Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d0fad1-b8b1-4960-b67f-02edf08f7cf8/1/jmcr9T9D92RLtZa6MHImy99BI3E.roa
File: jmcr9T9D92RLtZa6MHImy99BI3E.roa (raw, json)
Hash identifier: wCsofcGHJVtVLUoTJ/YqyePwDaVfz95mR5mvvV3bPGM=
Subject key identifier: 8E:67:2B:F5:3F:43:F7:64:4B:B5:96:BA:30:72:26:CB:DF:41:23:71
Certificate issuer: /CN=9a1a08692f228da0c41b317c6fa7cc5c3bec51e1
Certificate serial: 0533C039
Authority key identifier: 9A:1A:08:69:2F:22:8D:A0:C4:1B:31:7C:6F:A7:CC:5C:3B:EC:51:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mhoIaS8ijaDEGzF8b6fMXDvsUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d0fad1-b8b1-4960-b67f-02edf08f7cf8/1/jmcr9T9D92RLtZa6MHImy99BI3E.roa
Signing time: Fri 18 Mar 2022 15:42:27 +0000
ROA not before: Fri 18 Mar 2022 15:42:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204903
IP address blocks: 185.236.106.0/24 maxlen: 24
185.236.107.0/24 maxlen: 24
185.236.105.0/24 maxlen: 24
185.236.104.0/24 maxlen: 24
185.236.104.0/22 maxlen: 22
2a12:7bc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87277625 (0x533c039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1a08692f228da0c41b317c6fa7cc5c3bec51e1
Validity
Not Before: Mar 18 15:42:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e672bf53f43f7644bb596ba307226cbdf412371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ff:a4:df:90:b0:6f:e4:10:99:ae:b1:d3:86:
0d:7c:85:61:1a:12:5f:99:59:b2:0f:9b:6c:a2:ea:
12:f6:94:06:00:51:44:3c:d5:5c:61:42:16:61:23:
60:8a:ac:d1:02:53:35:d9:76:42:50:70:d9:14:ea:
5e:46:38:50:46:aa:69:12:61:0b:5a:94:64:ee:b2:
f1:f0:f8:b1:a2:e6:0e:05:00:02:16:4d:e6:16:f3:
fa:52:cd:f1:97:0d:be:c1:a5:44:47:83:59:83:aa:
81:9d:a0:bc:a1:5b:22:6c:de:94:fb:54:81:f7:16:
c2:5f:ac:da:f6:91:cf:b5:c1:9b:73:8c:cc:30:21:
26:3e:10:97:74:9b:99:d0:f4:c3:4e:cd:ac:a4:0a:
dc:09:d2:a7:68:d8:24:f7:b5:75:4a:82:67:ca:35:
19:34:49:4b:51:41:01:09:12:10:0e:62:f8:7a:d1:
ca:ae:17:04:61:df:2a:f3:e4:0e:fd:2d:5a:7c:c0:
b5:94:86:cf:95:16:8c:42:ef:4c:1a:8e:be:e0:09:
62:ca:b9:9d:0a:4b:84:44:4b:42:da:3e:0d:fa:68:
37:b1:87:03:0b:d1:cd:04:80:86:a8:49:6f:9e:20:
26:8d:11:31:1f:45:7d:95:6b:87:fb:dc:76:70:fd:
b5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:67:2B:F5:3F:43:F7:64:4B:B5:96:BA:30:72:26:CB:DF:41:23:71
X509v3 Authority Key Identifier:
keyid:9A:1A:08:69:2F:22:8D:A0:C4:1B:31:7C:6F:A7:CC:5C:3B:EC:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mhoIaS8ijaDEGzF8b6fMXDvsUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d0fad1-b8b1-4960-b67f-02edf08f7cf8/1/jmcr9T9D92RLtZa6MHImy99BI3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d0fad1-b8b1-4960-b67f-02edf08f7cf8/1/mhoIaS8ijaDEGzF8b6fMXDvsUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.104.0/22
