Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/06mQ8fqngqjPQf6fGxqo3IHcXkg.roa
File: 06mQ8fqngqjPQf6fGxqo3IHcXkg.roa (raw, json)
Hash identifier: xDbLOYKLfDBqrtU+2blzDHLeriIeXottQ8JL7LjZO+I=
Subject key identifier: D3:A9:90:F1:FA:A7:82:A8:CF:41:FE:9F:1B:1A:A8:DC:81:DC:5E:48
Certificate issuer: /CN=5ff9f4ecc5d050762c55698440f85ea96f7330f2
Certificate serial: 199C0ED2
Authority key identifier: 5F:F9:F4:EC:C5:D0:50:76:2C:55:69:84:40:F8:5E:A9:6F:73:30:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_n07MXQUHYsVWmEQPheqW9zMPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/06mQ8fqngqjPQf6fGxqo3IHcXkg.roa
Signing time: Sat 01 Jan 2022 09:04:16 +0000
ROA not before: Sat 01 Jan 2022 09:04:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60989
IP address blocks: 185.21.248.0/22 maxlen: 24
2a04:1d80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429657810 (0x199c0ed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff9f4ecc5d050762c55698440f85ea96f7330f2
Validity
Not Before: Jan 1 09:04:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3a990f1faa782a8cf41fe9f1b1aa8dc81dc5e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d9:96:4f:25:0e:d7:86:d5:35:47:ff:7e:97:
51:41:4b:b7:0a:43:02:a7:cc:cf:f6:49:b2:8d:22:
a2:0f:e3:b5:19:e6:09:d1:1d:bd:7c:95:68:b5:d4:
54:97:78:da:50:99:be:d9:05:d8:67:7c:98:1e:ec:
43:36:40:fb:46:b9:0f:3f:95:73:51:36:ef:f2:8f:
92:80:f6:b3:d4:94:df:f0:f2:c2:aa:45:3f:75:68:
15:43:87:37:60:91:11:90:fb:a2:60:bb:f3:4e:bb:
5c:48:4d:bd:8d:59:f9:83:c6:0e:be:c3:c3:20:cc:
54:e8:bf:3e:8b:22:82:41:f0:00:6c:c9:97:c2:44:
18:7d:e0:5b:79:4e:18:44:34:28:7b:82:c2:df:7a:
b8:43:e8:2c:3a:a7:53:2f:4e:01:2c:c4:e5:49:c8:
ba:ff:15:24:77:49:d1:63:d5:5e:03:ae:bf:ca:02:
4d:12:4c:cf:90:81:5e:a5:18:7f:54:02:0e:53:79:
75:ee:6d:24:5d:30:63:90:5e:e8:dd:1d:58:a0:63:
7f:dd:ff:88:b6:98:e2:4c:61:a1:da:e8:6b:e8:c3:
b2:8d:55:33:df:d1:39:02:b7:fd:9c:cd:72:5f:f6:
9b:92:d8:af:3f:ad:4c:20:17:25:80:eb:c9:73:b1:
9c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A9:90:F1:FA:A7:82:A8:CF:41:FE:9F:1B:1A:A8:DC:81:DC:5E:48
X509v3 Authority Key Identifier:
keyid:5F:F9:F4:EC:C5:D0:50:76:2C:55:69:84:40:F8:5E:A9:6F:73:30:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_n07MXQUHYsVWmEQPheqW9zMPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/06mQ8fqngqjPQf6fGxqo3IHcXkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/X_n07MXQUHYsVWmEQPheqW9zMPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.248.0/22
IPv6:
2a04:1d80::/29
Signature Algorithm: sha256WithRSAEncryption
