Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/4dH3Yvgj7WIi-hW8ZP5k0Zw672A.roa
File: 4dH3Yvgj7WIi-hW8ZP5k0Zw672A.roa (raw, json)
Hash identifier: lBO0edAIJ4ykUsRLnghSZ0xXsp9YGnb6/TnrNe/trC4=
Subject key identifier: E1:D1:F7:62:F8:23:ED:62:22:FA:15:BC:64:FE:64:D1:9C:3A:EF:60
Certificate issuer: /CN=359ddc737684ce041754a95b56b5a076d8851048
Certificate serial: 05CAEFCE
Authority key identifier: 35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/4dH3Yvgj7WIi-hW8ZP5k0Zw672A.roa
Signing time: Sat 01 Jan 2022 16:05:42 +0000
ROA not before: Sat 01 Jan 2022 16:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207264
IP address blocks: 185.117.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97185742 (0x5caefce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359ddc737684ce041754a95b56b5a076d8851048
Validity
Not Before: Jan 1 16:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1d1f762f823ed6222fa15bc64fe64d19c3aef60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:a5:52:ec:f0:b2:e4:80:60:13:bb:9b:3a:
dd:7b:48:3b:f3:43:54:95:3a:c9:40:5e:1b:7d:1a:
e2:5e:30:49:1b:28:fb:3a:44:c9:0c:1d:7c:30:8f:
44:15:0a:a4:9e:56:fc:1a:cc:ed:f0:21:bf:a5:d5:
64:7c:28:4d:f1:69:2c:c5:e6:94:3a:f0:c5:72:bb:
76:e8:3b:72:76:35:3b:eb:ea:5a:62:83:87:2b:de:
be:da:84:d9:2c:ec:62:5d:68:44:08:c1:b4:1d:e2:
55:c9:93:b3:77:d7:79:60:44:f7:4b:41:08:b6:16:
49:cf:38:e9:39:d2:d1:74:d3:e2:82:bc:61:3f:dc:
b7:5e:4b:04:1a:cf:a0:8d:22:ff:e7:be:28:83:d5:
ac:26:e5:46:d4:d3:1c:8f:a8:00:58:16:53:25:4b:
4e:1f:f4:63:6c:31:7c:2d:41:81:16:20:a1:a2:e4:
d7:9a:8b:c9:26:1b:56:37:2c:d6:43:1a:25:93:8f:
9e:d5:c0:71:63:2b:f8:b7:44:fe:42:27:f5:83:e8:
2c:0c:ae:e4:bd:be:57:45:3d:d7:4f:67:00:d2:bd:
5f:0c:43:47:cc:82:ef:c3:c8:1d:5b:89:4e:a3:d9:
6e:b0:e0:b6:27:88:02:b5:81:f0:bd:1d:ea:c0:55:
2c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D1:F7:62:F8:23:ED:62:22:FA:15:BC:64:FE:64:D1:9C:3A:EF:60
X509v3 Authority Key Identifier:
keyid:35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/4dH3Yvgj7WIi-hW8ZP5k0Zw672A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.98.0/24
Signature Algorithm: sha256WithRSAEncryption
90:d5:e1:ae:41:8e:89:04:2a:77:93:44:a5:8d:96:04:96:59:
c8:af:dd:37:b0:1e:05:f9:c4:ff:c5:b6:ca:39:e8:d6:8e:0e:
2c:2f:d7:f5:25:f0:ed:0c:5e:95:fe:38:2c:fe:77:3c:20:02:
f1:e4:74:11:7b:df:38:5a:a9:76:bb:f9:95:6e:d5:ec:ec:a6:
75:80:ce:77:d5:ee:da:f0:01:fa:9a:df:78:07:d0:9c:aa:bd:
48:c4:ff:7b:01:c3:f1:1b:54:63:05:71:66:db:77:64:52:51:
23:a7:16:b9:01:56:a6:b9:79:91:08:14:5f:62:06:a9:67:8f:
6e:eb:79:ca:e4:bb:08:57:02:34:de:cb:ce:6b:67:4e:fe:af:
79:70:6f:68:32:30:62:3c:cb:5f:cd:79:bb:bd:b2:b9:b2:7d:
40:df:68:0f:49:1f:cf:9e:b3:69:7e:36:48:7d:71:ef:81:b5:
f4:09:47:24:e5:92:ca:d3:ad:af:b0:90:a9:5a:e7:90:44:8c:
d2:71:9a:a0:52:22:9c:75:d8:81:b1:04:6e:14:63:0e:c6:8c:
01:15:bc:9f:a5:65:67:97:22:d8:c5:fb:87:03:3d:59:02:fb:
50:82:ad:50:b3:a9:b9:61:c2:74:7c:25:e9:db:7b:19:9d:02:
8d:b6:9e:88
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBcrvzjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTlkZGM3Mzc2ODRjZTA0MTc1NGE5NWI1NmI1YTA3NmQ4ODUxMDQ4MB4XDTIyMDEw
MTE2MDU0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTFkMWY3NjJmODIz
ZWQ2MjIyZmExNWJjNjRmZTY0ZDE5YzNhZWY2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALD3pVLs8LLkgGATu5s63XtIO/NDVJU6yUBeG30a4l4wSRso
+zpEyQwdfDCPRBUKpJ5W/BrM7fAhv6XVZHwoTfFpLMXmlDrwxXK7dug7cnY1O+vq
WmKDhyvevtqE2SzsYl1oRAjBtB3iVcmTs3fXeWBE90tBCLYWSc846TnS0XTT4oK8
YT/ct15LBBrPoI0i/+e+KIPVrCblRtTTHI+oAFgWUyVLTh/0Y2wxfC1BgRYgoaLk
15qLySYbVjcs1kMaJZOPntXAcWMr+LdE/kIn9YPoLAyu5L2+V0U9109nANK9XwxD
R8yC78PIHVuJTqPZbrDgtieIArWB8L0d6sBVLMMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTh0fdi+CPtYiL6Fbxk/mTRnDrvYDAfBgNVHSMEGDAWgBQ1ndxzdoTOBBdU
qVtWtaB22IUQSDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05aM2NjM2FFemdRWFZLbGJWcldnZHRpRkVFZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODkvYjJlM2QzLTMyZWQtNGJiMi1hY2Y2LTIwNDE0OGM1YTAxNy8x
LzRkSDNZdmdqN1dJaS1oVzhaUDVrMFp3NjcyQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODkv
YjJlM2QzLTMyZWQtNGJiMi1hY2Y2LTIwNDE0OGM1YTAxNy8xL05aM2NjM2FFemdR
WFZLbGJWcldnZHRpRkVFZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALl1YjANBgkqhkiG9w0BAQsFAAOC
AQEAkNXhrkGOiQQqd5NEpY2WBJZZyK/dN7AeBfnE/8W2yjno1o4OLC/X9SXw7Qxe
lf44LP53PCAC8eR0EXvfOFqpdrv5lW7V7OymdYDOd9Xu2vAB+prfeAfQnKq9SMT/
ewHD8RtUYwVxZtt3ZFJRI6cWuQFWprl5kQgUX2IGqWePbut5yuS7CFcCNN7Lzmtn
Tv6veXBvaDIwYjzLX815u72yubJ9QN9oD0kfz56zaX42SH1x74G19AlHJOWSytOt
r7CQqVrnkESM0nGaoFIinHXYgbEEbhRjDsaMARW8n6VlZ5ci2MX7hwM9WQL7UIKt
ULOpuWHCdHwl6dt7GZ0CjbaeiA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:04 2024 by rpki-client on console-ams.rpki-client.org