Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/T_qsvIYJgi3upNZ0IfVjVRuXZzM.roa
File: T_qsvIYJgi3upNZ0IfVjVRuXZzM.roa (raw, json)
Hash identifier: rbzbvD2ZPHAdHi8klNmarsLGulVVUuEZictVfOfFTDY=
Subject key identifier: 4F:FA:AC:BC:86:09:82:2D:EE:A4:D6:74:21:F5:63:55:1B:97:67:33
Certificate issuer: /CN=b19f07669e58ec32b9d9132e2ca6d19c2e949360
Certificate serial: 0F2B71C1
Authority key identifier: B1:9F:07:66:9E:58:EC:32:B9:D9:13:2E:2C:A6:D1:9C:2E:94:93:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZ8HZp5Y7DK52RMuLKbRnC6Uk2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/T_qsvIYJgi3upNZ0IfVjVRuXZzM.roa
Signing time: Sat 01 Jan 2022 09:58:51 +0000
ROA not before: Sat 01 Jan 2022 09:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47987
IP address blocks: 185.141.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254505409 (0xf2b71c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19f07669e58ec32b9d9132e2ca6d19c2e949360
Validity
Not Before: Jan 1 09:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ffaacbc8609822deea4d67421f563551b976733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:71:ae:1c:f3:08:0e:5c:ec:59:fc:b0:1a:b6:
fc:ff:b2:42:d4:9c:1e:60:61:f5:e4:5d:0b:87:52:
30:87:27:3b:8b:4b:79:42:8e:f3:35:96:2e:b6:3e:
b0:d3:dd:22:d3:28:b4:9e:76:75:cd:c4:1c:a3:29:
60:6b:03:d5:75:a6:c6:26:01:c0:98:6c:bf:21:2b:
42:f5:b5:82:d0:63:65:de:fe:0d:91:08:73:c1:e7:
ae:f8:d3:a7:86:46:86:e5:1c:b0:05:c1:53:a6:2b:
19:23:24:60:df:f0:5c:40:e4:5a:ed:c0:92:7d:42:
ed:a6:c8:65:94:6b:30:20:77:d1:0c:13:9d:d3:1b:
8f:57:b8:6e:cd:4f:a8:8e:2c:4f:1f:b1:9f:2c:2c:
1d:f9:22:ce:38:51:a0:bd:1f:44:f4:d8:75:2a:a8:
46:22:70:d5:1a:25:a8:16:55:2c:6e:65:33:44:aa:
4b:14:ad:85:01:55:d5:13:a6:26:e7:d4:1b:b3:7b:
b3:d0:fb:c6:66:c6:28:a6:7b:b1:9d:49:df:71:d2:
88:34:5b:3b:f6:88:24:30:1d:94:60:ae:7f:d0:d7:
6c:a8:20:35:16:0d:30:97:c2:b2:b4:33:94:21:24:
7a:e8:36:70:d7:12:6c:b3:9a:77:1d:2b:c6:ed:da:
c6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FA:AC:BC:86:09:82:2D:EE:A4:D6:74:21:F5:63:55:1B:97:67:33
X509v3 Authority Key Identifier:
keyid:B1:9F:07:66:9E:58:EC:32:B9:D9:13:2E:2C:A6:D1:9C:2E:94:93:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZ8HZp5Y7DK52RMuLKbRnC6Uk2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/T_qsvIYJgi3upNZ0IfVjVRuXZzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/626eef-12d0-47fa-b633-641dd4288c40/1/sZ8HZp5Y7DK52RMuLKbRnC6Uk2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.252.0/24
Signature Algorithm: sha256WithRSAEncryption
