Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/82ba9d-3882-47fd-91d5-4b7e5c5a9d4b/1/JSB3ERxgBgD3dsBCBgdq4Fj32w0.roa
File: JSB3ERxgBgD3dsBCBgdq4Fj32w0.roa (raw, json)
Hash identifier: wSbeCA7UJDOxnk5M9xp3UPgEqhsGLggGrwCwBQDhIXA=
Subject key identifier: 25:20:77:11:1C:60:06:00:F7:76:C0:42:06:07:6A:E0:58:F7:DB:0D
Certificate issuer: /CN=c131d46561744a681016c8d6f9a61b9c17cb7f0f
Certificate serial: 0184BD9E81532F27EEBAB332300DA575AD04
Authority key identifier: C1:31:D4:65:61:74:4A:68:10:16:C8:D6:F9:A6:1B:9C:17:CB:7F:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wTHUZWF0SmgQFsjW-aYbnBfLfw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/82ba9d-3882-47fd-91d5-4b7e5c5a9d4b/1/JSB3ERxgBgD3dsBCBgdq4Fj32w0.roa
Signing time: Mon 28 Nov 2022 09:43:12 +0000
ROA not before: Mon 28 Nov 2022 09:43:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8218
IP address blocks: 185.81.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bd:9e:81:53:2f:27:ee:ba:b3:32:30:0d:a5:75:ad:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c131d46561744a681016c8d6f9a61b9c17cb7f0f
Validity
Not Before: Nov 28 09:43:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=252077111c600600f776c04206076ae058f7db0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:00:5a:1d:6b:93:7f:3e:55:cd:87:67:89:2c:
dc:6f:1b:dd:2a:8f:5b:e1:aa:82:c0:6c:12:c3:36:
09:7e:f8:49:c5:66:92:b6:b2:e2:04:94:33:84:c4:
6d:70:82:58:33:3d:b3:65:d1:c8:34:f1:24:b4:60:
e6:1b:1b:d9:ad:1b:ad:37:34:47:53:a0:ec:f0:d5:
c1:ba:c3:cf:55:0b:66:58:27:99:e8:95:b7:9c:fc:
60:3d:2c:bb:a8:9e:76:1e:56:5e:bd:5d:b7:08:83:
71:8e:d3:0e:2d:3d:3b:f4:53:06:9f:5a:91:eb:c3:
8f:a3:65:ec:8a:59:ff:df:2b:72:22:e3:d6:f5:3d:
d3:1f:12:6f:09:86:3d:2c:7b:2b:11:a8:5c:74:42:
2d:2c:c0:4e:a3:64:16:fb:4e:f5:0b:d6:e4:42:84:
ee:8b:37:ce:16:89:3d:5c:da:5e:79:1c:ad:d9:8a:
6c:7f:c1:cb:84:87:30:80:68:93:54:75:69:13:4d:
bd:cc:34:0c:91:6c:1a:72:2e:06:e0:5a:77:01:83:
db:93:23:b7:cb:3d:16:81:fa:b7:33:62:8d:fa:f0:
d7:2c:fb:38:c8:e1:9f:3a:a2:9f:5c:33:c2:77:9c:
d3:f8:da:f9:c3:86:1a:42:4e:31:f8:a2:cf:b8:95:
d6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:20:77:11:1C:60:06:00:F7:76:C0:42:06:07:6A:E0:58:F7:DB:0D
X509v3 Authority Key Identifier:
keyid:C1:31:D4:65:61:74:4A:68:10:16:C8:D6:F9:A6:1B:9C:17:CB:7F:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wTHUZWF0SmgQFsjW-aYbnBfLfw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/82ba9d-3882-47fd-91d5-4b7e5c5a9d4b/1/JSB3ERxgBgD3dsBCBgdq4Fj32w0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/82ba9d-3882-47fd-91d5-4b7e5c5a9d4b/1/wTHUZWF0SmgQFsjW-aYbnBfLfw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.202.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:52:1d:a8:81:6c:a6:21:a0:52:14:2c:4c:28:ff:c1:58:c3:
