Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/z8JLij_x4oatJIw2e1powwxlWoA.roa
File: z8JLij_x4oatJIw2e1powwxlWoA.roa (raw, json)
Hash identifier: il2ziWWviz+SafNIxd7uYU5PpCz98DXMA5WZ6V3eCpE=
Subject key identifier: CF:C2:4B:8A:3F:F1:E2:86:AD:24:8C:36:7B:5A:68:C3:0C:65:5A:80
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1D7D9585
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/z8JLij_x4oatJIw2e1powwxlWoA.roa
Signing time: Mon 20 Jun 2022 09:26:44 +0000
ROA not before: Mon 20 Jun 2022 09:26:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60860
IP address blocks: 109.72.122.0/24 maxlen: 24
185.30.200.0/23 maxlen: 23
185.30.203.0/24 maxlen: 24
185.30.202.0/24 maxlen: 24
93.185.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 494769541 (0x1d7d9585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jun 20 09:26:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfc24b8a3ff1e286ad248c367b5a68c30c655a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e0:7f:24:fd:db:54:6b:81:ed:86:47:67:b0:
5d:d2:f2:3e:3c:bf:e0:44:ac:a0:24:b1:d7:7d:69:
97:62:07:98:cd:4d:82:53:13:f6:2b:37:52:27:20:
97:a3:7e:96:2c:2d:07:53:11:ed:12:21:5c:c0:07:
fe:9e:4a:a2:92:ab:e9:77:9a:e6:be:f8:6e:69:91:
1a:b5:3e:e9:5a:e6:8f:ee:d5:70:b1:b3:54:d1:32:
e5:9a:14:80:9b:3d:0e:bc:cd:91:a3:18:4b:f4:cd:
b7:86:42:89:15:7a:e5:23:5e:85:7d:b9:6e:e2:1f:
89:51:06:5d:79:4f:34:b7:b2:ee:08:73:92:f6:8c:
c5:a5:45:f4:93:1f:2d:f6:84:3e:37:a0:71:00:8c:
a6:98:34:25:4a:14:19:72:df:07:91:4f:05:90:2b:
c7:4b:2a:32:26:76:19:33:19:3c:d8:1e:86:6b:cd:
d5:13:fe:07:c3:46:07:b1:9c:cb:dd:eb:12:d6:92:
e7:31:59:f0:a1:52:16:3e:ec:cf:5b:0c:70:f6:c0:
25:ae:32:7e:32:1c:e2:49:95:91:68:89:fa:a5:5b:
50:c8:ea:4c:3f:71:80:c1:f7:05:ea:42:b4:2d:2e:
34:9b:b3:62:de:f8:2e:8d:1e:6d:45:46:6a:87:d7:
c3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C2:4B:8A:3F:F1:E2:86:AD:24:8C:36:7B:5A:68:C3:0C:65:5A:80
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/z8JLij_x4oatJIw2e1powwxlWoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.214.0/24
109.72.122.0/24
185.30.200.0/22
Signature Algorithm: sha256WithRSAEncryption
76:ba:f9:2b:97:80:31:0d:3a:79:97:09:ca:e8:bf:a2:a6:6f:
7b:e1:76:89:37:c2:14:d8:94:ce:e9:25:a0:bc:93:95:a6:71:
9f:b4:8d:f0:f4:98:30:f0:0b:93:06:ea:2d:7a:43:1e:32:ba:
6c:fd:06:d0:6a:40:ce:aa:34:4e:b9:70:c1:b5:b0:eb:90:2d:
28:9b:d2:91:b3:ea:3b:1a:86:1d:8e:5e:d4:75:2c:bf:22:b2:
1e:69:7d:dc:f7:7b:7f:16:40:54:ba:79:1c:3d:eb:ec:e0:73:
e7:83:81:a1:43:a5:3d:34:3b:47:6b:fb:3a:12:47:0d:82:5e:
a7:d2:ce:6d:f7:16:91:5c:36:d4:4c:87:b9:87:c8:2a:e5:fc:
ca:84:e6:c0:23:f5:bd:ab:a1:6d:f6:6d:0a:e3:b1:e8:d0:ff:
d6:93:51:89:9e:2f:99:23:19:01:f3:96:5e:68:f2:e1:2e:f3:
04:b9:8d:f0:c6:74:62:79:85:c5:7e:81:d4:d4:06:4e:46:e8:
b7:aa:6a:f0:64:b7:5b:d1:35:ff:23:c7:3d:ad:a3:d7:37:a7:
73:0e:00:06:50:27:3f:45:51:e8:78:db:bf:b3:d6:a0:9d:dd:
a7:94:55:a1:f5:12:98:ca:3f:c1:2f:ec:5e:49:5d:7e:46:58:
55:91:8f:a8
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEHX2VhTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODJjZjgwOWMwZTNlOGU1NTUyZjlkMGRkMmUyN2UwZGQyZDhkYWJlMB4XDTIyMDYy
MDA5MjY0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2ZjMjRiOGEzZmYx
ZTI4NmFkMjQ4YzM2N2I1YTY4YzMwYzY1NWE4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/gfyT921Rrge2GR2ewXdLyPjy/4ESsoCSx131pl2IHmM1N
glMT9is3Uicgl6N+liwtB1MR7RIhXMAH/p5KopKr6Xea5r74bmmRGrU+6Vrmj+7V
cLGzVNEy5ZoUgJs9DrzNkaMYS/TNt4ZCiRV65SNehX25buIfiVEGXXlPNLey7ghz
kvaMxaVF9JMfLfaEPjegcQCMppg0JUoUGXLfB5FPBZArx0sqMiZ2GTMZPNgehmvN
1RP+B8NGB7Gcy93rEtaS5zFZ8KFSFj7sz1sMcPbAJa4yfjIc4kmVkWiJ+qVbUMjq
TD9xgMH3BepCtC0uNJuzYt74Lo0ebUVGaofXwzcCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTPwkuKP/Hihq0kjDZ7WmjDDGVagDAfBgNVHSMEGDAWgBSYLPgJwOPo5VUv
nQ3S4n4N0tjavjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21DejRDY0RqNk9WVkw1ME4wdUotRGRMWTJyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8x
L3o4Skxpal94NG9hdEpJdzJlMXBvd3d4bFdvQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
NjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8xL21DejRDY0RqNk9W
Vkw1ME4wdUotRGRMWTJyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAF251gMEAG1IegMEArkeyDANBgkq
hkiG9w0BAQsFAAOCAQEAdrr5K5eAMQ06eZcJyui/oqZve+F2iTfCFNiUzukloLyT
laZxn7SN8PSYMPALkwbqLXpDHjK6bP0G0GpAzqo0TrlwwbWw65AtKJvSkbPqOxqG
HY5e1HUsvyKyHml93Pd7fxZAVLp5HD3r7OBz54OBoUOlPTQ7R2v7OhJHDYJep9LO
bfcWkVw21EyHuYfIKuX8yoTmwCP1vauhbfZtCuOx6ND/1pNRiZ4vmSMZAfOWXmjy
4S7zBLmN8MZ0YnmFxX6B1NQGTkbot6pq8GS3W9E1/yPHPa2j1zencw4ABlAnP0VR
6Hjbv7PWoJ3dp5RVofUSmMo/wS/sXkldfkZYVZGPqA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org