Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/P-kLnqYbXkgoSjDK-Dp568b9Ziw.roa
File: P-kLnqYbXkgoSjDK-Dp568b9Ziw.roa (raw, json)
Hash identifier: +ZSyGW/IUVYzEfmNb/18Hs4BpcvnP2le6CQts6gBdVc=
Subject key identifier: 3F:E9:0B:9E:A6:1B:5E:48:28:4A:30:CA:F8:3A:79:EB:C6:FD:66:2C
Certificate issuer: /CN=7df7cfd6c8826a67f642a373d131955308d9c1ca
Certificate serial: 04E285DE
Authority key identifier: 7D:F7:CF:D6:C8:82:6A:67:F6:42:A3:73:D1:31:95:53:08:D9:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fffP1siCamf2QqNz0TGVUwjZwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/P-kLnqYbXkgoSjDK-Dp568b9Ziw.roa
Signing time: Sat 01 Jan 2022 01:59:44 +0000
ROA not before: Sat 01 Jan 2022 01:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205654
IP address blocks: 185.211.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81954270 (0x4e285de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df7cfd6c8826a67f642a373d131955308d9c1ca
Validity
Not Before: Jan 1 01:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fe90b9ea61b5e48284a30caf83a79ebc6fd662c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b9:0a:79:9c:80:8c:ea:64:59:c2:c4:3e:2b:
6b:c9:7e:9a:8b:16:34:cf:76:58:f2:38:6c:d2:ba:
68:f0:38:83:9f:00:a5:dd:50:5d:7f:6f:6a:2a:6c:
79:ba:d0:87:1c:35:3c:38:2a:cd:84:d4:f1:cf:31:
67:bc:c2:77:4b:98:03:41:58:da:f9:9e:f6:c3:5f:
cd:dc:d6:b1:4f:53:a9:1f:d2:f1:01:dd:9e:94:63:
58:a2:be:ab:99:40:d8:c7:1e:2c:84:8b:1d:45:8d:
ad:2b:da:96:55:2c:a9:ee:5d:07:3c:28:0d:14:ff:
58:e6:19:f8:0d:72:53:e6:e8:bc:96:5b:5c:bc:d7:
01:7a:1f:00:9c:89:05:40:eb:4c:7d:b4:85:b4:32:
5d:11:3b:11:a5:2c:28:a5:ea:3a:6b:d4:a7:29:0c:
11:d9:fa:12:19:a0:58:64:64:bb:de:98:c5:e6:8c:
8c:55:0d:e1:ce:64:2b:0b:2a:cb:55:71:17:02:54:
26:14:b1:8e:0d:b1:95:40:e9:11:41:aa:db:ca:5d:
5c:dd:90:ca:a1:91:44:91:79:8e:f9:c0:3b:60:0f:
49:e9:81:42:b2:4e:7c:cd:13:36:76:63:96:2f:49:
1e:7a:ff:84:06:af:a9:e4:39:a2:ea:91:9f:1a:71:
83:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E9:0B:9E:A6:1B:5E:48:28:4A:30:CA:F8:3A:79:EB:C6:FD:66:2C
X509v3 Authority Key Identifier:
keyid:7D:F7:CF:D6:C8:82:6A:67:F6:42:A3:73:D1:31:95:53:08:D9:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fffP1siCamf2QqNz0TGVUwjZwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/P-kLnqYbXkgoSjDK-Dp568b9Ziw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/fffP1siCamf2QqNz0TGVUwjZwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.20.0/22
Signature Algorithm: sha256WithRSAEncryption
