Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/003d6d-bbbf-4091-8c2d-ffa7f280d253/1/_fckbQAr0NQTA4Lt-_u8EqqjUEU.roa
File: _fckbQAr0NQTA4Lt-_u8EqqjUEU.roa (raw, json)
Hash identifier: hrKRWTK62OEMlwq9Ow0ISTK21+d43jYavm1gUNO+f2o=
Subject key identifier: FD:F7:24:6D:00:2B:D0:D4:13:03:82:ED:FB:FB:BC:12:AA:A3:50:45
Certificate issuer: /CN=ecc8402f2faab304879ff712cfcbf5ae52b6699c
Certificate serial: 061B635E
Authority key identifier: EC:C8:40:2F:2F:AA:B3:04:87:9F:F7:12:CF:CB:F5:AE:52:B6:69:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7MhALy-qswSHn_cSz8v1rlK2aZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/003d6d-bbbf-4091-8c2d-ffa7f280d253/1/_fckbQAr0NQTA4Lt-_u8EqqjUEU.roa
Signing time: Sat 01 Jan 2022 11:53:51 +0000
ROA not before: Sat 01 Jan 2022 11:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42184
IP address blocks: 185.153.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102458206 (0x61b635e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecc8402f2faab304879ff712cfcbf5ae52b6699c
Validity
Not Before: Jan 1 11:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdf7246d002bd0d4130382edfbfbbc12aaa35045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e2:72:c9:fa:dd:4e:80:52:0f:a8:f7:b2:f9:
94:7f:a7:f8:54:a5:97:68:02:c8:54:c7:33:4a:d6:
37:7a:4a:10:8d:ea:4a:97:21:d0:04:df:ed:c1:8e:
83:21:a8:e0:53:b5:34:19:9d:b6:b7:f7:27:e4:c0:
e0:4e:8c:95:86:63:3c:9a:34:2e:64:bb:35:cd:58:
e5:6a:f8:75:32:4e:ca:a8:ab:54:d1:99:ca:63:0a:
48:64:44:63:5a:f7:21:96:84:ad:63:ba:2c:76:3e:
af:4c:ff:aa:11:98:49:93:c6:a2:27:78:02:a0:59:
29:99:f8:28:f8:84:97:50:ca:d4:41:71:e0:5e:d6:
dd:a8:24:3e:be:29:50:aa:30:82:fb:23:7b:0c:9c:
b7:ae:aa:ef:61:8f:ef:01:d3:72:12:3d:62:43:d1:
94:87:d4:88:da:47:78:4c:c7:a7:da:b5:65:eb:16:
58:78:03:f1:01:c4:fe:b0:6e:b4:63:92:c8:ab:02:
46:69:42:f0:01:98:f2:7a:54:59:fa:0d:db:e8:ec:
78:e7:98:3c:5b:f1:78:f4:b8:b8:69:66:8a:11:5e:
14:1a:a4:97:5d:2e:3f:7a:1d:14:84:33:2d:d5:d6:
9d:7b:d8:28:2f:0e:4b:28:a3:30:b9:5e:91:bb:38:
0e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F7:24:6D:00:2B:D0:D4:13:03:82:ED:FB:FB:BC:12:AA:A3:50:45
X509v3 Authority Key Identifier:
keyid:EC:C8:40:2F:2F:AA:B3:04:87:9F:F7:12:CF:CB:F5:AE:52:B6:69:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7MhALy-qswSHn_cSz8v1rlK2aZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/003d6d-bbbf-4091-8c2d-ffa7f280d253/1/_fckbQAr0NQTA4Lt-_u8EqqjUEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/003d6d-bbbf-4091-8c2d-ffa7f280d253/1/7MhALy-qswSHn_cSz8v1rlK2aZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.140.0/22
