Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/RgP3lhJd7c-Y99MhSwsPXgnCuOc.roa
File: RgP3lhJd7c-Y99MhSwsPXgnCuOc.roa (raw, json)
Hash identifier: iuWvCUlUM9eQGZA71qwJLjIiBBHzSNWDu/fvJ3DSraI=
Subject key identifier: 46:03:F7:96:12:5D:ED:CF:98:F7:D3:21:4B:0B:0F:5E:09:C2:B8:E7
Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Certificate serial: 0DB5237A
Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/RgP3lhJd7c-Y99MhSwsPXgnCuOc.roa
Signing time: Wed 09 Mar 2022 15:25:13 +0000
ROA not before: Wed 09 Mar 2022 15:25:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47891
IP address blocks: 85.14.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229974906 (0xdb5237a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Validity
Not Before: Mar 9 15:25:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4603f796125dedcf98f7d3214b0b0f5e09c2b8e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:09:12:ec:f9:a8:eb:08:1d:65:39:b2:8b:ee:
22:bf:44:06:41:d8:c9:4a:36:ed:39:39:4e:82:58:
2e:74:52:05:43:a8:8c:54:e4:fa:8a:98:b2:48:83:
22:c8:13:ac:32:e3:cf:c2:5e:52:a0:d8:22:a6:a9:
94:27:3f:99:53:37:38:26:f7:75:9d:f0:64:5c:df:
19:a0:89:5c:f9:68:a4:ef:fd:d4:70:73:53:ec:1a:
c3:db:b3:ba:a9:e6:f0:26:06:38:25:a7:83:ee:ad:
3c:f4:e8:4d:a2:86:cb:ce:48:5a:e0:be:74:9e:81:
00:58:4c:67:5d:b4:37:d5:5b:b9:bd:03:c1:0a:31:
59:0b:db:5e:13:06:8c:f6:bf:c2:8f:99:d7:ae:a6:
ed:1e:84:9d:ed:7c:6a:9b:53:07:92:8b:f1:2e:03:
ab:9f:7f:c9:13:e8:9f:c3:5f:9e:16:73:47:a9:68:
9a:ea:d8:90:20:ba:e5:63:ae:62:4f:59:34:73:a0:
86:74:05:4a:0a:43:47:93:a7:74:53:bf:39:68:f9:
37:d6:8c:24:2e:14:34:b3:6c:29:42:7c:37:a4:8d:
6e:d7:a9:be:80:f2:cc:bf:f0:e4:c7:43:e0:3d:fe:
16:83:4b:10:03:e7:33:da:99:3a:79:ca:74:46:96:
36:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:03:F7:96:12:5D:ED:CF:98:F7:D3:21:4B:0B:0F:5E:09:C2:B8:E7
X509v3 Authority Key Identifier:
keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/RgP3lhJd7c-Y99MhSwsPXgnCuOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.14.142.0/23
Signature Algorithm: sha256WithRSAEncryption
13:e2:77:ae:bb:3d:d1:bc:0b:e2:66:18:52:bb:31:d8:2b:f3:
7a:a0:f6:19:f0:5d:00:33:97:a9:17:e1:1b:6e:7a:cd:51:14:
30:90:a2:aa:ed:64:fb:77:79:18:1f:d0:6d:2a:06:38:71:74:
ed:21:81:9b:aa:59:6d:cf:ce:b9:12:5f:56:43:38:73:d4:97:
48:77:e3:30:d7:e6:64:b4:d4:c4:0d:b2:f6:8a:6c:d8:d6:29:
ea:26:e4:df:dc:1a:24:32:3a:f2:62:bf:95:f8:7f:cb:6f:1a:
57:68:69:fb:06:64:89:90:80:b2:d0:8d:64:ad:56:c7:63:1f:
50:4e:90:ee:19:a7:95:cc:ae:a7:d7:c3:5a:7e:7a:1a:f0:b5:
d5:41:bf:eb:54:c8:27:33:d0:30:f8:a4:3f:34:a0:e3:20:9f:
b9:20:a9:41:86:60:e2:be:08:7b:da:b3:71:e6:e1:96:4a:ac:
77:09:20:a7:7f:05:79:a1:c6:82:56:38:b5:71:2d:9f:b2:34:
e9:8b:49:ee:e4:88:8a:10:32:82:75:cd:c6:6c:5d:ad:c5:2b:
ff:cd:67:d3:8d:98:1a:1a:75:c0:04:41:60:aa:dd:03:4c:5a:
aa:3a:bf:6f:82:09:d3:85:c3:17:92:1c:d8:ab:22:6e:95:3c:
9e:b8:6e:6b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDbUjejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MDdkODg3YzAyZTA3YzllNDc0ZDFmOGUyMTA0OWNhYTZjZTNmYmQzMB4XDTIyMDMw
OTE1MjUxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDYwM2Y3OTYxMjVk
ZWRjZjk4ZjdkMzIxNGIwYjBmNWUwOWMyYjhlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMAJEuz5qOsIHWU5sovuIr9EBkHYyUo27Tk5ToJYLnRSBUOo
jFTk+oqYskiDIsgTrDLjz8JeUqDYIqaplCc/mVM3OCb3dZ3wZFzfGaCJXPlopO/9
1HBzU+waw9uzuqnm8CYGOCWng+6tPPToTaKGy85IWuC+dJ6BAFhMZ120N9Vbub0D
wQoxWQvbXhMGjPa/wo+Z166m7R6Ene18aptTB5KL8S4Dq59/yRPon8NfnhZzR6lo
murYkCC65WOuYk9ZNHOghnQFSgpDR5OndFO/OWj5N9aMJC4UNLNsKUJ8N6SNbtep
voDyzL/w5MdD4D3+FoNLEAPnM9qZOnnKdEaWNvUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRGA/eWEl3tz5j30yFLCw9eCcK45zAfBgNVHSMEGDAWgBQwfYh8AuB8nkdN
H44hBJyqbOP70zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01IMklmQUxnZko1SFRSLU9JUVNjcW16ai05TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvYjIwZDgzLTYxMmMtNGI2Mi05N2EzLTFhNWU1ZjE5MWJmYS8x
L1JnUDNsaEpkN2MtWTk5TWhTd3NQWGduQ3VPYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
YjIwZDgzLTYxMmMtNGI2Mi05N2EzLTFhNWU1ZjE5MWJmYS8xL01IMklmQUxnZko1
SFRSLU9JUVNjcW16ai05TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVUOjjANBgkqhkiG9w0BAQsFAAOC
AQEAE+J3rrs90bwL4mYYUrsx2CvzeqD2GfBdADOXqRfhG256zVEUMJCiqu1k+3d5
GB/QbSoGOHF07SGBm6pZbc/OuRJfVkM4c9SXSHfjMNfmZLTUxA2y9ops2NYp6ibk
39waJDI68mK/lfh/y28aV2hp+wZkiZCAstCNZK1Wx2MfUE6Q7hmnlcyup9fDWn56
GvC11UG/61TIJzPQMPikPzSg4yCfuSCpQYZg4r4Ie9qzcebhlkqsdwkgp38FeaHG
glY4tXEtn7I06YtJ7uSIihAygnXNxmxdrcUr/81n042YGhp1wARBYKrdA0xaqjq/
b4IJ04XDF5Ic2KsibpU8nrhuaw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:46 2023 by rpki-client on console.sobornost.net