Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/J-A8Om_shvyrKuDYCrbuaxU3_jw.roa
File: J-A8Om_shvyrKuDYCrbuaxU3_jw.roa (raw, json)
Hash identifier: GDHbyEKBKufNzBpGTjUy3ykK+sqoiYdhjEucHYUNxPo=
Subject key identifier: 27:E0:3C:3A:6F:EC:86:FC:AB:2A:E0:D8:0A:B6:EE:6B:15:37:FE:3C
Certificate issuer: /CN=8eacc7f3b218c492d88dbebc9cdcb9a2d2d30ed1
Certificate serial: 15B4B4E6
Authority key identifier: 8E:AC:C7:F3:B2:18:C4:92:D8:8D:BE:BC:9C:DC:B9:A2:D2:D3:0E:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jqzH87IYxJLYjb68nNy5otLTDtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/J-A8Om_shvyrKuDYCrbuaxU3_jw.roa
Signing time: Sat 01 Jan 2022 06:05:42 +0000
ROA not before: Sat 01 Jan 2022 06:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201860
IP address blocks: 185.60.237.0/24 maxlen: 24
185.60.238.0/24 maxlen: 24
185.60.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364164326 (0x15b4b4e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eacc7f3b218c492d88dbebc9cdcb9a2d2d30ed1
Validity
Not Before: Jan 1 06:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27e03c3a6fec86fcab2ae0d80ab6ee6b1537fe3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b8:c1:79:07:bc:54:10:34:99:67:fa:7c:6f:
5f:f1:1b:96:24:04:2f:42:a0:c6:68:90:c2:9f:93:
9c:5d:2e:8e:51:8a:57:c4:4e:8e:c0:e5:76:bd:20:
01:0b:16:a6:65:34:3f:af:28:d7:31:cf:49:36:7b:
d2:13:9e:37:a6:40:13:23:81:c2:1f:01:4f:d2:39:
24:f7:dc:7e:9e:c2:76:30:57:36:44:af:52:6d:4f:
8b:ee:a3:b3:7f:5d:77:eb:55:4a:8e:25:4a:b6:3e:
98:2a:2e:24:a0:b4:1e:7b:db:65:c1:cf:5e:67:1d:
0f:19:37:b8:c0:5f:c7:2e:4d:fb:5d:14:18:59:24:
68:06:59:27:50:d8:cf:c5:f2:7c:a1:e3:4d:88:d6:
82:f6:f2:e4:35:5f:4b:d7:0f:71:cd:12:40:aa:92:
a2:23:09:c0:d2:e9:c8:59:44:a0:f3:8b:cd:58:9c:
cc:ce:13:70:00:96:84:8a:ba:73:fc:1b:2a:b7:75:
40:fa:34:08:06:80:04:bf:aa:cf:18:fa:5a:43:92:
85:44:21:f6:55:00:d2:5e:97:de:36:8d:06:fe:59:
36:49:dc:65:1f:77:d2:df:8d:02:04:be:e7:f8:14:
df:94:fc:3b:a2:9f:c9:2a:32:38:02:cb:fe:42:15:
6c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E0:3C:3A:6F:EC:86:FC:AB:2A:E0:D8:0A:B6:EE:6B:15:37:FE:3C
X509v3 Authority Key Identifier:
keyid:8E:AC:C7:F3:B2:18:C4:92:D8:8D:BE:BC:9C:DC:B9:A2:D2:D3:0E:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jqzH87IYxJLYjb68nNy5otLTDtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/J-A8Om_shvyrKuDYCrbuaxU3_jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/jqzH87IYxJLYjb68nNy5otLTDtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.237.0-185.60.239.255
Signature Algorithm: sha256WithRSAEncryption
