Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/bf3eca-171f-401c-9b5d-ccc4f1e00990/1/BLdkntCTaY8fADGZI0JGN__YAfI.roa
File: BLdkntCTaY8fADGZI0JGN__YAfI.roa (raw, json)
Hash identifier: y+u90ICO8/OMsUhcGRRKmw91u5cImKEtwIOxyndDQ70=
Subject key identifier: 04:B7:64:9E:D0:93:69:8F:1F:00:31:99:23:42:46:37:FF:D8:01:F2
Certificate issuer: /CN=2c727d09fbb19a7f985d751a20311c1bad4b071f
Certificate serial: 0B00F736
Authority key identifier: 2C:72:7D:09:FB:B1:9A:7F:98:5D:75:1A:20:31:1C:1B:AD:4B:07:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHJ9Cfuxmn-YXXUaIDEcG61LBx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/bf3eca-171f-401c-9b5d-ccc4f1e00990/1/BLdkntCTaY8fADGZI0JGN__YAfI.roa
Signing time: Sat 01 Jan 2022 11:55:09 +0000
ROA not before: Sat 01 Jan 2022 11:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202598
IP address blocks: 185.156.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184612662 (0xb00f736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c727d09fbb19a7f985d751a20311c1bad4b071f
Validity
Not Before: Jan 1 11:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04b7649ed093698f1f00319923424637ffd801f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:25:df:52:8d:f4:ba:72:17:20:2f:1b:1e:fd:
6f:dd:e0:05:a3:8d:4a:d8:23:a2:35:12:87:ca:bb:
33:75:4d:51:f2:5c:dc:be:69:9f:fd:71:b2:99:a1:
07:93:01:76:ec:b4:35:55:57:4c:ba:c2:fd:9d:55:
19:cd:31:7d:f4:ea:ca:30:a5:08:e6:cc:5c:2f:eb:
a8:2d:0c:60:f8:ad:90:ed:e7:ab:cf:9c:65:34:12:
58:b2:a9:9c:4f:dc:1d:85:9f:a5:65:cb:04:80:c5:
66:bd:2b:4f:ad:fc:a8:26:b1:89:7e:6d:f6:b5:82:
a7:cb:80:bf:2c:72:3c:de:60:3c:ac:53:c6:f1:8a:
80:27:81:03:1e:f6:20:db:13:46:b5:29:63:3f:58:
46:5c:6a:ef:d8:cf:62:a0:84:ed:53:ce:3f:61:33:
d5:21:4e:7c:78:27:20:1b:39:9e:4d:a1:31:c7:35:
d8:98:9a:38:57:fc:d7:7d:fa:3a:da:0b:eb:f9:14:
49:02:14:f0:04:a1:b4:2b:40:b7:d9:88:bb:0c:c7:
f3:45:3b:67:50:b5:42:e9:aa:90:aa:81:07:ec:bd:
e5:35:24:ed:46:23:27:34:7b:36:ac:bc:25:ff:32:
ed:b2:61:5d:d1:4b:f6:50:d1:d2:fb:ea:a0:29:55:
30:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B7:64:9E:D0:93:69:8F:1F:00:31:99:23:42:46:37:FF:D8:01:F2
X509v3 Authority Key Identifier:
keyid:2C:72:7D:09:FB:B1:9A:7F:98:5D:75:1A:20:31:1C:1B:AD:4B:07:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHJ9Cfuxmn-YXXUaIDEcG61LBx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf3eca-171f-401c-9b5d-ccc4f1e00990/1/BLdkntCTaY8fADGZI0JGN__YAfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf3eca-171f-401c-9b5d-ccc4f1e00990/1/LHJ9Cfuxmn-YXXUaIDEcG61LBx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.56.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:28:80:43:3a:0d:78:be:38:bc:42:ab:86:87:7e:20:57:29:
