Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/JboUYDaloAKCi57j8NN_e9dVZnA.roa
File: JboUYDaloAKCi57j8NN_e9dVZnA.roa (raw, json)
Hash identifier: YqzN7Z6y89jMZlliSR0nXT5pVv3PAcaC7fl6VYuMzI0=
Subject key identifier: 25:BA:14:60:36:A5:A0:02:82:8B:9E:E3:F0:D3:7F:7B:D7:55:66:70
Certificate issuer: /CN=f7a70fff261ae39910950b46d5777b0e4836d1cb
Certificate serial: 0EC18602
Authority key identifier: F7:A7:0F:FF:26:1A:E3:99:10:95:0B:46:D5:77:7B:0E:48:36:D1:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96cP_yYa45kQlQtG1Xd7Dkg20cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/JboUYDaloAKCi57j8NN_e9dVZnA.roa
Signing time: Sat 01 Jan 2022 06:05:11 +0000
ROA not before: Sat 01 Jan 2022 06:05:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 185.202.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247563778 (0xec18602)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7a70fff261ae39910950b46d5777b0e4836d1cb
Validity
Not Before: Jan 1 06:05:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25ba146036a5a002828b9ee3f0d37f7bd7556670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cd:fe:66:32:62:9e:ba:34:ef:8c:5b:88:64:
47:81:6a:fe:81:54:c9:dd:f7:85:29:aa:44:ac:11:
86:83:8a:6f:74:16:24:50:46:fd:61:c6:8f:7b:02:
4e:64:d7:4d:e0:41:4f:e4:01:8d:6e:88:af:ed:30:
26:3a:95:61:a9:79:94:ae:e7:bb:ab:ae:32:91:88:
7c:de:e4:53:4b:f7:32:31:31:31:41:02:8c:8a:8b:
8c:a9:3e:df:da:e9:e8:f9:8e:d6:ab:7e:a9:88:63:
f0:ae:ec:6e:fe:0c:5d:57:f3:b7:1f:35:04:8d:7d:
19:a9:46:59:30:25:17:02:da:53:00:d3:70:4a:fd:
74:a3:f0:40:5c:0d:64:de:10:21:df:94:ae:24:89:
fa:18:49:97:43:8e:0b:de:8b:a2:be:72:2e:d0:4d:
8a:99:f3:f1:d9:c7:22:66:0b:ff:20:18:5d:e4:cb:
e4:4b:f2:31:3f:06:23:93:d4:d1:87:79:87:bd:e2:
a7:e8:ab:23:fa:07:98:31:72:bc:1c:c5:76:c0:ff:
0b:f3:c9:70:3a:6d:c6:f0:b3:c7:b6:5a:9c:04:88:
5f:22:e4:4c:06:eb:bd:36:c6:5f:4a:bf:1e:4f:47:
f6:42:b0:55:4b:36:18:ee:8b:39:67:a5:2f:be:35:
ea:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BA:14:60:36:A5:A0:02:82:8B:9E:E3:F0:D3:7F:7B:D7:55:66:70
X509v3 Authority Key Identifier:
keyid:F7:A7:0F:FF:26:1A:E3:99:10:95:0B:46:D5:77:7B:0E:48:36:D1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96cP_yYa45kQlQtG1Xd7Dkg20cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/JboUYDaloAKCi57j8NN_e9dVZnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/96cP_yYa45kQlQtG1Xd7Dkg20cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.60.0/22
Signature Algorithm: sha256WithRSAEncryption
54:d5:65:e0:f7:07:a1:9d:72:e6:6b:01:6b:e8:5c:68:08:24:
3e:39:98:72:25:1e:08:90:0f:50:80:c2:d0:91:36:40:13:b6:
9b:c5:5b:95:29:cf:4a:a5:05:ed:70:ef:13:96:3d:59:12:74:
8d:50:be:c8:da:4e:89:1d:2e:58:7e:c4:b2:bb:dc:0a:ab:15:
c7:83:ea:bd:58:71:8e:90:7e:7b:38:b5:d0:19:0e:4d:b7:97:
1d:76:49:d3:3d:48:3a:2b:40:60:37:ea:e1:17:bc:68:c1:4d:
a3:eb:6e:fb:e2:d2:2f:fd:49:a6:fd:0b:19:e4:1c:3b:0d:b4:
c6:00:2b:43:2c:99:2b:bc:ff:a0:b1:27:78:67:30:d3:63:9e:
fb:b3:59:85:d8:7d:75:54:8c:a4:ec:7a:38:e7:59:8b:b2:25:
54:d5:3d:7f:b0:ca:51:81:56:c0:e3:c2:6e:c9:d9:1c:08:80:
54:af:35:5c:d3:ce:bf:a8:9c:69:eb:11:d5:6f:22:1e:8e:a1:
c0:ae:aa:63:8d:fc:50:2c:a0:40:ff:b6:12:38:0e:04:40:5f:
44:25:3b:ee:bc:57:87:4b:31:fd:b8:1e:29:c9:d7:ae:0f:0e:
7a:ee:c7:f5:0d:59:ef:0f:8d:eb:2b:7b:7f:c3:10:3d:72:86:
56:3e:25:a7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDsGGAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
N2E3MGZmZjI2MWFlMzk5MTA5NTBiNDZkNTc3N2IwZTQ4MzZkMWNiMB4XDTIyMDEw
MTA2MDUxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjViYTE0NjAzNmE1
YTAwMjgyOGI5ZWUzZjBkMzdmN2JkNzU1NjY3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTN/mYyYp66NO+MW4hkR4Fq/oFUyd33hSmqRKwRhoOKb3QW
JFBG/WHGj3sCTmTXTeBBT+QBjW6Ir+0wJjqVYal5lK7nu6uuMpGIfN7kU0v3MjEx
MUECjIqLjKk+39rp6PmO1qt+qYhj8K7sbv4MXVfztx81BI19GalGWTAlFwLaUwDT
cEr9dKPwQFwNZN4QId+UriSJ+hhJl0OOC96Lor5yLtBNipnz8dnHImYL/yAYXeTL
5EvyMT8GI5PU0Yd5h73ip+irI/oHmDFyvBzFdsD/C/PJcDptxvCzx7ZanASIXyLk
TAbrvTbGX0q/Hk9H9kKwVUs2GO6LOWelL7416hECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQluhRgNqWgAoKLnuPw039711VmcDAfBgNVHSMEGDAWgBT3pw//JhrjmRCV
C0bVd3sOSDbRyzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzk2Y1BfeVlhNDVrUWxRdEcxWGQ3RGtnMjBjcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGYvMzA3M2IyLWFlODYtNDJjMy1iZGNiLTY2ZDU0NjM1OTJkNy8x
L0pib1VZRGFsb0FLQ2k1N2o4Tk5fZTlkVlpuQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYv
MzA3M2IyLWFlODYtNDJjMy1iZGNiLTY2ZDU0NjM1OTJkNy8xLzk2Y1BfeVlhNDVr
UWxRdEcxWGQ3RGtnMjBjcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnKPDANBgkqhkiG9w0BAQsFAAOC
AQEAVNVl4PcHoZ1y5msBa+hcaAgkPjmYciUeCJAPUIDC0JE2QBO2m8VblSnPSqUF
7XDvE5Y9WRJ0jVC+yNpOiR0uWH7EsrvcCqsVx4PqvVhxjpB+ezi10BkOTbeXHXZJ
0z1IOitAYDfq4Re8aMFNo+tu++LSL/1Jpv0LGeQcOw20xgArQyyZK7z/oLEneGcw
02Oe+7NZhdh9dVSMpOx6OOdZi7IlVNU9f7DKUYFWwOPCbsnZHAiAVK81XNPOv6ic
aesR1W8iHo6hwK6qY438UCygQP+2EjgOBEBfRCU77rxXh0sx/bgeKcnXrg8Oeu7H
9Q1Z7w+N6yt7f8MQPXKGVj4lpw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:01 2024 by rpki-client on console-fra.rpki-client.org