72:9f:7e:3c:5e:92:65:b0:be:27:3e:b4:8f:1e:14:67:b3:19:
3f:65:c3:c5:b8:21:5b:96:87:bd:9c:27:ca:7b:1b:ee:a3:07:
41:99:e2:8e:8e:42:9b:76:5d:1e:75:af:66:2a:c2:dd:d1:b6:
60:e4:0d:d5:14:75:66:17:1d:8b:b7:88:fa:ed:7f:2f:da:81:
42:8a:d9:d4:ed:6c:3c:b1:60:ed:07:9c:ca:39:ac:0f:39:ae:
f6:9b:e7:6c:f7:a0:6a:84:fc:60:0e:d1:02:a7:08:d1:85:a1:
69:48:fa:50:98:20:2c:2f:00:bd:4a:a5:70:3f:fd:a1:ec:fd:
52:70:2f:de:1d:0a:48:4a:7d:28:d9:8b:71:86:78:43:b2:68:
3c:58:55:1a:dc:b3:f2:83:88:62:b3:55:70:a9:a4:9d:a8:2a:
61:41:f8:30:73:d3:8e:02:ab:b9:87:d0:8a:69:f5:3e:be:31:
f2:75:99:b6:18:1c:b3:d3:ad:f8:9d:33:3d:b4:45:79:b0:41:
45:50:a4:9c:4a:7e:bf:34:52:fc:01:e6:a4:d0:78:d8:b7:8d:
7c:42:6f:f8:29:3c:ed:0e:ed:8e:83:3e:98:61:9b:04:a1:58:
90:35:6e:63:7c:47:1b:3f:c6:ad:99:d3:3b:34:8b:36:31:0c:
06:37:fc:4c
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEFbS05jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZWFjYzdmM2IyMThjNDkyZDg4ZGJlYmM5Y2RjYjlhMmQyZDMwZWQxMB4XDTIyMDEw
MTA2MDU0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjdlMDNjM2E2ZmVj
ODZmY2FiMmFlMGQ4MGFiNmVlNmIxNTM3ZmUzYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOa4wXkHvFQQNJln+nxvX/EbliQEL0KgxmiQwp+TnF0ujlGK
V8ROjsDldr0gAQsWpmU0P68o1zHPSTZ70hOeN6ZAEyOBwh8BT9I5JPfcfp7CdjBX
NkSvUm1Pi+6js39dd+tVSo4lSrY+mCouJKC0HnvbZcHPXmcdDxk3uMBfxy5N+10U
GFkkaAZZJ1DYz8XyfKHjTYjWgvby5DVfS9cPcc0SQKqSoiMJwNLpyFlEoPOLzVic
zM4TcACWhIq6c/wbKrd1QPo0CAaABL+qzxj6WkOShUQh9lUA0l6X3jaNBv5ZNknc
ZR930t+NAgS+5/gU35T8O6KfySoyOALL/kIVbJUCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQn4Dw6b+yG/Ksq4NgKtu5rFTf+PDAfBgNVHSMEGDAWgBSOrMfzshjEktiN
vryc3Lmi0tMO0TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pxekg4N0lZeEpMWWpiNjhuTnk1b3RMVER0RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmEvYmQ0MmVhLWViYjYtNDQ0NS1iZDIwLTc3NWRhNmFhMzEyMy8x
L0otQThPbV9zaHZ5ckt1RFlDcmJ1YXhVM19qdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmEv
YmQ0MmVhLWViYjYtNDQ0NS1iZDIwLTc3NWRhNmFhMzEyMy8xL2pxekg4N0lZeEpM
WWpiNjhuTnk1b3RMVER0RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAuTztAwQEuTzgMA0GCSqGSIb3
DQEBCwUAA4IBAQByn348XpJlsL4nPrSPHhRnsxk/ZcPFuCFbloe9nCfKexvuowdB
meKOjkKbdl0eda9mKsLd0bZg5A3VFHVmFx2Lt4j67X8v2oFCitnU7Ww8sWDtB5zK
OawPOa72m+ds96BqhPxgDtECpwjRhaFpSPpQmCAsLwC9SqVwP/2h7P1ScC/eHQpI
Sn0o2YtxhnhDsmg8WFUa3LPyg4his1VwqaSdqCphQfgwc9OOAqu5h9CKafU+vjHy
dZm2GByz0634nTM9tEV5sEFFUKScSn6/NFL8Aeak0HjYt418Qm/4KTztDu2Ogz6Y
YZsEoViQNW5jfEcbP8atmdM7NIs2MQwGN/xM
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:45 2023 by rpki-client on console-fra.rpki-client.org