Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/gPhoWbj_dSJmUmi2WtjJrvU5HFM.roa
File: gPhoWbj_dSJmUmi2WtjJrvU5HFM.roa (raw, json)
Hash identifier: Nz7VUY6kYStBj6Zz+j8zSzVaFuahkyx3pAUDQ4iA3wk=
Subject key identifier: 80:F8:68:59:B8:FF:75:22:66:52:68:B6:5A:D8:C9:AE:F5:39:1C:53
Certificate issuer: /CN=a663abd479cbff76082304bf60d03adc3187d936
Certificate serial: 0F3EAC9A
Authority key identifier: A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/gPhoWbj_dSJmUmi2WtjJrvU5HFM.roa
Signing time: Sat 01 Jan 2022 11:03:47 +0000
ROA not before: Sat 01 Jan 2022 11:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397403
IP address blocks: 185.198.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255765658 (0xf3eac9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a663abd479cbff76082304bf60d03adc3187d936
Validity
Not Before: Jan 1 11:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80f86859b8ff7522665268b65ad8c9aef5391c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9d:db:7a:f3:62:b6:e7:f2:d3:0c:9a:8f:37:
e2:05:31:be:1e:f8:ac:21:84:9d:b3:59:6b:bc:60:
61:ae:ed:85:69:ad:01:85:bd:ac:0b:27:f6:a5:9b:
4d:7e:89:55:86:13:56:c8:34:56:fa:ce:cb:06:c8:
32:49:38:56:e9:0b:67:6f:86:27:bc:06:6b:db:98:
d7:2e:99:b6:aa:7a:4f:ef:41:6d:05:8a:81:d6:6f:
40:f9:d9:5b:3f:c0:26:ee:20:03:19:89:a4:e6:48:
32:88:48:37:24:b6:e5:3c:87:7e:02:56:2b:ff:f1:
1e:5d:94:71:d3:4e:91:0f:a1:ac:57:4d:7b:82:89:
75:36:59:4a:23:cf:7c:4e:5a:7e:20:f2:ab:19:90:
96:d1:25:dc:c7:a7:93:f9:ee:6a:0c:14:a2:41:4e:
b8:08:f6:55:a1:2f:80:5b:1f:d1:ca:6f:87:7c:db:
b3:da:3b:7e:e6:fb:50:87:4b:c1:3d:6d:88:e1:5a:
1c:ba:bf:0a:fa:b3:b5:9f:98:b1:f3:9c:fa:a7:bd:
76:74:c2:c3:b6:25:b7:5d:4b:01:8d:c9:a7:ae:a8:
ec:e5:95:c6:48:e6:ae:46:21:f0:78:c5:f4:20:d2:
4c:65:c5:3c:a6:18:ea:5f:bb:9a:01:df:98:c9:f9:
53:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F8:68:59:B8:FF:75:22:66:52:68:B6:5A:D8:C9:AE:F5:39:1C:53
X509v3 Authority Key Identifier:
keyid:A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/gPhoWbj_dSJmUmi2WtjJrvU5HFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/pmOr1HnL_3YIIwS_YNA63DGH2TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.88.0/24
Signature Algorithm: sha256WithRSAEncryption
91:b2:69:1d:25:1e:ad:55:10:1e:cc:86:7e:f9:43:b7:44:37:
ec:1b:44:80:66:1f:81:87:04:b8:aa:d4:de:e8:3b:41:0e:26:
c8:30:43:d5:54:65:06:8a:42:37:1a:ce:4f:a1:42:b4:b9:92:
35:c6:10:93:c7:f0:ca:d1:93:87:d4:1f:f6:d7:32:61:bb:5a:
e3:da:f2:d9:3f:a8:5d:d3:80:97:1b:6b:ec:2c:0d:4a:77:c8:
3f:a7:3a:3b:cf:ea:f3:02:84:9c:a1:17:e4:c3:2f:a8:c2:f3:
fb:c3:14:22:76:c6:a4:99:4e:08:8c:b2:df:7f:ec:57:b8:97:
d5:d8:05:50:53:bc:db:aa:4f:79:cb:ff:5a:be:b9:07:84:4b:
c9:4c:9b:42:c3:1f:96:2c:06:32:4b:d3:47:1c:f7:11:35:78:
1d:d2:d4:60:97:9e:e7:f1:63:2b:e7:1e:65:0f:bb:9d:f2:49:
4c:f8:ae:f1:b4:6b:ad:c5:73:3d:35:3f:ff:98:22:a5:2a:6f:
bb:df:ba:71:e4:94:bc:bc:91:99:e5:03:c1:1d:41:8e:b5:89:
b0:cf:3d:c7:d2:d8:09:72:4f:c9:40:56:23:f1:16:08:60:c3:
09:75:2e:4a:78:df:cf:09:d0:43:2a:6d:59:ca:2d:13:df:1a:
11:c5:26:e2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDz6smjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NjYzYWJkNDc5Y2JmZjc2MDgyMzA0YmY2MGQwM2FkYzMxODdkOTM2MB4XDTIyMDEw
MTExMDM0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODBmODY4NTliOGZm
NzUyMjY2NTI2OGI2NWFkOGM5YWVmNTM5MWM1MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKWd23rzYrbn8tMMmo834gUxvh74rCGEnbNZa7xgYa7thWmt
AYW9rAsn9qWbTX6JVYYTVsg0VvrOywbIMkk4VukLZ2+GJ7wGa9uY1y6Ztqp6T+9B
bQWKgdZvQPnZWz/AJu4gAxmJpOZIMohINyS25TyHfgJWK//xHl2UcdNOkQ+hrFdN
e4KJdTZZSiPPfE5afiDyqxmQltEl3Menk/nuagwUokFOuAj2VaEvgFsf0cpvh3zb
s9o7fub7UIdLwT1tiOFaHLq/CvqztZ+YsfOc+qe9dnTCw7Ylt11LAY3Jp66o7OWV
xkjmrkYh8HjF9CDSTGXFPKYY6l+7mgHfmMn5UzMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSA+GhZuP91ImZSaLZa2Mmu9TkcUzAfBgNVHSMEGDAWgBSmY6vUecv/dggj
BL9g0DrcMYfZNjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BtT3IxSG5MXzNZSUl3U19ZTkE2M0RHSDJUWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzEvZjQyNzI0LWQwMDktNDg3ZC1hNzljLWJmYTA0ZjZjZGU1MC8x
L2dQaG9XYmpfZFNKbVVtaTJXdGpKcnZVNUhGTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzEv
ZjQyNzI0LWQwMDktNDg3ZC1hNzljLWJmYTA0ZjZjZGU1MC8xL3BtT3IxSG5MXzNZ
SUl3U19ZTkE2M0RHSDJUWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnGWDANBgkqhkiG9w0BAQsFAAOC
AQEAkbJpHSUerVUQHsyGfvlDt0Q37BtEgGYfgYcEuKrU3ug7QQ4myDBD1VRlBopC
NxrOT6FCtLmSNcYQk8fwytGTh9Qf9tcyYbta49ry2T+oXdOAlxtr7CwNSnfIP6c6
O8/q8wKEnKEX5MMvqMLz+8MUInbGpJlOCIyy33/sV7iX1dgFUFO826pPecv/Wr65
B4RLyUybQsMfliwGMkvTRxz3ETV4HdLUYJee5/FjK+ceZQ+7nfJJTPiu8bRrrcVz
PTU//5gipSpvu9+6ceSUvLyRmeUDwR1BjrWJsM89x9LYCXJPyUBWI/EWCGDDCXUu
SnjfzwnQQyptWcotE98aEcUm4g==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:34 2023 by rpki-client on console.sobornost.net