Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/dDZH1HH1fH-ODeTZTmDU0OJyb7k.roa
File: dDZH1HH1fH-ODeTZTmDU0OJyb7k.roa (raw, json)
Hash identifier: 9ceJeDBmsJFm4C47KNK9MTHH5WhNpqx2SqxXpYQPT18=
Subject key identifier: 74:36:47:D4:71:F5:7C:7F:8E:0D:E4:D9:4E:60:D4:D0:E2:72:6F:B9
Certificate issuer: /CN=16785c048cf3d5b21869f49434f2d3bb47d43ba1
Certificate serial: 050ED3A7
Authority key identifier: 16:78:5C:04:8C:F3:D5:B2:18:69:F4:94:34:F2:D3:BB:47:D4:3B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnhcBIzz1bIYafSUNPLTu0fUO6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/dDZH1HH1fH-ODeTZTmDU0OJyb7k.roa
Signing time: Sat 01 Jan 2022 12:02:57 +0000
ROA not before: Sat 01 Jan 2022 12:02:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213212
IP address blocks: 185.76.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84857767 (0x50ed3a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16785c048cf3d5b21869f49434f2d3bb47d43ba1
Validity
Not Before: Jan 1 12:02:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=743647d471f57c7f8e0de4d94e60d4d0e2726fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:59:c1:8e:e9:c7:bf:f2:d7:c7:7e:02:14:47:
7b:fe:4e:06:6f:e2:d3:62:c6:13:47:a0:f6:85:a5:
63:ae:b7:7d:69:64:d3:94:54:d9:29:29:24:d5:aa:
f2:f4:17:b1:fb:dc:e6:fe:87:f1:e8:14:e1:a0:12:
f6:f3:37:54:52:fc:31:76:b0:75:e1:14:5a:7b:36:
8f:70:58:0e:c8:45:61:e7:a2:e4:19:e4:93:ee:92:
78:09:a9:9a:a5:a3:af:d5:06:fb:dd:76:44:ca:71:
f6:7b:74:7d:c3:5b:c1:e7:6f:39:7f:eb:1f:25:10:
43:4f:00:d1:d2:8c:78:96:f7:f9:a1:10:18:9b:80:
d0:77:2f:80:13:c8:95:f7:f9:64:a2:d1:c1:66:91:
b4:1d:37:ec:ad:15:ee:6b:c5:71:8c:6c:b8:fc:ef:
fa:f9:a7:1f:b5:9a:c6:a1:4b:77:f8:c0:c7:a3:55:
e7:68:94:f3:ce:ee:eb:09:b7:dd:a0:a5:d1:87:91:
23:b4:a1:0b:57:5e:46:c4:ca:84:30:67:47:5a:4b:
e7:08:48:27:a6:c6:a7:41:98:ce:ce:e3:b0:0a:e7:
22:90:3a:29:48:07:ae:e9:34:ea:23:de:de:45:5b:
97:c7:13:a8:29:c4:78:2c:d3:82:01:73:89:79:28:
e8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:36:47:D4:71:F5:7C:7F:8E:0D:E4:D9:4E:60:D4:D0:E2:72:6F:B9
X509v3 Authority Key Identifier:
keyid:16:78:5C:04:8C:F3:D5:B2:18:69:F4:94:34:F2:D3:BB:47:D4:3B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnhcBIzz1bIYafSUNPLTu0fUO6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/dDZH1HH1fH-ODeTZTmDU0OJyb7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/FnhcBIzz1bIYafSUNPLTu0fUO6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.159.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:bc:52:88:f3:3c:2a:4a:93:4f:03:de:47:c8:d4:ff:a9:28:
73:98:0c:45:a5:e2:0a:db:af:1c:8c:c1:d7:7d:96:8a:33:03:
93:30:8a:81:5c:90:87:da:0b:5b:e9:c4:8f:3e:85:15:9d:f4:
27:f2:c3:31:36:f8:31:ef:f0:3a:9c:bf:a5:78:5c:09:cf:3b:
e1:56:18:28:81:a5:b5:2d:dd:23:44:b7:7d:2b:7f:6c:6f:63:
91:69:71:72:e7:15:a2:14:9c:f8:ec:50:f8:8b:46:7c:30:ef:
ce:df:58:37:46:70:77:f6:7b:5f:fa:30:2a:ee:e6:36:7d:9e:
4f:bd:43:8f:bf:bc:ee:47:b4:1a:3a:b7:02:52:7f:48:08:ea:
09:14:24:4f:b9:91:05:87:32:4b:ee:b1:07:a5:91:c6:61:a2:
d0:8a:c5:29:a0:a7:ea:83:08:6b:42:e2:5d:55:f9:96:5d:76:
9f:7a:d6:ce:d4:44:12:55:07:60:fd:f8:9a:f2:72:ad:cb:84:
81:e5:3d:fd:53:d4:a9:7e:5f:be:c5:a2:37:18:19:75:17:85:
ec:d2:b2:c4:26:cb:bf:a8:f1:c1:11:64:98:dd:ac:32:da:97:
fd:2b:79:0c:2a:28:60:5a:21:53:ae:5d:f8:c5:ca:93:b3:90:
c3:5c:e4:54
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBQ7TpzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
Njc4NWMwNDhjZjNkNWIyMTg2OWY0OTQzNGYyZDNiYjQ3ZDQzYmExMB4XDTIyMDEw
MTEyMDI1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQzNjQ3ZDQ3MWY1
N2M3ZjhlMGRlNGQ5NGU2MGQ0ZDBlMjcyNmZiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANdZwY7px7/y18d+AhRHe/5OBm/i02LGE0eg9oWlY663fWlk
05RU2SkpJNWq8vQXsfvc5v6H8egU4aAS9vM3VFL8MXawdeEUWns2j3BYDshFYeei
5Bnkk+6SeAmpmqWjr9UG+912RMpx9nt0fcNbwedvOX/rHyUQQ08A0dKMeJb3+aEQ
GJuA0HcvgBPIlff5ZKLRwWaRtB037K0V7mvFcYxsuPzv+vmnH7WaxqFLd/jAx6NV
52iU887u6wm33aCl0YeRI7ShC1deRsTKhDBnR1pL5whIJ6bGp0GYzs7jsArnIpA6
KUgHruk06iPe3kVbl8cTqCnEeCzTggFziXko6GcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR0NkfUcfV8f44N5NlOYNTQ4nJvuTAfBgNVHSMEGDAWgBQWeFwEjPPVshhp
9JQ08tO7R9Q7oTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZuaGNCSXp6MWJJWWFmU1VOUExUdTBmVU82RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmMvZDRhMDBmLWM3M2YtNDAxNC1hZGUwLWFiMzdmZWQ1MmE0ZC8x
L2REWkgxSEgxZkgtT0RlVFpUbURVME9KeWI3ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMv
ZDRhMDBmLWM3M2YtNDAxNC1hZGUwLWFiMzdmZWQ1MmE0ZC8xL0ZuaGNCSXp6MWJJ
WWFmU1VOUExUdTBmVU82RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlMnzANBgkqhkiG9w0BAQsFAAOC
AQEAsLxSiPM8KkqTTwPeR8jU/6koc5gMRaXiCtuvHIzB132WijMDkzCKgVyQh9oL
W+nEjz6FFZ30J/LDMTb4Me/wOpy/pXhcCc874VYYKIGltS3dI0S3fSt/bG9jkWlx
cucVohSc+OxQ+ItGfDDvzt9YN0Zwd/Z7X/owKu7mNn2eT71Dj7+87ke0Gjq3AlJ/
SAjqCRQkT7mRBYcyS+6xB6WRxmGi0IrFKaCn6oMIa0LiXVX5ll12n3rWztREElUH
YP34mvJyrcuEgeU9/VPUqX5fvsWiNxgZdReF7NKyxCbLv6jxwRFkmN2sMtqX/St5
DCooYFohU65d+MXKk7OQw1zkVA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:49 2024 by rpki-client on console-fra.rpki-client.org