20:29:7d:db:62:15:49:a3:4a:99:c7:16:dc:f7:e6:0d:c2:f9:
8f:04:54:91:15:0f:a3:fa:58:64:e1:82:e4:7c:8f:3a:c4:4a:
60:53:3b:09:72:23:a8:93:f3:bb:96:7c:bd:6c:b8:bd:c2:28:
7c:44:6d:fa:7e:79:ec:f5:ca:8a:6e:61:29:2f:cd:f5:cd:87:
bc:6d:fc:1f:5c:bc:db:a3:cd:63:85:30:b1:2f:ee:9a:35:87:
74:1e:31:71:a7:f4:3c:70:aa:e6:b8:d2:f7:50:7f:a2:37:a7:
60:88:34:32:fc:d4:04:3c:1a:d5:cf:b2:67:cf:65:68:f9:0a:
d7:e3:f7:11:41:f3:ed:a6:3b:cb:ba:c2:fd:66:54:8b:4e:23:
9a:5d:1d:ab:80:e3:0c:93:ab:20:db:41:90:9b:dc:4e:74:dc:
a9:3e:0f:f2:b8:09:22:2f:7d:08:b6:c4:d2:d2:0c:1c:0b:f6:
1d:3e:7d:95:8a:3b:cd:6e:57:67:dc:68:a3:92:f0:c8:e4:ec:
25:d3:50:fc:8d:f0:d1:2a:95:95:ee:41:24:7f:f8:08:a7:b7:
7b:b1:fb:c5:73:17:58:b4:f6:da:3c:85:c7:00:da:b2:99:d9:
7e:d0:12:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYS9noFTLyfuurMyMA2lda0EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxMzFkNDY1NjE3NDRhNjgxMDE2YzhkNmY5YTYxYjljMTdj
YjdmMGYwHhcNMjIxMTI4MDk0MzEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTIwNzcxMTFjNjAwNjAwZjc3NmMwNDIwNjA3NmFlMDU4ZjdkYjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4QBaHWuTfz5VzYdniSzcbxvdKo9b
4aqCwGwSwzYJfvhJxWaStrLiBJQzhMRtcIJYMz2zZdHINPEktGDmGxvZrRutNzRH
U6Ds8NXBusPPVQtmWCeZ6JW3nPxgPSy7qJ52HlZevV23CINxjtMOLT079FMGn1qR
68OPo2Xsiln/3ytyIuPW9T3THxJvCYY9LHsrEahcdEItLMBOo2QW+071C9bkQoTu
izfOFok9XNpeeRyt2Ypsf8HLhIcwgGiTVHVpE029zDQMkWwaci4G4Fp3AYPbkyO3
yz0Wgfq3M2KN+vDXLPs4yOGfOqKfXDPCd5zT+Nr5w4YaQk4x+KLPuJXW0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUgdxEcYAYA93bAQgYHauBY99sNMB8GA1UdIwQY
MBaAFMEx1GVhdEpoEBbI1vmmG5wXy38PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1RIVVpXRjBTbWdRRnNqVy1hWWJuQmZMZnc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84MmJhOWQtMzg4Mi00N2ZkLTkxZDUt
NGI3ZTVjNWE5ZDRiLzEvSlNCM0VSeGdCZ0QzZHNCQ0JnZHE0RmozMncwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi84MmJhOWQtMzg4Mi00N2ZkLTkxZDUtNGI3ZTVjNWE5ZDRi
LzEvd1RIVVpXRjBTbWdRRnNqVy1hWWJuQmZMZnc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVHKMA0G
CSqGSIb3DQEBCwUAA4IBAQBPUh2ogWymIaBSFCxMKP/BWMMgKX3bYhVJo0qZxxbc
9+YNwvmPBFSRFQ+j+lhk4YLkfI86xEpgUzsJciOok/O7lny9bLi9wih8RG36fnns
9cqKbmEpL831zYe8bfwfXLzbo81jhTCxL+6aNYd0HjFxp/Q8cKrmuNL3UH+iN6dg
iDQy/NQEPBrVz7Jnz2Vo+QrX4/cRQfPtpjvLusL9ZlSLTiOaXR2rgOMMk6sg20GQ
m9xOdNypPg/yuAkiL30ItsTS0gwcC/YdPn2VijvNbldn3GijkvDI5Owl01D8jfDR
KpWV7kEkf/gIp7d7sfvFcxdYtPbaPIXHANqymdl+0BJF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:44 2024 by rpki-client on console-ams.rpki-client.org