Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/vYMpURs8QdPCudvd7hSQnyTYS_w.roa
File: vYMpURs8QdPCudvd7hSQnyTYS_w.roa (raw, json)
Hash identifier: l5UrvrBCf3+Bx13BuhHj7WylpURnluRs1JNugwmuV00=
Subject key identifier: BD:83:29:51:1B:3C:41:D3:C2:B9:DB:DD:EE:14:90:9F:24:D8:4B:FC
Certificate issuer: /CN=51afbc1462455e9869d48b257b18e23be77aa6c3
Certificate serial: 358C12
Authority key identifier: 51:AF:BC:14:62:45:5E:98:69:D4:8B:25:7B:18:E2:3B:E7:7A:A6:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ua-8FGJFXphp1IslexjiO-d6psM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/vYMpURs8QdPCudvd7hSQnyTYS_w.roa
Signing time: Sat 01 Jan 2022 01:56:46 +0000
ROA not before: Sat 01 Jan 2022 01:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213241
IP address blocks: 185.39.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3509266 (0x358c12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51afbc1462455e9869d48b257b18e23be77aa6c3
Validity
Not Before: Jan 1 01:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd8329511b3c41d3c2b9dbddee14909f24d84bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:af:3e:67:08:b5:b3:0f:ed:2c:53:73:26:20:
03:02:29:f6:f6:c8:01:c8:cc:d9:62:a9:f8:b6:ea:
79:22:4d:3d:ec:f2:6f:6a:b3:90:3c:55:f0:11:39:
db:6d:0b:c2:30:b8:99:84:50:30:34:4a:75:39:e7:
1e:3e:dc:5b:91:b1:bd:1a:ac:da:c0:2f:76:08:e7:
d7:ce:01:de:09:df:ee:71:8f:d9:28:82:3f:9f:59:
e6:ef:bd:d0:e1:d7:95:7f:3f:be:58:6e:c6:43:15:
00:58:84:6a:89:07:6e:8e:2a:39:2e:e0:40:23:19:
2d:1e:fd:0d:ce:6d:ee:05:c5:17:91:7b:83:e1:09:
7e:03:64:f9:d9:3b:c3:8c:a8:b3:67:3c:cc:3d:73:
a9:a0:af:79:35:eb:d0:25:7c:43:c3:ed:9f:c9:1b:
0c:10:b4:52:d2:92:55:9f:0d:6f:1b:cc:e0:e6:1f:
08:7c:79:0d:e9:42:12:ea:90:e6:7f:d1:45:4a:68:
67:ab:21:8e:ed:f6:e3:13:fa:c0:45:d9:01:9e:0f:
43:ba:0e:a6:ee:f1:de:fb:8a:17:54:72:3c:72:12:
20:81:46:8e:f6:4a:f2:f6:50:45:45:9f:9a:be:54:
6f:65:df:59:1b:9b:6e:52:26:76:fa:18:8c:fa:cb:
0d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:83:29:51:1B:3C:41:D3:C2:B9:DB:DD:EE:14:90:9F:24:D8:4B:FC
X509v3 Authority Key Identifier:
keyid:51:AF:BC:14:62:45:5E:98:69:D4:8B:25:7B:18:E2:3B:E7:7A:A6:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ua-8FGJFXphp1IslexjiO-d6psM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/vYMpURs8QdPCudvd7hSQnyTYS_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/Ua-8FGJFXphp1IslexjiO-d6psM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.9.0/24
Signature Algorithm: sha256WithRSAEncryption