IPv6:
2a12:7bc0::/32
Signature Algorithm: sha256WithRSAEncryption
2b:3a:4d:d3:77:b6:11:fa:82:9a:fd:19:ac:f5:e3:36:4f:ce:
ba:f2:f0:12:41:c6:c8:5a:d0:03:57:65:10:3b:b0:15:98:cb:
ae:e9:c3:ca:ba:90:47:a3:ec:81:5c:95:26:64:41:0e:a1:5e:
5d:c6:6e:41:76:19:22:ed:12:82:84:3f:fb:b2:c5:99:67:bc:
fb:9e:dd:16:8a:f8:44:3b:f2:86:9c:69:f9:1c:c5:08:aa:3e:
5d:da:14:59:99:2a:84:77:5a:f8:9f:3c:f3:64:83:aa:cf:1a:
b0:b4:b5:63:b2:27:f0:67:4c:5d:d0:5b:0e:b3:1b:0a:1d:2d:
dd:ef:9d:7a:d3:bd:f6:64:aa:a9:0c:1a:e7:ba:4e:7e:29:5c:
06:cb:1d:d0:9e:82:9c:93:b6:9e:37:12:0e:4f:c3:05:4d:d3:
86:a6:4a:0b:e0:70:e6:9b:1a:1e:82:58:a2:2d:b7:af:d6:96:
9b:2b:f0:2d:0e:f1:d1:0a:d5:ca:07:7a:59:9f:b9:77:e2:40:
c8:37:d7:02:8f:b5:60:d3:28:12:b9:a5:7f:10:a1:c5:ce:f3:
e7:70:4d:8e:7d:f5:15:af:a9:5d:67:b9:0e:03:47:2c:a4:ab:
47:ca:e1:51:10:09:53:d0:c2:22:06:c8:c6:a8:3c:48:07:82:
25:cc:92:49
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBTPAOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YTFhMDg2OTJmMjI4ZGEwYzQxYjMxN2M2ZmE3Y2M1YzNiZWM1MWUxMB4XDTIyMDMx
ODE1NDIyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGU2NzJiZjUzZjQz
Zjc2NDRiYjU5NmJhMzA3MjI2Y2JkZjQxMjM3MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJP/pN+QsG/kEJmusdOGDXyFYRoSX5lZsg+bbKLqEvaUBgBR
RDzVXGFCFmEjYIqs0QJTNdl2QlBw2RTqXkY4UEaqaRJhC1qUZO6y8fD4saLmDgUA
AhZN5hbz+lLN8ZcNvsGlREeDWYOqgZ2gvKFbImzelPtUgfcWwl+s2vaRz7XBm3OM
zDAhJj4Ql3SbmdD0w07NrKQK3AnSp2jYJPe1dUqCZ8o1GTRJS1FBAQkSEA5i+HrR
yq4XBGHfKvPkDv0tWnzAtZSGz5UWjELvTBqOvuAJYsq5nQpLhERLQto+DfpoN7GH
AwvRzQSAhqhJb54gJo0RMR9FfZVrh/vcdnD9ta8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSOZyv1P0P3ZEu1lrowcibL30EjcTAfBgNVHSMEGDAWgBSaGghpLyKNoMQb
MXxvp8xcO+xR4TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21ob0lhUzhpamFERUd6RjhiNmZNWER2c1VlRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvZDBmYWQxLWI4YjEtNDk2MC1iNjdmLTAyZWRmMDhmN2NmOC8x
L2ptY3I5VDlEOTJSTHRaYTZNSElteTk5QkkzRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
ZDBmYWQxLWI4YjEtNDk2MC1iNjdmLTAyZWRmMDhmN2NmOC8xL21ob0lhUzhpamFE
RUd6RjhiNmZNWER2c1VlRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnsaDANBAIAAjAHAwUAKhJ7wDAN
BgkqhkiG9w0BAQsFAAOCAQEAKzpN03e2EfqCmv0ZrPXjNk/OuvLwEkHGyFrQA1dl
EDuwFZjLrunDyrqQR6PsgVyVJmRBDqFeXcZuQXYZIu0SgoQ/+7LFmWe8+57dFor4
RDvyhpxp+RzFCKo+XdoUWZkqhHda+J8882SDqs8asLS1Y7In8GdMXdBbDrMbCh0t
3e+detO99mSqqQwa57pOfilcBssd0J6CnJO2njcSDk/DBU3ThqZKC+Bw5psaHoJY
oi23r9aWmyvwLQ7x0QrVygd6WZ+5d+JAyDfXAo+1YNMoErmlfxChxc7z53BNjn31
Fa+pXWe5DgNHLKSrR8rhURAJU9DCIgbIxqg8SAeCJcySSQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:58 2024 by rpki-client on console-fra.rpki-client.org