Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/9faalcDsmczMUESR1feoG5bv54I.roa
File: 9faalcDsmczMUESR1feoG5bv54I.roa (raw, json)
Hash identifier: t+lYGcTw6r35AT4hT0OVd7nDtFRakWB0rE0C76iH9W0=
Subject key identifier: F5:F6:9A:95:C0:EC:99:CC:CC:50:44:91:D5:F7:A8:1B:96:EF:E7:82
Certificate issuer: /CN=6cf96a7c01d62e37acecf0786f64978905121647
Certificate serial: 018418DCFC1FB802907E29A6F66B86629868
Authority key identifier: 6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/9faalcDsmczMUESR1feoG5bv54I.roa
Signing time: Thu 27 Oct 2022 09:54:06 +0000
ROA not before: Thu 27 Oct 2022 09:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204006
IP address blocks: 185.117.134.0/24 maxlen: 24
185.117.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:dc:fc:1f:b8:02:90:7e:29:a6:f6:6b:86:62:98:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf96a7c01d62e37acecf0786f64978905121647
Validity
Not Before: Oct 27 09:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5f69a95c0ec99cccc504491d5f7a81b96efe782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:16:56:aa:ac:3b:54:78:86:17:6e:fa:96:c7:
32:27:a1:27:b3:c6:09:f0:d8:c9:e1:81:c8:b3:0c:
35:4e:dc:8f:9f:9f:f0:4e:e0:ea:7a:1f:39:41:ff:
6f:5f:d0:32:62:cc:b6:23:98:08:b1:f4:7c:c6:4b:
5d:fe:30:3e:71:14:ad:b4:28:05:4a:91:76:19:a5:
74:b7:e5:5d:b0:9b:97:8a:cd:e9:d7:d2:2e:0b:61:
e4:1e:d5:47:bb:23:6a:93:e3:9a:b2:3c:58:8f:d0:
8c:d2:97:3c:12:18:ad:dd:dc:74:68:14:5b:1e:ac:
44:f3:55:38:3d:b6:43:14:e1:10:e7:5d:c0:13:67:
6b:36:64:8c:93:bc:37:12:35:b9:f4:3b:8f:44:90:
b0:38:f6:63:0a:24:54:ac:c5:d8:58:d9:03:c9:ce:
ca:d2:00:64:51:73:d6:6d:b6:88:09:e6:07:e7:98:
9f:e1:fe:1a:54:5f:01:d7:5a:ec:3c:af:0e:dc:b9:
14:29:5f:4b:7e:a7:11:cb:d7:b2:8f:1b:22:97:7d:
63:da:40:d5:3f:6c:e1:b8:0e:67:c0:df:1a:02:ac:
06:0a:fb:5c:56:23:e5:76:59:f0:c6:d5:aa:40:f4:
8a:04:13:96:b6:97:d9:cb:7f:e4:ce:fa:e4:ea:00:
63:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F6:9A:95:C0:EC:99:CC:CC:50:44:91:D5:F7:A8:1B:96:EF:E7:82
X509v3 Authority Key Identifier:
keyid:6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/9faalcDsmczMUESR1feoG5bv54I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/bPlqfAHWLjes7PB4b2SXiQUSFkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.134.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:38:17:ab:7e:14:27:4d:f3:e4:22:62:70:23:60:19:11:d8:
ac:91:92:e1:3e:3b:6d:a7:17:a9:a9:5d:ba:46:c4:64:30:3b:
79:58:6b:3a:f5:b8:6b:fd:d0:12:66:2c:56:be:e4:92:29:6e:
b1:90:84:6c:7e:0d:40:36:89:6e:e2:81:09:96:db:cf:ea:f4:
1e:5d:bc:2e:fc:89:e3:a0:1b:37:15:dd:c3:2e:16:78:a5:39:
4c:7a:e3:91:a3:6e:bf:3d:f7:0f:ed:f0:05:ab:f2:ff:8e:f1:
91:18:95:30:0d:3e:a5:3a:43:98:d4:a2:78:e6:dd:7d:ba:e4:
04:60:2a:42:de:c6:8f:ff:0e:06:e4:da:4d:50:bb:a2:56:f8:
3e:48:f3:1c:2a:53:3d:56:7f:93:ea:c6:5d:79:66:e5:4a:af:
c3:75:1a:64:7d:6b:87:fe:0b:73:bb:8a:72:8f:cd:f1:05:59:
93:48:45:3a:ae:75:3b:6a:27:84:8f:25:7b:41:2b:4d:d7:bf:
46:81:2d:a5:97:24:90:27:f6:9d:6a:19:b4:ee:14:ef:73:f2:
de:fa:0d:3a:64:b6:dd:2c:50:47:ed:df:ff:15:c0:bf:57:4a:
42:cd:6d:05:fe:fc:6e:0b:8c:9e:7c:05:9d:0e:cf:ab:93:bd:
06:cd:c3:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQY3PwfuAKQfimm9muGYphoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZjk2YTdjMDFkNjJlMzdhY2VjZjA3ODZmNjQ5Nzg5MDUx
MjE2NDcwHhcNMjIxMDI3MDk1NDA2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWY2OWE5NWMwZWM5OWNjY2M1MDQ0OTFkNWY3YTgxYjk2ZWZlNzgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhZWqqw7VHiGF276lscyJ6Ens8YJ
8NjJ4YHIsww1TtyPn5/wTuDqeh85Qf9vX9AyYsy2I5gIsfR8xktd/jA+cRSttCgF
SpF2GaV0t+VdsJuXis3p19IuC2HkHtVHuyNqk+OasjxYj9CM0pc8Ehit3dx0aBRb
HqxE81U4PbZDFOEQ513AE2drNmSMk7w3EjW59DuPRJCwOPZjCiRUrMXYWNkDyc7K
0gBkUXPWbbaICeYH55if4f4aVF8B11rsPK8O3LkUKV9LfqcRy9eyjxsil31j2kDV
P2zhuA5nwN8aAqwGCvtcViPldlnwxtWqQPSKBBOWtpfZy3/kzvrk6gBjAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPX2mpXA7JnMzFBEkdX3qBuW7+eCMB8GA1UdIwQY
MBaAFGz5anwB1i43rOzweG9kl4kFEhZHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlBscWZBSFdMamVzN1BCNGIyU1hpUVVTRmtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy81ZjBmMDYtNTZmNC00MWE1LTg4OWEt
YjE1YjNmYmMwNGE2LzEvOWZhYWxjRHNtY3pNVUVTUjFmZW9HNWJ2NTRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy81ZjBmMDYtNTZmNC00MWE1LTg4OWEtYjE1YjNmYmMwNGE2
LzEvYlBscWZBSFdMamVzN1BCNGIyU1hpUVVTRmtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuXWGMA0G
CSqGSIb3DQEBCwUAA4IBAQCuOBerfhQnTfPkImJwI2AZEdiskZLhPjttpxepqV26
RsRkMDt5WGs69bhr/dASZixWvuSSKW6xkIRsfg1ANolu4oEJltvP6vQeXbwu/Inj
oBs3Fd3DLhZ4pTlMeuORo26/PfcP7fAFq/L/jvGRGJUwDT6lOkOY1KJ45t19uuQE
YCpC3saP/w4G5NpNULuiVvg+SPMcKlM9Vn+T6sZdeWblSq/DdRpkfWuH/gtzu4py
j83xBVmTSEU6rnU7aieEjyV7QStN179GgS2llySQJ/adahm07hTvc/Le+g06ZLbd
LFBH7d//FcC/V0pCzW0F/vxuC4yefAWdDs+rk70GzcN1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:37 2024 by rpki-client on console-fra.rpki-client.org