Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/9Y9I4hctT8FFA6X16ZQbFG313Mo.roa
File: 9Y9I4hctT8FFA6X16ZQbFG313Mo.roa (raw, json)
Hash identifier: /dojeDqb92aj4RgozxdJFy+i1kFqCewtIG+si6ljcJo=
Subject key identifier: F5:8F:48:E2:17:2D:4F:C1:45:03:A5:F5:E9:94:1B:14:6D:F5:DC:CA
Certificate issuer: /CN=9eb289f3d9e13be67a244b72bd24945b2c320a63
Certificate serial: 013F5018
Authority key identifier: 9E:B2:89:F3:D9:E1:3B:E6:7A:24:4B:72:BD:24:94:5B:2C:32:0A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrKJ89nhO-Z6JEtyvSSUWywyCmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/9Y9I4hctT8FFA6X16ZQbFG313Mo.roa
Signing time: Sat 01 Jan 2022 11:53:57 +0000
ROA not before: Sat 01 Jan 2022 11:53:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208359
IP address blocks: 188.119.109.0/24 maxlen: 24
188.119.108.0/24 maxlen: 24
188.119.111.0/24 maxlen: 24
188.119.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20926488 (0x13f5018)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb289f3d9e13be67a244b72bd24945b2c320a63
Validity
Not Before: Jan 1 11:53:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f58f48e2172d4fc14503a5f5e9941b146df5dcca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a5:45:5f:70:dd:b9:16:5f:19:98:30:6d:28:
07:ad:57:35:15:51:53:a1:1f:bd:77:40:41:50:46:
88:0a:74:6a:bb:97:ce:6f:53:7f:21:c4:28:5c:03:
7e:06:d9:29:e7:e0:89:c2:ec:22:1f:3a:89:22:38:
f7:40:09:e7:00:5b:1c:ba:d6:44:a4:fd:69:92:96:
4e:97:9f:3d:b1:16:0a:c6:a9:4e:00:77:7f:2d:7c:
8e:97:8d:1f:a1:1b:ec:92:81:d7:19:b9:e4:ae:9e:
bf:a5:2d:47:6c:b5:81:8f:86:61:f7:c3:2a:ff:54:
d7:a0:7e:b8:a3:af:4d:60:62:a5:65:78:4d:65:96:
44:76:48:17:12:db:aa:64:78:df:18:a3:58:a8:34:
b6:e2:a4:d3:af:39:d7:00:26:c5:63:d9:52:73:51:
24:63:f2:6b:1d:08:8a:7f:ec:3d:f3:09:81:c6:34:
1f:e6:66:ce:da:fa:bd:20:73:e6:ad:34:fc:9e:03:
65:75:41:4f:48:49:c1:5f:c4:6d:f3:dc:ec:c9:e8:
58:9c:b4:36:00:02:ee:a6:68:33:19:36:9c:85:99:
43:b5:e2:7e:2d:ac:cd:06:ab:68:41:21:7d:59:cd:
6d:1c:fc:20:ae:d0:09:79:57:b5:72:e5:8a:df:08:
07:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8F:48:E2:17:2D:4F:C1:45:03:A5:F5:E9:94:1B:14:6D:F5:DC:CA
X509v3 Authority Key Identifier:
keyid:9E:B2:89:F3:D9:E1:3B:E6:7A:24:4B:72:BD:24:94:5B:2C:32:0A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrKJ89nhO-Z6JEtyvSSUWywyCmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/9Y9I4hctT8FFA6X16ZQbFG313Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/nrKJ89nhO-Z6JEtyvSSUWywyCmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.108.0/22