80:99:12:eb:e2:7c:82:d6:24:39:ba:9c:c4:a9:87:aa:40:d3:
9a:a9:aa:57:b7:89:09:c0:b5:c4:3e:2f:de:f3:7f:61:87:09:
f1:90:5b:cf:36:4e:7f:38:c0:16:a0:63:98:3f:84:8f:ff:ee:
8c:cd:92:58:99:f8:8a:a2:a1:e3:11:e1:7b:fd:f9:e9:db:38:
0c:0a:c1:cc:75:af:23:f0:74:29:34:d5:89:4a:c7:42:aa:a3:
f4:f4:ef:82:de:1d:43:61:68:a2:40:0c:10:63:fc:19:d6:c5:
84:09:3b:8d:db:5d:ee:84:ae:7f:08:cf:92:98:f0:3c:89:79:
5c:7e:20:93:de:21:90:1d:ad:ee:5e:ce:5e:60:e5:31:8d:cc:
34:0b:ed:92:2c:1c:15:80:ca:09:a2:09:0c:87:70:ff:41:c1:
33:6c:91:cd:28:13:da:55:fa:6a:a6:85:b9:b1:d7:65:64:7a:
17:4b:ff:64:7a:84:27:1f:1c:49:61:e9:71:63:ad:63:3d:f4:
5a:ca:1e:13:d4:19:51:22:13:84:3a:ea:e3:37:e0:a8:fa:48:
3c:39:8b:b8:3f:df:a3:09:e0:17:de:41:45:81:7a:15:8f:0e:
92:9c:7f:08:11:48:8c:28:db:cc:40:e5:06:c7:13:1b:ce:da:
62:ac:e0:5d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDNYwSMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDUx
YWZiYzE0NjI0NTVlOTg2OWQ0OGIyNTdiMThlMjNiZTc3YWE2YzMwHhcNMjIwMTAx
MDE1NjQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiZDgzMjk1MTFiM2M0
MWQzYzJiOWRiZGRlZTE0OTA5ZjI0ZDg0YmZjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmq8+Zwi1sw/tLFNzJiADAin29sgByMzZYqn4tup5Ik097PJv
arOQPFXwETnbbQvCMLiZhFAwNEp1OecePtxbkbG9GqzawC92COfXzgHeCd/ucY/Z
KII/n1nm773Q4deVfz++WG7GQxUAWIRqiQdujio5LuBAIxktHv0Nzm3uBcUXkXuD
4Ql+A2T52TvDjKizZzzMPXOpoK95NevQJXxDw+2fyRsMELRS0pJVnw1vG8zg5h8I
fHkN6UIS6pDmf9FFSmhnqyGO7fbjE/rARdkBng9Dug6m7vHe+4oXVHI8chIggUaO
9kry9lBFRZ+avlRvZd9ZG5tuUiZ2+hiM+ssN6QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFL2DKVEbPEHTwrnb3e4UkJ8k2Ev8MB8GA1UdIwQYMBaAFFGvvBRiRV6YadSL
JXsY4jvneqbDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VWEtOEZHSkZYcGhwMUlzbGV4amlPLWQ2cHNNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Ny83MDU5OWQtYzQ3NC00MTIzLWE3NDMtYTIwMWRmYWJkYWIxLzEv
dllNcFVSczhRZFBDdWR2ZDdoU1FueVRZU193LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83
MDU5OWQtYzQ3NC00MTIzLWE3NDMtYTIwMWRmYWJkYWIxLzEvVWEtOEZHSkZYcGhw
MUlzbGV4amlPLWQ2cHNNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuScJMA0GCSqGSIb3DQEBCwUAA4IB
AQCAmRLr4nyC1iQ5upzEqYeqQNOaqapXt4kJwLXEPi/e839hhwnxkFvPNk5/OMAW
oGOYP4SP/+6MzZJYmfiKoqHjEeF7/fnp2zgMCsHMda8j8HQpNNWJSsdCqqP09O+C
3h1DYWiiQAwQY/wZ1sWECTuN213uhK5/CM+SmPA8iXlcfiCT3iGQHa3uXs5eYOUx
jcw0C+2SLBwVgMoJogkMh3D/QcEzbJHNKBPaVfpqpoW5sddlZHoXS/9keoQnHxxJ
YelxY61jPfRayh4T1BlRIhOEOurjN+Co+kg8OYu4P9+jCeAX3kFFgXoVjw6SnH8I
EUiMKNvMQOUGxxMbztpirOBd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:46 2024 by rpki-client on console-fra.rpki-client.org