRVU0rOgZo6D8G0Og4pGOwRhlmOae9ot2oYplPMDDsdc/NA8fdpSdZk
FC0Amoh2flOSmMqugUrYecj0Kmy+QBmVKAVybwf61/AkIWO82LFvJQqlv2N7OK8/
T/AVK1YyxZCfD7JSZxO04dlKAy+dH2AhDGQMWYbb9JdfspGFki8zSYuYOGSQ+As6
KOjjuX62fVxl1g1gRxjcAZi7M/k1WVykkWbo8ozc2gGMlvJxezKtMhDekAO/eCHE
Oi9aIYwxctIvzAOilbxzH1id
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:19 2023 by rpki-client on console-ams.rpki-client.org