Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0SAKd2tBJxlYn_NnzsuWC_nB_OE.roa
File: 0SAKd2tBJxlYn_NnzsuWC_nB_OE.roa (raw, json)
Hash identifier: BQDl87nIAOsqMLd2sECwdXcshT7BgOciaTquCQGJaWM=
Subject key identifier: D1:20:0A:77:6B:41:27:19:58:9F:F3:67:CE:CB:96:0B:F9:C1:FC:E1
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 03CB7DC6
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0SAKd2tBJxlYn_NnzsuWC_nB_OE.roa
Signing time: Fri 25 Feb 2022 21:01:34 +0000
ROA not before: Fri 25 Feb 2022 21:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208425
IP address blocks: 188.132.128.0/24 maxlen: 24
185.241.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63667654 (0x3cb7dc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Feb 25 21:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1200a776b412719589ff367cecb960bf9c1fce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fb:f8:b4:96:6e:38:fa:a4:b9:5d:38:b2:f8:
1b:92:2e:aa:c8:e8:95:75:75:44:8f:3a:cb:08:ca:
de:0b:e7:9c:93:83:f0:96:d6:40:af:03:a0:99:60:
05:ee:ec:17:e7:d6:0e:30:f3:5a:36:75:15:9d:87:
a4:ad:d7:0c:65:8c:c8:f6:a3:6e:b5:3f:c9:23:c3:
e8:88:a9:5a:e7:23:75:43:99:55:e7:ed:a3:7a:9f:
44:d1:36:37:38:e8:a1:6a:d8:5f:22:30:46:24:1a:
8e:68:6a:7f:08:bc:b3:2b:70:a4:61:6a:de:bb:10:
83:07:41:7b:4f:51:ea:de:1a:91:e3:43:b8:4b:f5:
5d:b0:f4:d7:e3:39:76:3b:1b:f4:2c:52:4e:99:b6:
0d:b2:2e:52:0e:9c:69:f9:41:a5:a1:68:70:e8:a6:
af:d1:0e:9e:da:6b:3d:ac:85:69:77:a4:5d:c2:e4:
91:51:58:95:a0:b7:3b:c4:cd:aa:b4:52:ad:10:3e:
32:35:d2:24:29:2b:64:17:ce:3e:ed:2c:9d:b2:25:
cd:91:89:a9:48:e3:c2:4f:4e:d8:8b:c1:3d:4e:8a:
3f:65:59:f7:58:34:46:90:69:70:f5:32:ff:f4:80:
e6:9d:c9:55:61:8b:e8:45:cf:65:86:c7:14:d7:94:
b1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:20:0A:77:6B:41:27:19:58:9F:F3:67:CE:CB:96:0B:F9:C1:FC:E1
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0SAKd2tBJxlYn_NnzsuWC_nB_OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.10.0/24
188.132.128.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:f5:9f:40:ca:7b:ee:f5:e5:f0:75:94:7e:68:08:d3:6d:cf:
4c:5c:b5:89:56:49:fa:95:db:cd:5e:9f:70:4e:f2:83:ff:4b:
28:63:14:ce:cb:b3:87:1f:b5:83:ce:2f:91:0f:cb:c5:70:ff:
58:79:7e:65:28:e7:b5:ee:f1:5c:2b:51:21:f0:72:02:fe:40:
17:a2:87:ae:24:de:c6:d0:86:7e:74:87:a1:eb:22:34:80:ce:
21:0e:be:11:bc:d0:31:82:ea:82:2d:8f:69:6e:ab:a7:84:1d:
54:79:32:38:c0:3d:4e:fd:c2:82:14:4e:b6:6e:01:df:03:49:
89:d4:1e:40:47:dd:b2:58:9c:c1:99:07:a2:f4:ce:df:ac:ed:
dc:30:ef:ef:8c:4e:4a:01:5d:6e:61:c0:cf:f3:f5:ad:0a:32:
8c:21:0b:f5:01:9e:b8:56:45:8a:69:1a:22:4b:46:83:90:1d:
23:91:30:2a:ce:dd:e8:00:ee:07:20:75:c1:c2:6a:f2:39:77:
18:4b:56:f0:dd:72:eb:b2:2d:b2:4a:68:f6:6a:71:1d:f5:0b:
b9:62:18:5c:95:ad:05:79:2f:7c:4e:8b:02:25:e5:87:21:60:
5f:c9:0e:12:f8:17:1a:ce:e0:6b:63:42:f7:b6:47:e4:3c:27:
02:43:cc:28
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA8t9xjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWQ1NzQ0N2UzNDIwYjg1Mzg3NWI2ZmE0MDM3MmFhZGUzMTkyY2EyMB4XDTIyMDIy
NTIxMDEzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDEyMDBhNzc2YjQx
MjcxOTU4OWZmMzY3Y2VjYjk2MGJmOWMxZmNlMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALv7+LSWbjj6pLldOLL4G5IuqsjolXV1RI86ywjK3gvnnJOD
8JbWQK8DoJlgBe7sF+fWDjDzWjZ1FZ2HpK3XDGWMyPajbrU/ySPD6IipWucjdUOZ
Vefto3qfRNE2NzjooWrYXyIwRiQajmhqfwi8sytwpGFq3rsQgwdBe09R6t4akeND
uEv1XbD01+M5djsb9CxSTpm2DbIuUg6caflBpaFocOimr9EOntprPayFaXekXcLk
kVFYlaC3O8TNqrRSrRA+MjXSJCkrZBfOPu0snbIlzZGJqUjjwk9O2IvBPU6KP2VZ
91g0RpBpcPUy//SA5p3JVWGL6EXPZYbHFNeUsdMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTRIAp3a0EnGVif82fOy5YL+cH84TAfBgNVHSMEGDAWgBTJ1XRH40ILhTh1
tvpANyqt4xksojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lkVjBSLU5DQzRVNGRiYjZRRGNxcmVNWkxLSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvMTU4NmZkLWZkMmMtNDFmOC04ZmU5LTRlMTk4ZjBhNjAxMy8x
LzBTQUtkMnRCSnhsWW5fTm56c3VXQ19uQl9PRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
MTU4NmZkLWZkMmMtNDFmOC04ZmU5LTRlMTk4ZjBhNjAxMy8xL3lkVjBSLU5DQzRV
NGRiYjZRRGNxcmVNWkxLSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALnxCgMEALyEgDANBgkqhkiG9w0B
AQsFAAOCAQEAb/WfQMp77vXl8HWUfmgI023PTFy1iVZJ+pXbzV6fcE7yg/9LKGMU
zsuzhx+1g84vkQ/LxXD/WHl+ZSjnte7xXCtRIfByAv5AF6KHriTextCGfnSHoesi
NIDOIQ6+EbzQMYLqgi2PaW6rp4QdVHkyOMA9Tv3CghROtm4B3wNJidQeQEfdslic
wZkHovTO36zt3DDv74xOSgFdbmHAz/P1rQoyjCEL9QGeuFZFimkaIktGg5AdI5Ew
Ks7d6ADuByB1wcJq8jl3GEtW8N1y67Itskpo9mpxHfULuWIYXJWtBXkvfE6LAiXl
hyFgX8kOEvgXGs7ga2NC97ZH5DwnAkPMKA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org