Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/jmy3eJzijBBC7ISoMCwejuzlX7Y.roa
File: jmy3eJzijBBC7ISoMCwejuzlX7Y.roa (raw, json)
Hash identifier: GgjSxXO4TllcXWn0rDc3A27F2m3OAE5tcX2NoqmEsiM=
Subject key identifier: 8E:6C:B7:78:9C:E2:8C:10:42:EC:84:A8:30:2C:1E:8E:EC:E5:5F:B6
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01848031603DBD150C51982B1FE71B3B651A
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/jmy3eJzijBBC7ISoMCwejuzlX7Y.roa
Signing time: Wed 16 Nov 2022 11:27:10 +0000
ROA not before: Wed 16 Nov 2022 11:27:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48715
IP address blocks: 185.239.1.0/24 maxlen: 24
185.239.2.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:31:60:3d:bd:15:0c:51:98:2b:1f:e7:1b:3b:65:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Nov 16 11:27:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e6cb7789ce28c1042ec84a8302c1e8eece55fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:36:4d:03:07:a3:6b:50:5f:d7:c9:36:9b:6e:
89:7e:16:18:5a:89:48:c0:ab:ed:6e:e1:62:66:39:
0c:b5:c0:3b:a5:a7:47:2e:30:a4:f5:0a:a9:0d:a5:
12:e8:a2:1d:36:00:ef:b6:70:6c:ed:5c:92:2e:21:
e3:04:e6:54:83:0b:52:e0:7a:cf:be:3b:fd:7b:56:
a6:ed:e5:c8:35:09:31:41:9f:55:47:57:89:0f:ec:
3e:49:49:ea:31:04:ce:c2:e1:78:92:21:c9:7a:b8:
ed:30:5c:aa:4e:ee:47:50:c5:18:30:ed:d5:f9:15:
98:2a:88:eb:6e:73:7d:8a:4c:b1:5f:cd:88:2c:45:
e9:2f:40:a7:be:fb:26:5d:6e:96:dc:2c:de:a0:35:
ee:3d:82:1c:0c:79:de:9a:dd:16:09:a8:a5:b0:64:
87:3d:ab:c1:c3:d5:75:3b:40:4d:aa:af:2a:77:d2:
71:2f:14:11:59:27:a0:cb:c3:19:1c:0a:e7:be:50:
a7:5c:99:dc:b7:d5:97:bb:64:d9:e8:0e:3f:ea:04:
b6:82:2e:c5:ed:e2:8b:fb:65:c8:3d:42:4b:0a:09:
3f:72:aa:c9:da:0b:6d:c5:b7:76:55:5b:ba:e6:36:
0d:f5:b2:9e:de:cd:e6:d2:ae:30:94:20:18:96:81:
d2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6C:B7:78:9C:E2:8C:10:42:EC:84:A8:30:2C:1E:8E:EC:E5:5F:B6
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/jmy3eJzijBBC7ISoMCwejuzlX7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.1.0-185.239.3.255
Signature Algorithm: sha256WithRSAEncryption
96:48:ac:a1:7f:03:70:15:a8:9a:7d:6c:8a:66:34:31:bd:90:
ff:a2:02:65:c3:e3:9f:44:59:d5:12:2a:cf:51:eb:7a:2c:7c:
19:ec:5f:5f:90:dc:2e:ac:2a:bb:89:68:10:81:ef:82:16:ca:
fb:04:60:5c:16:07:be:ab:37:63:91:86:a7:9c:ad:30:c6:45:
22:ce:52:8c:a6:b6:23:a3:64:2b:4d:94:7a:91:ed:c4:74:37:
e8:96:1c:d4:23:85:8e:f6:3b:84:1a:14:ea:e0:22:0c:b3:ee:
55:58:7e:f4:f4:c2:26:a1:02:82:41:0a:b9:f8:15:8a:e9:f8:
64:98:0e:e0:5d:0b:18:7e:55:fd:59:21:5a:81:4c:11:56:b5:
32:7e:d0:e5:fc:73:17:08:0c:e9:a0:fb:0d:66:f1:f5:24:cd:
07:5d:b3:b4:25:28:79:60:f6:24:28:f5:91:ed:0e:88:6f:97:
0b:b3:b2:eb:5d:59:36:d4:1c:73:89:8f:8a:cd:07:fa:a6:ab:
12:64:e6:05:c6:30:06:ae:ec:f9:62:49:ec:e3:9f:cb:27:e5:
f8:2f:c9:39:b7:86:96:94:76:65:33:9a:87:0d:ed:c7:cb:f8:
d2:eb:77:74:ed:5e:ca:67:fe:d9:3b:e4:12:84:bf:5f:70:8d:
e8:4d:2c:38
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYSAMWA9vRUMUZgrH+cbO2UaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjIxMTE2MTEyNzEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZTZjYjc3ODljZTI4YzEwNDJlYzg0YTgzMDJjMWU4ZWVjZTU1ZmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jZNAweja1Bf18k2m26JfhYYWolI
wKvtbuFiZjkMtcA7padHLjCk9QqpDaUS6KIdNgDvtnBs7VySLiHjBOZUgwtS4HrP
vjv9e1am7eXINQkxQZ9VR1eJD+w+SUnqMQTOwuF4kiHJerjtMFyqTu5HUMUYMO3V
+RWYKojrbnN9ikyxX82ILEXpL0CnvvsmXW6W3CzeoDXuPYIcDHnemt0WCailsGSH
PavBw9V1O0BNqq8qd9JxLxQRWSegy8MZHArnvlCnXJnct9WXu2TZ6A4/6gS2gi7F
7eKL+2XIPUJLCgk/cqrJ2gttxbd2VVu65jYN9bKe3s3m0q4wlCAYloHSIQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFI5st3ic4owQQuyEqDAsHo7s5V+2MB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvam15M2VKemlqQkJDN0lTb01Dd2VqdXpsWDdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC57wED
BAK57wAwDQYJKoZIhvcNAQELBQADggEBAJZIrKF/A3AVqJp9bIpmNDG9kP+iAmXD
459EWdUSKs9R63osfBnsX1+Q3C6sKruJaBCB74IWyvsEYFwWB76rN2ORhqecrTDG
RSLOUoymtiOjZCtNlHqR7cR0N+iWHNQjhY72O4QaFOrgIgyz7lVYfvT0wiahAoJB
Crn4FYrp+GSYDuBdCxh+Vf1ZIVqBTBFWtTJ+0OX8cxcIDOmg+w1m8fUkzQdds7Ql
KHlg9iQo9ZHtDohvlwuzsutdWTbUHHOJj4rNB/qmqxJk5gXGMAau7PliSezjn8sn
5fgvyTm3hpaUdmUzmocN7cfL+NLrd3TtXspn/tk75BKEv19wjehNLDg=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-fra.rpki-client.org