Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/PRnmix70VLnOjVl078ER_Gclo04.roa
File: PRnmix70VLnOjVl078ER_Gclo04.roa (raw, json)
Hash identifier: M5u3QwDPQXUBEzogxNy3oD/ZYwMMkgvTsdxwn9o0KBA=
Subject key identifier: 3D:19:E6:8B:1E:F4:54:B9:CE:8D:59:74:EF:C1:11:FC:67:25:A3:4E
Certificate issuer: /CN=07f2a175be20108641c649553213f212511667a5
Certificate serial: 0A542E7F
Authority key identifier: 07:F2:A1:75:BE:20:10:86:41:C6:49:55:32:13:F2:12:51:16:67:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_Khdb4gEIZBxklVMhPyElEWZ6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/PRnmix70VLnOjVl078ER_Gclo04.roa
Signing time: Sat 01 Jan 2022 10:59:34 +0000
ROA not before: Sat 01 Jan 2022 10:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 185.166.232.0/23 maxlen: 24
185.166.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173289087 (0xa542e7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f2a175be20108641c649553213f212511667a5
Validity
Not Before: Jan 1 10:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d19e68b1ef454b9ce8d5974efc111fc6725a34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:02:53:ba:88:d3:01:92:6b:ae:12:36:06:d7:
1f:df:c1:0e:1c:b7:28:a7:a5:93:b0:3d:43:2a:63:
6e:62:18:e3:4b:13:bd:58:8d:cb:55:d9:f7:fb:72:
80:a7:14:e0:87:9b:e1:64:2b:a8:5d:bc:6f:cd:da:
7b:37:48:a9:c2:18:8b:8a:31:cd:f3:a1:00:ed:76:
c4:2d:fb:44:01:67:41:86:9e:15:64:e9:3b:2d:de:
be:1a:ec:23:7b:b4:fd:46:88:1f:5d:9f:76:2d:9d:
28:56:ab:df:c2:a2:c1:48:a2:ce:97:b2:5e:42:f8:
60:e6:47:dc:47:cf:35:5d:0f:7c:80:95:db:7f:42:
3d:5e:64:b0:2e:88:b7:93:b2:a0:5e:ce:5a:2d:fd:
db:de:c6:3e:7c:bb:98:87:24:4d:21:23:0c:0c:f6:
17:24:9c:21:77:6c:91:ce:ef:bf:21:07:cc:d0:ba:
9b:bd:e7:17:57:bd:07:e2:d5:43:6e:e0:55:65:1d:
b7:17:e5:da:9e:73:59:ee:1a:00:cd:e9:b5:9b:59:
ef:b0:ce:eb:64:d0:63:a8:d1:99:d9:13:51:9b:9b:
14:15:ab:12:bf:20:07:1e:29:d8:02:90:12:6e:00:
57:22:dc:6f:09:18:06:71:9e:7f:72:20:62:02:06:
45:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:19:E6:8B:1E:F4:54:B9:CE:8D:59:74:EF:C1:11:FC:67:25:A3:4E
X509v3 Authority Key Identifier:
keyid:07:F2:A1:75:BE:20:10:86:41:C6:49:55:32:13:F2:12:51:16:67:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_Khdb4gEIZBxklVMhPyElEWZ6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/PRnmix70VLnOjVl078ER_Gclo04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/B_Khdb4gEIZBxklVMhPyElEWZ6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.232.0/23
185.166.235.0/24
Signature Algorithm: sha256WithRSAEncryption