39:71:e5:bf:ec:45:cc:cc:70:80:00:39:56:0e:e9:e3:73:a9:
2b:3a:42:f0:d3:31:26:f3:a0:58:91:1c:9d:69:36:a0:9e:d5:
f2:03:d8:19:49:fc:f4:cb:41:82:a3:13:15:aa:b6:de:da:4f:
d9:92:a5:36:94:51:cd:c5:a7:1d:6e:96:f7:d3:5b:33:d4:9d:
80:58:73:a7:40:fa:50:31:1d:89:65:60:29:b1:25:f1:ca:27:
aa:89:d8:7e:df:41:25:64:30:77:7e:bf:6e:72:70:f2:bb:b6:
51:02:fb:cb:18:0c:a9:96:2d:f8:21:11:c4:63:30:55:13:2f:
98:13:01:31:a6:be:4e:39:c5:22:bb:87:a1:16:fc:fe:e3:e5:
0e:e0:95:49:ba:c5:59:76:07:f5:f9:6c:df:fd:03:a2:5c:cd:
5e:c9:d8:4d:c6:51:43:8c:bc:27:0f:ec:1d:27:47:68:34:be:
93:ee:b3:1b:d0:5c:74:c4:14:ef:dd:0b:4a:db:7b:c0:2f:53:
c7:7f:f1:7b:11:d5:59:79:e7:4a:3a:01:fe:a5:40:9c:e6:53:
99:b1:f2:4f:e6:7a:e1:fe:3b:fb:82:fc:37:b6:82:3b:66:e5:
01:a8:6d:5a:1b:6e:78:1d:d2:95:cd:73:25:2f:a5:e9:d4:55:
cb:a6:52:7a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDytxwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTlmMDc2NjllNThlYzMyYjlkOTEzMmUyY2E2ZDE5YzJlOTQ5MzYwMB4XDTIyMDEw
MTA5NTg1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGZmYWFjYmM4NjA5
ODIyZGVlYTRkNjc0MjFmNTYzNTUxYjk3NjczMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKRxrhzzCA5c7Fn8sBq2/P+yQtScHmBh9eRdC4dSMIcnO4tL
eUKO8zWWLrY+sNPdItMotJ52dc3EHKMpYGsD1XWmxiYBwJhsvyErQvW1gtBjZd7+
DZEIc8HnrvjTp4ZGhuUcsAXBU6YrGSMkYN/wXEDkWu3Akn1C7abIZZRrMCB30QwT
ndMbj1e4bs1PqI4sTx+xnywsHfkizjhRoL0fRPTYdSqoRiJw1RolqBZVLG5lM0Sq
SxSthQFV1ROmJufUG7N7s9D7xmbGKKZ7sZ1J33HSiDRbO/aIJDAdlGCuf9DXbKgg
NRYNMJfCsrQzlCEkeug2cNcSbLOadx0rxu3axg8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRP+qy8hgmCLe6k1nQh9WNVG5dnMzAfBgNVHSMEGDAWgBSxnwdmnljsMrnZ
Ey4sptGcLpSTYDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NaOEhacDVZN0RLNTJSTXVMS2JSbkM2VWsyQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmMvNjI2ZWVmLTEyZDAtNDdmYS1iNjMzLTY0MWRkNDI4OGM0MC8x
L1RfcXN2SVlKZ2kzdXBOWjBJZlZqVlJ1WFp6TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMv
NjI2ZWVmLTEyZDAtNDdmYS1iNjMzLTY0MWRkNDI4OGM0MC8xL3NaOEhacDVZN0RL
NTJSTXVMS2JSbkM2VWsyQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmN/DANBgkqhkiG9w0BAQsFAAOC
AQEAOXHlv+xFzMxwgAA5Vg7p43OpKzpC8NMxJvOgWJEcnWk2oJ7V8gPYGUn89MtB
gqMTFaq23tpP2ZKlNpRRzcWnHW6W99NbM9SdgFhzp0D6UDEdiWVgKbEl8conqonY
ft9BJWQwd36/bnJw8ru2UQL7yxgMqZYt+CERxGMwVRMvmBMBMaa+TjnFIruHoRb8
/uPlDuCVSbrFWXYH9fls3/0DolzNXsnYTcZRQ4y8Jw/sHSdHaDS+k+6zG9BcdMQU
790LStt7wC9Tx3/xexHVWXnnSjoB/qVAnOZTmbHyT+Z64f47+4L8N7aCO2blAaht
WhtueB3Slc1zJS+l6dRVy6ZSeg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:44 2023 by rpki-client on console-ams.rpki-client.org