Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/2d490c-6ff8-471d-97d2-2d72f23193db/1/BIm_l-Tu4m-_1gjTbMJn-YvV5Fg.roa
File: BIm_l-Tu4m-_1gjTbMJn-YvV5Fg.roa (raw, json)
Hash identifier: 3jARmEc8JcXJ82RSX93kI03FxaTt2gPU8KU+R2WjuLU=
Subject key identifier: 04:89:BF:97:E4:EE:E2:6F:BF:D6:08:D3:6C:C2:67:F9:8B:D5:E4:58
Certificate issuer: /CN=c8d5aa7034250ab1a8789ac86cc0eef3bfc9db5f
Certificate serial: 020FBF5C
Authority key identifier: C8:D5:AA:70:34:25:0A:B1:A8:78:9A:C8:6C:C0:EE:F3:BF:C9:DB:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNWqcDQlCrGoeJrIbMDu87_J218.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/2d490c-6ff8-471d-97d2-2d72f23193db/1/BIm_l-Tu4m-_1gjTbMJn-YvV5Fg.roa
Signing time: Sat 01 Jan 2022 01:58:48 +0000
ROA not before: Sat 01 Jan 2022 01:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12301
IP address blocks: 85.119.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34586460 (0x20fbf5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d5aa7034250ab1a8789ac86cc0eef3bfc9db5f
Validity
Not Before: Jan 1 01:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0489bf97e4eee26fbfd608d36cc267f98bd5e458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4d:83:4e:0c:3d:28:9b:84:81:64:f9:02:70:
70:64:eb:71:06:d3:63:cb:0d:eb:b5:b8:64:42:35:
36:ac:fe:95:c2:4f:20:1b:71:9d:66:d3:73:c8:72:
ba:ca:52:fc:5f:b9:db:14:c1:b6:08:e3:69:e7:56:
2c:eb:09:a2:fe:48:43:35:ff:01:d7:33:67:ce:8e:
94:4b:99:57:bd:4a:b1:63:82:13:e2:fa:ae:a3:8a:
5b:d6:53:55:07:21:d9:19:2d:42:ea:7c:54:69:fd:
2a:df:03:7a:35:23:95:e4:66:be:51:13:50:26:32:
52:f2:d4:1e:8a:2c:2f:e6:82:ef:00:34:12:b6:8c:
c7:68:02:d5:ea:97:68:43:08:ec:56:6a:75:7e:88:
b3:d7:6d:86:95:80:e7:30:66:0f:a2:fc:e8:14:e7:
b2:0e:42:2a:32:78:b8:81:e7:43:87:28:2c:08:70:
e4:c9:f4:df:db:18:62:d4:1b:da:9a:41:a0:9d:c2:
95:79:ff:cf:de:75:34:28:2c:c3:4a:eb:4d:97:3b:
59:6a:46:0e:2c:d4:52:6d:be:04:a1:6d:42:e0:f3:
ff:5d:96:00:56:5d:2e:64:7d:80:78:2e:66:45:96:
00:50:9c:d6:90:39:3f:f8:ff:f8:e2:7c:a1:25:b4:
e7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:89:BF:97:E4:EE:E2:6F:BF:D6:08:D3:6C:C2:67:F9:8B:D5:E4:58
X509v3 Authority Key Identifier:
keyid:C8:D5:AA:70:34:25:0A:B1:A8:78:9A:C8:6C:C0:EE:F3:BF:C9:DB:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNWqcDQlCrGoeJrIbMDu87_J218.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2d490c-6ff8-471d-97d2-2d72f23193db/1/BIm_l-Tu4m-_1gjTbMJn-YvV5Fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2d490c-6ff8-471d-97d2-2d72f23193db/1/yNWqcDQlCrGoeJrIbMDu87_J218.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.8.0/21
