Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/NOO7m0YzwSYsrGkGv-eTBchEgMI.roa
File: NOO7m0YzwSYsrGkGv-eTBchEgMI.roa (raw, json)
Hash identifier: 9ACo0f1lTn/uRhF29lrvCOKkFZxNlV2enLLmjA8y2SM=
Subject key identifier: 34:E3:BB:9B:46:33:C1:26:2C:AC:69:06:BF:E7:93:05:C8:44:80:C2
Certificate issuer: /CN=b448d626a920e42dacd0e948e966a5e4bcc3c11c
Certificate serial: 018572A7E667CC103B87B69EBA10E0D79EB3
Authority key identifier: B4:48:D6:26:A9:20:E4:2D:AC:D0:E9:48:E9:66:A5:E4:BC:C3:C1:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEjWJqkg5C2s0OlI6Wal5LzDwRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/NOO7m0YzwSYsrGkGv-eTBchEgMI.roa
Signing time: Mon 02 Jan 2023 13:24:44 +0000
ROA not before: Mon 02 Jan 2023 13:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.207.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:e6:67:cc:10:3b:87:b6:9e:ba:10:e0:d7:9e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b448d626a920e42dacd0e948e966a5e4bcc3c11c
Validity
Not Before: Jan 2 13:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34e3bb9b4633c1262cac6906bfe79305c84480c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d3:e4:24:eb:f8:49:35:41:48:43:e1:84:9c:
e3:fa:75:92:20:d8:2a:07:8f:75:7a:e0:b9:0a:bb:
b2:49:2b:b7:b5:a5:1a:79:5e:2a:50:54:f3:2b:52:
b7:1a:ea:ba:bd:2d:c4:2b:7f:4a:b1:cd:e1:a6:76:
83:45:09:90:1b:86:04:61:1b:96:3e:02:15:b6:81:
78:fc:19:2b:f9:d7:7c:97:38:a6:24:d0:1e:40:36:
21:b1:aa:4d:9d:cc:6a:c0:0e:a8:51:4e:ed:38:b4:
f6:5d:1a:cf:a4:1f:c5:28:4e:fd:96:e4:38:75:af:
7b:3f:5e:d0:0f:9a:2c:d2:19:af:14:50:a9:4b:e1:
0a:07:75:f4:28:ca:8e:4f:a1:62:b8:e2:7d:6e:85:
24:4d:a5:4d:d0:66:0a:93:38:08:61:7f:bc:96:bb:
30:72:f6:ee:7d:23:85:65:34:16:f4:e8:82:a3:5c:
4b:4d:17:ac:e2:84:b3:e5:0f:8a:43:2e:b6:85:29:
3d:d9:59:b9:96:a5:97:63:7f:16:2a:79:ae:5f:ad:
e7:56:e2:92:41:f3:21:d6:5b:68:f6:0c:77:49:43:
30:ae:52:f4:6d:08:a0:6d:97:a8:14:19:b5:22:6c:
86:2a:49:7b:f3:14:49:d7:45:cd:c5:08:c5:d5:c9:
2d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E3:BB:9B:46:33:C1:26:2C:AC:69:06:BF:E7:93:05:C8:44:80:C2
X509v3 Authority Key Identifier:
keyid:B4:48:D6:26:A9:20:E4:2D:AC:D0:E9:48:E9:66:A5:E4:BC:C3:C1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEjWJqkg5C2s0OlI6Wal5LzDwRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/NOO7m0YzwSYsrGkGv-eTBchEgMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/55d584-19a1-47c0-95a6-bc8e0b69ac12/1/tEjWJqkg5C2s0OlI6Wal5LzDwRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.237.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:7b:24:c1:d9:46:c1:ef:4f:46:60:e2:cf:e9:37:e5:0a:32:
91:bc:60:69:a1:b0:fa:9f:bf:4e:e7:93:a9:df:82:04:3c:7f:
9a:b3:29:eb:25:a6:b9:13:55:c5:4b:db:7c:2c:dd:1f:c0:c7:
45:f2:9e:20:19:2e:ac:cc:bc:66:97:d2:9e:f1:d5:ce:1f:0b:
48:29:7b:db:86:68:38:49:3a:3f:8b:94:41:97:c7:5b:65:3a:
55:2a:62:4b:88:ae:7d:25:67:4a:26:14:61:41:cf:57:d0:2f:
55:7a:9b:37:36:cd:ef:07:94:4b:d9:5b:64:db:0c:05:23:0a:
07:a5:40:d2:31:89:89:67:2f:0c:35:c0:2e:0a:42:54:22:b8:
fc:e5:59:5d:7e:c3:60:f3:ba:d3:29:07:cc:06:48:2e:d3:e1:
d1:f9:6c:c8:26:cc:fc:a8:ea:36:8a:2f:ed:16:e0:53:fc:e5:
30:f8:2b:1d:28:c3:a5:24:4d:23:6f:61:da:46:3f:95:11:cc:
e4:5e:99:cd:1e:10:48:73:f7:58:28:62:2a:f2:9b:ed:db:b2:
51:8c:6e:91:ef:a6:21:6e:23:fc:41:c9:17:55:3e:2e:99:3d:
ed:84:e8:31:83:c7:0b:42:dd:dd:90:db:77:fc:4f:86:6d:ce:
22:c8:11:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyp+ZnzBA7h7aeuhDg156zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NDhkNjI2YTkyMGU0MmRhY2QwZTk0OGU5NjZhNWU0YmNj
M2MxMWMwHhcNMjMwMTAyMTMyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGUzYmI5YjQ2MzNjMTI2MmNhYzY5MDZiZmU3OTMwNWM4NDQ4MGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdPkJOv4STVBSEPhhJzj+nWSINgq
B491euC5CruySSu3taUaeV4qUFTzK1K3Guq6vS3EK39Ksc3hpnaDRQmQG4YEYRuW
PgIVtoF4/Bkr+dd8lzimJNAeQDYhsapNncxqwA6oUU7tOLT2XRrPpB/FKE79luQ4
da97P17QD5os0hmvFFCpS+EKB3X0KMqOT6FiuOJ9boUkTaVN0GYKkzgIYX+8lrsw
cvbufSOFZTQW9OiCo1xLTRes4oSz5Q+KQy62hSk92Vm5lqWXY38WKnmuX63nVuKS
QfMh1lto9gx3SUMwrlL0bQigbZeoFBm1ImyGKkl78xRJ10XNxQjF1cktZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDTju5tGM8EmLKxpBr/nkwXIRIDCMB8GA1UdIwQY
MBaAFLRI1iapIOQtrNDpSOlmpeS8w8EcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEVqV0pxa2c1QzJzME9sSTZXYWw1THpEd1J3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81NWQ1ODQtMTlhMS00N2MwLTk1YTYt
YmM4ZTBiNjlhYzEyLzEvTk9PN20wWXp3U1lzckdrR3YtZVRCY2hFZ01JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy81NWQ1ODQtMTlhMS00N2MwLTk1YTYtYmM4ZTBiNjlhYzEy
LzEvdEVqV0pxa2c1QzJzME9sSTZXYWw1THpEd1J3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc/tMA0G
CSqGSIb3DQEBCwUAA4IBAQCdeyTB2UbB709GYOLP6TflCjKRvGBpobD6n79O55Op
34IEPH+asynrJaa5E1XFS9t8LN0fwMdF8p4gGS6szLxml9Ke8dXOHwtIKXvbhmg4
STo/i5RBl8dbZTpVKmJLiK59JWdKJhRhQc9X0C9Veps3Ns3vB5RL2Vtk2wwFIwoH
pUDSMYmJZy8MNcAuCkJUIrj85VldfsNg87rTKQfMBkgu0+HR+WzIJsz8qOo2ii/t
FuBT/OUw+CsdKMOlJE0jb2HaRj+VEczkXpnNHhBIc/dYKGIq8pvt27JRjG6R76Yh
biP8QckXVT4umT3thOgxg8cLQt3dkNt3/E+Gbc4iyBE1
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:36 2025 by rpki-client