af:6a:a4:c6:a3:ee:ec:52:18:74:31:6d:c3:5e:ff:29:ee:94:
a4:d6:ca:d8:cb:73:4b:52:d4:cd:75:93:e2:d2:9a:8d:9a:0e:
0b:bc:91:1d:a5:0d:4f:5c:de:b7:d2:ea:1b:3c:6e:99:50:d4:
0c:7c:9e:b8:fd:3d:9a:ac:5d:9a:65:3c:41:2d:d0:80:f1:54:
08:40:5e:cc:cd:2e:cc:c9:0a:e0:d9:7c:49:aa:28:03:cd:79:
ba:d3:8e:d9:91:9c:6d:61:17:87:8c:22:18:0d:00:3c:b3:fb:
55:28:3d:7d:9d:a4:1d:59:6c:83:c7:11:d2:a2:c5:4d:be:90:
28:09:98:b5:e3:f6:8a:40:f4:28:08:6c:c1:e7:c2:fd:49:e0:
71:31:06:35:51:8b:c4:b4:9a:bd:2c:e7:d3:ec:fb:32:74:a3:
ac:e4:a4:09:38:07:57:17:2f:12:e5:41:19:d1:dc:52:51:2c:
25:db:10:8b:dd:18:17:e3:de:47:18:fe:ef:23:05:91:7f:9a:
41:63:3a:bb:32:8e:92:d8:cd:b4:dd:d7:f2:ea:95:8f:6e:66:
f6:f8:e1:d1:8f:4b:fa:3c:78:e8:cc:22:2d:9c:24:37:5f:29:
da:d7:06:09:5b:48:d0:33:d2:af:a9:2b:6b:71:ed:a8:cf:45:
0a:87:48:2f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEClQufzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
N2YyYTE3NWJlMjAxMDg2NDFjNjQ5NTUzMjEzZjIxMjUxMTY2N2E1MB4XDTIyMDEw
MTEwNTkzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2QxOWU2OGIxZWY0
NTRiOWNlOGQ1OTc0ZWZjMTExZmM2NzI1YTM0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMQCU7qI0wGSa64SNgbXH9/BDhy3KKelk7A9QypjbmIY40sT
vViNy1XZ9/tygKcU4Ieb4WQrqF28b83aezdIqcIYi4oxzfOhAO12xC37RAFnQYae
FWTpOy3evhrsI3u0/UaIH12fdi2dKFar38KiwUiizpeyXkL4YOZH3EfPNV0PfICV
239CPV5ksC6It5OyoF7OWi39297GPny7mIckTSEjDAz2FyScIXdskc7vvyEHzNC6
m73nF1e9B+LVQ27gVWUdtxfl2p5zWe4aAM3ptZtZ77DO62TQY6jRmdkTUZubFBWr
Er8gBx4p2AKQEm4AVyLcbwkYBnGef3IgYgIGRZsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQ9GeaLHvRUuc6NWXTvwRH8ZyWjTjAfBgNVHSMEGDAWgBQH8qF1viAQhkHG
SVUyE/ISURZnpTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JfS2hkYjRnRUlaQnhrbFZNaFB5RWxFV1o2VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjkvMzZiMDg1LTFhNWItNGFmOS04NzhiLTM3NjQyNmZmZDY2Mi8x
L1BSbm1peDcwVkxuT2pWbDA3OEVSX0djbG8wNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkv
MzZiMDg1LTFhNWItNGFmOS04NzhiLTM3NjQyNmZmZDY2Mi8xL0JfS2hkYjRnRUla
QnhrbFZNaFB5RWxFV1o2VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAbmm6AMEALmm6zANBgkqhkiG9w0B
AQsFAAOCAQEAr2qkxqPu7FIYdDFtw17/Ke6UpNbK2MtzS1LUzXWT4tKajZoOC7yR
HaUNT1zet9LqGzxumVDUDHyeuP09mqxdmmU8QS3QgPFUCEBezM0uzMkK4Nl8Saoo
A815utOO2ZGcbWEXh4wiGA0APLP7VSg9fZ2kHVlsg8cR0qLFTb6QKAmYteP2ikD0
KAhswefC/UngcTEGNVGLxLSavSzn0+z7MnSjrOSkCTgHVxcvEuVBGdHcUlEsJdsQ
i90YF+PeRxj+7yMFkX+aQWM6uzKOktjNtN3X8uqVj25m9vjh0Y9L+jx46MwiLZwk
N18p2tcGCVtI0DPSr6kra3HtqM9FCodILw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:42 2023 by rpki-client on console-fra.rpki-client.org