Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/R-EbtaRiVp5QWHoaxf6MlPC1OmA.roa
File: R-EbtaRiVp5QWHoaxf6MlPC1OmA.roa (raw, json)
Hash identifier: hY9oMe9u/gBxPEN/sfdt9utD1QHZN21+aLn5ySLt57Y=
Subject key identifier: 47:E1:1B:B5:A4:62:56:9E:50:58:7A:1A:C5:FE:8C:94:F0:B5:3A:60
Certificate issuer: /CN=b6a897c798f019b2477b1a9ce3b23bb5d76166c3
Certificate serial: 040EC096
Authority key identifier: B6:A8:97:C7:98:F0:19:B2:47:7B:1A:9C:E3:B2:3B:B5:D7:61:66:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tqiXx5jwGbJHexqc47I7tddhZsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/R-EbtaRiVp5QWHoaxf6MlPC1OmA.roa
Signing time: Sat 01 Jan 2022 03:57:43 +0000
ROA not before: Sat 01 Jan 2022 03:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209345
IP address blocks: 85.208.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68075670 (0x40ec096)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6a897c798f019b2477b1a9ce3b23bb5d76166c3
Validity
Not Before: Jan 1 03:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47e11bb5a462569e50587a1ac5fe8c94f0b53a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c7:f1:8c:46:f7:de:70:0d:d3:08:25:df:4f:
b6:eb:5c:f6:5f:a5:28:62:54:8a:0d:69:52:51:13:
19:d8:1e:b5:e2:58:7f:6e:de:6c:ab:69:ff:61:b2:
ab:82:3f:2c:95:2a:0f:1f:6b:e1:f1:e7:3e:24:18:
5d:bc:43:d4:af:30:c8:9a:79:12:57:6a:28:19:de:
33:b3:03:7f:fd:ef:eb:22:07:1d:db:08:4f:63:53:
43:54:20:d1:50:a5:1a:52:1b:57:29:be:e2:8b:4e:
e1:d7:33:e9:12:3c:31:27:3e:e9:38:46:d0:c5:ae:
ac:ed:1d:6c:38:a5:53:2c:51:fd:3f:04:68:d2:57:
91:5f:6b:e8:da:52:ae:ed:d1:ae:a7:16:a4:4d:b1:
0a:3d:2c:1b:cb:c8:57:67:34:3a:41:dd:04:8a:de:
94:c7:7f:19:97:8f:99:b7:06:a5:e5:32:e4:fc:25:
3b:12:61:28:9c:a2:d0:22:bf:9b:ef:6d:00:67:ad:
7e:04:bf:c5:70:ee:5f:3b:58:bc:22:dd:c0:a8:f7:
50:2e:79:5a:b5:9e:72:40:dc:14:f6:f5:5c:da:fc:
6d:5a:b0:fe:8a:87:6a:0b:20:1c:f0:1f:1d:4c:48:
2e:99:a8:ec:c9:50:17:65:7c:b2:21:b9:7b:6d:6d:
91:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E1:1B:B5:A4:62:56:9E:50:58:7A:1A:C5:FE:8C:94:F0:B5:3A:60
X509v3 Authority Key Identifier:
keyid:B6:A8:97:C7:98:F0:19:B2:47:7B:1A:9C:E3:B2:3B:B5:D7:61:66:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tqiXx5jwGbJHexqc47I7tddhZsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/R-EbtaRiVp5QWHoaxf6MlPC1OmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/tqiXx5jwGbJHexqc47I7tddhZsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.240.0/24
Signature Algorithm: sha256WithRSAEncryption
