Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/f6UW6EHIs__fh9ENVQYU33QHvUU.roa
File: f6UW6EHIs__fh9ENVQYU33QHvUU.roa (raw, json)
Hash identifier: kj35Ffz89Qn7OO5Z24iMcsYZSh00leosMb80y6Odzho=
Subject key identifier: 7F:A5:16:E8:41:C8:B3:FF:DF:87:D1:0D:55:06:14:DF:74:07:BD:45
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018528FCD17D0FB87137D48C635D017D17DC
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/f6UW6EHIs__fh9ENVQYU33QHvUU.roa
Signing time: Mon 19 Dec 2022 06:05:35 +0000
ROA not before: Mon 19 Dec 2022 06:05:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41088
IP address blocks: 185.125.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:28:fc:d1:7d:0f:b8:71:37:d4:8c:63:5d:01:7d:17:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Dec 19 06:05:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fa516e841c8b3ffdf87d10d550614df7407bd45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:1a:12:5f:1a:2d:67:5a:af:c2:d0:1b:99:
43:33:7f:91:ed:2e:3e:bc:80:95:f9:19:ad:78:94:
d2:b7:02:7f:41:38:45:10:1c:a3:f8:0b:68:0d:30:
3d:12:d0:07:5b:88:9b:77:11:f2:43:45:7c:89:31:
08:c3:59:7c:6e:fb:72:fd:51:43:a9:43:6b:29:e9:
0b:6f:be:88:76:e8:a1:e7:b4:3e:ca:9d:7d:75:83:
1e:a5:9b:2c:b8:04:f7:e1:74:53:50:11:4a:30:26:
61:da:71:8c:cf:5e:ed:c3:b7:18:70:de:56:7c:81:
25:98:ae:e2:14:f9:b2:06:7d:46:c4:0e:9c:60:7f:
e4:00:6c:06:35:24:eb:69:ff:9e:11:d7:c4:07:34:
e1:98:6f:54:d4:f6:72:f2:ad:58:84:0a:ad:01:53:
0e:f1:39:35:f6:a1:71:d7:94:ce:9a:c7:12:c3:f9:
3c:aa:37:3c:7c:73:3c:82:88:d6:2b:10:95:9c:57:
ef:23:94:f8:48:db:86:2e:1c:b2:72:97:84:4f:a9:
90:d7:3e:76:ca:49:cf:00:cc:fc:5f:14:40:51:0f:
5a:1c:87:63:74:2b:8a:cf:e4:c2:3b:f7:b6:3d:08:
a1:0d:b5:6d:a9:5a:57:1b:d3:fa:72:fe:6e:9a:01:
ec:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A5:16:E8:41:C8:B3:FF:DF:87:D1:0D:55:06:14:DF:74:07:BD:45
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/f6UW6EHIs__fh9ENVQYU33QHvUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.128.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:bc:00:34:76:5c:40:ae:c2:2a:90:8e:09:2c:85:47:1f:ed:
a0:39:97:fc:8b:6f:89:b3:35:65:2f:2a:78:28:5f:bf:ea:51:
73:be:00:f1:88:8e:a3:ae:80:69:51:19:5c:a8:33:72:32:66:
2d:d2:fa:83:64:92:2c:a3:09:9b:ae:7d:74:35:18:72:81:d7:
06:f5:ac:a5:ea:49:1b:e4:08:7e:c3:9d:4f:69:06:11:bf:9c:
48:6a:af:41:d1:20:ab:70:f7:d7:1c:30:22:ea:ac:c5:e3:1f:
33:83:62:0d:34:25:fd:76:e3:83:c5:27:65:03:85:b0:41:1f:
7d:b5:33:01:9d:11:0a:c9:c1:f8:e0:8b:f7:a7:04:76:22:08:
9e:9d:a1:60:c1:07:63:8c:12:46:d4:ec:7c:55:63:b0:f4:0a:
07:c5:eb:3a:62:e8:a0:c0:c5:75:48:a1:39:45:3c:4f:e5:dc:
db:9d:4e:e0:d1:85:7e:1f:2b:0c:3f:6f:0f:91:1d:e3:04:c5:
af:85:9d:31:00:4c:fb:70:17:db:77:0b:6f:62:c7:52:c2:67:
25:b6:92:4e:66:fe:3f:7f:99:9c:63:7c:9f:06:e2:47:e2:41:
c0:fe:be:e4:e3:7c:eb:f7:e0:98:11:05:86:cd:88:7d:2e:71:
8c:69:0b:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUo/NF9D7hxN9SMY10BfRfcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1OWYwZjVmZjYyMGUwZGI1MzExZjY0NzM2OTA5OTczYWM2
MGY2ZjMwHhcNMjIxMjE5MDYwNTM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmE1MTZlODQxYzhiM2ZmZGY4N2QxMGQ1NTA2MTRkZjc0MDdiZDQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg84aEl8aLWdar8LQG5lDM3+R7S4+
vICV+RmteJTStwJ/QThFEByj+AtoDTA9EtAHW4ibdxHyQ0V8iTEIw1l8bvty/VFD
qUNrKekLb76Iduih57Q+yp19dYMepZssuAT34XRTUBFKMCZh2nGMz17tw7cYcN5W
fIElmK7iFPmyBn1GxA6cYH/kAGwGNSTraf+eEdfEBzThmG9U1PZy8q1YhAqtAVMO
8Tk19qFx15TOmscSw/k8qjc8fHM8gojWKxCVnFfvI5T4SNuGLhyycpeET6mQ1z52
yknPAMz8XxRAUQ9aHIdjdCuKz+TCO/e2PQihDbVtqVpXG9P6cv5umgHszQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH+lFuhByLP/34fRDVUGFN90B71FMB8GA1UdIwQY
MBaAFDWfD1/2IODbUxH2RzaQmXOsYPbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2It
ZDFhYmY0ZWUzMmNiLzEvZjZVVzZFSElzX19maDlFTlZRWVUzM1FIdlVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2ItZDFhYmY0ZWUzMmNi
LzEvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuX2AMA0G
CSqGSIb3DQEBCwUAA4IBAQAfvAA0dlxArsIqkI4JLIVHH+2gOZf8i2+JszVlLyp4
KF+/6lFzvgDxiI6jroBpURlcqDNyMmYt0vqDZJIsowmbrn10NRhygdcG9ayl6kkb
5Ah+w51PaQYRv5xIaq9B0SCrcPfXHDAi6qzF4x8zg2INNCX9duODxSdlA4WwQR99
tTMBnREKycH44Iv3pwR2IgienaFgwQdjjBJG1Ox8VWOw9AoHxes6YuigwMV1SKE5
RTxP5dzbnU7g0YV+HysMP28PkR3jBMWvhZ0xAEz7cBfbdwtvYsdSwmcltpJOZv4/
f5mcY3yfBuJH4kHA/r7k43zr9+CYEQWGzYh9LnGMaQvq
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org