Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/JcUT_9eej5z6O7-tzRvU3TTZUHU.roa
File: JcUT_9eej5z6O7-tzRvU3TTZUHU.roa (raw, json)
Hash identifier: dYNOg+nW7LtS+Zi2qtakqRtQyJ2LlmL5NH/hJZru5xw=
Subject key identifier: 25:C5:13:FF:D7:9E:8F:9C:FA:3B:BF:AD:CD:1B:D4:DD:34:D9:50:75
Certificate issuer: /CN=e3c7c19f8d9b50ea60cce7498af0fd8c3908119e
Certificate serial: 0182253281719AFCDCD390496B4C0B71A1C7
Authority key identifier: E3:C7:C1:9F:8D:9B:50:EA:60:CC:E7:49:8A:F0:FD:8C:39:08:11:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/48fBn42bUOpgzOdJivD9jDkIEZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/JcUT_9eej5z6O7-tzRvU3TTZUHU.roa
Signing time: Fri 22 Jul 2022 09:17:23 +0000
ROA not before: Fri 22 Jul 2022 09:17:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205227
IP address blocks: 185.234.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:32:81:71:9a:fc:dc:d3:90:49:6b:4c:0b:71:a1:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3c7c19f8d9b50ea60cce7498af0fd8c3908119e
Validity
Not Before: Jul 22 09:17:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25c513ffd79e8f9cfa3bbfadcd1bd4dd34d95075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:59:75:6b:70:36:c8:d8:18:5c:f4:71:b7:4a:
f5:e3:be:75:41:8b:3a:94:bf:8d:59:1c:bf:2c:5e:
aa:27:b6:14:71:dc:8f:9a:ba:73:3e:5a:58:da:f1:
7f:2d:c0:23:46:67:2f:1f:8d:e6:80:ad:2f:44:d0:
f2:e2:7e:0a:4f:b0:d3:9b:31:7b:0a:55:f7:81:6b:
30:c0:24:6c:19:28:a3:38:fb:2b:05:eb:13:c9:cb:
46:6f:4a:0a:9d:c5:20:50:6c:83:15:9c:7c:f9:00:
1d:cc:67:1e:e4:02:ff:d3:ab:2d:f7:60:fb:9e:f4:
01:57:fb:4b:26:65:0c:1a:c4:d9:84:3c:99:6b:3a:
6b:2f:5b:81:91:ef:9e:93:ca:23:60:02:fc:14:57:
68:94:0f:32:23:fd:02:9a:3d:35:34:ed:09:a5:8f:
7f:08:c7:e3:0d:6d:29:a6:2b:19:79:3e:bb:e4:fc:
ed:6e:40:cc:3c:0b:a7:14:4d:74:ce:f9:bd:32:85:
6d:84:38:29:4b:58:5b:0a:4a:06:64:61:93:4b:0b:
c1:8d:a7:4a:a0:7e:4b:2b:86:79:07:db:eb:bf:d2:
e0:ca:f8:51:0c:8a:82:04:8d:20:cf:09:d7:e8:8e:
53:3a:91:7c:02:22:bd:07:42:55:05:5d:fa:e6:f6:
7f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C5:13:FF:D7:9E:8F:9C:FA:3B:BF:AD:CD:1B:D4:DD:34:D9:50:75
X509v3 Authority Key Identifier:
keyid:E3:C7:C1:9F:8D:9B:50:EA:60:CC:E7:49:8A:F0:FD:8C:39:08:11:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/48fBn42bUOpgzOdJivD9jDkIEZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/JcUT_9eej5z6O7-tzRvU3TTZUHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/48fBn42bUOpgzOdJivD9jDkIEZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.219.0/24
Signature Algorithm: sha256WithRSAEncryption
