Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/7BDNTqM1h4SdPtTrYj74OOQ4jjw.roa
File: 7BDNTqM1h4SdPtTrYj74OOQ4jjw.roa (raw, json)
Hash identifier: taRRUJeN0KkgtPpGhBQ86P8Uh+JLPqNnU5ZW1iCgbIQ=
Subject key identifier: EC:10:CD:4E:A3:35:87:84:9D:3E:D4:EB:62:3E:F8:38:E4:38:8E:3C
Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Certificate serial: 0DB5E789
Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/7BDNTqM1h4SdPtTrYj74OOQ4jjw.roa
Signing time: Wed 09 Mar 2022 15:25:14 +0000
ROA not before: Wed 09 Mar 2022 15:25:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197033
IP address blocks: 217.119.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230025097 (0xdb5e789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Validity
Not Before: Mar 9 15:25:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec10cd4ea33587849d3ed4eb623ef838e4388e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ee:e7:f6:dd:a4:5d:8f:02:9f:1d:37:ed:ea:
3a:80:76:a9:28:16:0b:80:c8:e7:3f:26:31:7d:ad:
95:f0:af:84:ae:46:eb:e4:93:4b:86:ec:8a:31:83:
f4:42:19:26:22:37:58:3e:dc:6f:90:4c:06:af:a4:
87:59:a5:fb:4c:83:9e:e2:d5:90:3f:e7:5d:c2:ac:
51:39:30:98:1a:0e:51:ba:90:dd:0b:f4:97:44:eb:
b7:30:62:1f:dc:7d:73:65:e8:ea:56:11:3d:1d:a7:
ee:c0:a9:78:e7:8d:c9:7b:c8:e2:9c:4b:41:5f:1c:
6b:f5:0d:98:29:5e:7d:f8:dc:36:6a:a2:22:42:59:
db:48:bc:3e:7b:cd:6a:ca:93:d0:8d:f0:69:10:72:
2c:1a:36:35:1a:be:a7:46:12:45:e8:78:bb:88:e5:
8c:e9:e6:b0:7f:cd:bd:9b:c1:8d:2c:32:eb:3f:26:
9c:87:e2:fd:c6:62:13:a8:7e:db:8a:48:51:44:db:
06:df:df:8f:74:be:33:34:f2:8e:c8:f3:3a:e2:27:
44:fa:9f:48:f9:b3:d3:4b:96:28:19:d7:2e:79:38:
d0:1b:3c:f7:c4:39:88:57:73:84:13:5a:49:11:26:
96:48:38:31:e0:5e:05:a3:a0:f6:a4:23:00:c1:88:
34:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:10:CD:4E:A3:35:87:84:9D:3E:D4:EB:62:3E:F8:38:E4:38:8E:3C
X509v3 Authority Key Identifier:
keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/7BDNTqM1h4SdPtTrYj74OOQ4jjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.185.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:5b:d6:dd:dc:b6:0e:0b:e5:1e:c5:f0:24:5d:e3:f6:69:f3:
b0:a9:c5:51:4c:31:e9:8d:b2:28:a2:85:2f:07:28:60:91:b3:
64:c7:d8:00:99:a6:8f:b5:ee:1d:c1:df:4d:c3:d0:77:82:1a:
43:a6:35:6f:1a:cb:17:a5:34:04:d9:70:b6:75:95:7f:c0:d6:
de:90:e9:47:d7:d0:d6:93:b3:d0:28:1b:81:43:b3:4a:80:95:
39:f8:cd:85:39:08:48:37:30:76:2a:37:66:0a:af:75:37:d9:
b2:ce:b3:db:fa:4e:1a:cb:c0:28:d2:37:81:c7:ed:81:64:cb:
4f:e3:a2:5b:b9:8c:b0:5a:8b:b8:4b:68:57:5a:55:aa:74:1b:
e9:7f:59:1c:70:e4:cc:f6:40:ec:49:17:44:a9:9f:86:14:2c:
42:7c:ff:ea:49:d3:32:20:bf:6f:cb:ab:86:bf:3e:e7:44:ef:
cf:29:67:17:c8:6b:a0:41:34:4b:e8:19:47:d6:8a:98:06:be:
22:14:9d:41:a0:4d:b7:9d:a2:e2:12:a9:bf:54:ac:de:59:28:
14:bf:6c:f3:98:82:14:aa:b4:71:4d:46:91:89:29:dc:0a:a6:
fb:78:c9:89:6b:72:93:7a:d5:5c:96:c8:f0:d7:ef:db:df:d6:
62:cc:9e:ba
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDbXniTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MDdkODg3YzAyZTA3YzllNDc0ZDFmOGUyMTA0OWNhYTZjZTNmYmQzMB4XDTIyMDMw
OTE1MjUxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWMxMGNkNGVhMzM1
ODc4NDlkM2VkNGViNjIzZWY4MzhlNDM4OGUzYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/u5/bdpF2PAp8dN+3qOoB2qSgWC4DI5z8mMX2tlfCvhK5G
6+STS4bsijGD9EIZJiI3WD7cb5BMBq+kh1ml+0yDnuLVkD/nXcKsUTkwmBoOUbqQ
3Qv0l0TrtzBiH9x9c2Xo6lYRPR2n7sCpeOeNyXvI4pxLQV8ca/UNmCleffjcNmqi
IkJZ20i8PnvNasqT0I3waRByLBo2NRq+p0YSReh4u4jljOnmsH/NvZvBjSwy6z8m
nIfi/cZiE6h+24pIUUTbBt/fj3S+MzTyjsjzOuInRPqfSPmz00uWKBnXLnk40Bs8
98Q5iFdzhBNaSREmlkg4MeBeBaOg9qQjAMGINNUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTsEM1OozWHhJ0+1OtiPvg45DiOPDAfBgNVHSMEGDAWgBQwfYh8AuB8nkdN
H44hBJyqbOP70zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01IMklmQUxnZko1SFRSLU9JUVNjcW16ai05TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvYjIwZDgzLTYxMmMtNGI2Mi05N2EzLTFhNWU1ZjE5MWJmYS8x
LzdCRE5UcU0xaDRTZFB0VHJZajc0T09RNGpqdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
YjIwZDgzLTYxMmMtNGI2Mi05N2EzLTFhNWU1ZjE5MWJmYS8xL01IMklmQUxnZko1
SFRSLU9JUVNjcW16ai05TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANl3uTANBgkqhkiG9w0BAQsFAAOC
AQEAxFvW3dy2DgvlHsXwJF3j9mnzsKnFUUwx6Y2yKKKFLwcoYJGzZMfYAJmmj7Xu
HcHfTcPQd4IaQ6Y1bxrLF6U0BNlwtnWVf8DW3pDpR9fQ1pOz0CgbgUOzSoCVOfjN
hTkISDcwdio3ZgqvdTfZss6z2/pOGsvAKNI3gcftgWTLT+OiW7mMsFqLuEtoV1pV
qnQb6X9ZHHDkzPZA7EkXRKmfhhQsQnz/6knTMiC/b8urhr8+50TvzylnF8hroEE0
S+gZR9aKmAa+IhSdQaBNt52i4hKpv1Ss3lkoFL9s85iCFKq0cU1GkYkp3Aqm+3jJ
iWtyk3rVXJbI8Nfv29/WYsyeug==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:35 2024 by rpki-client on console-fra.rpki-client.org