Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/8ojVBtEI7GTfpbFdLsw5Kntvihg.roa
File: 8ojVBtEI7GTfpbFdLsw5Kntvihg.roa (raw, json)
Hash identifier: 80GAl0GnkViO9s0TeBzTvVxlTO/cYHX53VhdyeQWou4=
Subject key identifier: F2:88:D5:06:D1:08:EC:64:DF:A5:B1:5D:2E:CC:39:2A:7B:6F:8A:18
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 33252E70
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/8ojVBtEI7GTfpbFdLsw5Kntvihg.roa
Signing time: Sat 01 Jan 2022 10:59:09 +0000
ROA not before: Sat 01 Jan 2022 10:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197886
IP address blocks: 79.120.244.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 858074736 (0x33252e70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f288d506d108ec64dfa5b15d2ecc392a7b6f8a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b6:cd:88:92:57:c2:7c:bc:88:be:0e:7c:89:
4c:99:7f:18:93:0b:6e:79:b7:34:5a:51:16:ce:b3:
d4:d4:f6:35:e8:15:da:ef:16:54:2d:a8:6e:c9:10:
5f:3a:fc:92:42:d2:74:f4:8b:54:d8:63:b9:c6:cd:
0f:98:af:08:3b:e7:07:49:dd:50:18:95:88:df:fb:
6e:02:21:c5:24:08:c7:62:b0:12:3a:1d:e0:1d:f8:
bc:0f:b8:27:90:dd:b5:40:2e:ab:85:84:5c:ba:03:
36:8c:8a:03:f8:4d:af:ab:5b:8a:d3:31:43:cd:01:
0f:1b:89:46:de:6e:4e:36:04:b6:b1:d4:7a:cd:5e:
32:04:ee:05:6a:70:dc:8d:3e:94:e6:4a:b5:c6:99:
11:a6:8b:75:42:0c:9f:b2:55:74:e8:ec:65:1f:a8:
e7:43:94:df:79:e0:58:3e:99:ff:d4:8e:b0:4d:ae:
25:fe:01:aa:16:8d:95:55:3d:8b:03:a6:c3:6f:e8:
5b:7e:20:95:91:c1:8c:24:9e:e7:e8:56:b8:79:59:
e3:b4:03:87:3a:8c:bf:27:77:71:9d:79:91:45:e5:
11:bd:f5:46:10:20:f3:68:5b:6e:40:70:33:20:b6:
99:6c:38:f4:b9:52:49:b0:d8:f2:55:e5:44:b3:88:
75:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:88:D5:06:D1:08:EC:64:DF:A5:B1:5D:2E:CC:39:2A:7B:6F:8A:18
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/8ojVBtEI7GTfpbFdLsw5Kntvihg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.120.244.0/23
Signature Algorithm: sha256WithRSAEncryption
81:d0:d8:db:aa:dd:1e:fa:43:20:40:1b:b9:a8:25:2d:7f:78:
e5:48:34:2c:e1:69:56:d6:ec:d3:72:60:f6:f4:15:6e:d6:c8:
28:da:f0:2a:09:05:98:f2:b0:0e:fa:64:57:30:f0:10:26:8d:
83:31:2f:81:e7:b1:d9:89:99:c3:24:46:4f:d9:9e:4f:68:2f:
53:6c:d6:f8:ab:5c:1f:e6:a4:d3:1f:7b:59:3a:28:a8:c7:df:
a2:d6:84:47:6e:26:80:a9:1d:91:3f:ae:ec:12:06:bb:b5:cd:
32:19:09:48:5a:13:bb:e1:90:1d:cb:5b:f9:12:24:81:02:01:
5f:6b:26:cf:91:7c:db:4f:c7:7c:56:ae:3c:95:ed:58:52:36:
a2:d8:c1:d4:95:9d:53:79:9a:28:af:d3:11:e1:40:6e:56:d2:
51:81:aa:f3:df:e9:09:87:bf:ad:ed:cf:fe:2d:8a:80:1a:d5:
bd:5b:90:84:25:e7:2b:e8:0c:43:c5:b0:de:96:70:74:88:f3:
db:b8:e3:6e:70:6b:f7:e4:4c:81:0e:8e:36:33:3b:e8:28:a6:
24:04:0c:78:8f:92:4b:8c:94:b4:b9:89:04:5d:64:f3:08:75:
25:b9:08:ff:a2:b8:42:ca:b6:86:a0:ef:99:dc:29:d7:84:40:
ac:3b:6b:d0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMyUucDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZmIwOTdhMzZjMjMyNWQxMDMxZmY0MDkxYmEwMGE4NjQ1OWQ0Mjg4MB4XDTIyMDEw
MTEwNTkwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjI4OGQ1MDZkMTA4
ZWM2NGRmYTViMTVkMmVjYzM5MmE3YjZmOGExODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKi2zYiSV8J8vIi+DnyJTJl/GJMLbnm3NFpRFs6z1NT2NegV
2u8WVC2obskQXzr8kkLSdPSLVNhjucbND5ivCDvnB0ndUBiViN/7bgIhxSQIx2Kw
Ejod4B34vA+4J5DdtUAuq4WEXLoDNoyKA/hNr6tbitMxQ80BDxuJRt5uTjYEtrHU
es1eMgTuBWpw3I0+lOZKtcaZEaaLdUIMn7JVdOjsZR+o50OU33ngWD6Z/9SOsE2u
Jf4BqhaNlVU9iwOmw2/oW34glZHBjCSe5+hWuHlZ47QDhzqMvyd3cZ15kUXlEb31
RhAg82hbbkBwMyC2mWw49LlSSbDY8lXlRLOIdQMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTyiNUG0QjsZN+lsV0uzDkqe2+KGDAfBgNVHSMEGDAWgBS/sJejbCMl0QMf
9AkboAqGRZ1CiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Y3Q1hvMndqSmRFREhfUUpHNkFLaGtXZFFvZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvZjJjNWU4LThkMzctNDgzOC1hMzNiLWVjYzQ5YmRjMmFkOC8x
LzhvalZCdEVJN0dUZnBiRmRMc3c1S250dmloZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
ZjJjNWU4LThkMzctNDgzOC1hMzNiLWVjYzQ5YmRjMmFkOC8xL3Y3Q1hvMndqSmRF
REhfUUpHNkFLaGtXZFFvZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAU949DANBgkqhkiG9w0BAQsFAAOC
AQEAgdDY26rdHvpDIEAbuaglLX945Ug0LOFpVtbs03Jg9vQVbtbIKNrwKgkFmPKw
DvpkVzDwECaNgzEvgeex2YmZwyRGT9meT2gvU2zW+KtcH+ak0x97WTooqMffotaE
R24mgKkdkT+u7BIGu7XNMhkJSFoTu+GQHctb+RIkgQIBX2smz5F820/HfFauPJXt
WFI2otjB1JWdU3maKK/TEeFAblbSUYGq89/pCYe/re3P/i2KgBrVvVuQhCXnK+gM
Q8Ww3pZwdIjz27jjbnBr9+RMgQ6ONjM76CimJAQMeI+SS4yUtLmJBF1k8wh1JbkI
/6K4Qsq2hqDvmdwp14RArDtr0A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:13 2025 by rpki-client