Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/bKTyST3Cze58kDjwiLZW77UQdT0.roa
File: bKTyST3Cze58kDjwiLZW77UQdT0.roa (raw, json)
Hash identifier: dCV2KZOq8I8xJO5k7kOMO5iDF67XMuCNNlkRhB6+jaQ=
Subject key identifier: 6C:A4:F2:49:3D:C2:CD:EE:7C:90:38:F0:88:B6:56:EF:B5:10:75:3D
Certificate issuer: /CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Certificate serial: 12DFF19F
Authority key identifier: F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/bKTyST3Cze58kDjwiLZW77UQdT0.roa
Signing time: Sat 01 Jan 2022 15:36:52 +0000
ROA not before: Sat 01 Jan 2022 15:36:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208294
IP address blocks: 185.177.207.0/24 maxlen: 24
2a0a:4587:2010::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316666271 (0x12dff19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Validity
Not Before: Jan 1 15:36:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ca4f2493dc2cdee7c9038f088b656efb510753d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:36:8d:e6:c4:d7:c4:5f:09:53:05:4c:b7:19:
f3:00:ad:49:1d:6e:14:eb:d3:4d:79:95:1d:d8:02:
80:2c:7c:9d:ec:a9:2b:6f:5c:7a:82:ab:5e:a1:f7:
47:c3:ae:5e:09:af:19:08:48:c1:1f:66:e1:60:3b:
91:fb:bc:c4:08:ab:1a:25:c6:0c:8d:20:37:29:29:
9b:5f:3f:56:f3:9f:1c:b9:4b:3c:3a:06:68:7f:0a:
49:29:25:69:58:16:4e:57:91:55:ec:60:a4:1c:e1:
bd:9d:b4:fe:99:9a:6b:48:1c:5a:4b:14:0d:20:ee:
6f:72:a6:a6:1c:ba:23:47:5f:be:76:fc:64:fb:2d:
55:3e:5e:ea:97:69:2b:f7:12:f3:fc:d6:e2:14:d7:
36:0a:99:04:c1:c9:23:69:28:3e:63:21:fb:8f:31:
98:57:f4:c8:48:58:13:10:0f:9e:c3:d3:82:73:3d:
b9:5d:81:07:33:0f:d5:c5:b5:46:f8:47:50:e5:15:
f2:d0:5e:74:a5:46:2f:54:68:7c:9a:c6:91:76:0d:
fe:0e:ac:a5:e4:c3:f8:a6:cd:9a:6c:b0:3f:74:af:
84:54:03:30:a0:57:d0:d8:2a:ff:fe:bf:8e:97:56:
73:cc:32:00:80:71:b4:89:d8:5f:66:bf:4f:96:56:
13:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A4:F2:49:3D:C2:CD:EE:7C:90:38:F0:88:B6:56:EF:B5:10:75:3D
X509v3 Authority Key Identifier:
keyid:F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/bKTyST3Cze58kDjwiLZW77UQdT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.207.0/24
IPv6:
2a0a:4587:2010::/46
Signature Algorithm: sha256WithRSAEncryption
a3:9e:c1:8b:34:4c:fb:82:4d:76:d3:e2:e9:15:e8:f2:1a:c5:
ab:8f:9e:75:09:61:68:a2:8b:84:53:33:a3:74:8e:bb:5b:70:
57:c5:9f:9d:73:4e:12:f5:0c:bc:c4:47:0b:ea:13:69:cb:6c:
a7:8a:4f:38:4d:89:9b:b2:5e:aa:ef:6d:44:6c:19:da:ab:75:
12:7f:e5:4e:56:d8:06:4e:91:31:79:5d:ac:1a:60:d2:65:2b:
8e:18:12:bd:c6:18:bc:f0:b3:57:e9:e1:46:35:f7:01:a4:f0:
10:26:c6:9d:5e:42:ec:42:07:25:e9:1e:08:a6:fd:45:b0:3d:
d6:45:99:57:dd:33:45:de:6b:00:25:b3:c2:68:1b:81:a0:58:
04:5d:4a:71:ef:93:67:79:f3:76:b1:c3:89:03:42:13:18:e8:
c6:d0:b5:3c:7e:e6:71:d3:14:df:9e:08:f0:f4:22:21:01:e9:
24:69:0f:ca:0b:71:55:dc:14:16:23:74:c8:ab:10:62:07:49:
14:95:8d:18:fd:9d:2c:96:e7:4c:32:27:03:48:7c:32:31:58:
4d:3a:fd:b5:45:a4:20:fa:b9:09:47:7b:9d:68:a7:e0:c7:0d:
0a:6b:3f:20:b0:45:b4:4e:99:9c:77:23:c8:9a:1d:da:f2:56:
e4:b0:7f:00
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgIEEt/xnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGE5NjY2NjRlYzk2ZWRiZDEyZThlODJlOTQwYmZiOWZhZWMxMDVlMB4XDTIyMDEw
MTE1MzY1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmNhNGYyNDkzZGMy
Y2RlZTdjOTAzOGYwODhiNjU2ZWZiNTEwNzUzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALs2jebE18RfCVMFTLcZ8wCtSR1uFOvTTXmVHdgCgCx8neyp
K29ceoKrXqH3R8OuXgmvGQhIwR9m4WA7kfu8xAirGiXGDI0gNykpm18/VvOfHLlL
PDoGaH8KSSklaVgWTleRVexgpBzhvZ20/pmaa0gcWksUDSDub3Kmphy6I0dfvnb8
ZPstVT5e6pdpK/cS8/zW4hTXNgqZBMHJI2koPmMh+48xmFf0yEhYExAPnsPTgnM9
uV2BBzMP1cW1RvhHUOUV8tBedKVGL1RofJrGkXYN/g6speTD+KbNmmywP3SvhFQD
MKBX0Ngq//6/jpdWc8wyAIBxtInYX2a/T5ZWEyUCAwEAAaOCAhwwggIYMB0GA1Ud
DgQWBBRspPJJPcLN7nyQOPCItlbvtRB1PTAfBgNVHSMEGDAWgBT4qWZmTslu29Eu
joLpQL+5+uwQXjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtS2xtWms3SmJ0dlJMbzZDNlVDX3VmcnNFRjQuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzQ1LzY0YWI5OS00OWFhLTRhYWUtOGRkNS0zODIzNTVmYzJmZjEv
MS9iS1R5U1QzQ3plNThrRGp3aUxaVzc3VVFkVDAucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ1
LzY0YWI5OS00OWFhLTRhYWUtOGRkNS0zODIzNTVmYzJmZjEvMS8xLUtsbVprN0pi
dHZSTG82QzZVQ191ZnJzRUY0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAubHPMA8EAgACMAkDBwIqCkWH
IBAwDQYJKoZIhvcNAQELBQADggEBAKOewYs0TPuCTXbT4ukV6PIaxauPnnUJYWii
i4RTM6N0jrtbcFfFn51zThL1DLzERwvqE2nLbKeKTzhNiZuyXqrvbURsGdqrdRJ/
5U5W2AZOkTF5XawaYNJlK44YEr3GGLzws1fp4UY19wGk8BAmxp1eQuxCByXpHgim
/UWwPdZFmVfdM0XeawAls8JoG4GgWARdSnHvk2d583axw4kDQhMY6MbQtTx+5nHT
FN+eCPD0IiEB6SRpD8oLcVXcFBYjdMirEGIHSRSVjRj9nSyW50wyJwNIfDIxWE06
/bVFpCD6uQlHe51op+DHDQprPyCwRbROmZx3I8iaHdryVuSwfwA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:25 2024 by rpki-client on console-fra.rpki-client.org