Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/Du3Y7x7eIYOWeQv61CF_ypQHtKY.roa
File: Du3Y7x7eIYOWeQv61CF_ypQHtKY.roa (raw, json)
Hash identifier: 3K1/EBi7ICz8WMTByl0HBDmK7r+xSdztg3Ne9JVAu7A=
Subject key identifier: 0E:ED:D8:EF:1E:DE:21:83:96:79:0B:FA:D4:21:7F:CA:94:07:B4:A6
Certificate issuer: /CN=7a478c5aa226a278e8b1906f371c60cfc7d87e8e
Certificate serial: 03D20313
Authority key identifier: 7A:47:8C:5A:A2:26:A2:78:E8:B1:90:6F:37:1C:60:CF:C7:D8:7E:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekeMWqImonjosZBvNxxgz8fYfo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/Du3Y7x7eIYOWeQv61CF_ypQHtKY.roa
Signing time: Tue 12 Apr 2022 14:52:36 +0000
ROA not before: Tue 12 Apr 2022 14:52:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30762
IP address blocks: 185.236.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64094995 (0x3d20313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a478c5aa226a278e8b1906f371c60cfc7d87e8e
Validity
Not Before: Apr 12 14:52:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eedd8ef1ede218396790bfad4217fca9407b4a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b0:b6:fb:65:c6:1d:70:2f:39:ac:e8:4f:ba:
8e:88:bd:a0:dd:75:fc:d1:67:ae:c8:35:e3:47:31:
f8:f6:94:61:36:f1:b2:70:22:5e:75:e6:67:6f:a5:
cd:cd:22:3b:bf:d3:31:57:46:8c:b3:35:e2:de:fd:
a9:58:a6:81:20:70:9c:4c:70:ba:cb:7a:07:03:26:
6f:65:ce:21:8d:c1:ee:11:35:d6:09:b5:79:44:52:
b0:1f:03:7d:4c:0d:a5:8d:8e:16:6b:00:00:d1:d5:
37:bc:f4:f4:d9:41:c9:fd:1e:01:bd:ed:45:3c:86:
27:db:57:84:bd:c8:bf:ed:17:52:c5:83:52:ab:00:
bd:d7:db:db:a8:d6:99:71:14:99:e1:ab:d4:6f:96:
78:bb:bb:54:7d:00:7e:5a:bf:b2:f8:57:d7:42:cd:
ae:d3:a3:ed:79:a8:b7:68:41:b3:a4:33:11:2c:c8:
24:4c:a7:69:e0:9c:1e:c6:57:9b:e0:02:a1:17:93:
31:3d:d3:2b:0c:c5:3b:1b:57:20:be:9c:2c:8a:11:
04:78:c0:d9:ca:d6:b7:9c:73:02:63:eb:4e:ca:5e:
07:f3:f6:60:75:b6:76:74:a2:58:97:3e:4e:ca:65:
95:bf:2c:98:ec:ff:43:40:cc:dd:cb:f2:ac:f6:c5:
93:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:ED:D8:EF:1E:DE:21:83:96:79:0B:FA:D4:21:7F:CA:94:07:B4:A6
X509v3 Authority Key Identifier:
keyid:7A:47:8C:5A:A2:26:A2:78:E8:B1:90:6F:37:1C:60:CF:C7:D8:7E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekeMWqImonjosZBvNxxgz8fYfo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/Du3Y7x7eIYOWeQv61CF_ypQHtKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/ekeMWqImonjosZBvNxxgz8fYfo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.125.0/24
Signature Algorithm: sha256WithRSAEncryption
