Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/9HngHmOuYhp0_iNeSRMTpf0bBCI.roa
File: 9HngHmOuYhp0_iNeSRMTpf0bBCI.roa (raw, json)
Hash identifier: V3+/TTetwQrKsyPlbRP+gOLxmLLv8ZwPW98w9odyd6A=
Subject key identifier: F4:79:E0:1E:63:AE:62:1A:74:FE:23:5E:49:13:13:A5:FD:1B:04:22
Certificate issuer: /CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Certificate serial: 10A6DB21
Authority key identifier: 5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/9HngHmOuYhp0_iNeSRMTpf0bBCI.roa
Signing time: Sat 01 Jan 2022 13:00:39 +0000
ROA not before: Sat 01 Jan 2022 13:00:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202268
IP address blocks: 185.126.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279370529 (0x10a6db21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Validity
Not Before: Jan 1 13:00:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f479e01e63ae621a74fe235e491313a5fd1b0422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4c:8c:af:c4:b2:72:07:88:d4:28:71:e9:c3:
34:7c:58:e8:3c:e0:a6:4b:ca:86:35:eb:bc:1f:fa:
fd:04:dc:ca:0f:7b:e5:bf:30:08:f4:01:23:5f:09:
13:2e:3c:1e:55:a2:5c:8d:b1:45:59:e2:a5:12:f3:
cc:b5:29:a0:bf:e3:c0:22:82:86:d7:54:dd:8b:8f:
ea:ac:44:84:cf:91:a7:49:75:1a:e5:b0:6a:12:64:
54:f8:c0:d3:7d:e4:2d:a4:fc:64:0e:88:14:83:b0:
e0:fa:28:0c:4e:e3:43:54:0b:07:89:c0:e3:be:21:
c5:62:cb:31:6e:fc:98:11:dc:9a:3f:d7:5e:a3:d9:
81:a1:4b:cc:1a:70:14:a6:82:8a:32:fb:e1:b5:49:
17:aa:cf:66:5a:10:fd:ca:70:30:c5:66:d9:06:b3:
1f:2d:55:a9:d7:76:65:12:21:c0:83:22:d6:e2:7a:
db:5b:ee:56:1f:fe:d7:0a:e0:0b:c4:43:a6:75:82:
2f:e5:f3:84:c4:b7:04:28:57:74:0f:3a:e8:64:7e:
29:df:ac:ae:57:59:19:f7:d8:91:de:4a:36:9f:67:
5b:a0:ba:34:fb:0e:84:59:4d:20:1e:78:af:eb:6e:
87:e0:f3:9d:b5:af:24:87:c3:28:db:8f:5e:42:d8:
e8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:79:E0:1E:63:AE:62:1A:74:FE:23:5E:49:13:13:A5:FD:1B:04:22
X509v3 Authority Key Identifier:
keyid:5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/9HngHmOuYhp0_iNeSRMTpf0bBCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/XaQypOw7CsTKTk7OwOn01GtJevA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.92.0/24
Signature Algorithm: sha256WithRSAEncryption
09:d9:d0:f3:42:41:68:e2:30:cc:7c:de:74:44:47:fe:f8:f4:
89:b8:c8:7b:21:eb:da:22:05:4f:6d:5b:52:50:e2:81:e1:2b:
d6:c0:64:38:e7:72:fb:a1:99:fb:cb:10:7f:ab:b1:bf:49:52:
7d:4f:e8:72:30:dc:5f:9d:ae:e5:6b:6b:77:c3:cd:10:b9:7e:
cb:5a:0d:98:8c:4d:ce:5b:c7:fb:1d:18:9a:76:4f:c2:04:f6:
ee:18:2e:d4:8c:2e:44:1b:7f:2c:fb:81:0a:01:4a:06:14:fa:
ea:5b:24:88:a8:92:2d:51:24:7a:08:1a:81:08:b3:f8:5e:55:
9b:f9:8f:f9:a4:51:11:00:88:12:cd:ba:54:a1:ae:f0:81:06:
22:ef:08:9f:f5:f7:2e:89:42:2f:04:2f:39:af:da:26:2e:ad:
e8:82:4e:01:1a:59:d4:77:5c:36:2c:a2:b3:24:97:62:5c:6a:
14:75:ae:fe:a9:a4:5f:c7:c9:45:c5:dd:ae:c3:c1:41:5c:98:
97:0f:9f:5f:4f:15:20:7d:52:af:a9:33:b2:c4:09:4f:35:2f:
2f:53:2a:03:a3:f3:56:ce:2f:e4:d4:97:25:f5:f0:78:96:fc:
d0:09:be:f8:78:dd:ea:71:ed:64:19:c8:20:70:64:e5:12:7b:
1e:93:2d:fc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEKbbITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZGE0MzJhNGVjM2IwYWM0Y2E0ZTRlY2VjMGU5ZjRkNDZiNDk3YWYwMB4XDTIyMDEw
MTEzMDAzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQ3OWUwMWU2M2Fl
NjIxYTc0ZmUyMzVlNDkxMzEzYTVmZDFiMDQyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBMjK/EsnIHiNQocenDNHxY6DzgpkvKhjXrvB/6/QTcyg97
5b8wCPQBI18JEy48HlWiXI2xRVnipRLzzLUpoL/jwCKChtdU3YuP6qxEhM+Rp0l1
GuWwahJkVPjA033kLaT8ZA6IFIOw4PooDE7jQ1QLB4nA474hxWLLMW78mBHcmj/X
XqPZgaFLzBpwFKaCijL74bVJF6rPZloQ/cpwMMVm2QazHy1Vqdd2ZRIhwIMi1uJ6
21vuVh/+1wrgC8RDpnWCL+XzhMS3BChXdA866GR+Kd+srldZGffYkd5KNp9nW6C6
NPsOhFlNIB54r+tuh+DznbWvJIfDKNuPXkLY6J8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT0eeAeY65iGnT+I15JExOl/RsEIjAfBgNVHSMEGDAWgBRdpDKk7DsKxMpO
Ts7A6fTUa0l68DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hhUXlwT3c3Q3NUS1RrN093T24wMUd0SmV2QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOWU4NDdmLTQxNDYtNDU2Ni04YzNlLTFiYTU0M2VlYWVkNy8x
LzlIbmdIbU91WWhwMF9pTmVTUk1UcGYwYkJDSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OWU4NDdmLTQxNDYtNDU2Ni04YzNlLTFiYTU0M2VlYWVkNy8xL1hhUXlwT3c3Q3NU
S1RrN093T24wMUd0SmV2QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALl+XDANBgkqhkiG9w0BAQsFAAOC
AQEACdnQ80JBaOIwzHzedERH/vj0ibjIeyHr2iIFT21bUlDigeEr1sBkOOdy+6GZ
+8sQf6uxv0lSfU/ocjDcX52u5Wtrd8PNELl+y1oNmIxNzlvH+x0YmnZPwgT27hgu
1IwuRBt/LPuBCgFKBhT66lskiKiSLVEkeggagQiz+F5Vm/mP+aRREQCIEs26VKGu
8IEGIu8In/X3LolCLwQvOa/aJi6t6IJOARpZ1HdcNiyisySXYlxqFHWu/qmkX8fJ
RcXdrsPBQVyYlw+fX08VIH1Sr6kzssQJTzUvL1MqA6PzVs4v5NSXJfXweJb80Am+
+Hjd6nHtZBnIIHBk5RJ7HpMt/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:48 2024 by rpki-client on console-ams.rpki-client.org