61:86:ee:2c:d4:72:c6:79:fc:1e:e4:b7:0e:e5:d1:9b:7b:7d:
3d:e0:12:e8:16:3e:20:ba:dd:45:d5:f3:e0:9c:aa:bb:5e:11:
39:a3:a6:4f:c0:10:3e:0a:40:ed:83:66:17:12:4f:b5:c2:70:
78:ab:ad:a8:a4:cb:a4:ef:29:07:1e:59:50:22:88:0e:22:2d:
a1:df:10:b0:76:c7:27:a8:9b:91:5f:68:fe:87:c0:49:2d:32:
22:a2:d6:24:36:92:2a:68:ea:80:19:9b:19:46:26:3a:d3:79:
62:84:dc:1b:be:63:27:ad:6f:cb:d5:a7:d5:83:af:6a:a1:32:
f9:c9:27:ff:a9:91:07:fa:9f:e1:97:0c:0e:d5:33:a7:34:cb:
6a:8f:52:c2:a8:8a:b5:19:6c:3c:e6:e2:1d:7e:b3:17:cf:31:
db:66:23:5f:60:6c:91:26:a2:d2:0b:ff:1d:a4:8a:46:f9:91:
3b:69:87:a7:c3:75:c4:ea:5c:66:11:8f:62:7b:5b:29:7a:63:
78:be:5d:e8:a9:8e:35:43:a6:2c:3a:55:99:9f:7f:a1:6d:a9:
70:f9:28:d5:d6:31:90:ec:5b:df:9c:06:eb:ed:19:25:c3:67:
2b:04:80:8c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECwD3NjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YzcyN2QwOWZiYjE5YTdmOTg1ZDc1MWEyMDMxMWMxYmFkNGIwNzFmMB4XDTIyMDEw
MTExNTUwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDRiNzY0OWVkMDkz
Njk4ZjFmMDAzMTk5MjM0MjQ2MzdmZmQ4MDFmMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKMl31KN9LpyFyAvGx79b93gBaONStgjojUSh8q7M3VNUfJc
3L5pn/1xspmhB5MBduy0NVVXTLrC/Z1VGc0xffTqyjClCObMXC/rqC0MYPitkO3n
q8+cZTQSWLKpnE/cHYWfpWXLBIDFZr0rT638qCaxiX5t9rWCp8uAvyxyPN5gPKxT
xvGKgCeBAx72INsTRrUpYz9YRlxq79jPYqCE7VPOP2Ez1SFOfHgnIBs5nk2hMcc1
2JiaOFf81336OtoL6/kUSQIU8AShtCtAt9mIuwzH80U7Z1C1QumqkKqBB+y95TUk
7UYjJzR7Nqy8Jf8y7bJhXdFL9lDR0vvqoClVMKkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQEt2Se0JNpjx8AMZkjQkY3/9gB8jAfBgNVHSMEGDAWgBQscn0J+7Gaf5hd
dRogMRwbrUsHHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xISjlDZnV4bW4tWVhYVWFJREVjRzYxTEJ4OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmMvYmYzZWNhLTE3MWYtNDAxYy05YjVkLWNjYzRmMWUwMDk5MC8x
L0JMZGtudENUYVk4ZkFER1pJMEpHTl9fWUFmSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMv
YmYzZWNhLTE3MWYtNDAxYy05YjVkLWNjYzRmMWUwMDk5MC8xL0xISjlDZnV4bW4t
WVhYVWFJREVjRzYxTEJ4OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmcODANBgkqhkiG9w0BAQsFAAOC
AQEArSiAQzoNeL44vEKrhod+IFcpYYbuLNRyxnn8HuS3DuXRm3t9PeAS6BY+ILrd
RdXz4Jyqu14ROaOmT8AQPgpA7YNmFxJPtcJweKutqKTLpO8pBx5ZUCKIDiItod8Q
sHbHJ6ibkV9o/ofASS0yIqLWJDaSKmjqgBmbGUYmOtN5YoTcG75jJ61vy9Wn1YOv
aqEy+ckn/6mRB/qf4ZcMDtUzpzTLao9SwqiKtRlsPObiHX6zF88x22YjX2BskSai
0gv/HaSKRvmRO2mHp8N1xOpcZhGPYntbKXpjeL5d6KmONUOmLDpVmZ9/oW2pcPko
1dYxkOxb35wG6+0ZJcNnKwSAjA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:50 2024 by rpki-client on console-fra.rpki-client.org