Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/f6be03-4f44-4354-b9eb-ba4d06df0be5/1/BKc8iX5_LNOX4F7agasKg3C_JmA.roa
File: BKc8iX5_LNOX4F7agasKg3C_JmA.roa (raw, json)
Hash identifier: 3C5nYhRXlmam+gGYBFRoWgdc5+YNbh3yIxgG1MVtSgs=
Subject key identifier: 04:A7:3C:89:7E:7F:2C:D3:97:E0:5E:DA:81:AB:0A:83:70:BF:26:60
Certificate issuer: /CN=e2e4ac6224fe1944420dc3a98dd63abae4af7e00
Certificate serial: 030058CA
Authority key identifier: E2:E4:AC:62:24:FE:19:44:42:0D:C3:A9:8D:D6:3A:BA:E4:AF:7E:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4uSsYiT-GURCDcOpjdY6uuSvfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/f6be03-4f44-4354-b9eb-ba4d06df0be5/1/BKc8iX5_LNOX4F7agasKg3C_JmA.roa
Signing time: Sat 01 Jan 2022 15:06:09 +0000
ROA not before: Sat 01 Jan 2022 15:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 185.57.245.0/24 maxlen: 24
185.57.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50354378 (0x30058ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2e4ac6224fe1944420dc3a98dd63abae4af7e00
Validity
Not Before: Jan 1 15:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04a73c897e7f2cd397e05eda81ab0a8370bf2660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:30:7a:36:52:4c:df:ce:67:78:c6:72:7c:87:
00:a7:f9:dc:61:bd:7e:e0:f5:44:b8:fa:79:86:f9:
7d:0d:16:71:7b:50:84:be:ed:74:d1:0b:a4:18:58:
b6:af:cd:d1:19:62:ab:0a:82:24:94:1f:88:3b:b1:
16:e3:ca:65:9a:96:61:5a:d4:a2:39:6a:9f:31:92:
32:a9:7a:2e:f4:83:b0:25:1d:cc:43:77:8a:8f:f5:
03:0f:1c:18:d9:81:42:db:52:0e:54:f6:1a:54:5d:
93:76:90:0a:a5:12:ad:a5:6b:ec:f8:42:60:b1:ad:
62:19:48:83:70:5c:a9:79:b6:73:4c:6b:8f:8a:53:
b5:2a:d6:e2:ce:ae:c6:d9:29:12:d5:36:5d:5e:d3:
61:e6:b4:03:fd:50:2d:9d:38:d5:60:45:fe:a2:fb:
e8:25:7b:10:74:93:a2:bf:f1:dd:dd:f3:14:ad:94:
c4:ed:16:0a:6f:97:61:76:8a:bc:5e:e6:e8:e5:94:
9e:d8:0e:3d:94:0a:aa:d6:69:75:90:34:f5:ec:83:
21:d1:78:d5:d2:cb:55:dd:d1:ec:f7:b5:3e:ed:68:
4c:f5:74:07:fc:d1:05:a8:03:80:9d:1b:6a:37:fa:
3a:8d:22:94:a1:ca:d9:a4:86:d1:8d:55:d3:14:97:
8d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A7:3C:89:7E:7F:2C:D3:97:E0:5E:DA:81:AB:0A:83:70:BF:26:60
X509v3 Authority Key Identifier:
keyid:E2:E4:AC:62:24:FE:19:44:42:0D:C3:A9:8D:D6:3A:BA:E4:AF:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4uSsYiT-GURCDcOpjdY6uuSvfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/f6be03-4f44-4354-b9eb-ba4d06df0be5/1/BKc8iX5_LNOX4F7agasKg3C_JmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/f6be03-4f44-4354-b9eb-ba4d06df0be5/1/4uSsYiT-GURCDcOpjdY6uuSvfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.244.0/23