Signature Algorithm: sha256WithRSAEncryption
53:8d:71:d3:1f:31:90:ce:55:dd:12:44:4c:5f:5d:21:87:a3:
dc:f7:c8:06:93:f3:dc:a3:0e:47:d6:98:2e:51:cd:63:58:40:
05:a1:af:83:05:63:06:c2:1a:92:5b:e5:10:23:d5:6c:5e:cc:
fc:cd:32:10:c1:f9:3b:f2:5e:9b:2e:36:28:b9:ae:79:cc:61:
3c:a0:ef:d4:4d:d0:3d:84:1d:08:83:3f:c5:67:f7:8f:0d:fe:
b2:1f:bd:85:31:e8:4a:6e:a9:90:6e:eb:69:7f:8e:ae:ac:fd:
8c:7e:a8:35:24:e3:aa:1b:2a:d6:2b:28:7f:ee:ab:0e:7e:6b:
cd:2b:b5:1d:4e:e2:73:2c:89:c7:19:47:ac:67:96:99:d8:d2:
4b:45:cf:5d:dd:7d:92:51:30:dc:03:80:3c:93:76:f3:67:b8:
23:e7:f5:e6:80:51:ce:21:48:d7:fc:26:c7:78:04:2b:04:85:
ba:ab:d2:bf:ba:5d:71:d9:8a:f0:fc:f2:f7:8f:21:0c:88:ac:
14:4a:39:26:fb:4f:4d:1e:1b:64:55:22:65:f6:a0:3a:93:e0:
5a:4b:d1:a7:48:63:8c:40:34:4c:94:ab:1b:6d:84:df:0d:65:
85:9a:e2:11:52:86:20:4f:5c:f9:b5:ed:92:96:ce:b1:e9:58:
f0:5c:65:f0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAT9QGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZWIyODlmM2Q5ZTEzYmU2N2EyNDRiNzJiZDI0OTQ1YjJjMzIwYTYzMB4XDTIyMDEw
MTExNTM1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjU4ZjQ4ZTIxNzJk
NGZjMTQ1MDNhNWY1ZTk5NDFiMTQ2ZGY1ZGNjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI2lRV9w3bkWXxmYMG0oB61XNRVRU6EfvXdAQVBGiAp0aruX
zm9TfyHEKFwDfgbZKefgicLsIh86iSI490AJ5wBbHLrWRKT9aZKWTpefPbEWCsap
TgB3fy18jpeNH6Eb7JKB1xm55K6ev6UtR2y1gY+GYffDKv9U16B+uKOvTWBipWV4
TWWWRHZIFxLbqmR43xijWKg0tuKk06851wAmxWPZUnNRJGPyax0Iin/sPfMJgcY0
H+Zmztr6vSBz5q00/J4DZXVBT0hJwV/EbfPc7MnoWJy0NgAC7qZoMxk2nIWZQ7Xi
fi2szQaraEEhfVnNbRz8IK7QCXlXtXLlit8IB8cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT1j0jiFy1PwUUDpfXplBsUbfXcyjAfBgNVHSMEGDAWgBSesonz2eE75nok
S3K9JJRbLDIKYzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25yS0o4OW5oTy1aNkpFdHl2U1NVV3l3eUNtTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvNzlhNjA1LTYwNzItNDE0Mi04NTZlLWQ4ZTE4MzU2OTNjZC8x
LzlZOUk0aGN0VDhGRkE2WDE2WlFiRkczMTNNby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
NzlhNjA1LTYwNzItNDE0Mi04NTZlLWQ4ZTE4MzU2OTNjZC8xL25yS0o4OW5oTy1a
NkpFdHl2U1NVV3l3eUNtTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArx3bDANBgkqhkiG9w0BAQsFAAOC
AQEAU41x0x8xkM5V3RJETF9dIYej3PfIBpPz3KMOR9aYLlHNY1hABaGvgwVjBsIa
klvlECPVbF7M/M0yEMH5O/Jemy42KLmuecxhPKDv1E3QPYQdCIM/xWf3jw3+sh+9
hTHoSm6pkG7raX+Orqz9jH6oNSTjqhsq1isof+6rDn5rzSu1HU7icyyJxxlHrGeW
mdjSS0XPXd19klEw3AOAPJN282e4I+f15oBRziFI1/wmx3gEKwSFuqvSv7pdcdmK
8Pzy948hDIisFEo5JvtPTR4bZFUiZfagOpPgWkvRp0hjjEA0TJSrG22E3w1lhZri
EVKGIE9c+bXtkpbOselY8Fxl8A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org