Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/f09iyFOmXUltaGyBPdkv82YfBK8.roa
File: f09iyFOmXUltaGyBPdkv82YfBK8.roa (raw, json)
Hash identifier: mDDv7lgHjBP124r3c8lpX7hlHPJMCm9jMTbMa8y9vc4=
Subject key identifier: 7F:4F:62:C8:53:A6:5D:49:6D:68:6C:81:3D:D9:2F:F3:66:1F:04:AF
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 01B5610A
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/f09iyFOmXUltaGyBPdkv82YfBK8.roa
Signing time: Sat 01 Jan 2022 09:57:51 +0000
ROA not before: Sat 01 Jan 2022 09:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211079
IP address blocks: 185.83.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28664074 (0x1b5610a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Jan 1 09:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f4f62c853a65d496d686c813dd92ff3661f04af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ee:d4:5c:ec:52:82:71:dd:4c:fd:bb:6c:34:
eb:a6:f7:1b:c6:fe:30:8b:e1:2e:8f:5a:a7:a4:a5:
e7:da:b4:50:56:02:c9:bb:ca:e1:39:e8:57:01:86:
8c:22:63:4f:86:e5:24:3d:84:24:c7:cd:97:ac:98:
b1:d8:e8:1b:ef:e4:d5:93:b3:8e:f9:ef:6d:de:9c:
d5:b3:ab:ec:95:b6:2a:f5:f5:3d:d2:04:4c:ac:f1:
74:72:b4:53:5b:18:73:6a:c4:2f:2e:20:5c:45:96:
90:a5:2f:0f:22:2f:40:c3:53:de:04:53:55:51:e6:
19:d2:c6:5d:bf:7d:e5:82:a4:7e:a1:8a:98:d5:39:
d6:d7:32:4c:ba:38:7f:0d:61:2f:b7:cf:9a:e2:ea:
b6:82:6c:ce:88:53:2d:56:8d:1f:53:71:c5:3d:9a:
ba:35:d1:9b:da:7e:80:75:1b:19:18:c3:b3:65:83:
d6:10:3e:48:e4:1a:d3:42:dc:c3:06:5e:1e:d2:f5:
f3:7b:68:28:da:5e:a9:1c:1e:90:8d:b7:cc:9c:0b:
4a:6a:85:57:70:29:77:a5:79:13:9b:20:bd:51:d6:
cd:30:7b:da:a3:23:5a:7d:a5:c7:72:62:70:c2:95:
b7:92:45:28:1f:14:83:57:59:fc:64:40:36:7d:d8:
ed:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4F:62:C8:53:A6:5D:49:6D:68:6C:81:3D:D9:2F:F3:66:1F:04:AF
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/f09iyFOmXUltaGyBPdkv82YfBK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.228.0/24
Signature Algorithm: sha256WithRSAEncryption
62:fe:14:70:e8:4a:db:32:93:94:58:56:f5:8e:38:c2:a6:8f:
28:12:fd:f1:fd:32:cb:bc:af:b5:93:74:96:64:75:3c:81:1c:
da:e7:68:02:06:f8:21:f6:d0:3e:6e:9a:c2:05:46:eb:68:c1:
47:ca:e6:47:b7:8c:94:24:6f:f9:6d:5b:e8:70:6a:71:f3:6b:
4d:25:9f:b2:ec:39:d3:07:b7:69:b3:bd:dd:7d:dc:64:6b:bd:
58:9b:1e:38:93:05:62:db:3d:b6:43:49:14:59:8f:58:75:19:
16:33:88:90:0e:cc:ef:f4:3b:41:11:a4:ac:36:a7:55:6d:58:
5d:65:bb:73:04:b9:f9:25:f6:fa:7d:6e:94:66:99:1e:50:6f:
57:68:23:02:8b:7d:01:89:e0:ef:19:c5:88:f1:28:20:40:61:
4d:f6:cb:f8:20:04:ea:6f:77:79:e8:52:e6:b3:e4:6c:15:1b:
76:c0:92:d8:7f:a7:67:9f:64:fd:90:5d:89:f5:09:42:f5:e9:
f0:06:24:65:7e:a1:58:31:dd:95:2c:19:70:0b:1e:56:9f:43:
4d:d2:69:0b:11:68:0c:20:c9:28:73:61:09:02:6a:b7:14:96:
6c:be:a9:ad:4e:5b:30:65:16:8b:97:48:b4:2d:67:8b:b9:db:
1d:78:f3:ca
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAbVhCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZDQ5MjVlOTc2YWQwYmZiNzNlMDk3ZGE2OTE3ZTgwZjViY2U2YzhjMB4XDTIyMDEw
MTA5NTc1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Y0ZjYyYzg1M2E2
NWQ0OTZkNjg2YzgxM2RkOTJmZjM2NjFmMDRhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK/u1FzsUoJx3Uz9u2w066b3G8b+MIvhLo9ap6Sl59q0UFYC
ybvK4TnoVwGGjCJjT4blJD2EJMfNl6yYsdjoG+/k1ZOzjvnvbd6c1bOr7JW2KvX1
PdIETKzxdHK0U1sYc2rELy4gXEWWkKUvDyIvQMNT3gRTVVHmGdLGXb995YKkfqGK
mNU51tcyTLo4fw1hL7fPmuLqtoJszohTLVaNH1NxxT2aujXRm9p+gHUbGRjDs2WD
1hA+SOQa00LcwwZeHtL183toKNpeqRwekI23zJwLSmqFV3Apd6V5E5sgvVHWzTB7
2qMjWn2lx3JicMKVt5JFKB8Ug1dZ/GRANn3Y7cUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR/T2LIU6ZdSW1obIE92S/zZh8ErzAfBgNVHSMEGDAWgBSdSSXpdq0L+3Pg
l9ppF+gPW85sjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25Va2w2WGF0Q190ejRKZmFhUmZvRDF2T2JJdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvMWYxY2JkLWZlYTYtNDU1My04ZGI2LTRlMDlmOWU4NTcyMy8x
L2YwOWl5Rk9tWFVsdGFHeUJQZGt2ODJZZkJLOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
MWYxY2JkLWZlYTYtNDU1My04ZGI2LTRlMDlmOWU4NTcyMy8xL25Va2w2WGF0Q190
ejRKZmFhUmZvRDF2T2JJdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlT5DANBgkqhkiG9w0BAQsFAAOC
AQEAYv4UcOhK2zKTlFhW9Y44wqaPKBL98f0yy7yvtZN0lmR1PIEc2udoAgb4IfbQ
Pm6awgVG62jBR8rmR7eMlCRv+W1b6HBqcfNrTSWfsuw50we3abO93X3cZGu9WJse
OJMFYts9tkNJFFmPWHUZFjOIkA7M7/Q7QRGkrDanVW1YXWW7cwS5+SX2+n1ulGaZ
HlBvV2gjAot9AYng7xnFiPEoIEBhTfbL+CAE6m93eehS5rPkbBUbdsCS2H+nZ59k
/ZBdifUJQvXp8AYkZX6hWDHdlSwZcAseVp9DTdJpCxFoDCDJKHNhCQJqtxSWbL6p
rU5bMGUWi5dItC1ni7nbHXjzyg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:40 2024 by rpki-client on console-fra.rpki-client.org