Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/63x2-n22ioxs6Forlmxmd8wQyz8.roa
File: 63x2-n22ioxs6Forlmxmd8wQyz8.roa (raw, json)
Hash identifier: ZxcZphetobSKssLTbc5ejoES6YyLUvJOPJ/cr7x/+sI=
Subject key identifier: EB:7C:76:FA:7D:B6:8A:8C:6C:E8:5A:2B:96:6C:66:77:CC:10:CB:3F
Certificate issuer: /CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Certificate serial: 087AC895
Authority key identifier: 1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/63x2-n22ioxs6Forlmxmd8wQyz8.roa
Signing time: Sat 01 Jan 2022 07:04:18 +0000
ROA not before: Sat 01 Jan 2022 07:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.118.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142264469 (0x87ac895)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Validity
Not Before: Jan 1 07:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb7c76fa7db68a8c6ce85a2b966c6677cc10cb3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c6:8c:e0:82:43:a2:27:9d:79:24:bd:e1:18:
3d:d5:08:f6:a4:fc:2e:7b:86:a5:80:d5:a6:60:26:
ce:3b:b3:0d:9c:ea:90:ab:fc:4b:8c:2e:46:ba:aa:
be:ee:8f:41:ea:c8:fd:68:20:74:43:04:fe:ca:f1:
34:59:16:fc:bb:c2:41:92:fc:57:27:7e:b9:3f:8d:
9b:e5:b2:bf:22:ff:b9:a9:85:0a:20:0e:ea:17:3d:
ac:cf:03:ce:1e:fb:68:47:3f:bd:55:e0:b3:60:d6:
e6:04:69:7b:da:d8:73:77:1f:e4:43:8d:3f:72:d9:
4f:4c:60:31:89:c7:38:72:19:2e:58:36:20:2e:70:
75:e5:e4:5d:b7:7e:0b:aa:50:17:f5:f1:63:97:a1:
ff:69:dd:ab:52:b5:a6:88:2a:60:b8:37:08:7a:d4:
68:00:98:0e:97:15:f0:b4:43:79:61:3d:90:0e:1f:
15:80:ae:50:bc:da:94:85:a9:ef:10:33:bc:0b:5f:
2d:d9:4a:56:dc:c0:d0:2e:1f:29:1c:5d:e6:94:ca:
a6:be:56:d9:4d:ca:e1:a8:fb:6a:e6:04:76:0b:94:
4c:3b:28:09:f6:45:b7:78:36:23:d5:96:3c:f6:de:
c8:e7:07:ff:8f:74:bf:ec:ba:40:09:e9:99:a4:9a:
54:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7C:76:FA:7D:B6:8A:8C:6C:E8:5A:2B:96:6C:66:77:CC:10:CB:3F
X509v3 Authority Key Identifier:
keyid:1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/63x2-n22ioxs6Forlmxmd8wQyz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/HQhx_C6ZiS6hEVowITjh0ypiGCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.109.0/24
Signature Algorithm: sha256WithRSAEncryption
23:51:0d:c5:e4:fc:40:a2:71:68:fc:9e:95:02:83:5d:1b:ff:
ee:24:dd:db:10:6d:56:e8:a3:bf:3f:6a:68:ab:f6:f3:28:98:
3d:e4:1a:32:9d:cf:78:18:5b:d6:26:ac:a3:80:69:8b:f0:e2:
ff:f8:35:fa:b0:06:ee:90:25:84:7b:b2:60:0d:15:45:cd:c9:
87:99:11:ed:56:84:35:54:4b:f5:f5:d2:2e:46:8d:87:ff:95:
dc:8f:d3:5a:b8:5a:5f:01:1e:a8:31:1f:4f:1a:13:57:70:ff:
ac:2a:4f:73:3c:dc:4a:ec:96:30:b5:b1:46:35:c7:02:0a:ea:
b2:9a:41:7e:b1:ec:ba:d3:91:b1:c3:7f:49:5b:b3:20:9c:c1:
8a:73:89:16:64:4d:75:b1:6b:84:12:24:40:d8:9c:0b:a9:da:
c4:0b:02:e7:70:61:cc:68:9a:65:4c:4c:7e:85:e2:f3:f6:60:
b8:ee:48:74:ff:48:6a:13:dc:57:37:e0:53:22:45:58:d0:ea:
cd:85:5f:d2:53:f2:fc:00:d5:90:31:87:f5:f0:97:65:e9:a0:
73:88:95:8c:cb:20:d6:8d:76:ac:33:c4:90:e6:41:26:97:7a:
9f:4c:48:c8:5e:c5:71:13:77:c7:26:47:c6:d0:b3:71:93:8d:
97:47:9e:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECHrIlTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDA4NzFmYzJlOTk4OTJlYTExMTVhMzAyMTM4ZTFkMzJhNjIxODJjMB4XDTIyMDEw
MTA3MDQxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWI3Yzc2ZmE3ZGI2
OGE4YzZjZTg1YTJiOTY2YzY2NzdjYzEwY2IzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIXGjOCCQ6InnXkkveEYPdUI9qT8LnuGpYDVpmAmzjuzDZzq
kKv8S4wuRrqqvu6PQerI/WggdEME/srxNFkW/LvCQZL8Vyd+uT+Nm+WyvyL/uamF
CiAO6hc9rM8Dzh77aEc/vVXgs2DW5gRpe9rYc3cf5EONP3LZT0xgMYnHOHIZLlg2
IC5wdeXkXbd+C6pQF/XxY5eh/2ndq1K1pogqYLg3CHrUaACYDpcV8LRDeWE9kA4f
FYCuULzalIWp7xAzvAtfLdlKVtzA0C4fKRxd5pTKpr5W2U3K4aj7auYEdguUTDso
CfZFt3g2I9WWPPbeyOcH/490v+y6QAnpmaSaVCkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTrfHb6fbaKjGzoWiuWbGZ3zBDLPzAfBgNVHSMEGDAWgBQdCHH8LpmJLqER
WjAhOOHTKmIYLDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hRaHhfQzZaaVM2aEVWb3dJVGpoMHlwaUdDdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjcvMjA1Mjc1LTJjZWQtNGE0ZS1iOTAwLTRmM2U1YjJlMGM1Ni8x
LzYzeDItbjIyaW94czZGb3JsbXhtZDh3UXl6OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcv
MjA1Mjc1LTJjZWQtNGE0ZS1iOTAwLTRmM2U1YjJlMGM1Ni8xL0hRaHhfQzZaaVM2
aEVWb3dJVGpoMHlwaUdDdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALl2bTANBgkqhkiG9w0BAQsFAAOC
AQEAI1ENxeT8QKJxaPyelQKDXRv/7iTd2xBtVuijvz9qaKv28yiYPeQaMp3PeBhb
1iaso4Bpi/Di//g1+rAG7pAlhHuyYA0VRc3Jh5kR7VaENVRL9fXSLkaNh/+V3I/T
WrhaXwEeqDEfTxoTV3D/rCpPczzcSuyWMLWxRjXHAgrqsppBfrHsutORscN/SVuz
IJzBinOJFmRNdbFrhBIkQNicC6naxAsC53BhzGiaZUxMfoXi8/ZguO5IdP9IahPc
VzfgUyJFWNDqzYVf0lPy/ADVkDGH9fCXZemgc4iVjMsg1o12rDPEkOZBJpd6n0xI
yF7FcRN3xyZHxtCzcZONl0eeqA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:27 2023 by rpki-client on console-ams.rpki-client.org