Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/nYaQcRXawe_p7AnCc70FQm0SsrA.roa
File: nYaQcRXawe_p7AnCc70FQm0SsrA.roa (raw, json)
Hash identifier: FLhp0iAMcCfcHGWcJGigiKAiQObZubnp63BHFo2vsOw=
Subject key identifier: 9D:86:90:71:15:DA:C1:EF:E9:EC:09:C2:73:BD:05:42:6D:12:B2:B0
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42B81615
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/nYaQcRXawe_p7AnCc70FQm0SsrA.roa
Signing time: Wed 27 Apr 2022 12:46:20 +0000
ROA not before: Wed 27 Apr 2022 12:46:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35397
IP address blocks: 86.107.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119360533 (0x42b81615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 27 12:46:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d86907115dac1efe9ec09c273bd05426d12b2b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bf:69:20:5a:f0:df:ca:cf:2a:70:df:86:8d:
a8:9d:81:fc:49:1b:c3:c8:83:cb:b9:d5:ab:3a:f3:
f6:50:a4:7c:54:50:d0:7f:c3:ba:6d:5f:c0:04:56:
8d:e0:a3:9d:eb:ea:8a:04:ae:c5:41:d7:1d:4f:ce:
15:0f:11:c2:28:c8:3d:b7:1d:11:d9:46:12:a9:40:
6c:65:65:da:88:24:f1:fa:e7:49:ed:bd:11:a3:04:
61:47:ed:93:23:67:c1:f2:2c:64:e1:82:e5:0a:df:
e1:e9:46:35:75:52:94:d5:88:7e:aa:47:a8:a7:ba:
23:36:24:13:a0:6c:d1:40:56:39:39:79:bf:60:99:
07:8a:de:02:be:40:61:9d:95:75:15:2f:a9:4a:f1:
eb:7e:b7:4f:16:b8:63:bd:24:24:60:89:38:e3:2f:
42:6f:31:ba:dd:31:0f:8f:86:e6:05:8e:05:6b:dc:
8e:df:35:b7:ed:72:e0:46:c0:cd:e0:8f:9c:d9:56:
fd:d3:a6:49:c8:f8:81:f9:c9:90:e8:95:8e:b9:ea:
cf:d2:f9:dd:ac:9f:0f:18:1b:b8:c6:18:9f:14:60:
47:2f:89:c8:92:45:4b:e5:84:c9:09:95:b4:b5:6e:
61:cb:5f:89:b6:f1:04:23:a3:be:03:1c:22:72:a5:
ab:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:86:90:71:15:DA:C1:EF:E9:EC:09:C2:73:BD:05:42:6D:12:B2:B0
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/nYaQcRXawe_p7AnCc70FQm0SsrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.240.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ba:57:29:97:c2:f2:e1:aa:6d:8f:a5:ba:cb:95:6a:b5:e9:
a2:66:3a:c9:b7:b4:92:cb:00:9e:b7:85:33:41:eb:ef:61:3d:
da:bf:89:5c:10:64:7c:d8:d7:2c:e3:67:39:4a:dd:b2:c4:79:
48:2e:8b:fa:c3:0b:ae:ef:0f:f9:80:94:b8:96:47:7f:87:92:
8a:42:72:08:70:b8:a9:af:c4:6e:2d:84:46:f8:57:e4:51:b7:
ab:e9:f1:b4:16:93:e4:ae:00:b2:13:86:f2:10:d3:7d:3e:05:
e3:40:27:b6:bf:c6:4c:22:cf:41:8c:fd:15:a2:b4:80:96:ad:
ab:4c:14:e9:a8:b0:a1:c7:62:6a:c5:9b:ca:48:b7:1f:79:fe:
1e:e4:1e:6e:a0:16:06:74:10:6f:e8:ef:d9:33:6f:43:a9:03:
f5:96:38:f6:37:de:4c:ca:7c:7b:cd:6f:a2:14:35:1e:57:dc:
08:ec:94:20:26:c6:2c:ed:c4:3f:5d:20:bc:2b:9e:5c:6e:e3:
b5:23:18:d4:2d:fe:05:c0:a3:82:6b:c8:b1:28:22:94:d9:bd:
7a:47:53:65:36:58:d5:20:4e:f1:58:51:66:4b:4e:06:5a:e6:
31:28:95:f6:31:38:de:ea:0f:fb:f3:d8:75:9e:3f:9c:f0:19:
cd:57:80:ee
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEQrgWFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDQy
NzEyNDYyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWQ4NjkwNzExNWRh
YzFlZmU5ZWMwOWMyNzNiZDA1NDI2ZDEyYjJiMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANy/aSBa8N/Kzypw34aNqJ2B/Ekbw8iDy7nVqzrz9lCkfFRQ
0H/Dum1fwARWjeCjnevqigSuxUHXHU/OFQ8RwijIPbcdEdlGEqlAbGVl2ogk8frn
Se29EaMEYUftkyNnwfIsZOGC5Qrf4elGNXVSlNWIfqpHqKe6IzYkE6Bs0UBWOTl5
v2CZB4reAr5AYZ2VdRUvqUrx6363Txa4Y70kJGCJOOMvQm8xut0xD4+G5gWOBWvc
jt81t+1y4EbAzeCPnNlW/dOmScj4gfnJkOiVjrnqz9L53ayfDxgbuMYYnxRgRy+J
yJJFS+WEyQmVtLVuYctfibbxBCOjvgMcInKlq8kCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSdhpBxFdrB7+nsCcJzvQVCbRKysDAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS9uWWFRY1JYYXdlX3A3QW5DYzcwRlFtMFNzckEucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVmvwMA0GCSqGSIb3DQEBCwUA
A4IBAQCSulcpl8Ly4aptj6W6y5VqtemiZjrJt7SSywCet4UzQevvYT3av4lcEGR8
2Ncs42c5St2yxHlILov6wwuu7w/5gJS4lkd/h5KKQnIIcLipr8RuLYRG+FfkUber
6fG0FpPkrgCyE4byENN9PgXjQCe2v8ZMIs9BjP0VorSAlq2rTBTpqLChx2JqxZvK
SLcfef4e5B5uoBYGdBBv6O/ZM29DqQP1ljj2N95Mynx7zW+iFDUeV9wI7JQgJsYs
7cQ/XSC8K55cbuO1IxjULf4FwKOCa8ixKCKU2b16R1NlNljVIE7xWFFmS04GWuYx
KJX2MTje6g/789h1nj+c8BnNV4Du
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org