01:75:5b:df:87:59:a8:96:79:e7:9b:2b:20:9f:69:70:68:c8:
e1:93:47:07:21:64:7d:2e:67:60:95:bd:9a:67:da:17:f6:3e:
d7:27:df:0e:f9:c9:88:49:2c:e8:74:11:50:34:ca:30:91:bb:
3a:3e:ab:54:80:2d:0d:ce:92:62:0d:9f:12:ff:df:03:13:44:
5b:a5:bc:1d:73:03:35:6d:db:fd:9a:fb:ea:bf:d1:e8:84:38:
53:fe:6d:26:70:c3:07:90:cd:d7:67:ee:fe:ee:6b:c2:c5:24:
b4:c9:0a:8a:cd:21:fa:ac:f6:b8:21:a0:4d:0c:43:80:22:88:
1c:c9:3c:5f:72:db:ec:e4:4b:a4:8f:9a:8c:76:da:55:aa:e6:
f8:85:9a:ae:04:5b:33:61:32:5b:64:7b:92:f9:d5:e9:5c:5c:
59:ed:2a:52:92:87:e9:73:13:12:b6:6c:89:62:35:1f:7b:07:
b2:9d:b3:ae:0a:dd:d5:1b:00:21:27:1d:ac:65:20:d7:a5:90:
ff:ee:b3:10:ad:63:e3:8c:f5:33:14:6c:ce:4a:16:58:97:c6:
bd:3a:db:4e:c6:99:54:df:03:b8:3d:b8:a4:e0:6c:b1:8b:17:
91:c7:76:76:f9:fb:ab:c8:c8:37:79:af:68:19:b9:57:bd:aa:
8b:ef:70:21
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEGZwO0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZmY5ZjRlY2M1ZDA1MDc2MmM1NTY5ODQ0MGY4NWVhOTZmNzMzMGYyMB4XDTIyMDEw
MTA5MDQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDNhOTkwZjFmYWE3
ODJhOGNmNDFmZTlmMWIxYWE4ZGM4MWRjNWU0ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALDZlk8lDteG1TVH/36XUUFLtwpDAqfMz/ZJso0iog/jtRnm
CdEdvXyVaLXUVJd42lCZvtkF2Gd8mB7sQzZA+0a5Dz+Vc1E27/KPkoD2s9SU3/Dy
wqpFP3VoFUOHN2CREZD7omC78067XEhNvY1Z+YPGDr7DwyDMVOi/PosigkHwAGzJ
l8JEGH3gW3lOGEQ0KHuCwt96uEPoLDqnUy9OASzE5UnIuv8VJHdJ0WPVXgOuv8oC
TRJMz5CBXqUYf1QCDlN5de5tJF0wY5Be6N0dWKBjf93/iLaY4kxhodroa+jDso1V
M9/ROQK3/ZzNcl/2m5LYrz+tTCAXJYDryXOxnAkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTTqZDx+qeCqM9B/p8bGqjcgdxeSDAfBgNVHSMEGDAWgBRf+fTsxdBQdixV
aYRA+F6pb3Mw8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hfbjA3TVhRVUhZc1ZXbUVRUGhlcVc5ek1QSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvNzdjNjYwLWY4MmMtNDEwNi1hYmM5LTRjMWU0OWVjOGYxNi8x
LzA2bVE4ZnFuZ3FqUFFmNmZHeHFvM0lIY1hrZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
NzdjNjYwLWY4MmMtNDEwNi1hYmM5LTRjMWU0OWVjOGYxNi8xL1hfbjA3TVhRVUhZ
c1ZXbUVRUGhlcVc5ek1QSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkV+DANBAIAAjAHAwUDKgQdgDAN
BgkqhkiG9w0BAQsFAAOCAQEAAXVb34dZqJZ555srIJ9pcGjI4ZNHByFkfS5nYJW9
mmfaF/Y+1yffDvnJiEks6HQRUDTKMJG7Oj6rVIAtDc6SYg2fEv/fAxNEW6W8HXMD
NW3b/Zr76r/R6IQ4U/5tJnDDB5DN12fu/u5rwsUktMkKis0h+qz2uCGgTQxDgCKI
HMk8X3Lb7ORLpI+ajHbaVarm+IWargRbM2EyW2R7kvnV6VxcWe0qUpKH6XMTErZs
iWI1H3sHsp2zrgrd1RsAIScdrGUg16WQ/+6zEK1j44z1MxRszkoWWJfGvTrbTsaZ
VN8DuD24pOBssYsXkcd2dvn7q8jIN3mvaBm5V72qi+9wIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:03 2024 by rpki-client on console-ams.rpki-client.org