Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RHb2fbyRCn4W4qBeygw0y2PRT6g.roa
File: RHb2fbyRCn4W4qBeygw0y2PRT6g.roa (raw, json)
Hash identifier: XRbQ76mJUUYllmrnb+V9pltOopEte548P1iW5abX6gc=
Subject key identifier: 44:76:F6:7D:BC:91:0A:7E:16:E2:A0:5E:CA:0C:34:CB:63:D1:4F:A8
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 19351B49
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RHb2fbyRCn4W4qBeygw0y2PRT6g.roa
Signing time: Sat 01 Jan 2022 11:57:11 +0000
ROA not before: Sat 01 Jan 2022 11:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56951
IP address blocks: 85.120.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422910793 (0x19351b49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 11:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4476f67dbc910a7e16e2a05eca0c34cb63d14fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f0:9d:ba:e2:d9:19:8e:8b:b2:1c:77:73:61:
74:5c:93:df:67:75:62:da:8a:09:d4:22:04:2f:33:
5a:06:a0:cc:c5:fe:c0:9b:92:69:0b:0c:ff:3c:2e:
bc:57:1c:2d:6d:3b:da:ff:b4:3e:b6:eb:f3:64:62:
67:fe:df:8c:28:f6:58:ee:89:e6:b7:c4:d3:80:9a:
0d:89:1a:db:03:62:9b:9e:5f:8b:49:44:51:09:8b:
96:39:e4:cf:4e:75:3f:bf:fa:a2:c7:8a:0a:c5:ff:
ff:38:66:96:51:13:54:c5:75:1b:bb:2c:55:87:46:
da:10:a7:81:f5:fc:30:c0:74:23:6a:8c:c3:8d:75:
00:0e:f6:d3:ec:78:c3:be:c2:b4:a2:9e:cf:84:f1:
58:02:ac:ef:f9:22:78:ea:a3:41:3e:73:73:5d:a2:
9a:fe:03:c0:90:e4:d7:ea:bb:b9:0e:1d:f4:db:9a:
66:a3:c4:d0:4a:df:38:38:64:06:2d:56:e9:01:5c:
b8:0f:eb:a0:69:84:c6:05:35:a8:98:84:e0:a2:c0:
46:85:be:66:a9:9f:44:bb:bb:f1:67:16:da:93:2d:
3a:a7:25:7e:33:af:e2:dd:15:67:1c:d2:c5:b4:7f:
69:53:f8:27:cb:2f:dc:df:fa:b9:99:4c:bc:39:30:
d4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:76:F6:7D:BC:91:0A:7E:16:E2:A0:5E:CA:0C:34:CB:63:D1:4F:A8
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RHb2fbyRCn4W4qBeygw0y2PRT6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.32.0/24
Signature Algorithm: sha256WithRSAEncryption
01:42:9b:01:8d:92:cc:cf:c4:1f:f6:bb:85:d8:41:0e:4f:77:
4e:00:44:3f:2e:41:38:95:c8:21:41:35:28:fa:5f:f0:c7:2c:
a6:8f:9f:41:12:29:6d:dc:e2:c9:3b:db:ce:53:ab:fc:a7:64:
4a:68:b6:db:6c:52:26:f3:b4:40:82:1e:5b:e6:09:25:85:13:
d8:11:72:f0:30:31:30:eb:5f:30:eb:d7:45:5f:47:17:04:85:
fe:a2:dc:f0:84:36:42:b9:bd:1f:39:7c:0a:80:cd:c1:d9:6d:
cf:8a:71:7b:ad:5e:07:65:74:9d:37:a8:dc:9a:62:c1:72:fc:
05:12:3f:27:3a:e5:48:2a:57:4d:bb:e6:bc:3e:02:8c:c3:9d:
5b:42:9d:b7:ca:14:1f:7c:c9:1d:98:ad:ac:13:cf:f7:d2:61:
6c:3e:e9:e5:6d:9b:7d:66:7e:7f:4b:19:f4:18:db:15:83:f4:
d6:5b:62:07:8e:c9:e6:1a:b6:ac:9d:05:f2:08:34:b4:30:0a:
c9:0a:a5:6f:2a:1b:62:51:69:5c:e9:c4:3a:8b:ea:b6:d5:c5:
5c:f3:37:8e:89:78:19:e6:cc:8e:19:3e:57:85:03:3c:36:e0:
f5:04:87:45:bc:d2:0e:f5:f2:13:d5:9d:ae:83:20:48:85:85:
b2:f5:72:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGTUbSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MTgzNzg1OTE2Y2Q5OGQ3Yzc3MGQ2ODUxNDU0OTlhOGEwYTE1NzIyMB4XDTIyMDEw
MTExNTcxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ3NmY2N2RiYzkx
MGE3ZTE2ZTJhMDVlY2EwYzM0Y2I2M2QxNGZhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ/wnbri2RmOi7Icd3NhdFyT32d1YtqKCdQiBC8zWgagzMX+
wJuSaQsM/zwuvFccLW072v+0Prbr82RiZ/7fjCj2WO6J5rfE04CaDYka2wNim55f
i0lEUQmLljnkz051P7/6oseKCsX//zhmllETVMV1G7ssVYdG2hCngfX8MMB0I2qM
w411AA720+x4w77CtKKez4TxWAKs7/kieOqjQT5zc12imv4DwJDk1+q7uQ4d9Nua
ZqPE0ErfODhkBi1W6QFcuA/roGmExgU1qJiE4KLARoW+ZqmfRLu78WcW2pMtOqcl
fjOv4t0VZxzSxbR/aVP4J8sv3N/6uZlMvDkw1PMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBREdvZ9vJEKfhbioF7KDDTLY9FPqDAfBgNVHSMEGDAWgBQxg3hZFs2Y18dw
1oUUVJmooKFXIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01ZTjRXUmJObU5mSGNOYUZGRlNacUtDaFZ5SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvNzE5M2RiLTdmODUtNDJiYi1iMDlhLWY1MmM0N2MyMjVkYi8x
L1JIYjJmYnlSQ240VzRxQmV5Z3cweTJQUlQ2Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
NzE5M2RiLTdmODUtNDJiYi1iMDlhLWY1MmM0N2MyMjVkYi8xL01ZTjRXUmJObU5m
SGNOYUZGRlNacUtDaFZ5SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFV4IDANBgkqhkiG9w0BAQsFAAOC
AQEAAUKbAY2SzM/EH/a7hdhBDk93TgBEPy5BOJXIIUE1KPpf8Mcspo+fQRIpbdzi
yTvbzlOr/KdkSmi222xSJvO0QIIeW+YJJYUT2BFy8DAxMOtfMOvXRV9HFwSF/qLc
8IQ2Qrm9Hzl8CoDNwdltz4pxe61eB2V0nTeo3JpiwXL8BRI/JzrlSCpXTbvmvD4C
jMOdW0Kdt8oUH3zJHZitrBPP99JhbD7p5W2bfWZ+f0sZ9BjbFYP01ltiB47J5hq2
rJ0F8gg0tDAKyQqlbyobYlFpXOnEOovqttXFXPM3jol4GebMjhk+V4UDPDbg9QSH
RbzSDvXyE9WdroMgSIWFsvVyKg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org