Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/G2E2QRxsSUcR2Avzd1aQtW_vKN8.roa
File: G2E2QRxsSUcR2Avzd1aQtW_vKN8.roa (raw, json)
Hash identifier: rWZPjKtQsypucAnJSpww3LAqYAK/YlyDMODO6GjpVo4=
Subject key identifier: 1B:61:36:41:1C:6C:49:47:11:D8:0B:F3:77:56:90:B5:6F:EF:28:DF
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 09B97FC4
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/G2E2QRxsSUcR2Avzd1aQtW_vKN8.roa
Signing time: Mon 27 Jun 2022 20:04:32 +0000
ROA not before: Mon 27 Jun 2022 20:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136173
IP address blocks: 109.233.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163151812 (0x9b97fc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 27 20:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b6136411c6c494711d80bf3775690b56fef28df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a8:25:bf:9c:5d:b2:1c:5f:59:00:81:2d:b9:
c6:56:51:e0:e0:7c:d8:c6:39:05:fe:10:90:bf:05:
1f:a3:f1:5b:11:ae:a6:e5:be:13:ec:89:ba:22:28:
0b:99:3a:2e:b4:e4:41:8f:65:55:8a:f5:33:a1:ca:
fe:6a:dc:1c:7f:7c:31:86:35:3b:74:4f:de:4a:28:
38:7d:ae:68:28:71:86:76:3f:aa:94:4d:7d:56:26:
03:06:c2:98:37:97:17:0b:2a:b7:33:31:7d:70:e0:
a7:6c:d3:28:20:14:63:fc:12:81:19:a8:e7:08:70:
43:92:47:a7:34:67:14:d6:98:c3:9c:ad:d2:95:b0:
d8:51:26:58:e0:d3:fc:a3:9f:56:7f:97:45:99:16:
c0:c7:83:86:2d:df:16:da:7e:84:b7:54:e7:2d:91:
6f:9f:46:c2:98:e1:50:ac:52:5f:3c:4d:3d:89:1e:
a0:f5:b6:82:74:56:8e:61:c4:af:28:d1:ff:9c:ea:
a3:a0:5b:57:10:90:14:49:2f:4d:ff:0d:e9:ef:0f:
28:29:3a:a7:d7:da:db:59:bc:c4:38:9e:f4:1b:a7:
f9:47:ae:1a:1c:54:29:4e:43:de:11:9e:6b:fc:37:
d8:22:8b:4a:b7:b8:ae:db:f5:ba:c7:cd:da:a2:4e:
22:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:61:36:41:1C:6C:49:47:11:D8:0B:F3:77:56:90:B5:6F:EF:28:DF
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/G2E2QRxsSUcR2Avzd1aQtW_vKN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.185.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:59:96:03:95:b6:b7:d2:5c:9a:b3:84:77:02:2d:e1:f0:af:
cb:f3:db:a4:4a:3f:43:75:07:c3:1c:c2:4f:c8:ec:9a:aa:fa:
fa:95:16:66:6b:95:97:a1:ed:bb:94:61:a6:26:b8:d5:10:44:
48:64:9c:d9:54:c9:35:a6:f9:26:75:86:93:ec:10:a6:aa:e8:
a8:39:ba:f1:c9:15:e5:61:74:32:8f:72:83:11:e1:ed:23:ff:
a6:85:de:36:45:46:80:66:f8:39:dc:30:e2:df:ba:aa:18:da:
8d:84:0c:3f:1d:44:7d:ee:17:5f:ec:09:68:bc:fb:a6:be:38:
a0:35:9f:38:3e:86:8f:0f:e8:5f:df:01:ee:ef:b1:35:72:7f:
2f:48:d4:11:c0:29:be:2a:31:be:46:3b:56:34:63:e1:16:19:
d2:66:ae:fb:34:89:62:69:80:81:ea:2b:f2:a6:5f:ed:1b:b2:
22:49:a2:a1:29:bb:a1:84:0c:29:02:a0:e0:6b:08:7a:63:f5:
89:03:af:88:3a:fe:05:f0:1f:dc:c2:d4:76:e7:30:2a:bb:d6:
cc:f7:35:c5:ea:1c:b0:eb:44:42:06:54:e9:5c:cc:18:41:57:
d0:1f:e9:c9:3c:62:25:54:b5:c0:16:f9:03:49:de:07:f7:1d:
20:f6:e4:e6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECbl/xDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Zjg0ZTQ3MzhhNzBlYTM5YzA4Y2VmMjEwNDMyYWUzOTllYzdlOTE1MB4XDTIyMDYy
NzIwMDQzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWI2MTM2NDExYzZj
NDk0NzExZDgwYmYzNzc1NjkwYjU2ZmVmMjhkZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJSoJb+cXbIcX1kAgS25xlZR4OB82MY5Bf4QkL8FH6PxWxGu
puW+E+yJuiIoC5k6LrTkQY9lVYr1M6HK/mrcHH98MYY1O3RP3kooOH2uaChxhnY/
qpRNfVYmAwbCmDeXFwsqtzMxfXDgp2zTKCAUY/wSgRmo5whwQ5JHpzRnFNaYw5yt
0pWw2FEmWODT/KOfVn+XRZkWwMeDhi3fFtp+hLdU5y2Rb59GwpjhUKxSXzxNPYke
oPW2gnRWjmHEryjR/5zqo6BbVxCQFEkvTf8N6e8PKCk6p9fa21m8xDie9Bun+Ueu
GhxUKU5D3hGea/w32CKLSre4rtv1usfN2qJOIu0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQbYTZBHGxJRxHYC/N3VpC1b+8o3zAfBgNVHSMEGDAWgBRvhORzinDqOcCM
7yEEMq45nsfpFTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2I0VGtjNHB3NmpuQWpPOGhCREt1T1o3SDZSVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvZGRmOGIzLTFjMDgtNDk1Yy04ZGRmLWZhZTVkYmVkM2IxYi8x
L0cyRTJRUnhzU1VjUjJBdnpkMWFRdFdfdktOOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
ZGRmOGIzLTFjMDgtNDk1Yy04ZGRmLWZhZTVkYmVkM2IxYi8xL2I0VGtjNHB3Nmpu
QWpPOGhCREt1T1o3SDZSVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG3puTANBgkqhkiG9w0BAQsFAAOC
AQEAn1mWA5W2t9JcmrOEdwIt4fCvy/PbpEo/Q3UHwxzCT8jsmqr6+pUWZmuVl6Ht
u5Rhpia41RBESGSc2VTJNab5JnWGk+wQpqroqDm68ckV5WF0Mo9ygxHh7SP/poXe
NkVGgGb4Odww4t+6qhjajYQMPx1Efe4XX+wJaLz7pr44oDWfOD6Gjw/oX98B7u+x
NXJ/L0jUEcApvioxvkY7VjRj4RYZ0mau+zSJYmmAgeor8qZf7RuyIkmioSm7oYQM
KQKg4GsIemP1iQOviDr+BfAf3MLUducwKrvWzPc1xeocsOtEQgZU6VzMGEFX0B/p
yTxiJVS1wBb5A0neB/cdIPbk5g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org