Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/VQZmPppbvUB3RJyDHqa-w8hDEZc.roa
File: VQZmPppbvUB3RJyDHqa-w8hDEZc.roa (raw, json)
Hash identifier: HrHliO9XmZ6Q1BOzvSIj+HQyZpbkNESmBYl1LFGvu80=
Subject key identifier: 55:06:66:3E:9A:5B:BD:40:77:44:9C:83:1E:A6:BE:C3:C8:43:11:97
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 018477E0AD34C934940FCADEF77AC8BFE46D
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/VQZmPppbvUB3RJyDHqa-w8hDEZc.roa
Signing time: Mon 14 Nov 2022 20:42:03 +0000
ROA not before: Mon 14 Nov 2022 20:42:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13213
IP address blocks: 185.141.116.0/24 maxlen: 24
2a07:23c0::/48 maxlen: 48
2a07:23c0:8::/48 maxlen: 48
2a07:23c0:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:77:e0:ad:34:c9:34:94:0f:ca:de:f7:7a:c8:bf:e4:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Nov 14 20:42:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5506663e9a5bbd4077449c831ea6bec3c8431197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:04:4e:8c:b2:e1:28:84:ec:bc:db:a4:b3:15:
15:30:e5:a0:03:01:ad:02:82:8c:61:d9:d3:8f:40:
6c:eb:d6:de:90:d6:60:84:c7:a8:65:11:e9:b1:76:
cb:25:c7:0f:21:33:cd:06:f3:fe:d9:2c:21:10:61:
76:87:9b:26:5a:28:cf:a9:b7:2a:51:37:db:0c:36:
92:64:9d:98:54:87:36:a9:24:a1:36:52:36:82:6c:
ff:fd:8d:dd:ed:74:e6:82:7f:aa:c2:a3:da:b9:47:
29:3f:43:f3:ec:a6:f3:e6:44:c9:2a:79:5d:df:90:
c2:61:c9:1b:18:c3:d5:95:73:4b:94:b5:bc:12:d7:
64:fc:b3:cf:27:af:62:ba:69:8b:09:26:41:48:5d:
da:07:9c:ba:9f:d1:9d:4e:82:08:0a:8c:a3:6a:f7:
71:e0:82:a4:df:ab:f2:33:c5:bc:ac:86:78:0f:c6:
8e:90:12:8d:91:64:2d:61:e9:4b:4a:8c:ef:58:40:
62:4e:3b:40:59:a7:c3:c0:71:1e:ba:52:27:e2:75:
4b:2f:27:f9:df:52:61:22:39:76:71:16:3a:37:11:
d5:a0:20:28:ab:cc:7c:75:2c:5c:33:38:9d:5b:36:
da:9f:9f:b3:24:db:71:37:35:28:ff:2b:97:81:2b:
dd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:06:66:3E:9A:5B:BD:40:77:44:9C:83:1E:A6:BE:C3:C8:43:11:97
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/VQZmPppbvUB3RJyDHqa-w8hDEZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.116.0/24
IPv6:
2a07:23c0::/48
2a07:23c0:8::/47
Signature Algorithm: sha256WithRSAEncryption
a8:f0:8d:02:55:54:81:40:37:1a:3a:58:e0:cd:6c:37:a2:d9:
be:6c:47:d8:9f:82:68:93:6b:88:bd:fb:a0:a3:a8:92:8f:06:
b0:d3:bf:b5:15:e4:a1:d0:17:8f:25:5b:ac:e2:c3:2e:64:9b:
d1:f0:06:a1:76:d6:0e:60:85:ee:b6:f8:d9:03:bc:dc:b3:a0:
94:9b:ac:bb:f1:b9:e3:27:c6:54:47:79:e5:4a:71:3f:05:8a:
f8:d7:b6:66:14:d5:34:76:a4:08:06:51:e0:ac:d0:de:29:97:
7e:4c:f1:d1:92:c4:cb:91:c9:84:82:42:09:61:22:e8:c8:f7:
15:32:5e:b9:d9:4c:26:0f:32:fb:18:c8:e9:66:9b:65:d5:6e:
ac:70:e0:24:4a:cf:f8:ed:7a:a9:29:b6:bb:7f:48:82:60:0d:
db:6c:69:1e:de:5d:91:e5:dd:9a:b1:16:24:35:5d:a2:14:81:
ab:37:e0:e6:36:72:22:ad:8d:32:3d:8b:95:04:d5:5e:40:a6:
4c:be:90:c2:01:d9:d6:f3:48:c1:22:2a:29:a6:cc:7b:03:7d:
f2:15:55:ff:7d:a7:62:dd:55:d0:57:df:12:59:87:33:ba:78:
b6:ad:84:d6:61:6b:a6:e7:b9:51:dd:9f:c7:0a:80:aa:bf:13:
7e:71:68:5c
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYR34K00yTSUD8re93rIv+RtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYjJiYjdiYWQ1MGYxOTIxODEwYTAyOGU3OGVkZDY1Zjgx
ZjZhN2QwHhcNMjIxMTE0MjA0MjAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTA2NjYzZTlhNWJiZDQwNzc0NDljODMxZWE2YmVjM2M4NDMxMTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAROjLLhKITsvNuksxUVMOWgAwGt
AoKMYdnTj0Bs69bekNZghMeoZRHpsXbLJccPITPNBvP+2SwhEGF2h5smWijPqbcq
UTfbDDaSZJ2YVIc2qSShNlI2gmz//Y3d7XTmgn+qwqPauUcpP0Pz7Kbz5kTJKnld
35DCYckbGMPVlXNLlLW8Etdk/LPPJ69iummLCSZBSF3aB5y6n9GdToIICoyjavdx
4IKk36vyM8W8rIZ4D8aOkBKNkWQtYelLSozvWEBiTjtAWafDwHEeulIn4nVLLyf5
31JhIjl2cRY6NxHVoCAoq8x8dSxcMzidWzban5+zJNtxNzUo/yuXgSvdywIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFFUGZj6aW71Ad0Scgx6mvsPIQxGXMB8GA1UdIwQY
MBaAFE+yu3utUPGSGBCgKOeO3WX4H2p9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDdLN2U2MVE4WklZRUtBbzU0N2RaZmdmYW4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9mZGEzODItNDI1Ny00MWMzLThlYzYt
MjdmYmM5OWVhM2M2LzEvVlFabVBwcGJ2VUIzUkp5REhxYS13OGhERVpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9mZGEzODItNDI1Ny00MWMzLThlYzYtMjdmYmM5OWVhM2M2
LzEvVDdLN2U2MVE4WklZRUtBbzU0N2RaZmdmYW4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAuY10MBgE
AgACMBIDBwAqByPAAAADBwEqByPAAAgwDQYJKoZIhvcNAQELBQADggEBAKjwjQJV
VIFANxo6WODNbDei2b5sR9ifgmiTa4i9+6CjqJKPBrDTv7UV5KHQF48lW6ziwy5k
m9HwBqF21g5ghe62+NkDvNyzoJSbrLvxueMnxlRHeeVKcT8FivjXtmYU1TR2pAgG
UeCs0N4pl35M8dGSxMuRyYSCQglhIujI9xUyXrnZTCYPMvsYyOlmm2XVbqxw4CRK
z/jteqkptrt/SIJgDdtsaR7eXZHl3ZqxFiQ1XaIUgas34OY2ciKtjTI9i5UE1V5A
pky+kMIB2dbzSMEiKimmzHsDffIVVf99p2LdVdBX3xJZhzO6eLathNZha6bnuVHd
n8cKgKq/E35xaFw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:31 2024 by rpki-client on console-ams.rpki-client.org