42:44:e4:05:27:7a:63:12:ec:82:72:a2:be:46:0f:d8:2d:f1:
28:13:25:bf:2b:ca:93:af:c6:16:45:e2:b7:0d:ef:2e:37:b7:
ea:f8:53:8c:e5:3d:f8:67:fd:e8:86:1f:ed:cb:ad:7a:dc:ec:
2d:45:b5:bf:dd:1f:40:37:ab:14:8d:65:55:8e:23:4b:6a:ba:
68:77:c8:95:a1:4e:aa:cb:f3:38:f1:7e:8a:82:ae:6c:9e:9a:
57:0f:f5:76:5c:6c:30:e2:ad:2e:20:d3:60:18:56:3c:5f:bb:
b8:b7:ff:f4:89:cd:97:fe:21:4f:08:88:fa:96:06:5a:d1:87:
d6:90:01:9b:94:91:c9:90:0d:7e:cd:0f:01:86:d4:9a:55:f2:
1c:4e:48:5b:76:bb:b9:e2:66:5a:1e:47:6a:a2:72:a2:f6:c5:
51:0e:9b:9d:9a:2b:f6:20:fb:bb:4e:60:0f:24:24:f4:ea:2d:
e2:f3:06:77:c3:96:21:ac:01:2d:38:1e:48:9b:42:36:e0:ce:
9e:3a:da:26:97:3d:13:dd:da:31:84:54:09:87:ba:fd:03:ce:
2c:45:e2:f4:91:e6:da:43:48:2a:92:fa:94:7e:36:c0:a7:ae:
f5:61:74:9e:28:4f:48:6f:fa:45:df:fe:f4:14:8f:8f:ab:4e:
90:20:60:26
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9IDEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YTQ3OGM1YWEyMjZhMjc4ZThiMTkwNmYzNzFjNjBjZmM3ZDg3ZThlMB4XDTIyMDQx
MjE0NTIzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGVlZGQ4ZWYxZWRl
MjE4Mzk2NzkwYmZhZDQyMTdmY2E5NDA3YjRhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMKwtvtlxh1wLzms6E+6joi9oN11/NFnrsg140cx+PaUYTbx
snAiXnXmZ2+lzc0iO7/TMVdGjLM14t79qVimgSBwnExwust6BwMmb2XOIY3B7hE1
1gm1eURSsB8DfUwNpY2OFmsAANHVN7z09NlByf0eAb3tRTyGJ9tXhL3Iv+0XUsWD
UqsAvdfb26jWmXEUmeGr1G+WeLu7VH0Aflq/svhX10LNrtOj7Xmot2hBs6QzESzI
JEynaeCcHsZXm+ACoReTMT3TKwzFOxtXIL6cLIoRBHjA2crWt5xzAmPrTspeB/P2
YHW2dnSiWJc+Tspllb8smOz/Q0DM3cvyrPbFkzkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQO7djvHt4hg5Z5C/rUIX/KlAe0pjAfBgNVHSMEGDAWgBR6R4xaoiaieOix
kG83HGDPx9h+jjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VrZU1XcUltb25qb3NaQnZOeHhnejhmWWZvNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvNTFhNTIwLWUwOGQtNDNiMy1hNmIwLWQ3NmVjOWNjMGQyOC8x
L0R1M1k3eDdlSVlPV2VRdjYxQ0ZfeXBRSHRLWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
NTFhNTIwLWUwOGQtNDNiMy1hNmIwLWQ3NmVjOWNjMGQyOC8xL2VrZU1XcUltb25q
b3NaQnZOeHhnejhmWWZvNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnsfTANBgkqhkiG9w0BAQsFAAOC
AQEAQkTkBSd6YxLsgnKivkYP2C3xKBMlvyvKk6/GFkXitw3vLje36vhTjOU9+Gf9
6IYf7cutetzsLUW1v90fQDerFI1lVY4jS2q6aHfIlaFOqsvzOPF+ioKubJ6aVw/1
dlxsMOKtLiDTYBhWPF+7uLf/9InNl/4hTwiI+pYGWtGH1pABm5SRyZANfs0PAYbU
mlXyHE5IW3a7ueJmWh5HaqJyovbFUQ6bnZor9iD7u05gDyQk9Oot4vMGd8OWIawB
LTgeSJtCNuDOnjraJpc9E93aMYRUCYe6/QPOLEXi9JHm2kNIKpL6lH42wKeu9WF0
nihPSG/6Rd/+9BSPj6tOkCBgJg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:38 2024 by rpki-client on console-ams.rpki-client.org