Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/8dx6CbpoXyG84UzZULUSUkrMmxE.roa
File: 8dx6CbpoXyG84UzZULUSUkrMmxE.roa (raw, json)
Hash identifier: GgHKaFD6x88ye7bylhmC5Aff8FnCxw9w7P3Dp4oHaIg=
Subject key identifier: F1:DC:7A:09:BA:68:5F:21:BC:E1:4C:D9:50:B5:12:52:4A:CC:9B:11
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 086B487F
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/8dx6CbpoXyG84UzZULUSUkrMmxE.roa
Signing time: Sat 01 Jan 2022 00:53:27 +0000
ROA not before: Sat 01 Jan 2022 00:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5522
IP address blocks: 85.206.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141248639 (0x86b487f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1dc7a09ba685f21bce14cd950b512524acc9b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9f:d9:e8:2c:6a:2f:41:c9:e0:29:23:81:a3:
96:96:97:79:07:e0:f5:33:3b:1d:a5:00:70:b6:95:
6e:13:18:ea:3e:0a:9c:c6:6e:23:ad:37:df:6a:da:
2f:c7:6a:90:f4:7d:9f:92:d5:64:ba:69:6a:29:eb:
cc:21:fa:68:e4:ae:56:f7:06:18:5b:38:93:d1:8b:
ea:48:c2:a6:97:5f:c5:90:f1:e8:36:82:73:12:5d:
ac:cd:e5:2a:29:9c:22:e3:b7:ca:0e:aa:70:25:8e:
33:2b:02:f3:2f:0a:13:ec:b8:7e:f8:fd:e0:d4:e0:
66:f9:94:7d:62:01:80:1f:4f:3e:50:a3:a8:f3:02:
05:8c:de:10:9f:5d:e1:54:7a:3e:50:c2:91:2a:30:
8a:e2:14:94:5a:e0:50:fc:9e:ee:9b:46:cf:02:b0:
50:9b:25:4e:e6:87:6d:15:1a:50:56:00:21:b1:6a:
41:8c:a3:98:a3:f8:c3:a5:d9:55:30:7e:0d:cc:54:
45:37:d2:e4:8d:f2:74:da:92:75:4e:71:b3:1f:72:
d7:de:77:42:84:27:da:60:5d:6b:4e:51:b3:f3:5b:
30:17:a0:e6:a1:f2:2e:17:51:1b:e4:1f:59:c7:8c:
0a:cd:24:aa:5c:69:e9:da:52:0e:de:f8:e9:d1:66:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DC:7A:09:BA:68:5F:21:BC:E1:4C:D9:50:B5:12:52:4A:CC:9B:11
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/8dx6CbpoXyG84UzZULUSUkrMmxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.206.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:ce:80:ad:6d:ab:58:5e:de:03:26:6d:de:b9:d4:8d:3e:17:
39:85:53:e6:9f:5a:2d:b9:57:b2:60:3a:ba:ab:42:48:87:1c:
9d:11:86:ed:37:7e:44:2d:6b:a2:52:71:3a:4a:40:04:fb:38:
8c:0c:25:22:e6:b4:bf:78:2f:3a:7c:78:3e:cb:58:22:da:11:
43:0f:a9:d2:21:42:a6:08:4d:17:6c:91:13:3d:93:37:9c:55:
b2:b6:96:48:82:ad:07:3b:bc:38:7a:30:e5:2a:2a:b3:f2:b2:
24:76:f0:e7:9b:7c:6d:f6:4f:1c:4a:db:31:b3:ba:b3:e8:cb:
ff:49:29:49:d4:bc:e0:e5:ac:22:cd:e7:aa:e0:8e:6a:d8:58:
0e:33:78:de:f2:35:a4:48:af:ee:f7:4e:10:37:f9:19:d8:de:
dc:a5:15:cf:de:f2:39:86:a9:db:f9:49:45:6e:1f:5d:ff:cf:
e8:f1:94:c4:a0:f0:5d:5c:5c:28:36:93:4e:23:a3:58:78:23:
77:6c:1d:87:20:ba:61:ed:46:37:9c:4a:1c:a9:86:40:1e:bd:
4d:ee:c9:34:7a:c2:6e:7c:d9:a8:83:19:7c:8a:f3:1b:25:df:
3f:f4:89:db:6f:e2:76:48:8a:64:d8:1c:3a:63:13:21:ab:6f:
ee:e1:6a:a4
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECGtIfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Yjk4NzI0NDYxMWI1MjMwNTM2NzQ0YjZhODlmMDQ0ZjMyZjQ2MmVhMB4XDTIyMDEw
MTAwNTMyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjFkYzdhMDliYTY4
NWYyMWJjZTE0Y2Q5NTBiNTEyNTI0YWNjOWIxMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6f2egsai9ByeApI4GjlpaXeQfg9TM7HaUAcLaVbhMY6j4K
nMZuI60332raL8dqkPR9n5LVZLppainrzCH6aOSuVvcGGFs4k9GL6kjCppdfxZDx
6DaCcxJdrM3lKimcIuO3yg6qcCWOMysC8y8KE+y4fvj94NTgZvmUfWIBgB9PPlCj
qPMCBYzeEJ9d4VR6PlDCkSowiuIUlFrgUPye7ptGzwKwUJslTuaHbRUaUFYAIbFq
QYyjmKP4w6XZVTB+DcxURTfS5I3ydNqSdU5xsx9y1953QoQn2mBda05Rs/NbMBeg
5qHyLhdRG+QfWceMCs0kqlxp6dpSDt746dFmyWUCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBTx3HoJumhfIbzhTNlQtRJSSsybETAfBgNVHSMEGDAWgBT7mHJEYRtSMFNn
RLaonwRPMvRi6jAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtNWh5UkdFYlVqQlRaMFMycUo4RVR6TDBZdW8uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzQ0LzMxOWQ3Yy03ZTc2LTQzMDgtYmMwMC1iZTU4MzJkNWY3YWEv
MS84ZHg2Q2Jwb1h5Rzg0VXpaVUxVU1Vrck1teEUucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ0
LzMxOWQ3Yy03ZTc2LTQzMDgtYmMwMC1iZTU4MzJkNWY3YWEvMS8xLTVoeVJHRWJV
akJUWjBTMnFKOEVUekwwWXVvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVc4oMA0GCSqGSIb3DQEBCwUA
A4IBAQBLzoCtbatYXt4DJm3eudSNPhc5hVPmn1otuVeyYDq6q0JIhxydEYbtN35E
LWuiUnE6SkAE+ziMDCUi5rS/eC86fHg+y1gi2hFDD6nSIUKmCE0XbJETPZM3nFWy
tpZIgq0HO7w4ejDlKiqz8rIkdvDnm3xt9k8cStsxs7qz6Mv/SSlJ1Lzg5awizeeq
4I5q2FgOM3je8jWkSK/u904QN/kZ2N7cpRXP3vI5hqnb+UlFbh9d/8/o8ZTEoPBd
XFwoNpNOI6NYeCN3bB2HILph7UY3nEocqYZAHr1N7sk0esJufNmogxl8ivMbJd8/
9Inbb+J2SIpk2Bw6YxMhq2/u4Wqk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:14 2023 by rpki-client on console-fra.rpki-client.org