Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/6BoUgb5EEd4-ARgBbLpGloLCchA.roa
File: 6BoUgb5EEd4-ARgBbLpGloLCchA.roa (raw, json)
Hash identifier: gmZT3e5i7aobWvKUm+vhtlK1ZGLHFcz96ug+Xtrl5gI=
Subject key identifier: E8:1A:14:81:BE:44:11:DE:3E:01:18:01:6C:BA:46:96:82:C2:72:10
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 01857315BFD2F9834206BC8FF22C4C46F661
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/6BoUgb5EEd4-ARgBbLpGloLCchA.roa
Signing time: Mon 02 Jan 2023 15:24:43 +0000
ROA not before: Mon 02 Jan 2023 15:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47975
IP address blocks: 89.249.192.0/20 maxlen: 24
185.21.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:bf:d2:f9:83:42:06:bc:8f:f2:2c:4c:46:f6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jan 2 15:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e81a1481be4411de3e0118016cba469682c27210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:63:1e:2e:50:20:3e:f7:e2:2f:f5:cf:37:16:
d4:e8:79:3d:20:6e:44:b8:2f:7d:a6:08:96:f5:a0:
2b:53:4e:98:25:cf:35:77:51:29:7b:eb:6a:91:5b:
e7:51:ca:5a:54:52:de:e7:ee:d5:cb:7f:55:46:b1:
ef:c6:a9:87:50:5f:aa:da:cb:02:20:a2:44:ee:32:
7f:8e:c1:ac:da:35:0a:59:5e:17:4a:e4:67:f5:a6:
70:f1:d4:a7:54:94:96:80:5a:08:b9:9f:92:65:64:
72:31:81:f6:7f:5b:e0:3c:98:25:b8:5c:20:56:cd:
88:ea:67:00:b6:ce:fd:fd:39:38:10:3a:58:91:9a:
61:14:a1:58:3e:cc:f4:90:5b:df:c8:b9:fe:5e:ac:
c9:b2:33:3b:12:ea:97:78:a3:b3:b3:d9:3d:d0:92:
93:c8:6c:98:d3:4a:c5:01:a6:9d:f5:7c:b4:e7:90:
d2:cc:5a:17:c1:f1:b6:53:db:cd:9b:9f:7f:fe:72:
b1:24:a7:4d:33:10:0d:82:02:86:f0:ff:ca:fb:1f:
66:2f:b0:7b:82:0f:a4:98:c8:e0:e1:25:b6:73:48:
14:3c:78:f6:30:c5:ac:d5:30:b4:d5:8b:ec:e5:f7:
a7:ef:5e:1a:dd:da:0b:15:d8:ec:f6:62:75:01:c8:
80:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:1A:14:81:BE:44:11:DE:3E:01:18:01:6C:BA:46:96:82:C2:72:10
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/6BoUgb5EEd4-ARgBbLpGloLCchA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.192.0/20
185.21.252.0/22
Signature Algorithm: sha256WithRSAEncryption
44:08:11:de:94:f3:3c:f2:7f:a5:f8:18:15:6e:07:51:b2:cd:
db:9c:2c:4c:44:f2:44:2e:6e:09:7a:90:99:fb:0e:bf:fc:22:
a7:4e:e7:72:f4:d0:f0:e3:f8:9e:7e:b6:1c:20:f7:ff:06:93:
51:89:f6:15:74:4a:f2:be:36:83:69:2b:f4:fe:24:aa:02:47:
a0:f4:7e:76:e0:ff:d7:1d:20:2f:5c:46:2e:76:40:67:50:8d:
09:d3:93:07:50:b4:0e:a3:f3:ff:ed:b5:35:b0:48:f7:fa:2f:
07:82:93:fb:c9:bd:6d:10:f5:b2:ae:b6:b7:d4:80:49:f5:5e:
d4:ae:b6:69:86:d2:ee:7b:f1:25:5f:d1:4e:19:ad:57:5d:17:
d8:76:ab:2c:39:83:0d:f9:39:26:eb:f6:96:77:7d:12:65:f3:
7d:2b:f6:03:a2:8a:00:68:23:29:12:be:a6:b2:c1:2f:e0:72:
76:21:55:a9:76:18:b5:9c:da:23:2f:11:e4:59:0d:dd:0e:96:
ab:3e:e9:cf:a8:b8:62:38:ea:2b:63:9b:72:03:6b:52:85:9a:
66:f7:e2:af:2c:a5:4e:16:ed:57:aa:f6:c5:af:49:fb:41:2a:
a8:b4:c3:7a:2b:1e:9f:90:32:1f:16:a8:2f:b0:39:8b:87:61:
b3:13:42:81
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVzFb/S+YNCBryP8ixMRvZhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzIyZTQ1MTNhMzk2NzhkOGFiMjNiMmQ2NDk3NzUzNDA1
MThjYjkwHhcNMjMwMTAyMTUyNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODFhMTQ4MWJlNDQxMWRlM2UwMTE4MDE2Y2JhNDY5NjgyYzI3MjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGMeLlAgPvfiL/XPNxbU6Hk9IG5E
uC99pgiW9aArU06YJc81d1Epe+tqkVvnUcpaVFLe5+7Vy39VRrHvxqmHUF+q2ssC
IKJE7jJ/jsGs2jUKWV4XSuRn9aZw8dSnVJSWgFoIuZ+SZWRyMYH2f1vgPJgluFwg
Vs2I6mcAts79/Tk4EDpYkZphFKFYPsz0kFvfyLn+XqzJsjM7EuqXeKOzs9k90JKT
yGyY00rFAaad9Xy055DSzFoXwfG2U9vNm59//nKxJKdNMxANggKG8P/K+x9mL7B7
gg+kmMjg4SW2c0gUPHj2MMWs1TC01Yvs5fen714a3doLFdjs9mJ1AciAUwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOgaFIG+RBHePgEYAWy6RpaCwnIQMB8GA1UdIwQY
MBaAFA1yLkUTo5Z42KsjstZJd1NAUYy5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDIt
MzQyNWIxMjVlYWE3LzEvNkJvVWdiNUVFZDQtQVJnQmJMcEdsb0xDY2hBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDItMzQyNWIxMjVlYWE3
LzEvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEWfnAAwQC
uRX8MA0GCSqGSIb3DQEBCwUAA4IBAQBECBHelPM88n+l+BgVbgdRss3bnCxMRPJE
Lm4JepCZ+w6//CKnTudy9NDw4/iefrYcIPf/BpNRifYVdEryvjaDaSv0/iSqAkeg
9H524P/XHSAvXEYudkBnUI0J05MHULQOo/P/7bU1sEj3+i8HgpP7yb1tEPWyrra3
1IBJ9V7UrrZphtLue/ElX9FOGa1XXRfYdqssOYMN+Tkm6/aWd30SZfN9K/YDoooA
aCMpEr6mssEv4HJ2IVWpdhi1nNojLxHkWQ3dDparPunPqLhiOOorY5tyA2tShZpm
9+KvLKVOFu1XqvbFr0n7QSqotMN6Kx6fkDIfFqgvsDmLh2GzE0KB
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:06 2025 by rpki-client