Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/oY0R3IhXJdN9FgKS1IfAtUVLuzk.roa
File: oY0R3IhXJdN9FgKS1IfAtUVLuzk.roa (raw, json)
Hash identifier: 6ZMlP8ykyR49P05+PXZNhLDIRiUOk0TK6FLwpkQP+DM=
Subject key identifier: A1:8D:11:DC:88:57:25:D3:7D:16:02:92:D4:87:C0:B5:45:4B:BB:39
Certificate issuer: /CN=b6fbc63ef5614a7ef95a106188e3d78755c687b9
Certificate serial: 102D609B
Authority key identifier: B6:FB:C6:3E:F5:61:4A:7E:F9:5A:10:61:88:E3:D7:87:55:C6:87:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tvvGPvVhSn75WhBhiOPXh1XGh7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/oY0R3IhXJdN9FgKS1IfAtUVLuzk.roa
Signing time: Sat 01 Jan 2022 03:54:51 +0000
ROA not before: Sat 01 Jan 2022 03:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204488
IP address blocks: 185.175.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271409307 (0x102d609b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6fbc63ef5614a7ef95a106188e3d78755c687b9
Validity
Not Before: Jan 1 03:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a18d11dc885725d37d160292d487c0b5454bbb39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6b:f7:c8:6c:f8:fe:5b:81:bb:4b:bd:3a:d0:
22:60:f0:d0:58:a7:69:12:e6:e6:21:f7:2a:c3:7d:
6a:7e:b7:fc:bc:1d:b9:2c:0f:e2:a3:8f:f7:44:ce:
5a:d0:a1:84:1c:f8:fd:69:f5:a4:4c:20:ce:1e:27:
14:94:ca:6b:30:c1:5d:91:58:23:b7:36:79:d2:d5:
35:67:fd:f7:97:5c:e1:6b:46:08:22:45:59:97:8b:
8f:5a:69:3b:9c:e2:e0:e2:b3:aa:f3:74:95:2d:7a:
f3:15:25:b7:65:72:8f:01:a3:2e:14:2e:e3:34:2a:
8e:f7:7b:4a:3f:a1:46:e6:60:30:18:6e:9d:a6:a8:
6a:f8:34:ce:7b:95:e3:ee:ea:f5:f8:b0:d6:60:d8:
4f:41:88:d1:d6:97:5c:ac:58:9d:0c:09:e8:dc:0d:
53:28:ac:49:d7:14:0d:f9:9d:31:f1:73:f6:be:53:
c3:4f:24:f7:5b:85:75:74:8c:e8:60:21:19:ed:83:
b7:2a:c5:73:c1:29:cb:59:3e:b6:7d:2e:27:92:7e:
ac:17:8a:fa:66:67:a2:4c:09:87:3d:c4:b0:53:19:
25:51:12:b1:be:19:dd:bf:ad:31:55:00:66:81:16:
f4:af:44:d6:59:3a:7e:b7:18:99:7c:d1:ad:46:9c:
28:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:8D:11:DC:88:57:25:D3:7D:16:02:92:D4:87:C0:B5:45:4B:BB:39
X509v3 Authority Key Identifier:
keyid:B6:FB:C6:3E:F5:61:4A:7E:F9:5A:10:61:88:E3:D7:87:55:C6:87:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tvvGPvVhSn75WhBhiOPXh1XGh7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/oY0R3IhXJdN9FgKS1IfAtUVLuzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8631f5-54a2-486f-b9a5-081a1ae6ebd6/1/tvvGPvVhSn75WhBhiOPXh1XGh7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.63.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:2f:69:40:71:1f:dd:80:73:c7:5e:d6:cd:43:47:37:11:50:
e5:96:27:ea:b0:2f:cc:2e:0a:93:aa:f8:70:6e:37:13:92:36:
f3:e2:28:ee:c3:28:76:dd:ee:7a:d7:09:02:2e:59:d0:9a:08:
ea:e6:68:1a:1b:da:b0:8c:28:60:9a:49:e7:b3:ac:30:60:25:
ff:58:7d:32:a7:1d:90:64:d1:fe:2e:96:71:ce:82:13:fd:41:
29:91:5d:1a:06:50:85:af:fc:8e:de:c2:66:d8:a2:a4:e7:76:
fa:94:a4:9c:13:08:42:12:a9:77:1d:60:8c:de:76:2f:56:e0:
00:fc:16:b5:02:39:86:64:ed:48:70:6a:f3:c2:e0:7e:99:82:
5e:e2:39:37:c2:c4:38:9a:e9:b3:40:62:3b:69:1c:3a:01:d6:
c8:d2:70:b3:7d:27:08:aa:ea:f0:e6:4f:63:5c:e4:31:4c:f4:
4d:e7:b0:0b:00:26:77:d6:00:57:18:64:69:da:6d:5b:3d:3c:
a3:11:b6:1c:ec:53:a7:65:43:3e:a1:3e:97:af:5c:9e:00:eb:
83:a1:3f:e4:1e:9a:a1:a4:28:57:03:b2:50:d8:9d:27:45:65:
ec:72:40:34:24:c6:ac:f8:99:4a:23:5d:3a:03:6d:3a:ec:c9:
72:7c:c1:37
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEC1gmzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NmZiYzYzZWY1NjE0YTdlZjk1YTEwNjE4OGUzZDc4NzU1YzY4N2I5MB4XDTIyMDEw
MTAzNTQ1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTE4ZDExZGM4ODU3
MjVkMzdkMTYwMjkyZDQ4N2MwYjU0NTRiYmIzOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5r98hs+P5bgbtLvTrQImDw0FinaRLm5iH3KsN9an63/Lwd
uSwP4qOP90TOWtChhBz4/Wn1pEwgzh4nFJTKazDBXZFYI7c2edLVNWf995dc4WtG
CCJFWZeLj1ppO5zi4OKzqvN0lS168xUlt2VyjwGjLhQu4zQqjvd7Sj+hRuZgMBhu
naaoavg0znuV4+7q9fiw1mDYT0GI0daXXKxYnQwJ6NwNUyisSdcUDfmdMfFz9r5T
w08k91uFdXSM6GAhGe2DtyrFc8Epy1k+tn0uJ5J+rBeK+mZnokwJhz3EsFMZJVES
sb4Z3b+tMVUAZoEW9K9E1lk6frcYmXzRrUacKFkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBShjRHciFcl030WApLUh8C1RUu7OTAfBgNVHSMEGDAWgBS2+8Y+9WFKfvla
EGGI49eHVcaHuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3R2dkdQdlZoU243NVdoQmhpT1BYaDFYR2g3ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvODYzMWY1LTU0YTItNDg2Zi1iOWE1LTA4MWExYWU2ZWJkNi8x
L29ZMFIzSWhYSmROOUZnS1MxSWZBdFVWTHV6ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
ODYzMWY1LTU0YTItNDg2Zi1iOWE1LTA4MWExYWU2ZWJkNi8xL3R2dkdQdlZoU243
NVdoQmhpT1BYaDFYR2g3ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmvPzANBgkqhkiG9w0BAQsFAAOC
AQEAXC9pQHEf3YBzx17WzUNHNxFQ5ZYn6rAvzC4Kk6r4cG43E5I28+Io7sModt3u
etcJAi5Z0JoI6uZoGhvasIwoYJpJ57OsMGAl/1h9MqcdkGTR/i6Wcc6CE/1BKZFd
GgZQha/8jt7CZtiipOd2+pSknBMIQhKpdx1gjN52L1bgAPwWtQI5hmTtSHBq88Lg
fpmCXuI5N8LEOJrps0BiO2kcOgHWyNJws30nCKrq8OZPY1zkMUz0TeewCwAmd9YA
VxhkadptWz08oxG2HOxTp2VDPqE+l69cngDrg6E/5B6aoaQoVwOyUNidJ0Vl7HJA
NCTGrPiZSiNdOgNtOuzJcnzBNw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:32 2024 by rpki-client on console-ams.rpki-client.org