Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/OT9GzFif0P3KIj1dzV1b-fx5G5g.roa
File: OT9GzFif0P3KIj1dzV1b-fx5G5g.roa (raw, json)
Hash identifier: PHaOEUTaNiMTFqMgwNpoENtSnkM4mxeTieXpyUczNcY=
Subject key identifier: 39:3F:46:CC:58:9F:D0:FD:CA:22:3D:5D:CD:5D:5B:F9:FC:79:1B:98
Certificate issuer: /CN=bfe6fc768ad47b968e0a259fecc8a3da32fac5ea
Certificate serial: 23A61DC6
Authority key identifier: BF:E6:FC:76:8A:D4:7B:96:8E:0A:25:9F:EC:C8:A3:DA:32:FA:C5:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-b8dorUe5aOCiWf7Mij2jL6xeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/OT9GzFif0P3KIj1dzV1b-fx5G5g.roa
Signing time: Sat 01 Jan 2022 13:04:34 +0000
ROA not before: Sat 01 Jan 2022 13:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201011
IP address blocks: 185.247.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 598089158 (0x23a61dc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe6fc768ad47b968e0a259fecc8a3da32fac5ea
Validity
Not Before: Jan 1 13:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=393f46cc589fd0fdca223d5dcd5d5bf9fc791b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:37:44:c0:62:19:df:ac:57:3e:18:e7:b2:
21:a0:dc:00:f2:fc:89:68:41:df:aa:28:6c:15:56:
4c:0a:08:7e:ad:18:03:a1:ab:50:2a:fe:cc:7a:57:
3b:e8:17:11:32:78:50:c1:93:d8:36:c7:32:49:05:
4e:c4:c9:06:8b:5a:b5:65:76:b5:ed:07:c9:fb:11:
4b:2d:a0:69:8b:ee:98:75:df:81:0a:e3:0c:4c:4c:
77:8c:f5:03:02:40:35:10:0f:60:8e:48:65:c1:69:
85:43:47:1d:7d:e7:87:24:07:d6:0c:f1:42:0e:a4:
73:93:29:66:81:7b:99:49:3d:58:3a:cf:7e:d1:94:
2b:d3:b0:cf:6b:14:56:18:ec:b1:b6:6f:2f:05:6c:
9b:c0:b7:3b:1b:a9:64:2f:cc:11:7d:cf:9e:a0:0d:
96:28:9e:62:83:c0:e0:d9:b3:88:85:7e:4d:7a:af:
21:fb:2b:8a:45:6f:68:1b:91:32:36:ee:84:9b:8a:
cc:b7:69:d2:b0:ef:78:84:fb:51:f9:6b:e0:c0:f0:
53:ba:1e:68:24:c0:e8:ce:f8:40:33:ae:e1:64:a6:
49:90:6e:87:61:2d:ec:9d:47:21:2c:1f:06:bd:10:
3a:ad:27:9c:34:62:e2:56:9d:26:1c:59:2b:91:c3:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3F:46:CC:58:9F:D0:FD:CA:22:3D:5D:CD:5D:5B:F9:FC:79:1B:98
X509v3 Authority Key Identifier:
keyid:BF:E6:FC:76:8A:D4:7B:96:8E:0A:25:9F:EC:C8:A3:DA:32:FA:C5:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-b8dorUe5aOCiWf7Mij2jL6xeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/OT9GzFif0P3KIj1dzV1b-fx5G5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/v-b8dorUe5aOCiWf7Mij2jL6xeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.150.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:a4:a8:7b:b5:73:51:87:ae:30:c3:c7:cf:23:9f:a4:1b:aa:
88:a2:0d:5f:7e:37:a9:7c:55:af:8e:5f:57:c7:74:49:7f:57:
b3:62:df:18:33:d8:d3:2a:63:3a:82:e7:34:d4:4c:1d:ac:f4:
33:dc:fc:d4:35:27:b7:0e:d4:93:aa:7d:91:1c:a5:6e:bf:3d:
61:7a:02:f4:db:1a:61:80:79:b0:90:c2:eb:89:01:28:97:e3:
68:a2:24:75:0e:b5:72:65:74:6a:35:7a:6b:5e:cd:c3:f2:67:
11:a8:96:e6:b1:b3:21:bb:8b:72:97:de:fb:15:b7:41:41:d9:
1e:cb:a1:d8:d1:7c:0c:e3:71:5c:a0:f3:45:85:4a:8a:e0:2a:
ce:ce:a0:b1:60:78:ca:d7:ac:c1:ed:96:9d:7e:ca:d1:63:3a:
fe:68:ef:9c:71:72:6a:9b:9a:da:bc:dd:f8:ab:80:f6:f0:46:
53:ba:6b:7c:11:eb:2e:50:48:6f:ef:5e:1a:e5:b4:c5:14:8c:
83:09:c0:91:38:e5:c4:53:2f:2a:74:2b:99:79:b4:dd:ee:8e:
44:df:1c:a1:40:08:d4:c8:d2:4e:46:5d:4f:32:f7:25:43:b7:
dd:0e:8c:8f:d8:33:5b:ab:66:e3:a8:e9:73:81:5c:4d:af:4a:
02:9f:af:3c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEI6YdxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZmU2ZmM3NjhhZDQ3Yjk2OGUwYTI1OWZlY2M4YTNkYTMyZmFjNWVhMB4XDTIyMDEw
MTEzMDQzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzkzZjQ2Y2M1ODlm
ZDBmZGNhMjIzZDVkY2Q1ZDViZjlmYzc5MWI5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALRNN0TAYhnfrFc+GOeyIaDcAPL8iWhB36oobBVWTAoIfq0Y
A6GrUCr+zHpXO+gXETJ4UMGT2DbHMkkFTsTJBotatWV2te0HyfsRSy2gaYvumHXf
gQrjDExMd4z1AwJANRAPYI5IZcFphUNHHX3nhyQH1gzxQg6kc5MpZoF7mUk9WDrP
ftGUK9Owz2sUVhjssbZvLwVsm8C3OxupZC/MEX3PnqANliieYoPA4NmziIV+TXqv
IfsrikVvaBuRMjbuhJuKzLdp0rDveIT7Uflr4MDwU7oeaCTA6M74QDOu4WSmSZBu
h2Et7J1HISwfBr0QOq0nnDRi4ladJhxZK5HDThsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ5P0bMWJ/Q/coiPV3NXVv5/HkbmDAfBgNVHSMEGDAWgBS/5vx2itR7lo4K
JZ/syKPaMvrF6jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3YtYjhkb3JVZTVhT0NpV2Y3TWlqMmpMNnhlby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvMDBjNzExLTBjMjktNDMwMS05NGJjLWVhNTdjYmUzNjgxMS8x
L09UOUd6RmlmMFAzS0lqMWR6VjFiLWZ4NUc1Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
MDBjNzExLTBjMjktNDMwMS05NGJjLWVhNTdjYmUzNjgxMS8xL3YtYjhkb3JVZTVh
T0NpV2Y3TWlqMmpMNnhlby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALn3ljANBgkqhkiG9w0BAQsFAAOC
AQEAaqSoe7VzUYeuMMPHzyOfpBuqiKINX343qXxVr45fV8d0SX9Xs2LfGDPY0ypj
OoLnNNRMHaz0M9z81DUntw7Uk6p9kRylbr89YXoC9NsaYYB5sJDC64kBKJfjaKIk
dQ61cmV0ajV6a17Nw/JnEaiW5rGzIbuLcpfe+xW3QUHZHsuh2NF8DONxXKDzRYVK
iuAqzs6gsWB4yteswe2WnX7K0WM6/mjvnHFyapua2rzd+KuA9vBGU7prfBHrLlBI
b+9eGuW0xRSMgwnAkTjlxFMvKnQrmXm03e6ORN8coUAI1MjSTkZdTzL3JUO33Q6M
j9gzW6tm46jpc4FcTa9KAp+vPA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org