Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/6aicvTK_03II64VL-tHjF4hB4BM.roa
File: 6aicvTK_03II64VL-tHjF4hB4BM.roa (raw, json)
Hash identifier: xzK6ZkdygB/2k4sllCqMgfj8vySjm6XYRDrihcESUxU=
Subject key identifier: E9:A8:9C:BD:32:BF:D3:72:08:EB:85:4B:FA:D1:E3:17:88:41:E0:13
Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Certificate serial: 07108433
Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/6aicvTK_03II64VL-tHjF4hB4BM.roa
Signing time: Sat 01 Jan 2022 01:59:31 +0000
ROA not before: Sat 01 Jan 2022 01:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205086
IP address blocks: 185.231.20.0/24 maxlen: 24
185.231.23.0/24 maxlen: 24
185.231.22.0/24 maxlen: 24
185.231.21.0/24 maxlen: 24
2a0a:9580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118522931 (0x7108433)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Validity
Not Before: Jan 1 01:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9a89cbd32bfd37208eb854bfad1e3178841e013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ca:67:8f:81:f5:19:54:09:20:1d:89:fe:0c:
22:fb:5e:22:84:d2:95:b8:be:0c:d8:e9:fb:84:eb:
b9:33:24:32:7e:f7:dd:09:b0:70:d6:78:5f:ce:0d:
5b:96:49:a7:f9:a8:5d:8b:52:98:e2:10:63:c0:03:
52:ab:87:06:e0:48:aa:af:d4:e3:1b:00:9a:d1:33:
7b:8b:4c:57:ff:15:62:87:72:68:bd:68:75:d0:f8:
48:8a:3b:6e:5c:9d:51:cd:04:07:51:a9:62:71:59:
cf:ea:ba:db:8d:22:92:d1:e8:ba:cc:83:34:6f:11:
cf:58:1d:3a:6b:24:8e:40:ed:b9:27:ae:ba:8e:69:
4b:fd:3d:b2:e3:c9:d0:28:41:04:3c:8b:89:81:d3:
60:70:06:7f:57:f0:f6:b6:a6:20:5e:45:72:42:5e:
0a:d1:c5:50:56:7b:ed:37:24:c3:28:c8:40:20:bc:
ce:4c:d5:d2:ad:0b:00:99:78:2e:22:71:c1:51:ab:
2e:47:c4:96:cd:bd:cf:83:00:92:cb:a9:8e:56:21:
da:01:fd:0a:20:fb:6c:fc:e8:d8:35:a1:8c:5e:eb:
82:9f:2f:3c:55:33:fc:f8:2b:2d:75:12:0e:24:4b:
6f:d5:7e:ef:61:1f:5b:26:f9:5a:36:d2:20:d2:89:
9d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A8:9C:BD:32:BF:D3:72:08:EB:85:4B:FA:D1:E3:17:88:41:E0:13
X509v3 Authority Key Identifier:
keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/6aicvTK_03II64VL-tHjF4hB4BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.20.0/22
IPv6:
2a0a:9580::/29
Signature Algorithm: sha256WithRSAEncryption
55:57:0f:1b:59:d3:e1:96:47:30:0b:c8:31:36:15:98:38:ee:
95:2d:de:08:6a:4b:f7:f0:3a:92:25:51:58:be:ae:7f:dc:3b:
46:b4:03:0f:77:9b:d8:29:ae:a4:94:17:b8:66:b3:8a:57:51:
d2:17:21:d5:74:ab:34:ec:55:6f:89:bf:93:47:ec:da:74:1d:
f5:05:ac:92:77:c5:8e:4e:b3:8c:ec:df:11:f3:74:5c:dc:7d:
65:1d:5d:ca:fa:f1:74:66:bc:e5:60:7f:d6:5d:a3:ee:93:82:
32:2d:7a:90:a3:1a:bd:6b:53:2d:8a:c0:e3:a3:4a:a1:67:99:
1e:4f:88:a2:a7:07:16:64:ef:ff:ac:e1:3a:5e:26:bf:07:90:
49:0d:6e:9d:97:b2:9e:b6:b4:82:59:f2:85:c3:f0:6b:75:5f:
92:76:f7:e1:c4:d9:52:68:00:46:e1:66:7b:dd:16:2b:c1:36:
4e:15:81:ee:4a:0c:35:de:4a:f6:87:46:c4:4f:27:16:7f:02:
c8:44:63:a8:84:1a:79:cb:6a:1a:0e:c4:74:74:a1:65:8a:d2:
c7:9d:38:16:b7:a6:1f:dd:73:4c:9a:05:38:8d:b4:03:98:03:
d1:4a:3a:08:e3:3d:2f:a8:33:75:db:93:73:3e:e9:63:e3:bd:
a2:3f:a7:cc
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBxCEMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZTEzNDE0YmRjMjMxMjQwMGRmYTlmNTA2NTBkNTFlZTA0NDNkZjE2MB4XDTIyMDEw
MTAxNTkzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTlhODljYmQzMmJm
ZDM3MjA4ZWI4NTRiZmFkMWUzMTc4ODQxZTAxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANLKZ4+B9RlUCSAdif4MIvteIoTSlbi+DNjp+4TruTMkMn73
3QmwcNZ4X84NW5ZJp/moXYtSmOIQY8ADUquHBuBIqq/U4xsAmtEze4tMV/8VYody
aL1oddD4SIo7blydUc0EB1GpYnFZz+q6240iktHousyDNG8Rz1gdOmskjkDtuSeu
uo5pS/09suPJ0ChBBDyLiYHTYHAGf1fw9ramIF5FckJeCtHFUFZ77TckwyjIQCC8
zkzV0q0LAJl4LiJxwVGrLkfEls29z4MAksupjlYh2gH9CiD7bPzo2DWhjF7rgp8v
PFUz/PgrLXUSDiRLb9V+72EfWyb5WjbSINKJna8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTpqJy9Mr/TcgjrhUv60eMXiEHgEzAfBgNVHSMEGDAWgBR+E0FL3CMSQA36
n1BlDVHuBEPfFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZoTkJTOXdqRWtBTi1wOVFaUTFSN2dSRDN4WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWIvNDRjMzY1LTZjZWQtNDVkOS04NjVkLTA0ZmNlY2FkNzBlYy8x
LzZhaWN2VEtfMDNJSTY0VkwtdEhqRjRoQjRCTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIv
NDRjMzY1LTZjZWQtNDVkOS04NjVkLTA0ZmNlY2FkNzBlYy8xL2ZoTkJTOXdqRWtB
Ti1wOVFaUTFSN2dSRDN4WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnnFDANBAIAAjAHAwUDKgqVgDAN
BgkqhkiG9w0BAQsFAAOCAQEAVVcPG1nT4ZZHMAvIMTYVmDjulS3eCGpL9/A6kiVR
WL6uf9w7RrQDD3eb2CmupJQXuGazildR0hch1XSrNOxVb4m/k0fs2nQd9QWsknfF
jk6zjOzfEfN0XNx9ZR1dyvrxdGa85WB/1l2j7pOCMi16kKMavWtTLYrA46NKoWeZ
Hk+IoqcHFmTv/6zhOl4mvweQSQ1unZeynra0glnyhcPwa3Vfknb34cTZUmgARuFm
e90WK8E2ThWB7koMNd5K9odGxE8nFn8CyERjqIQaectqGg7EdHShZYrSx504Frem
H91zTJoFOI20A5gD0Uo6COM9L6gzdduTcz7pY+O9oj+nzA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net