24:6a:05:41:e6:cd:05:0e:b8:4a:f1:aa:fd:08:15:03:0f:d8:
03:30:d3:97:92:6e:98:72:7f:38:96:71:df:a4:6f:59:8c:40:
8b:7d:7d:52:22:8d:3a:21:42:be:c1:e5:f4:95:ff:d0:35:13:
14:22:53:c5:52:a0:f0:c0:11:43:cb:fe:42:42:af:8d:3d:9e:
27:58:33:4c:fb:08:9a:bf:35:35:db:0f:35:3e:58:68:82:b2:
4c:26:0a:73:57:31:60:22:7f:48:f4:71:1c:35:47:d5:9c:02:
27:ad:9b:22:5b:6d:f3:2d:14:2a:dc:9c:45:52:31:a9:9b:d4:
48:09:d7:04:3a:f2:e9:c3:7b:b5:86:82:29:23:95:1b:d0:58:
13:9d:39:d7:7d:39:f3:80:0c:f9:ce:fc:f5:b0:42:0b:b0:1f:
6e:d7:33:6c:28:a1:4b:56:34:23:4e:0b:8e:11:43:6d:67:2a:
87:12:27:6b:db:6d:be:b6:08:4e:01:da:a1:91:ba:25:e9:a8:
16:81:c2:24:4f:ff:22:17:02:dc:73:ed:ba:29:54:b2:6b:0d:
ec:fa:58:9b:99:5c:1f:92:a7:54:22:12:e8:c4:48:0c:c7:f4:
aa:e9:5a:90:3a:9e:b5:ed:c2:54:2e:0a:ab:75:7f:97:d2:22:
1e:bc:20:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBOKF3jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZGY3Y2ZkNmM4ODI2YTY3ZjY0MmEzNzNkMTMxOTU1MzA4ZDljMWNhMB4XDTIyMDEw
MTAxNTk0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2ZlOTBiOWVhNjFi
NWU0ODI4NGEzMGNhZjgzYTc5ZWJjNmZkNjYyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJq5CnmcgIzqZFnCxD4ra8l+mosWNM92WPI4bNK6aPA4g58A
pd1QXX9vaipsebrQhxw1PDgqzYTU8c8xZ7zCd0uYA0FY2vme9sNfzdzWsU9TqR/S
8QHdnpRjWKK+q5lA2MceLISLHUWNrSvallUsqe5dBzwoDRT/WOYZ+A1yU+bovJZb
XLzXAXofAJyJBUDrTH20hbQyXRE7EaUsKKXqOmvUpykMEdn6EhmgWGRku96YxeaM
jFUN4c5kKwsqy1VxFwJUJhSxjg2xlUDpEUGq28pdXN2QyqGRRJF5jvnAO2APSemB
QrJOfM0TNnZjli9JHnr/hAavqeQ5ouqRnxpxgyMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ/6QuephteSChKMMr4Onnrxv1mLDAfBgNVHSMEGDAWgBR998/WyIJqZ/ZC
o3PRMZVTCNnByjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZmZlAxc2lDYW1mMlFxTnowVEdWVXdqWndjby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjYvN2E3ODcxLTA4ZjMtNDc1Ny1hOWYwLWJmMWM1Y2MzNmI2Ni8x
L1Ata0xucVliWGtnb1NqREstRHA1NjhiOVppdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYv
N2E3ODcxLTA4ZjMtNDc1Ny1hOWYwLWJmMWM1Y2MzNmI2Ni8xL2ZmZlAxc2lDYW1m
MlFxTnowVEdWVXdqWndjby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnTFDANBgkqhkiG9w0BAQsFAAOC
AQEAJGoFQebNBQ64SvGq/QgVAw/YAzDTl5JumHJ/OJZx36RvWYxAi319UiKNOiFC
vsHl9JX/0DUTFCJTxVKg8MARQ8v+QkKvjT2eJ1gzTPsImr81NdsPNT5YaIKyTCYK
c1cxYCJ/SPRxHDVH1ZwCJ62bIltt8y0UKtycRVIxqZvUSAnXBDry6cN7tYaCKSOV
G9BYE505130584AM+c789bBCC7AfbtczbCihS1Y0I04LjhFDbWcqhxIna9ttvrYI
TgHaoZG6JemoFoHCJE//IhcC3HPtuilUsmsN7PpYm5lcH5KnVCIS6MRIDMf0qula
kDqete3CVC4Kq3V/l9IiHrwgjg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net