Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/S9EvEk6fWNh2oTQiftt5IeMIbeE.roa
File: S9EvEk6fWNh2oTQiftt5IeMIbeE.roa (raw, json)
Hash identifier: 1O5tNZ8WqSKyxQOsl4QKvIvvpqgI9koDUjUBvbxVUw0=
Subject key identifier: 4B:D1:2F:12:4E:9F:58:D8:76:A1:34:22:7E:DB:79:21:E3:08:6D:E1
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 01853E69D92AB6EFEA89ADBFA73CE002CE06
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/S9EvEk6fWNh2oTQiftt5IeMIbeE.roa
Signing time: Fri 23 Dec 2022 09:56:42 +0000
ROA not before: Fri 23 Dec 2022 09:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202758
IP address blocks: 185.155.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3e:69:d9:2a:b6:ef:ea:89:ad:bf:a7:3c:e0:02:ce:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Dec 23 09:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bd12f124e9f58d876a134227edb7921e3086de1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ac:d3:da:e6:91:7d:9d:ff:00:05:22:37:47:
74:d4:e0:e8:ed:61:7e:d5:e0:be:a0:28:d0:df:0e:
55:3a:6f:31:1c:ad:e2:2f:eb:43:b1:ce:cd:3d:52:
69:25:99:6d:9b:88:8f:b7:89:f4:6d:33:da:7d:db:
c4:15:60:80:e0:65:40:09:3d:46:d9:a3:41:81:d1:
24:89:23:24:10:ae:b7:f3:46:94:e4:71:1d:f6:f5:
53:58:b8:a3:0b:b4:f9:47:b1:36:a8:64:3e:6d:6d:
28:6e:8b:dc:50:17:5d:41:82:a9:20:89:73:3f:94:
04:1c:fc:5e:75:97:35:b4:59:9e:c6:23:cc:99:d2:
11:96:78:a3:d1:11:0f:09:23:ce:e1:12:34:18:13:
ab:3b:51:d3:a5:f4:58:57:e0:63:1e:b9:a6:c6:49:
35:39:09:e4:97:70:41:86:a6:01:ce:f8:13:e3:b5:
cd:88:1e:36:04:fe:02:73:c8:cd:d8:63:95:74:ac:
d2:52:67:6a:45:6f:60:15:08:d8:be:d2:e4:49:cf:
c2:38:c6:85:db:f4:04:69:16:82:33:33:58:1d:c5:
a4:25:08:e6:40:91:83:3f:3a:d5:96:31:93:92:b0:
91:dd:55:ce:a8:93:d1:fc:62:6f:74:7f:37:5d:6b:
d5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D1:2F:12:4E:9F:58:D8:76:A1:34:22:7E:DB:79:21:E3:08:6D:E1
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/S9EvEk6fWNh2oTQiftt5IeMIbeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.112.0/22
Signature Algorithm: sha256WithRSAEncryption
09:42:10:32:5f:ce:39:27:21:96:d2:55:fc:5a:90:21:95:84:
32:da:ea:96:f9:85:5f:2a:96:09:16:f0:9d:8c:1f:a2:a3:84:
e5:5d:f8:16:13:c5:72:25:82:bc:20:31:83:8f:83:b3:79:98:
8f:9f:ea:c1:1a:e5:87:84:12:96:fb:b7:2e:66:a4:2b:cf:44:
0d:ad:c8:02:d4:4a:f5:3a:bf:6e:12:fc:5c:96:8c:0a:d1:a7:
92:f9:54:ec:ba:2f:05:ba:22:73:75:86:93:2b:c6:4e:fd:e5:
99:d2:d7:be:24:1f:5a:a5:e2:6e:ad:bf:0b:91:98:1a:fa:a0:
5e:c2:ed:97:ba:93:c8:ea:5d:08:66:f2:11:57:60:32:ac:d4:
32:d2:ac:46:ed:b1:3c:2e:da:c3:33:3d:89:07:1d:9d:80:a8:
e8:a5:0a:21:e9:f9:ce:58:27:41:8f:79:91:67:f7:e9:3d:52:
f1:e2:d5:1e:81:6b:9d:09:30:59:ee:2d:11:a5:82:62:0e:7d:
1d:ca:1f:28:e0:1c:b7:5c:2c:32:c0:62:10:3a:40:7a:bb:ba:
be:cc:1f:00:a0:6a:ab:2f:a4:57:29:ea:b2:b2:11:ff:06:c3:
3d:e8:71:c6:3a:9d:b1:2c:ad:62:66:c6:90:03:8e:13:6c:5b:
e9:51:84:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU+adkqtu/qia2/pzzgAs4GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlYmE0OGM3ZTJjOWUwNWVkYTU0NmQ4OTkxNDZiODlmNzk5
ZGY4NWQwHhcNMjIxMjIzMDk1NjQyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmQxMmYxMjRlOWY1OGQ4NzZhMTM0MjI3ZWRiNzkyMWUzMDg2ZGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKzT2uaRfZ3/AAUiN0d01ODo7WF+
1eC+oCjQ3w5VOm8xHK3iL+tDsc7NPVJpJZltm4iPt4n0bTPafdvEFWCA4GVACT1G
2aNBgdEkiSMkEK6380aU5HEd9vVTWLijC7T5R7E2qGQ+bW0obovcUBddQYKpIIlz
P5QEHPxedZc1tFmexiPMmdIRlnij0REPCSPO4RI0GBOrO1HTpfRYV+BjHrmmxkk1
OQnkl3BBhqYBzvgT47XNiB42BP4Cc8jN2GOVdKzSUmdqRW9gFQjYvtLkSc/COMaF
2/QEaRaCMzNYHcWkJQjmQJGDPzrVljGTkrCR3VXOqJPR/GJvdH83XWvVpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEvRLxJOn1jYdqE0In7beSHjCG3hMB8GA1UdIwQY
MBaAFL66SMfiyeBe2lRtiZFGuJ95nfhdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnJwSXgtTEo0RjdhVkcySmtVYTRuM21kLUYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC83Zjg4MjEtMTU2Ni00M2Y0LWFiMjYt
M2Q1MjIxODFhMmM0LzEvUzlFdkVrNmZXTmgyb1RRaWZ0dDVJZU1JYmVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC83Zjg4MjEtMTU2Ni00M2Y0LWFiMjYtM2Q1MjIxODFhMmM0
LzEvdnJwSXgtTEo0RjdhVkcySmtVYTRuM21kLUYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZtwMA0G
CSqGSIb3DQEBCwUAA4IBAQAJQhAyX845JyGW0lX8WpAhlYQy2uqW+YVfKpYJFvCd
jB+io4TlXfgWE8VyJYK8IDGDj4OzeZiPn+rBGuWHhBKW+7cuZqQrz0QNrcgC1Er1
Or9uEvxclowK0aeS+VTsui8FuiJzdYaTK8ZO/eWZ0te+JB9apeJurb8LkZga+qBe
wu2XupPI6l0IZvIRV2AyrNQy0qxG7bE8LtrDMz2JBx2dgKjopQoh6fnOWCdBj3mR
Z/fpPVLx4tUegWudCTBZ7i0RpYJiDn0dyh8o4By3XCwywGIQOkB6u7q+zB8AoGqr
L6RXKeqyshH/BsM96HHGOp2xLK1iZsaQA44TbFvpUYRI
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net