Signature Algorithm: sha256WithRSAEncryption
66:49:9d:02:86:5e:03:75:c6:ed:a1:c6:34:3d:4b:1e:70:fc:
60:7d:5e:62:b9:97:41:a0:7c:41:4a:8d:db:16:38:34:c6:b0:
3f:9b:5d:ce:63:b6:14:a0:8b:bb:3b:0e:8e:1b:e9:64:0f:ba:
82:00:ad:92:f1:a9:69:02:f9:45:66:f0:da:02:10:0e:5f:4d:
6a:6c:66:fc:11:24:ea:1c:40:77:76:5c:03:6a:62:49:ee:c4:
a4:b3:9d:6f:8b:e6:e3:b7:93:a2:64:b7:cd:80:27:76:78:84:
32:ae:08:ff:29:8e:5c:b0:22:53:32:6b:58:68:80:1a:00:66:
94:2a:d6:ae:e3:94:dc:8d:2c:e3:5d:fa:85:71:a9:fc:3e:c9:
fd:04:e7:b3:42:c9:88:33:f7:3e:4b:be:28:d8:77:91:3f:29:
88:14:23:70:40:fd:c6:ef:f8:19:2a:88:d9:88:24:24:ef:53:
0f:86:31:b6:64:c4:d6:e1:79:69:ea:8e:00:c7:81:bd:e6:8c:
cd:d4:00:4d:c0:bb:43:c3:94:6e:66:ff:c3:76:ed:c2:cf:0d:
0c:f8:63:dc:44:5e:ba:f9:fa:f5:f8:c8:7d:d9:ea:1a:56:e5:
d7:64:70:11:6d:ed:a9:58:88:d9:2b:b6:cb:0d:8b:2f:83:48:
4d:85:5e:a9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwBYyjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MmU0YWM2MjI0ZmUxOTQ0NDIwZGMzYTk4ZGQ2M2FiYWU0YWY3ZTAwMB4XDTIyMDEw
MTE1MDYwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDRhNzNjODk3ZTdm
MmNkMzk3ZTA1ZWRhODFhYjBhODM3MGJmMjY2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALYwejZSTN/OZ3jGcnyHAKf53GG9fuD1RLj6eYb5fQ0WcXtQ
hL7tdNELpBhYtq/N0RliqwqCJJQfiDuxFuPKZZqWYVrUojlqnzGSMql6LvSDsCUd
zEN3io/1Aw8cGNmBQttSDlT2GlRdk3aQCqUSraVr7PhCYLGtYhlIg3BcqXm2c0xr
j4pTtSrW4s6uxtkpEtU2XV7TYea0A/1QLZ041WBF/qL76CV7EHSTor/x3d3zFK2U
xO0WCm+XYXaKvF7m6OWUntgOPZQKqtZpdZA09eyDIdF41dLLVd3R7Pe1Pu1oTPV0
B/zRBagDgJ0bajf6Oo0ilKHK2aSG0Y1V0xSXjeECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQEpzyJfn8s05fgXtqBqwqDcL8mYDAfBgNVHSMEGDAWgBTi5KxiJP4ZREIN
w6mN1jq65K9+ADAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR1U3NZaVQtR1VSQ0RjT3BqZFk2dXVTdmZnQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvZjZiZTAzLTRmNDQtNDM1NC1iOWViLWJhNGQwNmRmMGJlNS8x
L0JLYzhpWDVfTE5PWDRGN2FnYXNLZzNDX0ptQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUv
ZjZiZTAzLTRmNDQtNDM1NC1iOWViLWJhNGQwNmRmMGJlNS8xLzR1U3NZaVQtR1VS
Q0RjT3BqZFk2dXVTdmZnQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbk59DANBgkqhkiG9w0BAQsFAAOC
AQEAZkmdAoZeA3XG7aHGND1LHnD8YH1eYrmXQaB8QUqN2xY4NMawP5tdzmO2FKCL
uzsOjhvpZA+6ggCtkvGpaQL5RWbw2gIQDl9Namxm/BEk6hxAd3ZcA2piSe7EpLOd
b4vm47eTomS3zYAndniEMq4I/ymOXLAiUzJrWGiAGgBmlCrWruOU3I0s4136hXGp
/D7J/QTns0LJiDP3Pku+KNh3kT8piBQjcED9xu/4GSqI2YgkJO9TD4YxtmTE1uF5
aeqOAMeBveaMzdQATcC7Q8OUbmb/w3btws8NDPhj3EReuvn69fjIfdnqGlbl12Rw
EW3tqViI2Su2yw2LL4NITYVeqQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:10 2024 by rpki-client on console-ams.rpki-client.org