Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/Ld8et8e3nSyqlpQ8xY1-KKGUQO8.roa
File: Ld8et8e3nSyqlpQ8xY1-KKGUQO8.roa (raw, json)
Hash identifier: +/OVBu1gVtYJQiXvIMvRdibCIa9YLVEc08CRe3MNPQM=
Subject key identifier: 2D:DF:1E:B7:C7:B7:9D:2C:AA:96:94:3C:C5:8D:7E:28:A1:94:40:EF
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 03D72774
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/Ld8et8e3nSyqlpQ8xY1-KKGUQO8.roa
Signing time: Thu 17 Mar 2022 14:52:33 +0000
ROA not before: Thu 17 Mar 2022 14:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208331
IP address blocks: 185.136.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64431988 (0x3d72774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Mar 17 14:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ddf1eb7c7b79d2caa96943cc58d7e28a19440ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c4:23:a5:44:e8:f5:55:ec:bf:49:49:f7:7f:
c2:c4:4a:bf:99:44:ba:2c:f6:d1:4f:df:88:de:80:
19:83:bc:0a:69:0b:ae:5b:fe:09:89:62:6f:ec:51:
90:25:8a:6b:41:6b:9d:be:61:f6:c9:85:dc:95:95:
a5:c1:4e:bc:fa:82:0a:57:ef:28:90:07:27:a3:da:
29:48:44:60:88:f6:df:ac:2a:d1:83:77:94:87:04:
68:d0:be:1d:82:ce:e1:64:fe:10:99:24:30:19:e3:
28:a1:9a:c7:bf:d8:7e:a0:13:93:99:c5:b7:6c:48:
95:56:d2:f7:90:58:69:8a:15:7a:71:9d:63:85:3d:
91:73:55:bf:c9:5f:cf:60:fa:17:e5:16:15:30:cb:
29:e4:1b:47:64:54:14:59:97:65:b9:d3:95:a3:9b:
98:a0:e0:f5:2d:2f:20:5f:bb:b2:e9:8b:14:7d:90:
33:97:29:8f:98:fb:1e:b0:26:9f:42:1f:db:02:95:
69:92:e9:fc:2f:cc:50:02:d6:12:52:81:b9:26:45:
fa:cb:92:ab:b2:22:c9:77:42:0c:c0:84:b9:6b:52:
09:84:b5:66:30:6b:a2:3f:23:56:ae:d2:d4:7e:77:
41:06:c6:18:c1:6c:e8:e3:9e:e6:75:45:40:06:c0:
c5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:DF:1E:B7:C7:B7:9D:2C:AA:96:94:3C:C5:8D:7E:28:A1:94:40:EF
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/Ld8et8e3nSyqlpQ8xY1-KKGUQO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.227.0/24
Signature Algorithm: sha256WithRSAEncryption
22:17:64:56:6b:aa:39:c8:c0:80:02:49:ff:ec:5e:10:59:30:
b6:db:ef:fa:11:ae:e4:54:19:22:dd:7a:da:7d:34:de:b7:c5:
f3:84:ec:ce:64:46:56:37:fb:02:38:f7:fc:35:1e:ce:f7:23:
90:3c:a3:d1:c0:33:c1:57:2d:ff:23:b3:3c:4d:5a:5b:ba:52:
00:c4:47:e9:86:37:64:36:97:d6:fd:da:ed:7f:01:53:1f:e5:
49:a0:25:d8:25:18:08:f9:93:e8:ce:b7:c5:27:60:45:95:c5:
70:ad:e0:22:1e:74:0e:c3:eb:19:42:da:74:bb:81:fd:db:66:
fc:b6:12:13:46:aa:65:35:ee:81:fb:b8:68:97:99:e0:bb:03:
4b:6e:f0:a2:2f:13:fa:f4:b4:71:f3:44:2a:5e:18:1a:86:9f:
41:eb:86:92:8d:05:88:e1:5d:fd:be:73:e7:e6:52:63:10:99:
1c:98:4e:c8:8e:ef:7c:40:3b:37:85:66:c9:d7:64:af:3b:f5:
6d:d4:55:f3:8b:bb:e3:5a:3e:85:4c:d3:e6:ce:c8:b8:01:fc:
9d:dc:b7:68:48:38:e3:78:c0:b4:12:51:1c:d8:38:36:fe:7b:
b0:26:36:35:db:43:44:ed:0b:1f:f0:9b:64:36:bf:74:a3:0c:
35:e4:f8:96
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9cndDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTc0MGM0YzA3OWYyZDFkZWU4NTQzOWY4Mjc4MWI5YmFlNzU2YTk1MB4XDTIyMDMx
NzE0NTIzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmRkZjFlYjdjN2I3
OWQyY2FhOTY5NDNjYzU4ZDdlMjhhMTk0NDBlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMPEI6VE6PVV7L9JSfd/wsRKv5lEuiz20U/fiN6AGYO8CmkL
rlv+CYlib+xRkCWKa0Frnb5h9smF3JWVpcFOvPqCClfvKJAHJ6PaKUhEYIj236wq
0YN3lIcEaNC+HYLO4WT+EJkkMBnjKKGax7/YfqATk5nFt2xIlVbS95BYaYoVenGd
Y4U9kXNVv8lfz2D6F+UWFTDLKeQbR2RUFFmXZbnTlaObmKDg9S0vIF+7sumLFH2Q
M5cpj5j7HrAmn0If2wKVaZLp/C/MUALWElKBuSZF+suSq7IiyXdCDMCEuWtSCYS1
ZjBroj8jVq7S1H53QQbGGMFs6OOe5nVFQAbAxS8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQt3x63x7edLKqWlDzFjX4ooZRA7zAfBgNVHSMEGDAWgBSxdAxMB58tHe6F
Q5+CeBubrnVqlTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NYUU1UQWVmTFIzdWhVT2ZnbmdibTY1MWFwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjIvNzJhNDk1LTJiNWQtNGEyMy05OWM0LWVmMDY3MWM3YzBkZi8x
L0xkOGV0OGUzblN5cWxwUTh4WTEtS0tHVVFPOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIv
NzJhNDk1LTJiNWQtNGEyMy05OWM0LWVmMDY3MWM3YzBkZi8xL3NYUU1UQWVmTFIz
dWhVT2ZnbmdibTY1MWFwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmI4zANBgkqhkiG9w0BAQsFAAOC
AQEAIhdkVmuqOcjAgAJJ/+xeEFkwttvv+hGu5FQZIt162n003rfF84TszmRGVjf7
Ajj3/DUezvcjkDyj0cAzwVct/yOzPE1aW7pSAMRH6YY3ZDaX1v3a7X8BUx/lSaAl
2CUYCPmT6M63xSdgRZXFcK3gIh50DsPrGULadLuB/dtm/LYSE0aqZTXugfu4aJeZ
4LsDS27woi8T+vS0cfNEKl4YGoafQeuGko0FiOFd/b5z5+ZSYxCZHJhOyI7vfEA7
N4Vmyddkrzv1bdRV84u741o+hUzT5s7IuAH8ndy3aEg443jAtBJRHNg4Nv57sCY2
NdtDRO0LH/CbZDa/dKMMNeT4lg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:38 2023 by rpki-client on console.sobornost.net