Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/7uoVz69TNTDwF74DU4SHYsk3m7c.roa
File: 7uoVz69TNTDwF74DU4SHYsk3m7c.roa (raw, json)
Hash identifier: 33A16uCBS5WqjNa9bBeUT5FshJnTAL4Dv7Vgyw3RYmo=
Subject key identifier: EE:EA:15:CF:AF:53:35:30:F0:17:BE:03:53:84:87:62:C9:37:9B:B7
Certificate issuer: /CN=e290e9cc3b7e363d726bd702750b53f29b050a7d
Certificate serial: 01845D05ABCFF82E859B3A42BC487052F90F
Authority key identifier: E2:90:E9:CC:3B:7E:36:3D:72:6B:D7:02:75:0B:53:F2:9B:05:0A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4pDpzDt-Nj1ya9cCdQtT8psFCn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/7uoVz69TNTDwF74DU4SHYsk3m7c.roa
Signing time: Wed 09 Nov 2022 15:32:43 +0000
ROA not before: Wed 09 Nov 2022 15:32:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62201
IP address blocks: 185.149.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:05:ab:cf:f8:2e:85:9b:3a:42:bc:48:70:52:f9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e290e9cc3b7e363d726bd702750b53f29b050a7d
Validity
Not Before: Nov 9 15:32:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeea15cfaf533530f017be0353848762c9379bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:50:9c:bc:b1:34:f3:2d:21:3b:41:5d:a3:6a:
b5:71:cb:46:c2:09:79:45:e2:ce:ae:61:70:ee:9e:
45:44:a0:ea:34:3f:ca:9a:d5:c6:7c:33:29:e0:6b:
c7:3a:f5:b9:e7:15:86:ea:62:7c:02:38:bd:7c:03:
5f:83:8d:73:78:b1:27:a2:68:08:e3:e2:f6:e5:ba:
83:5e:63:32:09:06:0c:95:ad:39:ff:46:92:22:7e:
23:65:28:e4:6c:0b:29:a6:65:1b:6b:84:2a:46:4a:
3a:44:0d:05:a5:a6:f1:dd:8d:4c:d8:b6:c8:10:34:
c0:22:d7:81:77:ca:d1:11:5d:1a:a7:c2:10:96:4b:
3c:e2:9c:e9:47:e6:55:88:7a:ff:d2:89:7a:3f:74:
0e:ae:4c:61:c8:ea:48:85:66:8a:bf:be:e1:e5:fd:
aa:96:be:3f:13:3f:16:db:51:d9:af:a7:47:5a:79:
1c:2b:7d:ff:0c:ae:f2:3d:31:64:a5:5c:29:88:af:
e8:ca:11:8b:15:44:6b:8d:7a:93:5d:ca:50:0c:94:
c2:ea:18:ca:5b:28:d6:bd:ba:af:bc:20:2c:3c:01:
9f:d0:7d:79:73:9e:6d:4a:ec:0a:0c:8d:57:20:e0:
63:be:aa:0e:4d:3d:f5:6e:9a:70:9e:87:4c:7a:20:
a0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EA:15:CF:AF:53:35:30:F0:17:BE:03:53:84:87:62:C9:37:9B:B7
X509v3 Authority Key Identifier:
keyid:E2:90:E9:CC:3B:7E:36:3D:72:6B:D7:02:75:0B:53:F2:9B:05:0A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4pDpzDt-Nj1ya9cCdQtT8psFCn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/7uoVz69TNTDwF74DU4SHYsk3m7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/4pDpzDt-Nj1ya9cCdQtT8psFCn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.200.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:4c:17:6b:4f:00:f9:6b:31:f7:70:39:99:fe:c8:2e:1c:73:
55:6c:a8:11:10:d9:b8:63:f9:38:b5:03:fc:32:fd:16:e0:b8:
91:4c:99:35:c2:2b:c0:55:5a:cc:64:05:7d:d6:bb:0d:8f:b9:
a2:de:27:cd:b3:97:44:38:c6:68:12:1e:3a:aa:38:e9:6e:6f:
e7:4c:b0:4c:60:df:b8:e4:98:12:03:11:26:6c:f2:47:27:ed:
6f:ff:ba:7f:d0:62:35:82:d1:36:6a:c1:f0:f5:0e:98:a5:71:
ea:83:33:02:5b:a1:ab:ef:8f:30:2d:63:e1:ab:fb:1d:40:a8:
00:98:d3:d0:73:2f:59:19:ff:a7:8a:d0:2e:45:84:7b:08:22:
d7:b1:a3:0b:9c:dc:2c:19:10:77:79:eb:c3:16:64:05:ad:ea:
ea:24:60:20:df:f5:f8:cb:58:6d:53:be:ce:c1:c6:03:cd:e6:
bf:e4:76:7e:36:f7:09:3f:f1:a7:51:da:af:71:f1:17:fa:09:
27:67:e0:36:f6:a7:e1:cc:70:19:71:e4:7b:e2:b7:dd:4a:2b:
b6:c2:75:58:f4:85:33:c8:5e:4f:2d:0e:03:e6:ac:8e:5c:60:
b0:e1:21:a3:73:c4:a0:01:14:5b:2d:fe:27:d7:78:3f:d9:df:
d2:95:3d:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRdBavP+C6FmzpCvEhwUvkPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyOTBlOWNjM2I3ZTM2M2Q3MjZiZDcwMjc1MGI1M2YyOWIw
NTBhN2QwHhcNMjIxMTA5MTUzMjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZWVhMTVjZmFmNTMzNTMwZjAxN2JlMDM1Mzg0ODc2MmM5Mzc5YmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFCcvLE08y0hO0Fdo2q1cctGwgl5
ReLOrmFw7p5FRKDqND/KmtXGfDMp4GvHOvW55xWG6mJ8Aji9fANfg41zeLEnomgI
4+L25bqDXmMyCQYMla05/0aSIn4jZSjkbAsppmUba4QqRko6RA0Fpabx3Y1M2LbI
EDTAIteBd8rREV0ap8IQlks84pzpR+ZViHr/0ol6P3QOrkxhyOpIhWaKv77h5f2q
lr4/Ez8W21HZr6dHWnkcK33/DK7yPTFkpVwpiK/oyhGLFURrjXqTXcpQDJTC6hjK
WyjWvbqvvCAsPAGf0H15c55tSuwKDI1XIOBjvqoOTT31bppwnodMeiCgfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO7qFc+vUzUw8Be+A1OEh2LJN5u3MB8GA1UdIwQY
MBaAFOKQ6cw7fjY9cmvXAnULU/KbBQp9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHBEcHpEdC1OajF5YTljQ2RRdFQ4cHNGQ24wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC81NTM1NGUtYmNlNy00YTVkLWI1NjEt
OTExM2ZkN2FmZDZjLzEvN3VvVno2OVROVER3Rjc0RFU0U0hZc2szbTdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC81NTM1NGUtYmNlNy00YTVkLWI1NjEtOTExM2ZkN2FmZDZj
LzEvNHBEcHpEdC1OajF5YTljQ2RRdFQ4cHNGQ24wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZXIMA0G
CSqGSIb3DQEBCwUAA4IBAQAKTBdrTwD5azH3cDmZ/sguHHNVbKgRENm4Y/k4tQP8
Mv0W4LiRTJk1wivAVVrMZAV91rsNj7mi3ifNs5dEOMZoEh46qjjpbm/nTLBMYN+4
5JgSAxEmbPJHJ+1v/7p/0GI1gtE2asHw9Q6YpXHqgzMCW6Gr748wLWPhq/sdQKgA
mNPQcy9ZGf+nitAuRYR7CCLXsaMLnNwsGRB3eevDFmQFrerqJGAg3/X4y1htU77O
wcYDzea/5HZ+NvcJP/GnUdqvcfEX+gknZ+A29qfhzHAZceR74rfdSiu2wnVY9IUz
yF5PLQ4D5qyOXGCw4SGjc8SgARRbLf4n13g/2d/SlT1h
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:57 2023 by rpki-client on console-fra.rpki-client.org