Signature Algorithm: sha256WithRSAEncryption
64:88:67:54:1f:fa:0d:07:bb:68:96:88:65:ec:35:c0:79:d2:
f6:10:0f:8a:b3:71:1c:96:97:86:f0:60:cd:5f:d5:05:80:37:
1e:07:b2:2a:57:fc:50:0b:6f:f5:8f:c0:80:7e:30:74:b0:13:
cf:84:6c:d5:eb:b8:d6:0b:0f:ae:dc:69:a8:6b:40:77:43:dd:
59:24:48:c3:2b:19:66:f7:5e:38:c0:22:fa:aa:68:6b:bc:5f:
66:29:e2:11:e5:62:7c:38:73:54:6c:a8:93:f9:62:cf:0d:bb:
ff:6d:84:5d:b2:e8:92:5d:c2:74:f5:5d:a3:16:08:61:57:09:
0a:25:bb:54:2f:ea:92:ed:92:2d:80:21:8f:38:c8:36:00:08:
9b:e2:37:3f:73:5e:06:40:72:58:96:bb:04:42:e2:17:36:fd:
7d:34:21:25:0c:3b:b2:b0:e4:c9:8e:30:b1:82:98:39:08:16:
f8:df:cd:e4:e6:ab:30:47:42:bb:e7:b7:82:dd:92:48:e2:ee:
ef:6c:9b:a8:bd:9d:a8:d7:d3:91:51:6c:a7:4e:23:23:6d:87:
e0:50:ff:fe:04:b5:78:fa:f3:bc:f0:05:78:32:17:29:c6:d1:
47:aa:75:0d:d3:48:3a:fd:62:c8:e0:f8:c6:e3:ab:f6:fb:72:
e7:5d:10:11
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBhtjXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
Y2M4NDAyZjJmYWFiMzA0ODc5ZmY3MTJjZmNiZjVhZTUyYjY2OTljMB4XDTIyMDEw
MTExNTM1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmRmNzI0NmQwMDJi
ZDBkNDEzMDM4MmVkZmJmYmJjMTJhYWEzNTA0NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMbicsn63U6AUg+o97L5lH+n+FSll2gCyFTHM0rWN3pKEI3q
Spch0ATf7cGOgyGo4FO1NBmdtrf3J+TA4E6MlYZjPJo0LmS7Nc1Y5Wr4dTJOyqir
VNGZymMKSGREY1r3IZaErWO6LHY+r0z/qhGYSZPGoid4AqBZKZn4KPiEl1DK1EFx
4F7W3agkPr4pUKowgvsjewyct66q72GP7wHTchI9YkPRlIfUiNpHeEzHp9q1ZesW
WHgD8QHE/rButGOSyKsCRmlC8AGY8npUWfoN2+jseOeYPFvxePS4uGlmihFeFBqk
l10uP3odFIQzLdXWnXvYKC8OSyijMLlekbs4Dj0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT99yRtACvQ1BMDgu37+7wSqqNQRTAfBgNVHSMEGDAWgBTsyEAvL6qzBIef
9xLPy/WuUrZpnDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdNaEFMeS1xc3dTSG5fY1N6OHYxcmxLMmFady5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmYvMDAzZDZkLWJiYmYtNDA5MS04YzJkLWZmYTdmMjgwZDI1My8x
L19mY2tiUUFyME5RVEE0THQtX3U4RXFxalVFVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmYv
MDAzZDZkLWJiYmYtNDA5MS04YzJkLWZmYTdmMjgwZDI1My8xLzdNaEFMeS1xc3dT
SG5fY1N6OHYxcmxLMmFady5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmZjDANBgkqhkiG9w0BAQsFAAOC
AQEAZIhnVB/6DQe7aJaIZew1wHnS9hAPirNxHJaXhvBgzV/VBYA3HgeyKlf8UAtv
9Y/AgH4wdLATz4Rs1eu41gsPrtxpqGtAd0PdWSRIwysZZvdeOMAi+qpoa7xfZini
EeVifDhzVGyok/lizw27/22EXbLokl3CdPVdoxYIYVcJCiW7VC/qku2SLYAhjzjI
NgAIm+I3P3NeBkByWJa7BELiFzb9fTQhJQw7srDkyY4wsYKYOQgW+N/N5OarMEdC
u+e3gt2SSOLu72ybqL2dqNfTkVFsp04jI22H4FD//gS1ePrzvPAFeDIXKcbRR6p1
DdNIOv1iyOD4xuOr9vty510QEQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:10 2024 by rpki-client on console-fra.rpki-client.org