Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/S6O7ZPD64aVEIwd_n9dfGoQR2IE.roa
File: S6O7ZPD64aVEIwd_n9dfGoQR2IE.roa (raw, json)
Hash identifier: IMW3uHRM3Mt64bTgG59OMmtN3Ad4n2HzX79v+OPv17Q=
Subject key identifier: 4B:A3:BB:64:F0:FA:E1:A5:44:23:07:7F:9F:D7:5F:1A:84:11:D8:81
Certificate issuer: /CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d
Certificate serial: 09FE4BBE
Authority key identifier: 1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/S6O7ZPD64aVEIwd_n9dfGoQR2IE.roa
Signing time: Sat 01 Jan 2022 03:52:33 +0000
ROA not before: Sat 01 Jan 2022 03:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212492
IP address blocks: 185.61.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167660478 (0x9fe4bbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d
Validity
Not Before: Jan 1 03:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ba3bb64f0fae1a54423077f9fd75f1a8411d881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:d3:8e:0a:1d:1b:c9:7d:83:54:f0:95:f5:
59:50:15:be:8c:41:27:d2:87:d5:a0:29:72:53:2d:
e2:f8:1a:23:c8:0f:71:e2:2e:e0:48:4c:2a:46:e8:
51:d3:76:2e:c8:75:8a:34:67:01:70:e6:aa:aa:91:
b6:2b:3f:43:99:f5:5e:79:4c:40:43:36:9a:1d:3e:
91:65:3e:54:19:24:4e:8b:45:8f:d5:bb:d0:6a:c9:
ff:23:eb:f5:d6:55:5e:99:ed:76:62:a3:90:b1:e5:
fd:84:c6:cf:fc:92:7e:a3:98:5c:0f:f6:f1:bb:5f:
e1:b8:c9:c3:49:ec:5d:0b:e7:bb:40:01:ed:3c:cd:
be:e4:d2:0d:c9:64:82:09:bd:94:b1:ff:9b:c9:89:
cd:ee:9c:3c:7b:77:b2:00:f5:07:31:61:3b:72:b1:
71:d7:ff:d2:ec:ac:86:50:38:da:af:c2:99:22:9b:
1f:32:67:27:37:d8:bf:cc:87:ef:3a:71:d6:1b:40:
45:77:14:68:97:76:a7:27:ec:61:39:54:85:bb:3c:
55:ee:d2:10:6d:a1:da:31:bc:c1:f7:4b:94:ac:ce:
57:e2:34:06:4c:ef:0b:d6:c5:23:fa:6d:c3:3d:73:
ad:0c:f4:76:b3:3e:f3:c7:08:26:f6:2d:dc:02:eb:
bc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A3:BB:64:F0:FA:E1:A5:44:23:07:7F:9F:D7:5F:1A:84:11:D8:81
X509v3 Authority Key Identifier:
keyid:1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/S6O7ZPD64aVEIwd_n9dfGoQR2IE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/HJe0gj08nhIexkmCHgDwp5rrm40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.58.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:4a:96:37:32:42:2e:24:d4:d5:46:6a:ca:c8:8c:a8:84:28:
2e:83:a4:86:57:2c:8f:94:35:68:6b:1d:f3:2f:f1:63:0c:af:
d7:83:16:0a:00:f5:27:9c:4c:e2:43:3b:e6:e8:35:b1:11:fa:
67:06:f3:15:86:32:05:f9:26:56:bf:df:34:13:75:13:b1:3f:
40:24:3d:b4:76:25:61:76:ff:32:f4:e7:ff:08:4e:50:f5:88:
ae:86:b6:8d:e6:2c:f6:85:ea:70:90:7a:52:70:5d:80:e8:16:
91:94:6f:ae:56:84:bd:07:71:32:dc:06:ff:9b:7f:65:48:87:
11:a4:d3:14:1b:35:db:89:59:8c:50:b0:e8:5d:f2:eb:b6:92:
12:e0:c2:dd:80:5e:35:a2:90:29:09:7f:70:80:5c:22:51:fe:
83:f6:38:15:9f:b7:b0:67:23:1a:22:49:26:0d:23:18:68:45:
57:ec:99:17:3f:49:bc:8a:d5:42:e5:0f:c6:e1:96:3e:bb:97:
ec:0e:3f:71:03:69:26:52:87:e1:3f:59:ad:78:43:56:12:18:
57:dc:b8:54:32:29:22:3f:c3:dd:f0:3c:b0:b3:da:62:c9:a4:
6b:dc:01:03:ab:93:59:1c:94:b1:7c:04:f2:2e:2e:13:01:ba:
d6:65:ec:c8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECf5LvjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
Yzk3YjQ4MjNkM2M5ZTEyMWVjNjQ5ODIxZTAwZjBhNzlhZWI5YjhkMB4XDTIyMDEw
MTAzNTIzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGJhM2JiNjRmMGZh
ZTFhNTQ0MjMwNzdmOWZkNzVmMWE4NDExZDg4MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALxP044KHRvJfYNU8JX1WVAVvoxBJ9KH1aApclMt4vgaI8gP
ceIu4EhMKkboUdN2Lsh1ijRnAXDmqqqRtis/Q5n1XnlMQEM2mh0+kWU+VBkkTotF
j9W70GrJ/yPr9dZVXpntdmKjkLHl/YTGz/ySfqOYXA/28btf4bjJw0nsXQvnu0AB
7TzNvuTSDclkggm9lLH/m8mJze6cPHt3sgD1BzFhO3Kxcdf/0uyshlA42q/CmSKb
HzJnJzfYv8yH7zpx1htARXcUaJd2pyfsYTlUhbs8Ve7SEG2h2jG8wfdLlKzOV+I0
BkzvC9bFI/ptwz1zrQz0drM+88cIJvYt3ALrvP8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRLo7tk8PrhpUQjB3+f118ahBHYgTAfBgNVHSMEGDAWgBQcl7SCPTyeEh7G
SYIeAPCnmuubjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hKZTBnajA4bmhJZXhrbUNIZ0R3cDVycm00MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvMTU2NDFhLTY2MTQtNDVlNC1hMmE5LTliOWNkODk2NTllMC8x
L1M2TzdaUEQ2NGFWRUl3ZF9uOWRmR29RUjJJRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
MTU2NDFhLTY2MTQtNDVlNC1hMmE5LTliOWNkODk2NTllMC8xL0hKZTBnajA4bmhJ
ZXhrbUNIZ0R3cDVycm00MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALk9OjANBgkqhkiG9w0BAQsFAAOC
AQEAjkqWNzJCLiTU1UZqysiMqIQoLoOkhlcsj5Q1aGsd8y/xYwyv14MWCgD1J5xM
4kM75ug1sRH6ZwbzFYYyBfkmVr/fNBN1E7E/QCQ9tHYlYXb/MvTn/whOUPWIroa2
jeYs9oXqcJB6UnBdgOgWkZRvrlaEvQdxMtwG/5t/ZUiHEaTTFBs124lZjFCw6F3y
67aSEuDC3YBeNaKQKQl/cIBcIlH+g/Y4FZ+3sGcjGiJJJg0jGGhFV+yZFz9JvIrV
QuUPxuGWPruX7A4/cQNpJlKH4T9ZrXhDVhIYV9y4VDIpIj/D3fA8sLPaYsmka9wB
A6uTWRyUsXwE8i4uEwG61mXsyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:18 2024 by rpki-client on console-ams.rpki-client.org