Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/bc8e10-461e-4ce4-8be9-6239733c6184/1/koSvFj_sxgqTYtJXxJQxisUzkJw.roa
File: koSvFj_sxgqTYtJXxJQxisUzkJw.roa (raw, json)
Hash identifier: uSNvzCnTCHyi6ggh2XayrxwoaGG3oR7qKsQcAkaGlZo=
Subject key identifier: 92:84:AF:16:3F:EC:C6:0A:93:62:D2:57:C4:94:31:8A:C5:33:90:9C
Certificate issuer: /CN=977775ce8804695996ce77c7d3681b9c241b362f
Certificate serial: 197AB4EF
Authority key identifier: 97:77:75:CE:88:04:69:59:96:CE:77:C7:D3:68:1B:9C:24:1B:36:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3d1zogEaVmWznfH02gbnCQbNi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/bc8e10-461e-4ce4-8be9-6239733c6184/1/koSvFj_sxgqTYtJXxJQxisUzkJw.roa
Signing time: Sat 01 Jan 2022 11:05:00 +0000
ROA not before: Sat 01 Jan 2022 11:05:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15943
IP address blocks: 185.45.16.0/22 maxlen: 22
2a01:7960::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 427472111 (0x197ab4ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977775ce8804695996ce77c7d3681b9c241b362f
Validity
Not Before: Jan 1 11:05:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9284af163fecc60a9362d257c494318ac533909c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:61:ab:cf:68:72:53:65:d8:3c:50:88:0b:7a:
72:1f:91:bb:7f:66:d4:9a:cc:08:da:fc:a9:a4:f2:
8c:b8:f1:b5:e3:fe:a3:51:2f:37:2c:25:0c:41:bf:
22:78:cc:99:06:cb:ad:73:ec:1e:0e:3a:e0:fd:bf:
ab:f0:de:66:f0:fa:f1:eb:36:d1:b6:4e:27:21:ea:
b5:0e:a0:e8:f4:3f:06:96:a1:1f:b6:a7:3f:ea:3f:
31:65:25:9e:5d:88:70:aa:3d:b5:48:c9:2e:52:92:
35:87:d9:90:df:02:90:51:2a:c8:14:a3:28:de:d7:
e6:e5:e5:ec:4a:fb:13:e8:99:ee:fb:61:5e:fa:f0:
31:8a:db:f2:37:b2:67:4e:da:e9:b6:4e:5e:49:94:
8c:60:6d:73:00:b6:be:63:a6:64:18:37:66:9e:3e:
71:15:10:83:33:6c:b5:f7:8d:47:a2:8e:f3:ab:be:
11:e3:4a:95:ca:06:73:be:73:47:cf:b9:54:db:d7:
e6:3b:22:df:34:83:a9:6e:1d:6a:51:9d:38:cb:77:
7e:8e:f6:7b:7a:34:af:c3:41:b5:34:6a:0f:07:5f:
b7:e6:17:81:d7:7e:9f:2b:8d:59:ec:71:cd:e6:48:
0a:90:f5:fc:70:c2:7b:e6:d0:c7:fc:8d:98:8f:4e:
d5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:84:AF:16:3F:EC:C6:0A:93:62:D2:57:C4:94:31:8A:C5:33:90:9C
X509v3 Authority Key Identifier:
keyid:97:77:75:CE:88:04:69:59:96:CE:77:C7:D3:68:1B:9C:24:1B:36:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3d1zogEaVmWznfH02gbnCQbNi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/bc8e10-461e-4ce4-8be9-6239733c6184/1/koSvFj_sxgqTYtJXxJQxisUzkJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/bc8e10-461e-4ce4-8be9-6239733c6184/1/l3d1zogEaVmWznfH02gbnCQbNi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.16.0/22
