Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ChqjNqG9mMVbomN7vW2GQkmMwi0.roa
File: ChqjNqG9mMVbomN7vW2GQkmMwi0.roa (raw, json)
Hash identifier: MyC7ccdWXpmCGdueQz2b5QUmTHBaOzBjDMxmK3PO/0k=
Subject key identifier: 0A:1A:A3:36:A1:BD:98:C5:5B:A2:63:7B:BD:6D:86:42:49:8C:C2:2D
Certificate issuer: /CN=64757185472f16d53eeb68a140e3513fa31c31d8
Certificate serial: 79CB50
Authority key identifier: 64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ChqjNqG9mMVbomN7vW2GQkmMwi0.roa
Signing time: Sat 01 Jan 2022 02:58:58 +0000
ROA not before: Sat 01 Jan 2022 02:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39010
IP address blocks: 185.70.226.0/24 maxlen: 24
185.70.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7981904 (0x79cb50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64757185472f16d53eeb68a140e3513fa31c31d8
Validity
Not Before: Jan 1 02:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a1aa336a1bd98c55ba2637bbd6d8642498cc22d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e3:11:77:85:81:61:8a:b3:eb:24:ab:36:7e:
5e:28:97:fe:b7:cf:25:83:6a:dc:6b:93:52:5a:1f:
4e:cb:35:91:2f:97:20:0b:e8:0c:a5:5c:83:85:f2:
94:38:19:b6:9b:d2:f7:fe:20:e9:80:1d:c5:37:ab:
d2:d8:48:3a:b5:dc:1d:b7:d9:8c:0d:e1:73:44:0b:
89:39:e8:ab:67:b6:43:0b:fe:fc:5b:0f:66:11:4c:
97:73:c7:b9:c7:8b:2c:a0:33:04:6f:df:f5:9e:ce:
ce:be:03:b3:f2:01:82:44:74:bb:55:a2:cc:7e:33:
4c:7f:da:5d:08:34:e1:6e:28:74:75:28:b6:70:44:
1e:53:31:ec:0a:fa:4d:52:12:55:d8:0b:c1:b0:d9:
09:b4:46:15:f9:b9:f4:db:04:dc:93:84:a4:1f:50:
80:0a:ed:6e:64:36:80:84:79:28:a8:01:b3:95:d8:
b9:0a:9d:69:21:0f:19:b7:5c:7d:e8:f0:e6:29:7d:
9f:7b:18:d5:85:83:ca:fd:ee:ec:89:72:35:b8:21:
1b:83:f1:99:4d:0c:21:c4:3e:ad:4d:46:7a:ad:e9:
3c:7f:54:92:28:d7:e0:a2:bd:79:66:59:f2:7f:41:
8e:25:f4:ed:fd:e5:17:07:02:fd:b7:f1:56:ad:5a:
8e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1A:A3:36:A1:BD:98:C5:5B:A2:63:7B:BD:6D:86:42:49:8C:C2:2D
X509v3 Authority Key Identifier:
keyid:64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ChqjNqG9mMVbomN7vW2GQkmMwi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.225.0-185.70.226.255
Signature Algorithm: sha256WithRSAEncryption
a1:04:32:64:77:94:e9:06:37:be:53:71:8a:39:b5:88:a3:a0:
6d:d9:34:de:20:57:f2:27:54:db:41:39:58:d1:a9:c4:41:74:
69:66:cb:96:d7:5b:13:f2:a3:6a:90:8a:ff:49:47:88:63:d3:
ff:30:70:f7:d7:fc:67:d3:39:8e:4c:80:d4:3c:25:8d:10:f0:
