Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ipvEROM5gS626fCK-xPXEaMZzY0.roa
File: ipvEROM5gS626fCK-xPXEaMZzY0.roa (raw, json)
Hash identifier: /nZ/clmk9TBzGAhtiyHCpPiC3COsO7PfO02CWwpA/EQ=
Subject key identifier: 8A:9B:C4:44:E3:39:81:2E:B6:E9:F0:8A:FB:13:D7:11:A3:19:CD:8D
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 09006B71
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ipvEROM5gS626fCK-xPXEaMZzY0.roa
Signing time: Sat 01 Jan 2022 16:00:24 +0000
ROA not before: Sat 01 Jan 2022 16:00:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39192
IP address blocks: 185.234.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151022449 (0x9006b71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a9bc444e339812eb6e9f08afb13d711a319cd8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:68:d4:16:26:ce:0b:65:ed:c5:c5:ba:97:a9:
f7:43:cb:d9:86:d3:47:79:4f:01:d5:14:5d:02:68:
88:1c:da:bb:d2:16:d1:ef:f6:fa:32:3a:89:3e:c3:
81:95:75:69:7e:b7:88:ee:c3:ca:b5:b8:35:87:67:
af:8b:f5:6a:e5:af:12:3b:e0:e7:cb:bf:3e:25:a0:
63:17:70:c2:b7:a3:e5:59:b3:31:26:ae:eb:2d:51:
2a:1a:7a:10:74:7c:27:ee:e0:cb:be:ab:73:f4:b8:
3a:69:66:41:a9:19:9b:a8:e1:91:d6:da:53:cd:d7:
a3:b1:ed:c6:b4:d0:64:6d:9b:a6:9e:cc:b4:57:44:
e2:1e:fa:9b:61:9f:71:8e:7a:63:72:e2:d1:f9:1b:
08:60:24:14:8d:46:23:78:52:30:8c:53:b6:6f:42:
2a:11:4d:82:fe:8a:37:8e:5a:14:bc:20:ad:68:26:
8e:fb:2d:51:16:ae:cb:49:1c:62:36:93:cd:3d:ac:
cc:3f:73:00:d4:76:d2:a1:2d:65:b2:23:4a:ff:9f:
41:2e:79:84:52:4d:f5:7c:b7:85:5a:20:f2:00:3c:
92:13:7f:bf:22:c1:c3:3c:c8:01:6e:76:84:dd:a8:
99:b8:2d:e0:2a:e9:e6:c1:ec:cb:00:15:93:80:17:
a5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9B:C4:44:E3:39:81:2E:B6:E9:F0:8A:FB:13:D7:11:A3:19:CD:8D
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ipvEROM5gS626fCK-xPXEaMZzY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.74.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:2b:c3:5a:86:9a:4c:1a:b7:ce:d9:e2:c5:32:2b:3f:f9:03:
ea:a5:ee:f1:fa:3b:da:48:81:46:9e:db:f8:95:e7:1a:ac:12:
c4:2e:e2:b9:dd:5f:25:75:18:fe:2e:e5:25:2e:ab:54:f5:db:
fb:72:32:8a:ee:57:4b:9b:88:17:78:f4:23:c6:91:60:60:8a:
31:29:0b:62:57:7c:09:4e:26:15:39:1b:67:7c:88:df:70:81:
16:00:22:0b:d8:1e:a3:9a:95:e0:91:b2:24:73:2d:d9:5e:7f:
cc:cd:0a:b0:e8:3a:33:d4:a4:68:e8:df:af:83:2b:15:cc:7c:
3c:5a:7f:7f:de:b6:42:3a:9d:ab:20:94:da:f3:17:72:39:af:
f6:fa:1e:38:b2:e3:26:ab:0f:fd:ba:00:19:a4:b6:fd:5a:be:
37:98:80:07:a2:dc:10:61:e2:80:cb:76:92:36:3b:b0:af:c3:
a9:39:7e:24:c5:f2:62:7f:2f:62:0a:3b:54:0b:b5:db:70:5d:
6c:1f:21:14:0d:15:a8:4c:cc:52:e9:3d:e2:3f:a1:b0:49:5d:
74:8c:35:bc:48:3b:b4:65:58:73:5c:18:c9:c7:62:05:1a:84:
4e:c5:72:ee:61:f2:fd:9a:84:8c:54:04:25:79:ca:5d:0e:c9:
c1:8b:1c:75
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQBrcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDEw
MTE2MDAyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGE5YmM0NDRlMzM5
ODEyZWI2ZTlmMDhhZmIxM2Q3MTFhMzE5Y2Q4ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJxo1BYmzgtl7cXFupep90PL2YbTR3lPAdUUXQJoiBzau9IW
0e/2+jI6iT7DgZV1aX63iO7DyrW4NYdnr4v1auWvEjvg58u/PiWgYxdwwrej5Vmz
MSau6y1RKhp6EHR8J+7gy76rc/S4OmlmQakZm6jhkdbaU83Xo7HtxrTQZG2bpp7M
tFdE4h76m2GfcY56Y3Li0fkbCGAkFI1GI3hSMIxTtm9CKhFNgv6KN45aFLwgrWgm
jvstURauy0kcYjaTzT2szD9zANR20qEtZbIjSv+fQS55hFJN9Xy3hVog8gA8khN/
vyLBwzzIAW52hN2ombgt4Crp5sHsywAVk4AXpfkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSKm8RE4zmBLrbp8Ir7E9cRoxnNjTAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
L2lwdkVST001Z1M2MjZmQ0steFBYRWFNWnpZMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnqSjANBgkqhkiG9w0BAQsFAAOC
AQEArivDWoaaTBq3ztnixTIrP/kD6qXu8fo72kiBRp7b+JXnGqwSxC7iud1fJXUY
/i7lJS6rVPXb+3Iyiu5XS5uIF3j0I8aRYGCKMSkLYld8CU4mFTkbZ3yI33CBFgAi
C9geo5qV4JGyJHMt2V5/zM0KsOg6M9SkaOjfr4MrFcx8PFp/f962QjqdqyCU2vMX
cjmv9voeOLLjJqsP/boAGaS2/Vq+N5iAB6LcEGHigMt2kjY7sK/DqTl+JMXyYn8v
Ygo7VAu123BdbB8hFA0VqEzMUuk94j+hsElddIw1vEg7tGVYc1wYycdiBRqETsVy
7mHy/ZqEjFQEJXnKXQ7JwYscdQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org