Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/7IokeNM4hRUJuzEg-UHciWOgce4.roa
File: 7IokeNM4hRUJuzEg-UHciWOgce4.roa (raw, json)
Hash identifier: CXrOpG01j2G/OVt7uQQN4r2wbLqSSZ8/3iBhDkE97/0=
Subject key identifier: EC:8A:24:78:D3:38:85:15:09:BB:31:20:F9:41:DC:89:63:A0:71:EE
Certificate issuer: /CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758
Certificate serial: 04D901D0
Authority key identifier: D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/7IokeNM4hRUJuzEg-UHciWOgce4.roa
Signing time: Sat 01 Jan 2022 14:55:56 +0000
ROA not before: Sat 01 Jan 2022 14:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 185.69.250.0/24 maxlen: 24
185.69.249.0/24 maxlen: 24
185.69.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81330640 (0x4d901d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758
Validity
Not Before: Jan 1 14:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec8a2478d338851509bb3120f941dc8963a071ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:13:77:90:27:70:9d:bd:2b:66:c5:56:5e:80:
02:d1:d8:9e:20:f7:c5:2c:9f:93:83:a4:40:a0:d0:
e6:cb:7e:fa:0d:b7:92:8e:3b:87:f6:ee:31:30:74:
33:69:16:95:07:69:ec:64:91:a7:3e:ed:39:1b:89:
f8:c2:f3:fb:b7:22:27:66:3e:de:9f:69:81:f2:4d:
bb:b4:c2:7c:97:7e:8b:76:b2:ac:70:1d:5d:7c:ae:
02:5a:34:eb:84:86:8d:3a:aa:c5:df:c9:b6:e7:75:
55:e3:8b:37:ef:db:24:d4:b5:09:e9:dd:c5:89:65:
53:db:91:f4:4f:5e:47:b7:f8:ed:63:eb:90:63:eb:
2d:dc:e6:b3:34:ba:04:55:bb:98:84:f5:3d:46:69:
cc:15:d9:34:85:fe:98:36:76:fa:e6:e4:31:46:9d:
ee:16:48:d2:2b:00:fb:59:ad:f8:cd:5d:b5:22:c3:
72:3d:03:7d:b9:0e:4d:ec:aa:fd:83:70:59:9e:97:
78:32:42:b1:2f:63:08:d3:ea:b0:03:93:4c:75:0a:
1b:30:f6:cd:9c:82:47:04:3e:ae:af:4f:2c:26:5b:
76:3e:e6:a4:f3:1a:8c:2e:d3:88:23:c1:4b:c4:79:
16:7a:bf:51:22:65:87:42:dd:37:5e:51:27:a2:d1:
56:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8A:24:78:D3:38:85:15:09:BB:31:20:F9:41:DC:89:63:A0:71:EE
X509v3 Authority Key Identifier:
keyid:D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/7IokeNM4hRUJuzEg-UHciWOgce4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/0Jp_f91UoXzl4SpBgutlJHn511g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.248.0-185.69.250.255
Signature Algorithm: sha256WithRSAEncryption
42:14:af:9d:fe:10:99:69:94:86:39:6b:46:c9:40:0b:80:e6:
38:42:64:3c:80:23:52:fd:97:65:4d:d5:e9:83:e7:0f:68:ac:
68:ca:cb:77:b5:dd:80:2f:c8:5e:ba:ca:db:70:22:be:21:52:
b8:63:62:cd:f1:6e:ce:34:03:fa:12:11:f0:e8:d1:54:b9:84:
48:bc:d0:38:04:31:40:c2:ff:3e:e3:50:f2:8e:9e:0b:dc:51:
49:03:14:71:71:16:13:fb:83:d3:34:5e:94:de:29:59:98:01:
5e:b7:8b:72:b6:f1:52:b6:e6:b5:82:5a:da:89:58:b2:df:99:
69:61:5c:60:94:28:e8:86:45:6b:32:4a:d1:2d:bc:6c:44:5d:
98:7f:a3:7e:a1:5b:ef:b9:25:04:bd:b0:ed:1f:da:80:78:35:
67:e8:d7:71:a8:6e:e4:54:33:e4:89:2c:08:07:90:77:58:07:
eb:ab:74:0a:db:3c:a3:89:ef:ae:e1:8e:4e:10:6a:99:17:ef:
be:72:0f:cb:ff:7a:76:88:db:c3:aa:55:a0:1e:c3:7e:66:bb:
13:54:b9:a2:5b:a2:ab:f3:24:0f:3b:8b:f6:5c:9d:65:75:f4:
d8:22:89:75:82:ef:a4:a2:0e:28:df:ef:b8:75:c7:d4:5a:ed:
9b:6a:b6:ef
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBNkB0DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDlhN2Y3ZmRkNTRhMTdjZTVlMTJhNDE4MmViNjUyNDc5ZjlkNzU4MB4XDTIyMDEw
MTE0NTU1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWM4YTI0NzhkMzM4
ODUxNTA5YmIzMTIwZjk0MWRjODk2M2EwNzFlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKwTd5AncJ29K2bFVl6AAtHYniD3xSyfk4OkQKDQ5st++g23
ko47h/buMTB0M2kWlQdp7GSRpz7tORuJ+MLz+7ciJ2Y+3p9pgfJNu7TCfJd+i3ay
rHAdXXyuAlo064SGjTqqxd/Jtud1VeOLN+/bJNS1CendxYllU9uR9E9eR7f47WPr
kGPrLdzmszS6BFW7mIT1PUZpzBXZNIX+mDZ2+ubkMUad7hZI0isA+1mt+M1dtSLD
cj0DfbkOTeyq/YNwWZ6XeDJCsS9jCNPqsAOTTHUKGzD2zZyCRwQ+rq9PLCZbdj7m
pPMajC7TiCPBS8R5Fnq/USJlh0LdN15RJ6LRVhUCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTsiiR40ziFFQm7MSD5QdyJY6Bx7jAfBgNVHSMEGDAWgBTQmn9/3VShfOXh
KkGC62UkefnXWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBKcF9mOTFVb1h6bDRTcEJndXRsSkhuNTExZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDIvYjNkOTdlLTVjYzItNDY2OS1iMzc4LTU4NzVhNDQ4OWRiYS8x
LzdJb2tlTk00aFJVSnV6RWctVUhjaVdPZ2NlNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDIv
YjNkOTdlLTVjYzItNDY2OS1iMzc4LTU4NzVhNDQ4OWRiYS8xLzBKcF9mOTFVb1h6
bDRTcEJndXRsSkhuNTExZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQDuUX4AwQAuUX6MA0GCSqGSIb3
DQEBCwUAA4IBAQBCFK+d/hCZaZSGOWtGyUALgOY4QmQ8gCNS/ZdlTdXpg+cPaKxo
yst3td2AL8heusrbcCK+IVK4Y2LN8W7ONAP6EhHw6NFUuYRIvNA4BDFAwv8+41Dy
jp4L3FFJAxRxcRYT+4PTNF6U3ilZmAFet4tytvFStua1glraiViy35lpYVxglCjo
hkVrMkrRLbxsRF2Yf6N+oVvvuSUEvbDtH9qAeDVn6NdxqG7kVDPkiSwIB5B3WAfr
q3QK2zyjie+u4Y5OEGqZF+++cg/L/3p2iNvDqlWgHsN+ZrsTVLmiW6Kr8yQPO4v2
XJ1ldfTYIol1gu+kog4o3++4dcfUWu2barbv
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:32 2023 by rpki-client on console-fra.rpki-client.org