Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/6McyqAeIMbRB3bPcdSdVKAWmNU0.roa
File: 6McyqAeIMbRB3bPcdSdVKAWmNU0.roa (raw, json)
Hash identifier: jMIh/CZyHKU2Q6E24f5iBopwb6riw0NITFV4NXtyplg=
Subject key identifier: E8:C7:32:A8:07:88:31:B4:41:DD:B3:DC:75:27:55:28:05:A6:35:4D
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 01840B60B365FF33D79214034A4291261A98
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/6McyqAeIMbRB3bPcdSdVKAWmNU0.roa
Signing time: Mon 24 Oct 2022 19:03:17 +0000
ROA not before: Mon 24 Oct 2022 19:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 185.101.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0b:60:b3:65:ff:33:d7:92:14:03:4a:42:91:26:1a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Oct 24 19:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8c732a8078831b441ddb3dc7527552805a6354d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1e:b4:73:31:63:42:4d:dd:f4:93:2d:b5:18:
0d:7d:16:04:2f:69:c6:02:7d:12:d6:7a:f5:03:82:
cf:01:e9:cc:53:51:d1:78:83:93:28:61:2a:12:4b:
f6:e5:b8:c2:96:06:28:a2:c7:74:ed:26:b3:e2:58:
85:99:cb:98:2b:ed:9c:61:9b:24:4a:e1:35:f7:c5:
df:78:a4:a5:54:90:d1:7a:2f:20:3c:ab:cf:e2:08:
81:44:19:3f:7f:bd:26:13:85:31:6b:a4:e4:77:ad:
55:18:62:2d:6d:74:ed:b4:11:6d:b0:a1:8e:6b:71:
fd:eb:67:d0:6a:b7:fb:0f:2c:19:20:a8:5c:99:cc:
d1:ac:ad:f3:fb:36:9f:45:f6:34:13:21:b4:66:61:
ed:d4:4d:57:3e:08:8c:cf:55:e4:de:76:33:2b:a0:
c6:34:0b:be:da:1e:98:ed:42:d5:5e:72:fd:88:f6:
f9:b3:f4:65:15:5a:55:6c:34:bf:72:cb:4e:fb:e0:
8a:fb:7a:5c:8b:5e:c3:2e:2b:1c:51:8a:6e:58:43:
4c:23:cc:d5:53:5e:29:ec:87:8d:1b:4d:b7:75:71:
a4:15:64:9e:7f:42:82:0c:3b:56:d3:d3:fe:e0:21:
d4:32:1c:c2:19:0c:ae:e8:03:43:53:e3:81:ae:72:
f7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C7:32:A8:07:88:31:B4:41:DD:B3:DC:75:27:55:28:05:A6:35:4D
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/6McyqAeIMbRB3bPcdSdVKAWmNU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.170.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:d1:a5:89:b8:aa:a0:ae:82:9c:b4:ef:aa:ad:00:05:06:36:
dd:78:29:fb:e3:03:6f:a0:58:83:d1:d4:b4:f5:89:11:26:4b:
bf:38:35:d8:97:8d:1c:c4:66:b4:1d:6f:6b:6c:70:83:0c:d5:
6a:31:09:21:b2:5b:b1:22:a6:85:c4:b3:b7:2b:5a:c5:23:af:
5d:ac:45:35:7e:f6:f4:a9:0b:18:70:33:91:db:a0:a2:b2:05:
84:2d:2c:07:a7:4b:be:04:4e:fc:bb:6e:19:28:92:a4:b1:18:
12:2d:a0:b2:f3:21:f6:4f:e2:ba:f3:2e:93:77:b7:09:13:25:
38:f5:d7:20:6e:31:10:15:95:e5:be:fe:11:f0:19:fd:78:05:
8e:29:e6:d8:aa:55:d4:91:a0:a8:8d:10:58:8c:cd:3f:4a:87:
3b:2d:80:bb:ff:04:05:3e:49:1f:8d:c3:b2:65:31:6b:1e:45:
26:36:68:03:49:52:72:8b:99:2a:b2:14:b3:92:92:7a:d0:4d:
a0:fd:86:5f:69:ef:fc:87:26:e7:cd:30:56:de:11:ab:d1:5d:
fa:a1:82:cc:af:10:a6:61:21:f2:2f:82:e1:48:e7:bb:3c:2e:
00:8d:90:2b:fa:be:28:21:ee:47:0d:80:b7:bf:67:7a:bd:2e:
41:52:df:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQLYLNl/zPXkhQDSkKRJhqYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MWZkYzdhMmYxMWE1NzY2ZDNhZDdiZGY2MjVjZTVlMTE5
YThmZGYwHhcNMjIxMDI0MTkwMzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGM3MzJhODA3ODgzMWI0NDFkZGIzZGM3NTI3NTUyODA1YTYzNTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmh60czFjQk3d9JMttRgNfRYEL2nG
An0S1nr1A4LPAenMU1HReIOTKGEqEkv25bjClgYoosd07Saz4liFmcuYK+2cYZsk
SuE198XfeKSlVJDRei8gPKvP4giBRBk/f70mE4Uxa6Tkd61VGGItbXTttBFtsKGO
a3H962fQarf7DywZIKhcmczRrK3z+zafRfY0EyG0ZmHt1E1XPgiMz1Xk3nYzK6DG
NAu+2h6Y7ULVXnL9iPb5s/RlFVpVbDS/cstO++CK+3pci17DLiscUYpuWENMI8zV
U14p7IeNG023dXGkFWSef0KCDDtW09P+4CHUMhzCGQyu6ANDU+OBrnL3nwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOjHMqgHiDG0Qd2z3HUnVSgFpjVNMB8GA1UdIwQY
MBaAFFQf3HovEaV2bTrXvfYlzl4Rmo/fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkJfY2VpOFJwWFp0T3RlOTlpWE9YaEdhajk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC84ZmFkNjctYmI2Yi00NzczLWI4MWUt
YzkwMGE4OWYyMGYxLzEvNk1jeXFBZUlNYlJCM2JQY2RTZFZLQVdtTlUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC84ZmFkNjctYmI2Yi00NzczLWI4MWUtYzkwMGE4OWYyMGYx
LzEvVkJfY2VpOFJwWFp0T3RlOTlpWE9YaEdhajk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWWqMA0G
CSqGSIb3DQEBCwUAA4IBAQBf0aWJuKqgroKctO+qrQAFBjbdeCn74wNvoFiD0dS0
9YkRJku/ODXYl40cxGa0HW9rbHCDDNVqMQkhsluxIqaFxLO3K1rFI69drEU1fvb0
qQsYcDOR26CisgWELSwHp0u+BE78u24ZKJKksRgSLaCy8yH2T+K68y6Td7cJEyU4
9dcgbjEQFZXlvv4R8Bn9eAWOKebYqlXUkaCojRBYjM0/Soc7LYC7/wQFPkkfjcOy
ZTFrHkUmNmgDSVJyi5kqshSzkpJ60E2g/YZfae/8hybnzTBW3hGr0V36oYLMrxCm
YSHyL4LhSOe7PC4AjZAr+r4oIe5HDYC3v2d6vS5BUt9J
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:05 2025 by rpki-client