Signature Algorithm: sha256WithRSAEncryption
51:5e:38:52:45:db:b4:de:b6:3c:01:9b:db:a8:6c:ed:09:21:
74:a9:3e:4c:ef:db:b5:ae:83:8f:64:e0:ec:4d:eb:22:04:51:
3e:6c:39:11:4f:8e:38:9e:37:55:ef:9d:d5:7f:2a:bd:05:4c:
82:77:f0:a1:2a:40:d0:f5:8b:3b:cc:5d:3f:69:0c:41:85:18:
1a:1a:d2:c5:d3:36:5c:d3:f7:dc:fd:8b:c4:df:d1:75:9a:d3:
dd:1b:af:b9:fe:b1:55:61:64:5a:3c:75:de:32:52:50:02:54:
b6:25:92:60:25:f9:f9:05:86:8c:34:2d:8f:04:c0:6b:fe:40:
9d:e1:55:81:33:cd:9d:73:c9:8c:93:ad:e7:f1:37:f2:bb:c4:
dc:8a:31:0b:b6:5d:ea:c7:0b:50:7d:0c:ad:3b:7a:68:2b:36:
7a:b0:c8:a6:8b:af:e7:9b:47:bb:f0:7d:77:ce:dc:19:f6:fa:
e2:83:65:70:66:02:a7:2b:0f:fc:78:7e:cd:90:a8:3c:4f:16:
50:42:f2:a6:d3:af:5e:d3:33:ab:d2:b1:13:07:88:2c:98:03:
5e:ad:19:ba:f1:dd:0c:42:02:8a:12:d6:cf:a6:3a:49:2e:e9:
5e:35:68:cd:03:6d:8c:c8:be:b0:d7:cc:25:c9:55:4b:97:28:
17:5f:82:b2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAg+/XDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OGQ1YWE3MDM0MjUwYWIxYTg3ODlhYzg2Y2MwZWVmM2JmYzlkYjVmMB4XDTIyMDEw
MTAxNTg0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDQ4OWJmOTdlNGVl
ZTI2ZmJmZDYwOGQzNmNjMjY3Zjk4YmQ1ZTQ1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALhNg04MPSibhIFk+QJwcGTrcQbTY8sN67W4ZEI1Nqz+lcJP
IBtxnWbTc8hyuspS/F+52xTBtgjjaedWLOsJov5IQzX/AdczZ86OlEuZV71KsWOC
E+L6rqOKW9ZTVQch2RktQup8VGn9Kt8DejUjleRmvlETUCYyUvLUHoosL+aC7wA0
EraMx2gC1eqXaEMI7FZqdX6Is9dthpWA5zBmD6L86BTnsg5CKjJ4uIHnQ4coLAhw
5Mn039sYYtQb2ppBoJ3ClXn/z951NCgsw0rrTZc7WWpGDizUUm2+BKFtQuDz/12W
AFZdLmR9gHguZkWWAFCc1pA5P/j/+OJ8oSW055kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQEib+X5O7ib7/WCNNswmf5i9XkWDAfBgNVHSMEGDAWgBTI1apwNCUKsah4
mshswO7zv8nbXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lOV3FjRFFsQ3JHb2VKckliTUR1ODdfSjIxOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvMmQ0OTBjLTZmZjgtNDcxZC05N2QyLTJkNzJmMjMxOTNkYi8x
L0JJbV9sLVR1NG0tXzFnalRiTUpuLVl2VjVGZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
MmQ0OTBjLTZmZjgtNDcxZC05N2QyLTJkNzJmMjMxOTNkYi8xL3lOV3FjRFFsQ3JH
b2VKckliTUR1ODdfSjIxOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1V3CDANBgkqhkiG9w0BAQsFAAOC
AQEAUV44UkXbtN62PAGb26hs7QkhdKk+TO/bta6Dj2Tg7E3rIgRRPmw5EU+OOJ43
Ve+d1X8qvQVMgnfwoSpA0PWLO8xdP2kMQYUYGhrSxdM2XNP33P2LxN/RdZrT3Ruv
uf6xVWFkWjx13jJSUAJUtiWSYCX5+QWGjDQtjwTAa/5AneFVgTPNnXPJjJOt5/E3
8rvE3IoxC7Zd6scLUH0MrTt6aCs2erDIpouv55tHu/B9d87cGfb64oNlcGYCpysP
/Hh+zZCoPE8WUELyptOvXtMzq9KxEweILJgDXq0ZuvHdDEICihLWz6Y6SS7pXjVo
zQNtjMi+sNfMJclVS5coF1+Csg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:56 2024 by rpki-client on console-ams.rpki-client.org