f8:be:da:98:63:ee:2b:65:2a:0e:45:d6:7f:c5:d4:54:e8:45:
0e:74:1a:85:9c:04:0c:62:ed:d4:e8:97:7d:9f:0d:81:51:45:
d5:9f:df:ec:d2:9d:2e:79:c6:3c:8d:3a:2d:55:22:2c:03:85:
38:25:24:8a:a9:0b:c2:5b:24:69:19:9d:f1:e4:61:87:94:7a:
85:15:2b:54:d1:fc:18:28:21:ed:92:05:ac:87:3b:e6:f4:57:
a3:6b:a2:2e:9e:23:45:e9:3e:51:e2:05:64:61:f0:f5:97:b9:
d5:69:53:3f:8b:4b:37:a7:6e:5a:ff:24:8a:2f:16:fd:c2:fc:
08:c6:63:3a:3e:cb:aa:81:a8:6d:aa:11:1d:1d:eb:85:57:1a:
0e:b3:45:15:c8:81:03:8d:8e:be:70:e7:37:5d:3a:44:b2:67:
7f:08:94:6e:8c:cd:e3:0c:75:25:e2:ca:74:74:75:39:73:47:
d9:7a:9d:5b
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIDectQMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY0
NzU3MTg1NDcyZjE2ZDUzZWViNjhhMTQwZTM1MTNmYTMxYzMxZDgwHhcNMjIwMTAx
MDI1ODU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwYTFhYTMzNmExYmQ5
OGM1NWJhMjYzN2JiZDZkODY0MjQ5OGNjMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwuMRd4WBYYqz6ySrNn5eKJf+t88lg2rca5NSWh9OyzWRL5cg
C+gMpVyDhfKUOBm2m9L3/iDpgB3FN6vS2Eg6tdwdt9mMDeFzRAuJOeirZ7ZDC/78
Ww9mEUyXc8e5x4ssoDMEb9/1ns7OvgOz8gGCRHS7VaLMfjNMf9pdCDThbih0dSi2
cEQeUzHsCvpNUhJV2AvBsNkJtEYV+bn02wTck4SkH1CACu1uZDaAhHkoqAGzldi5
Cp1pIQ8Zt1x96PDmKX2fexjVhYPK/e7siXI1uCEbg/GZTQwhxD6tTUZ6rek8f1SS
KNfgor15Zlnyf0GOJfTt/eUXBwL9t/FWrVqOSQIDAQABo4ICETCCAg0wHQYDVR0O
BBYEFAoaozahvZjFW6Jje71thkJJjMItMB8GA1UdIwQYMBaAFGR1cYVHLxbVPuto
oUDjUT+jHDHYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WkhWeGhVY3ZGdFUtNjJpaFFPTlJQNk1jTWRnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yYi8xMjE0NDctZDJjOC00Y2E4LTk2YzctODFkMTAwNzNkZWU0LzEv
Q2hxak5xRzltTVZib21ON3ZXMkdRa21Nd2kwLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8x
MjE0NDctZDJjOC00Y2E4LTk2YzctODFkMTAwNzNkZWU0LzEvWkhWeGhVY3ZGdFUt
NjJpaFFPTlJQNk1jTWRnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcG
CCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5RuEDBAC5RuIwDQYJKoZIhvcN
AQELBQADggEBAKEEMmR3lOkGN75TcYo5tYijoG3ZNN4gV/InVNtBOVjRqcRBdGlm
y5bXWxPyo2qQiv9JR4hj0/8wcPfX/GfTOY5MgNQ8JY0Q8Pi+2phj7itlKg5F1n/F
1FToRQ50GoWcBAxi7dTol32fDYFRRdWf3+zSnS55xjyNOi1VIiwDhTglJIqpC8Jb
JGkZnfHkYYeUeoUVK1TR/BgoIe2SBayHO+b0V6Nroi6eI0XpPlHiBWRh8PWXudVp
Uz+LSzenblr/JIovFv3C/AjGYzo+y6qBqG2qER0d64VXGg6zRRXIgQONjr5w5zdd
OkSyZ38IlG6MzeMMdSXiynR0dTlzR9l6nVs=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:30 2023 by rpki-client on console.sobornost.net