Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/JN8eOx4QxfrV7ZKNc_MoG1F-ZwA.roa
File: JN8eOx4QxfrV7ZKNc_MoG1F-ZwA.roa (raw, json)
Hash identifier: K9dL+MljvJyENO4zwHTNIoaEVGJDLHcW9OooZqNSVaM=
Subject key identifier: 24:DF:1E:3B:1E:10:C5:FA:D5:ED:92:8D:73:F3:28:1B:51:7E:67:00
Certificate issuer: /CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Certificate serial: 0107BBF3
Authority key identifier: 5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/JN8eOx4QxfrV7ZKNc_MoG1F-ZwA.roa
Signing time: Sun 06 Mar 2022 11:17:11 +0000
ROA not before: Sun 06 Mar 2022 11:17:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204566
IP address blocks: 185.243.211.0/24 maxlen: 24
185.243.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17284083 (0x107bbf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Validity
Not Before: Mar 6 11:17:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24df1e3b1e10c5fad5ed928d73f3281b517e6700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0b:f9:ee:9d:70:77:02:af:9b:53:b5:cd:4a:
b6:54:97:3e:7f:2a:ea:8a:c8:bc:03:68:e7:56:f9:
ab:c8:8d:66:bc:d2:b2:07:76:22:86:23:6b:44:27:
b8:43:2e:4c:b0:93:eb:37:7b:3d:ce:a5:7c:bb:35:
17:09:12:c1:05:ce:ae:b1:47:81:ae:6d:9a:68:df:
61:62:0f:00:88:ae:d1:0d:7e:a9:28:c8:52:91:c7:
a7:0a:8c:e4:62:b9:57:2f:14:30:dd:b7:f8:cb:c0:
f7:d5:10:e7:8a:1e:20:4f:db:71:8e:b4:28:7a:24:
d5:90:a3:64:38:44:38:79:71:2f:23:3b:9c:d7:24:
93:00:aa:2c:86:3f:fe:60:cb:fe:e3:6d:a5:ab:33:
95:ae:a2:39:70:9d:76:33:ca:70:e8:19:5f:a9:b1:
f6:04:7b:41:c9:f3:37:9d:b3:18:8f:19:5d:c2:06:
d6:8a:59:59:18:5e:d0:6d:8f:71:44:72:ca:eb:1b:
8f:ae:da:e0:02:09:53:8d:08:86:fd:1a:fe:4a:75:
6c:e9:fd:6a:4c:b8:5d:fb:ee:1b:d4:0c:0c:a1:d9:
fd:96:a3:d0:3d:72:50:a9:9b:6b:10:fd:a8:cd:5f:
d7:e3:96:23:c7:fd:fc:7e:08:5a:1d:1e:f6:5f:e0:
dd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DF:1E:3B:1E:10:C5:FA:D5:ED:92:8D:73:F3:28:1B:51:7E:67:00
X509v3 Authority Key Identifier:
keyid:5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/JN8eOx4QxfrV7ZKNc_MoG1F-ZwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.208.0/22
Signature Algorithm: sha256WithRSAEncryption
32:39:af:30:f0:e6:b7:22:67:5e:19:af:ac:5e:54:1f:84:54:
c7:0d:99:19:55:56:47:26:ec:29:11:0e:68:06:f3:00:1b:a4:
f5:89:9e:0f:04:21:1b:8b:9c:76:62:b6:e5:40:c1:28:d9:df:
b4:50:30:8b:45:a3:ed:34:8a:8c:fe:01:8f:03:79:4b:99:1a:
d4:8e:6d:3c:78:35:d6:21:dc:cb:30:8d:62:af:77:c7:8b:1d:
b6:52:5f:92:bb:da:a9:8f:b8:29:8c:c1:16:e6:19:fe:35:bd:
ae:bc:5a:3b:40:fd:1c:5f:ca:61:93:c8:32:97:04:82:96:ef:
59:59:fa:65:da:0c:03:6f:ef:19:f9:31:3a:da:46:e0:6b:da:
8c:d7:15:41:b3:95:c6:60:bc:53:9a:2a:55:bf:9d:6f:0e:d3:
8a:16:cd:d1:3e:1d:53:d0:16:09:db:36:75:c8:69:8b:43:6e:
a8:90:83:46:04:db:6e:66:3d:9e:55:0c:9d:b3:fb:3c:22:f2:
b3:50:90:91:59:65:5c:30:e1:e0:b5:0b:ac:eb:e9:24:3e:eb:
e9:e1:e9:17:91:72:86:c0:08:ca:ca:55:c6:3f:aa:d4:ba:5f:
e2:6a:1e:46:a5:a2:50:58:4c:ff:6a:bd:e3:34:2c:59:cf:d5:
37:f9:85:af
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQe78zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZTZjNjRmYzIwY2UxZDk3MmY1ZTM0NzQzMTkwNDhhMmFjNjU2ZGYxMB4XDTIyMDMw
NjExMTcxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjRkZjFlM2IxZTEw
YzVmYWQ1ZWQ5MjhkNzNmMzI4MWI1MTdlNjcwMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJsL+e6dcHcCr5tTtc1KtlSXPn8q6orIvANo51b5q8iNZrzS
sgd2IoYja0QnuEMuTLCT6zd7Pc6lfLs1FwkSwQXOrrFHga5tmmjfYWIPAIiu0Q1+
qSjIUpHHpwqM5GK5Vy8UMN23+MvA99UQ54oeIE/bcY60KHok1ZCjZDhEOHlxLyM7
nNckkwCqLIY//mDL/uNtpaszla6iOXCddjPKcOgZX6mx9gR7QcnzN52zGI8ZXcIG
1opZWRhe0G2PcURyyusbj67a4AIJU40Ihv0a/kp1bOn9aky4XfvuG9QMDKHZ/Zaj
0D1yUKmbaxD9qM1f1+OWI8f9/H4IWh0e9l/g3RUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQk3x47HhDF+tXtko1z8ygbUX5nADAfBgNVHSMEGDAWgBRebGT8IM4dly9e
NHQxkEiirGVt8TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hteGtfQ0RPSFpjdlhqUjBNWkJJb3F4bGJmRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvZjA5Nzg4LTk4NjktNGYxMi05ZjFlLWFjNGRlMTY5YWRjZS8x
L0pOOGVPeDRReGZyVjdaS05jX01vRzFGLVp3QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
ZjA5Nzg4LTk4NjktNGYxMi05ZjFlLWFjNGRlMTY5YWRjZS8xL1hteGtfQ0RPSFpj
dlhqUjBNWkJJb3F4bGJmRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnz0DANBgkqhkiG9w0BAQsFAAOC
AQEAMjmvMPDmtyJnXhmvrF5UH4RUxw2ZGVVWRybsKREOaAbzABuk9YmeDwQhG4uc
dmK25UDBKNnftFAwi0Wj7TSKjP4BjwN5S5ka1I5tPHg11iHcyzCNYq93x4sdtlJf
krvaqY+4KYzBFuYZ/jW9rrxaO0D9HF/KYZPIMpcEgpbvWVn6ZdoMA2/vGfkxOtpG
4GvajNcVQbOVxmC8U5oqVb+dbw7TihbN0T4dU9AWCds2dchpi0NuqJCDRgTbbmY9
nlUMnbP7PCLys1CQkVllXDDh4LULrOvpJD7r6eHpF5FyhsAIyspVxj+q1Lpf4moe
RqWiUFhM/2q94zQsWc/VN/mFrw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:36 2023 by rpki-client on console-fra.rpki-client.org