Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/1VUehHK5kHScCiUMGbgYHLQzrAQ.roa
File: 1VUehHK5kHScCiUMGbgYHLQzrAQ.roa (raw, json)
Hash identifier: f2EWOudtGioqTDnRfsKSEMP//7pZg2dLPLKL/fqdlK0=
Subject key identifier: D5:55:1E:84:72:B9:90:74:9C:0A:25:0C:19:B8:18:1C:B4:33:AC:04
Certificate issuer: /CN=79d10f728d6499a749ae5902e8fa883f1add4517
Certificate serial: 02459EE3
Authority key identifier: 79:D1:0F:72:8D:64:99:A7:49:AE:59:02:E8:FA:88:3F:1A:DD:45:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edEPco1kmadJrlkC6PqIPxrdRRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/1VUehHK5kHScCiUMGbgYHLQzrAQ.roa
Signing time: Sat 01 Jan 2022 15:01:17 +0000
ROA not before: Sat 01 Jan 2022 15:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.236.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38117091 (0x2459ee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d10f728d6499a749ae5902e8fa883f1add4517
Validity
Not Before: Jan 1 15:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5551e8472b990749c0a250c19b8181cb433ac04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f2:70:c1:37:d7:ba:f3:9a:71:58:fc:d6:2d:
68:78:be:18:2a:6d:53:69:fa:6c:62:05:e2:26:a8:
a4:a1:49:b9:4f:d0:c7:75:a7:60:ed:3c:08:c8:f3:
62:5f:d1:69:68:a1:51:4b:51:18:16:01:32:3f:07:
df:83:15:47:4d:52:38:c6:ac:55:20:58:84:4c:1a:
cf:05:dd:3e:77:bd:95:33:bc:91:12:36:22:27:d4:
63:ee:46:ce:f3:79:24:6c:5b:8e:d8:1a:79:9e:e6:
3c:f5:1c:21:87:58:2f:1a:dc:36:22:c1:11:04:54:
5a:fc:0b:4e:df:1d:fd:40:ee:97:4a:b1:83:ee:47:
38:00:2b:36:cc:27:70:b6:10:09:81:f7:85:b0:cf:
8e:83:e7:ad:d7:c7:41:b2:38:92:00:14:09:78:99:
cd:81:ea:b3:7d:62:43:5d:ad:88:f7:d3:46:e7:e0:
2c:4b:95:c7:6e:04:22:f6:50:bd:04:75:28:a5:2f:
87:55:43:f4:8e:56:cf:3e:a8:2c:75:6a:ed:80:f8:
37:05:20:46:67:bd:4b:3b:71:14:34:b6:9f:de:92:
69:6b:65:f8:5d:4b:02:5e:95:a7:9e:cb:9e:03:51:
3d:f5:4e:b2:db:b6:b8:01:46:c5:ab:e2:74:14:ec:
91:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:55:1E:84:72:B9:90:74:9C:0A:25:0C:19:B8:18:1C:B4:33:AC:04
X509v3 Authority Key Identifier:
keyid:79:D1:0F:72:8D:64:99:A7:49:AE:59:02:E8:FA:88:3F:1A:DD:45:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edEPco1kmadJrlkC6PqIPxrdRRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/1VUehHK5kHScCiUMGbgYHLQzrAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/edEPco1kmadJrlkC6PqIPxrdRRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.142.0/24
Signature Algorithm: sha256WithRSAEncryption
49:62:6c:15:7a:ff:1e:c1:50:18:91:00:cd:e6:80:84:28:6a:
88:fa:9a:3c:17:37:3d:f9:da:65:e3:c8:09:1b:8c:34:e8:66:
c0:00:9e:49:60:41:8b:32:55:94:59:96:5a:8b:c5:d3:ce:92:
f1:59:fc:ff:85:59:0c:7a:c3:03:1b:35:2c:64:00:18:73:40:
38:37:a4:fb:28:84:0d:9f:cf:be:e1:51:df:b8:de:1e:42:75:
d5:89:fe:de:90:a8:1c:1a:b9:4c:66:7f:f7:8f:95:83:09:14:
15:e3:2c:f0:ce:9e:f0:c8:75:45:8c:0b:57:82:74:3d:5d:34:
c2:59:6c:1c:d9:26:2b:9f:30:0f:e1:69:ee:6d:73:0c:13:38:
90:9a:27:76:be:fe:60:21:30:3e:e6:fb:c7:80:09:6d:21:73:
75:0a:22:34:15:f7:15:0a:3b:18:3d:ee:96:ac:25:56:1c:21:
d5:57:04:51:13:ff:01:a5:44:e0:37:25:9a:24:b0:f8:8d:64:
02:88:68:2e:47:aa:85:82:b6:8d:4a:c5:3d:2c:59:c0:c6:68:
95:80:8c:c8:21:f1:93:29:84:02:bc:a7:b3:c7:cc:15:8d:b2:
b0:73:9a:ab:4a:09:8c:f3:8d:ca:5b:49:a5:9e:3b:5a:e8:61:
8b:a9:79:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAkWe4zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OWQxMGY3MjhkNjQ5OWE3NDlhZTU5MDJlOGZhODgzZjFhZGQ0NTE3MB4XDTIyMDEw
MTE1MDExN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDU1NTFlODQ3MmI5
OTA3NDljMGEyNTBjMTliODE4MWNiNDMzYWMwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALfycME317rzmnFY/NYtaHi+GCptU2n6bGIF4iaopKFJuU/Q
x3WnYO08CMjzYl/RaWihUUtRGBYBMj8H34MVR01SOMasVSBYhEwazwXdPne9lTO8
kRI2IifUY+5GzvN5JGxbjtgaeZ7mPPUcIYdYLxrcNiLBEQRUWvwLTt8d/UDul0qx
g+5HOAArNswncLYQCYH3hbDPjoPnrdfHQbI4kgAUCXiZzYHqs31iQ12tiPfTRufg
LEuVx24EIvZQvQR1KKUvh1VD9I5Wzz6oLHVq7YD4NwUgRme9SztxFDS2n96SaWtl
+F1LAl6Vp57LngNRPfVOstu2uAFGxavidBTskZ0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTVVR6EcrmQdJwKJQwZuBgctDOsBDAfBgNVHSMEGDAWgBR50Q9yjWSZp0mu
WQLo+og/Gt1FFzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VkRVBjbzFrbWFkSnJsa0M2UHFJUHhyZFJSYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjUvMGIyNjQxLWJmYjUtNGU3NS1hM2U4LWI5ZjA1ZTMxNTIzYS8x
LzFWVWVoSEs1a0hTY0NpVU1HYmdZSExRenJBUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUv
MGIyNjQxLWJmYjUtNGU3NS1hM2U4LWI5ZjA1ZTMxNTIzYS8xL2VkRVBjbzFrbWFk
SnJsa0M2UHFJUHhyZFJSYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnsjjANBgkqhkiG9w0BAQsFAAOC
AQEASWJsFXr/HsFQGJEAzeaAhChqiPqaPBc3PfnaZePICRuMNOhmwACeSWBBizJV
lFmWWovF086S8Vn8/4VZDHrDAxs1LGQAGHNAODek+yiEDZ/PvuFR37jeHkJ11Yn+
3pCoHBq5TGZ/94+VgwkUFeMs8M6e8Mh1RYwLV4J0PV00wllsHNkmK58wD+Fp7m1z
DBM4kJondr7+YCEwPub7x4AJbSFzdQoiNBX3FQo7GD3ulqwlVhwh1VcEURP/AaVE
4DclmiSw+I1kAohoLkeqhYK2jUrFPSxZwMZolYCMyCHxkymEAryns8fMFY2ysHOa
q0oJjPONyltJpZ47Wuhhi6l5Lg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:27 2023 by rpki-client on console-fra.rpki-client.org