17:89:d7:6b:2a:c9:70:d2:39:59:19:b2:99:08:73:7b:eb:a3:
fa:b5:db:a6:61:98:fb:fa:cb:10:85:8f:1e:5c:5d:b3:78:28:
f5:38:7c:53:d6:3f:24:c0:91:91:cc:95:7a:14:0b:89:72:2b:
d7:e6:27:aa:3b:f1:74:ce:69:3b:70:8c:f6:e5:df:f9:44:8e:
ef:4f:9e:74:b8:00:05:19:8a:4b:99:5c:8c:8a:ec:ca:cb:d1:
81:a4:01:af:fd:24:ef:11:25:c2:d3:8f:ae:b7:91:b9:d0:70:
45:8b:0a:48:fe:a8:96:86:d4:13:90:c1:15:46:36:fb:b6:f3:
ea:48:7c:54:14:32:e4:d7:fd:33:a6:2c:66:76:a6:ba:c2:ae:
87:51:f0:9f:50:a3:99:7f:c3:40:61:ec:28:6d:a8:0c:72:cc:
c5:b9:90:93:cd:f3:43:58:a2:6d:f5:32:0c:fd:36:c5:09:e3:
6d:fc:85:cd:a2:f5:4f:bf:92:3b:4e:51:8d:78:1c:91:20:40:
4b:91:0b:aa:75:1f:8a:cf:b1:44:b2:c5:10:78:fe:38:46:e3:
0f:02:cc:b1:55:0f:15:95:14:88:40:4e:83:e5:d9:d0:3f:6c:
5e:f9:11:50:92:39:f4:9f:cf:55:ef:e9:ff:69:68:2e:b7:7b:
c7:0d:a6:94
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBA7AljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NmE4OTdjNzk4ZjAxOWIyNDc3YjFhOWNlM2IyM2JiNWQ3NjE2NmMzMB4XDTIyMDEw
MTAzNTc0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDdlMTFiYjVhNDYy
NTY5ZTUwNTg3YTFhYzVmZThjOTRmMGI1M2E2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzH8YxG995wDdMIJd9Ptutc9l+lKGJUig1pUlETGdgeteJY
f27ebKtp/2Gyq4I/LJUqDx9r4fHnPiQYXbxD1K8wyJp5EldqKBneM7MDf/3v6yIH
HdsIT2NTQ1Qg0VClGlIbVym+4otO4dcz6RI8MSc+6ThG0MWurO0dbDilUyxR/T8E
aNJXkV9r6NpSru3RrqcWpE2xCj0sG8vIV2c0OkHdBIrelMd/GZePmbcGpeUy5Pwl
OxJhKJyi0CK/m+9tAGetfgS/xXDuXztYvCLdwKj3UC55WrWeckDcFPb1XNr8bVqw
/oqHagsgHPAfHUxILpmo7MlQF2V8siG5e21tkRMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRH4Ru1pGJWnlBYehrF/oyU8LU6YDAfBgNVHSMEGDAWgBS2qJfHmPAZskd7
Gpzjsju112FmwzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RxaVh4NWp3R2JKSGV4cWM0N0k3dGRkaFpzTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk3ZGQ3LTdmN2MtNDk0ZC1iODg2LTUyZjg1MGNhNTVjNi8x
L1ItRWJ0YVJpVnA1UVdIb2F4ZjZNbFBDMU9tQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk3ZGQ3LTdmN2MtNDk0ZC1iODg2LTUyZjg1MGNhNTVjNi8xL3RxaVh4NWp3R2JK
SGV4cWM0N0k3dGRkaFpzTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXQ8DANBgkqhkiG9w0BAQsFAAOC
AQEAF4nXayrJcNI5WRmymQhze+uj+rXbpmGY+/rLEIWPHlxds3go9Th8U9Y/JMCR
kcyVehQLiXIr1+YnqjvxdM5pO3CM9uXf+USO70+edLgABRmKS5lcjIrsysvRgaQB
r/0k7xElwtOPrreRudBwRYsKSP6olobUE5DBFUY2+7bz6kh8VBQy5Nf9M6YsZnam
usKuh1Hwn1CjmX/DQGHsKG2oDHLMxbmQk83zQ1iibfUyDP02xQnjbfyFzaL1T7+S
O05RjXgckSBAS5ELqnUfis+xRLLFEHj+OEbjDwLMsVUPFZUUiEBOg+XZ0D9sXvkR
UJI59J/PVe/p/2loLrd7xw2mlA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:36 2024 by rpki-client on console-ams.rpki-client.org