Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/V8zh1lSvn1C7NtmKU1Zn2-zjMyA.roa
File: V8zh1lSvn1C7NtmKU1Zn2-zjMyA.roa (raw, json)
Hash identifier: 04yWRsboFMplZ2YcE8ExWnquuQlTO9E//zvPV9bhnQ4=
Subject key identifier: 57:CC:E1:D6:54:AF:9F:50:BB:36:D9:8A:53:56:67:DB:EC:E3:33:20
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0181E81E3BAEF64410985976377E0217B580
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/V8zh1lSvn1C7NtmKU1Zn2-zjMyA.roa
Signing time: Sun 10 Jul 2022 12:38:24 +0000
ROA not before: Sun 10 Jul 2022 12:38:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60912
IP address blocks: 85.239.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e8:1e:3b:ae:f6:44:10:98:59:76:37:7e:02:17:b5:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Jul 10 12:38:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57cce1d654af9f50bb36d98a535667dbece33320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:80:95:bf:85:93:5b:c7:aa:98:2c:e4:c0:7a:
49:6d:1d:84:98:4a:c0:f6:61:63:b1:5c:59:19:58:
64:c3:02:11:03:51:c4:76:6e:89:a2:e4:8f:ae:a3:
67:e1:77:dc:f5:73:75:63:88:2a:e7:ca:2b:dd:21:
50:14:ba:33:ac:5f:4e:75:5e:88:f4:f4:2a:32:f9:
42:79:13:57:d3:99:2d:69:92:20:39:c0:57:c5:00:
72:e5:49:c1:fb:45:f2:a4:d7:29:c1:90:20:56:92:
bf:ad:4c:5d:f1:2d:ba:71:cd:c5:eb:56:7a:1e:2a:
e1:c3:06:7e:71:cc:9b:00:09:a0:45:b0:db:d9:69:
93:21:d4:51:f9:61:86:a8:2c:6c:39:3a:48:72:e6:
72:d8:15:cf:d4:b1:ba:73:37:b3:56:b1:2f:df:2c:
b0:74:c1:f3:90:78:a8:80:d6:ee:18:57:25:39:9d:
11:3c:ea:9f:e3:bb:57:93:54:62:e5:67:4e:d1:3f:
6b:b5:14:0f:0d:d7:00:90:0b:6b:2f:5a:35:79:dc:
fc:22:34:90:da:ad:2b:9f:18:26:b6:e2:20:35:30:
ee:1d:65:36:1c:bf:bf:b6:74:1d:88:8e:48:35:e1:
d2:66:97:1d:55:b3:3c:0e:1f:93:c9:ee:8b:47:e4:
d6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CC:E1:D6:54:AF:9F:50:BB:36:D9:8A:53:56:67:DB:EC:E3:33:20
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/V8zh1lSvn1C7NtmKU1Zn2-zjMyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.44.0/22
Signature Algorithm: sha256WithRSAEncryption
50:9a:79:5a:a4:3a:f8:8b:9f:ec:31:b9:b7:c8:92:f7:78:43:
f0:48:ed:05:b1:88:de:cd:40:d6:c6:ec:80:a4:68:63:69:6b:
89:47:24:ef:68:ce:12:7e:0a:f9:e2:02:6f:b3:45:9b:ec:86:
17:f4:cd:23:6c:01:6b:4a:a3:cf:ec:4d:b8:83:36:f6:f8:76:
24:1f:d2:74:a4:85:d5:6f:ec:31:0f:b3:67:2d:61:fc:24:17:
9c:6a:98:55:0c:c9:e4:7a:a2:87:d2:2a:b1:f0:de:d1:0a:88:
85:ed:d4:c5:ca:6f:77:00:5f:1f:69:ba:08:ec:e8:a7:d2:cd:
45:b2:19:0e:99:72:82:f0:16:36:5b:f6:11:fd:8f:63:a6:cc:
3d:a3:c3:49:0d:e3:e7:c8:36:e2:bc:ae:c6:16:d0:fd:f2:65:
42:5b:3f:31:f3:cb:81:cd:8e:8e:17:48:21:0a:d4:67:e5:30:
ac:ba:57:12:9b:fd:3e:b4:86:86:81:2a:86:db:50:22:a1:30:
d8:5b:44:56:79:64:d0:6a:aa:b3:cb:20:a3:3a:31:7b:13:9c:
ca:36:dc:44:48:25:0f:ff:b8:dc:ad:69:df:a7:4d:5e:9d:5f:
0a:4e:d5:9d:9e:0b:ca:87:fb:d0:c9:f7:04:bf:86:f9:e2:3e:
e7:f5:fe:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHoHjuu9kQQmFl2N34CF7WAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiN2VjOTQyM2JmOTBjODFkMjJkOTQ4NDFjMTAzNTdhNTQy
NjAzNzkwHhcNMjIwNzEwMTIzODI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1N2NjZTFkNjU0YWY5ZjUwYmIzNmQ5OGE1MzU2NjdkYmVjZTMzMzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4CVv4WTW8eqmCzkwHpJbR2EmErA
9mFjsVxZGVhkwwIRA1HEdm6JouSPrqNn4Xfc9XN1Y4gq58or3SFQFLozrF9OdV6I
9PQqMvlCeRNX05ktaZIgOcBXxQBy5UnB+0XypNcpwZAgVpK/rUxd8S26cc3F61Z6
HirhwwZ+ccybAAmgRbDb2WmTIdRR+WGGqCxsOTpIcuZy2BXP1LG6czezVrEv3yyw
dMHzkHiogNbuGFclOZ0RPOqf47tXk1Ri5WdO0T9rtRQPDdcAkAtrL1o1edz8IjSQ
2q0rnxgmtuIgNTDuHWU2HL+/tnQdiI5INeHSZpcdVbM8Dh+Tye6LR+TWWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFfM4dZUr59QuzbZilNWZ9vs4zMgMB8GA1UdIwQY
MBaAFDt+yUI7+QyB0i2UhBwQNXpUJgN5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzM3SlFqdjVESUhTTFpTRUhCQTFlbFFtQTNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy84ZWE0N2YtZWZmMy00NjI3LTk0ZWQt
MWQxMGYzYzcwYmI0LzEvVjh6aDFsU3ZuMUM3TnRtS1UxWm4yLXpqTXlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy84ZWE0N2YtZWZmMy00NjI3LTk0ZWQtMWQxMGYzYzcwYmI0
LzEvTzM3SlFqdjVESUhTTFpTRUhCQTFlbFFtQTNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVe8sMA0G
CSqGSIb3DQEBCwUAA4IBAQBQmnlapDr4i5/sMbm3yJL3eEPwSO0FsYjezUDWxuyA
pGhjaWuJRyTvaM4Sfgr54gJvs0Wb7IYX9M0jbAFrSqPP7E24gzb2+HYkH9J0pIXV
b+wxD7NnLWH8JBecaphVDMnkeqKH0iqx8N7RCoiF7dTFym93AF8faboI7Oin0s1F
shkOmXKC8BY2W/YR/Y9jpsw9o8NJDePnyDbivK7GFtD98mVCWz8x88uBzY6OF0gh
CtRn5TCsulcSm/0+tIaGgSqG21AioTDYW0RWeWTQaqqzyyCjOjF7E5zKNtxESCUP
/7jcrWnfp01enV8KTtWdngvKh/vQyfcEv4b54j7n9f46
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org