Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/XhnnrF_v3Eyx04KjXopPDGsO6E4.roa
File: XhnnrF_v3Eyx04KjXopPDGsO6E4.roa (raw, json)
Hash identifier: jRubX2suj1wEQOjSLGcfXA8qtA34lYMJY1dmxt78IcY=
Subject key identifier: 5E:19:E7:AC:5F:EF:DC:4C:B1:D3:82:A3:5E:8A:4F:0C:6B:0E:E8:4E
Certificate issuer: /CN=6735a8295a30d7dfcac2a570b8decb25c4652140
Certificate serial: 064FEC8F
Authority key identifier: 67:35:A8:29:5A:30:D7:DF:CA:C2:A5:70:B8:DE:CB:25:C4:65:21:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZzWoKVow19_KwqVwuN7LJcRlIUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/XhnnrF_v3Eyx04KjXopPDGsO6E4.roa
Signing time: Sat 01 Jan 2022 00:52:25 +0000
ROA not before: Sat 01 Jan 2022 00:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.233.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105901199 (0x64fec8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6735a8295a30d7dfcac2a570b8decb25c4652140
Validity
Not Before: Jan 1 00:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e19e7ac5fefdc4cb1d382a35e8a4f0c6b0ee84e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ad:8a:72:71:d3:d8:94:60:04:e5:4a:37:65:
59:ed:04:c8:f8:c5:f3:c6:b0:02:54:98:a3:ac:8e:
4e:56:c8:df:28:93:4d:04:a3:ec:05:e9:fc:08:13:
0e:79:6f:61:95:83:fd:89:70:11:99:c0:28:03:68:
b7:51:ce:80:cf:e8:41:a9:f6:66:a4:a3:41:ab:05:
8f:1a:54:0e:d3:f8:47:22:1f:c1:fa:b0:45:d0:7b:
14:d3:08:91:7a:01:35:98:07:02:d7:87:7b:37:e8:
d0:13:8e:a2:0b:85:58:34:6a:1f:fb:a0:c4:2b:fe:
ef:20:81:bb:9a:73:1d:04:39:b9:24:1b:19:49:d7:
4c:fa:82:32:48:8b:ee:a6:f8:c9:24:76:63:6a:20:
e9:3b:11:af:e4:f1:bf:d0:15:1d:36:20:21:60:3a:
c5:5e:e5:36:30:06:b6:e6:fc:df:99:06:d4:38:dd:
b2:0b:b6:3a:22:65:f4:dd:30:df:3d:86:3b:10:15:
7b:84:66:ce:b6:db:bf:96:2f:f6:5d:36:c1:f2:b3:
4b:d0:f6:95:ec:97:24:ad:2f:d6:02:e6:f6:67:23:
08:fb:37:83:19:5b:16:bd:a0:97:39:69:0f:19:96:
62:63:31:84:cd:84:02:6a:c0:f7:22:e4:96:a2:82:
93:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:19:E7:AC:5F:EF:DC:4C:B1:D3:82:A3:5E:8A:4F:0C:6B:0E:E8:4E
X509v3 Authority Key Identifier:
keyid:67:35:A8:29:5A:30:D7:DF:CA:C2:A5:70:B8:DE:CB:25:C4:65:21:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZzWoKVow19_KwqVwuN7LJcRlIUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/XhnnrF_v3Eyx04KjXopPDGsO6E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/10b0ec-7055-4ebc-96fc-18e18d659d8f/1/ZzWoKVow19_KwqVwuN7LJcRlIUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.235.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:95:ef:49:f2:38:13:45:f8:7f:ff:08:eb:4d:84:a4:e4:3d:
31:8f:a8:11:35:48:43:8c:d3:5d:7c:c9:a1:1d:1e:86:cd:be:
3e:0f:78:f1:fe:17:e7:78:03:15:4b:52:6f:5b:4b:bc:d7:b9:
30:f9:ef:7a:cf:a5:ac:34:5b:a2:fb:9e:7e:03:6f:cc:c2:5d:
7c:3d:bd:fa:ea:4c:48:d7:28:c4:80:22:c3:f4:35:16:fb:e7:
04:fe:e1:81:21:22:24:1f:93:ff:90:d7:77:20:5c:94:4b:52:
ad:c3:64:34:f9:a0:d8:df:07:8a:1a:63:fd:a0:92:d4:35:96:
c9:97:7e:17:ec:6c:5f:11:60:f6:a7:4d:5e:04:b2:99:fe:0f:
96:16:fe:6a:25:a2:0e:cd:1e:38:f0:15:bb:04:1c:8c:96:98:
ed:fe:8e:17:f5:43:1f:04:61:9f:a7:39:ee:27:12:af:55:cc:
2b:66:54:cf:24:f5:14:98:4d:b4:7b:f9:66:f8:f0:7f:6b:b6:
72:52:f4:b3:e0:be:1a:a9:89:e2:22:00:e5:8f:cb:5e:c1:6c:
3f:7c:67:18:19:73:e3:8e:6f:9c:98:50:c6:f6:95:61:ae:fe:
21:c4:b5:f9:e5:6f:03:8f:c9:3f:20:28:46:51:28:eb:d1:57:
24:f9:77:66
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBk/sjzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NzM1YTgyOTVhMzBkN2RmY2FjMmE1NzBiOGRlY2IyNWM0NjUyMTQwMB4XDTIyMDEw
MTAwNTIyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWUxOWU3YWM1ZmVm
ZGM0Y2IxZDM4MmEzNWU4YTRmMGM2YjBlZTg0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL+tinJx09iUYATlSjdlWe0EyPjF88awAlSYo6yOTlbI3yiT
TQSj7AXp/AgTDnlvYZWD/YlwEZnAKANot1HOgM/oQan2ZqSjQasFjxpUDtP4RyIf
wfqwRdB7FNMIkXoBNZgHAteHezfo0BOOoguFWDRqH/ugxCv+7yCBu5pzHQQ5uSQb
GUnXTPqCMkiL7qb4ySR2Y2og6TsRr+Txv9AVHTYgIWA6xV7lNjAGtub835kG1Djd
sgu2OiJl9N0w3z2GOxAVe4Rmzrbbv5Yv9l02wfKzS9D2leyXJK0v1gLm9mcjCPs3
gxlbFr2glzlpDxmWYmMxhM2EAmrA9yLklqKCk60CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBReGeesX+/cTLHTgqNeik8Maw7oTjAfBgNVHSMEGDAWgBRnNagpWjDX38rC
pXC43sslxGUhQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1p6V29LVm93MTlfS3dxVnd1TjdMSmNSbElVQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWMvMTBiMGVjLTcwNTUtNGViYy05NmZjLTE4ZTE4ZDY1OWQ4Zi8x
L1hobm5yRl92M0V5eDA0S2pYb3BQREdzTzZFNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMv
MTBiMGVjLTcwNTUtNGViYy05NmZjLTE4ZTE4ZDY1OWQ4Zi8xL1p6V29LVm93MTlf
S3dxVnd1TjdMSmNSbElVQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnp6zANBgkqhkiG9w0BAQsFAAOC
AQEAKpXvSfI4E0X4f/8I602EpOQ9MY+oETVIQ4zTXXzJoR0ehs2+Pg948f4X53gD
FUtSb1tLvNe5MPnves+lrDRbovuefgNvzMJdfD29+upMSNcoxIAiw/Q1FvvnBP7h
gSEiJB+T/5DXdyBclEtSrcNkNPmg2N8Hihpj/aCS1DWWyZd+F+xsXxFg9qdNXgSy
mf4Plhb+aiWiDs0eOPAVuwQcjJaY7f6OF/VDHwRhn6c57icSr1XMK2ZUzyT1FJhN
tHv5Zvjwf2u2clL0s+C+GqmJ4iIA5Y/LXsFsP3xnGBlz445vnJhQxvaVYa7+IcS1
+eVvA4/JPyAoRlEo69FXJPl3Zg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:47 2024 by rpki-client on console-fra.rpki-client.org