IPv6:
2a01:7960::/32
Signature Algorithm: sha256WithRSAEncryption
98:90:f1:23:08:5b:43:bd:c4:e4:f5:0b:be:0b:b5:e6:84:ac:
df:7a:a4:f5:b1:af:ba:23:45:fa:0d:ee:e9:4d:32:57:c4:a8:
39:b4:df:f2:d8:c5:92:44:b6:ed:f0:5b:72:ad:75:8b:4b:85:
1e:6b:6b:53:52:70:89:3b:fd:a7:81:9b:17:07:dd:2c:ab:49:
27:10:08:b5:51:49:6b:fd:28:16:7a:0f:a4:e4:8a:70:3f:64:
32:ad:4c:13:79:5a:f6:9b:ec:80:6b:88:e2:eb:c2:fe:5c:a8:
f5:d9:5a:35:74:0e:aa:50:fb:aa:fe:a6:98:ba:4b:68:1a:a5:
8c:ac:bb:ca:c1:54:1e:52:29:0b:8d:dd:b2:c8:cd:c0:7a:cd:
ee:0f:19:26:92:b0:5d:72:37:a5:77:69:8b:df:7d:b8:71:e4:
50:dc:a8:be:88:61:8a:13:8e:68:59:b7:7c:33:15:2a:7e:78:
bd:2e:39:39:2f:e8:55:38:0a:60:a5:80:8b:7c:d9:e3:31:aa:
19:83:e9:c3:74:ba:76:9d:b7:9d:84:e2:cb:d2:49:c7:04:2d:
6a:35:94:02:42:be:24:3d:eb:30:27:7c:b3:e2:84:55:ec:ce:
7a:27:a4:8f:85:79:d4:99:92:80:8c:c5:4e:36:73:88:96:ae:
a1:6a:20:cc
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEGXq07zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
Nzc3NzVjZTg4MDQ2OTU5OTZjZTc3YzdkMzY4MWI5YzI0MWIzNjJmMB4XDTIyMDEw
MTExMDUwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTI4NGFmMTYzZmVj
YzYwYTkzNjJkMjU3YzQ5NDMxOGFjNTMzOTA5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALRhq89oclNl2DxQiAt6ch+Ru39m1JrMCNr8qaTyjLjxteP+
o1EvNywlDEG/InjMmQbLrXPsHg464P2/q/DeZvD68es20bZOJyHqtQ6g6PQ/Bpah
H7anP+o/MWUlnl2IcKo9tUjJLlKSNYfZkN8CkFEqyBSjKN7X5uXl7Er7E+iZ7vth
XvrwMYrb8jeyZ07a6bZOXkmUjGBtcwC2vmOmZBg3Zp4+cRUQgzNstfeNR6KO86u+
EeNKlcoGc75zR8+5VNvX5jsi3zSDqW4dalGdOMt3fo72e3o0r8NBtTRqDwdft+YX
gdd+nyuNWexxzeZICpD1/HDCe+bQx/yNmI9O1aUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSShK8WP+zGCpNi0lfElDGKxTOQnDAfBgNVHSMEGDAWgBSXd3XOiARpWZbO
d8fTaBucJBs2LzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2wzZDF6b2dFYVZtV3puZkgwMmdibkNRYk5pOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjkvYmM4ZTEwLTQ2MWUtNGNlNC04YmU5LTYyMzk3MzNjNjE4NC8x
L2tvU3ZGal9zeGdxVFl0Slh4SlF4aXNVemtKdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkv
YmM4ZTEwLTQ2MWUtNGNlNC04YmU5LTYyMzk3MzNjNjE4NC8xL2wzZDF6b2dFYVZt
V3puZkgwMmdibkNRYk5pOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArktEDANBAIAAjAHAwUAKgF5YDAN
BgkqhkiG9w0BAQsFAAOCAQEAmJDxIwhbQ73E5PULvgu15oSs33qk9bGvuiNF+g3u
6U0yV8SoObTf8tjFkkS27fBbcq11i0uFHmtrU1JwiTv9p4GbFwfdLKtJJxAItVFJ
a/0oFnoPpOSKcD9kMq1ME3la9pvsgGuI4uvC/lyo9dlaNXQOqlD7qv6mmLpLaBql
jKy7ysFUHlIpC43dssjNwHrN7g8ZJpKwXXI3pXdpi999uHHkUNyovohhihOOaFm3
fDMVKn54vS45OS/oVTgKYKWAi3zZ4zGqGYPpw3S6dp23nYTiy9JJxwQtajWUAkK+
JD3rMCd8s+KEVezOeiekj4V51JmSgIzFTjZziJauoWogzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:39 2024 by rpki-client on console-ams.rpki-client.org