97:27:de:74:e3:c5:33:35:ad:a4:4b:b6:58:ac:07:8f:aa:37:
1b:40:c0:58:9d:9d:31:12:81:b2:68:ef:9b:43:4e:df:98:28:
7d:a7:1d:cc:c9:12:c5:63:2e:38:6d:7e:a3:2f:03:8e:d4:d7:
ac:0e:46:72:8e:30:86:67:e0:1e:05:d7:56:16:af:5f:42:7f:
5d:fd:c2:81:e4:14:6d:21:31:04:86:bd:f4:93:e7:05:4e:89:
46:0e:22:8c:4c:6e:67:17:5a:98:4d:98:72:7c:e6:cf:e9:2c:
b0:44:f9:cc:ee:ba:1e:30:34:fa:b0:4f:14:19:31:18:35:76:
b3:c3:a3:11:95:68:b3:06:7f:c6:2a:b8:20:0d:d4:c2:84:b9:
ed:c1:75:9e:d1:41:f1:77:db:f6:f7:56:1f:f0:8d:e3:7d:79:
94:a5:b7:fe:d7:f0:76:4b:f7:d3:2b:1e:2d:84:57:98:fa:ec:
e1:f9:44:90:78:75:6a:6c:4b:b3:f3:50:e8:51:62:65:0e:2f:
84:94:0f:7e:f6:61:c3:24:c5:02:12:e0:2a:db:be:7a:3c:94:
4d:f7:68:5e:5b:6f:06:cc:f7:ae:79:50:33:c0:e9:f6:35:34:
2d:19:18:08:76:0f:51:0a:ba:7a:7d:bf:da:98:7b:ea:39:02:
7e:d6:05:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIlMoFxmvzc05BJa0wLcaHHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzYzdjMTlmOGQ5YjUwZWE2MGNjZTc0OThhZjBmZDhjMzkw
ODExOWUwHhcNMjIwNzIyMDkxNzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNWM1MTNmZmQ3OWU4ZjljZmEzYmJmYWRjZDFiZDRkZDM0ZDk1MDc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFl1a3A2yNgYXPRxt0r14751QYs6
lL+NWRy/LF6qJ7YUcdyPmrpzPlpY2vF/LcAjRmcvH43mgK0vRNDy4n4KT7DTmzF7
ClX3gWswwCRsGSijOPsrBesTyctGb0oKncUgUGyDFZx8+QAdzGce5AL/06st92D7
nvQBV/tLJmUMGsTZhDyZazprL1uBke+ek8ojYAL8FFdolA8yI/0Cmj01NO0JpY9/
CMfjDW0ppisZeT675PztbkDMPAunFE10zvm9MoVthDgpS1hbCkoGZGGTSwvBjadK
oH5LK4Z5B9vrv9LgyvhRDIqCBI0gzwnX6I5TOpF8AiK9B0JVBV365vZ/oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCXFE//Xno+c+ju/rc0b1N002VB1MB8GA1UdIwQY
MBaAFOPHwZ+Nm1DqYMznSYrw/Yw5CBGeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDhmQm40MmJVT3Bnek9kSml2RDlqRGtJRVo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8yMzkyOWEtYjI0Ny00ZjNiLTljZDEt
OGIxZjViZWNkZGEyLzEvSmNVVF85ZWVqNXo2TzctdHpSdlUzVFRaVUhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8yMzkyOWEtYjI0Ny00ZjNiLTljZDEtOGIxZjViZWNkZGEy
LzEvNDhmQm40MmJVT3Bnek9kSml2RDlqRGtJRVo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuerbMA0G
CSqGSIb3DQEBCwUAA4IBAQCXJ95048UzNa2kS7ZYrAePqjcbQMBYnZ0xEoGyaO+b
Q07fmCh9px3MyRLFYy44bX6jLwOO1NesDkZyjjCGZ+AeBddWFq9fQn9d/cKB5BRt
ITEEhr30k+cFTolGDiKMTG5nF1qYTZhyfObP6SywRPnM7roeMDT6sE8UGTEYNXaz
w6MRlWizBn/GKrggDdTChLntwXWe0UHxd9v291Yf8I3jfXmUpbf+1/B2S/fTKx4t
hFeY+uzh+USQeHVqbEuz81DoUWJlDi+ElA9+9mHDJMUCEuAq2756PJRN92heW28G
zPeueVAzwOn2NTQtGRgIdg9RCrp6fb/amHvqOQJ+1gVb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:33 2023 by rpki-client on console-ams.rpki-client.org