Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/343ee3-c8ea-4540-a172-f98c438f0a35/1/VFBJB4arSfpct6hLvhFK18bk_RQ.roa
File: VFBJB4arSfpct6hLvhFK18bk_RQ.roa (raw, json)
Hash identifier: sHvDRpLKHanfKJeLovrAh9UjFJycCBlkhdRW6LD5R5M=
Subject key identifier: 54:50:49:07:86:AB:49:FA:5C:B7:A8:4B:BE:11:4A:D7:C6:E4:FD:14
Certificate issuer: /CN=60614515907e8eac99806617d5f69c40db91a3f5
Certificate serial: 100438CE
Authority key identifier: 60:61:45:15:90:7E:8E:AC:99:80:66:17:D5:F6:9C:40:DB:91:A3:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGFFFZB-jqyZgGYX1facQNuRo_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/343ee3-c8ea-4540-a172-f98c438f0a35/1/VFBJB4arSfpct6hLvhFK18bk_RQ.roa
Signing time: Sat 01 Jan 2022 06:58:59 +0000
ROA not before: Sat 01 Jan 2022 06:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206491
IP address blocks: 185.185.88.0/23 maxlen: 23
2a0b:4e80::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268712142 (0x100438ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60614515907e8eac99806617d5f69c40db91a3f5
Validity
Not Before: Jan 1 06:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5450490786ab49fa5cb7a84bbe114ad7c6e4fd14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f0:50:80:3b:f9:28:0d:61:98:7a:56:36:28:
32:b8:cc:8c:e6:43:94:78:79:1b:ed:1b:f0:a5:51:
ae:74:1e:12:55:fe:df:da:5e:19:2e:99:be:93:fc:
57:5c:61:86:2b:17:be:d2:35:4b:e2:eb:8d:09:b2:
8a:60:1f:dd:59:ef:3b:fa:c5:03:87:00:c2:c3:f1:
8d:04:39:39:85:96:81:48:48:6c:6c:27:f3:78:18:
97:e6:35:9b:67:b6:d5:9d:81:23:f8:73:1b:db:9f:
79:87:c7:a3:2d:88:be:25:48:35:85:ed:94:77:57:
bf:af:a4:d4:35:94:5d:2e:08:68:c9:0f:2c:06:cd:
2e:d4:cb:d8:94:71:14:5a:e1:7f:65:47:2e:67:34:
56:1a:f6:e8:39:2e:8d:b8:54:f3:2a:85:d0:c7:f6:
2e:51:e3:41:17:b8:66:48:eb:45:27:47:22:e1:2d:
86:bd:a4:67:72:66:37:ea:93:45:88:00:8a:bc:da:
93:e4:5b:8b:5c:19:5e:11:52:43:ff:02:c4:bb:a7:
c2:94:96:96:ff:a4:ce:3c:87:81:20:b5:53:b7:4f:
25:5d:f7:b2:43:43:3c:51:40:1a:4c:4d:49:23:a7:
5c:70:87:f5:7c:6e:52:84:39:ef:cf:a5:e3:f5:84:
c6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:50:49:07:86:AB:49:FA:5C:B7:A8:4B:BE:11:4A:D7:C6:E4:FD:14
X509v3 Authority Key Identifier:
keyid:60:61:45:15:90:7E:8E:AC:99:80:66:17:D5:F6:9C:40:DB:91:A3:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGFFFZB-jqyZgGYX1facQNuRo_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/343ee3-c8ea-4540-a172-f98c438f0a35/1/VFBJB4arSfpct6hLvhFK18bk_RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/343ee3-c8ea-4540-a172-f98c438f0a35/1/YGFFFZB-jqyZgGYX1facQNuRo_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.88.0/23
IPv6:
2a0b:4e80::/29
Signature Algorithm: sha256WithRSAEncryption
87:4d:33:2a:76:4b:de:d5:d0:91:54:f3:a8:91:8c:66:a7:27:
d6:40:55:b1:59:67:df:7c:11:5f:2d:61:1d:00:f0:8a:fa:9c:
f0:70:b4:fd:13:48:30:23:15:42:15:0e:59:3b:21:ef:93:f4:
e9:c8:5d:96:1d:11:2f:49:f9:4a:5d:e1:74:0f:6d:b5:93:52:
c3:3f:53:e0:ec:86:77:c5:48:1c:ec:7b:76:53:c0:a3:43:bb:
eb:31:4b:56:57:e2:56:e8:71:18:9f:12:1b:a9:b9:fc:5a:64:
f8:82:34:87:3b:90:37:78:b4:a7:65:3f:97:94:2c:a4:fc:03:
45:11:5a:9a:19:22:fb:14:d7:1b:fc:19:cc:bb:72:51:6b:68:
48:6f:71:ee:dc:4f:cf:c6:14:04:0b:dc:04:f2:f8:7c:98:e7:
ab:00:7f:23:2d:d7:d5:d2:92:b2:6c:1c:e6:58:30:50:19:b0:
17:08:d2:5b:78:96:1d:f7:07:9e:72:8b:e8:a1:4d:ff:ce:70:
d6:69:41:1b:13:da:93:b0:bf:9b:03:12:f0:ae:24:75:eb:67:
65:c9:a5:f2:bf:81:b8:6a:4c:05:b3:c7:49:8c:7e:04:56:9c:
b1:f2:ed:8e:d6:0a:6d:90:f3:9b:68:ab:fc:7a:7f:ed:02:f1:
87:d9:d5:80
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEEAQ4zjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDYxNDUxNTkwN2U4ZWFjOTk4MDY2MTdkNWY2OWM0MGRiOTFhM2Y1MB4XDTIyMDEw
MTA2NTg1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTQ1MDQ5MDc4NmFi
NDlmYTVjYjdhODRiYmUxMTRhZDdjNmU0ZmQxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMbwUIA7+SgNYZh6VjYoMrjMjOZDlHh5G+0b8KVRrnQeElX+
39peGS6ZvpP8V1xhhisXvtI1S+LrjQmyimAf3VnvO/rFA4cAwsPxjQQ5OYWWgUhI
bGwn83gYl+Y1m2e21Z2BI/hzG9ufeYfHoy2IviVINYXtlHdXv6+k1DWUXS4IaMkP
LAbNLtTL2JRxFFrhf2VHLmc0Vhr26DkujbhU8yqF0Mf2LlHjQRe4ZkjrRSdHIuEt
hr2kZ3JmN+qTRYgAirzak+Rbi1wZXhFSQ/8CxLunwpSWlv+kzjyHgSC1U7dPJV33
skNDPFFAGkxNSSOnXHCH9XxuUoQ578+l4/WExrECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRUUEkHhqtJ+ly3qEu+EUrXxuT9FDAfBgNVHSMEGDAWgBRgYUUVkH6OrJmA
ZhfV9pxA25Gj9TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHRkZGWkItanF5WmdHWVgxZmFjUU51Um9fVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTQvMzQzZWUzLWM4ZWEtNDU0MC1hMTcyLWY5OGM0MzhmMGEzNS8x
L1ZGQkpCNGFyU2ZwY3Q2aEx2aEZLMThia19SUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQv
MzQzZWUzLWM4ZWEtNDU0MC1hMTcyLWY5OGM0MzhmMGEzNS8xL1lHRkZGWkItanF5
WmdHWVgxZmFjUU51Um9fVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAbm5WDANBAIAAjAHAwUDKgtOgDAN
BgkqhkiG9w0BAQsFAAOCAQEAh00zKnZL3tXQkVTzqJGMZqcn1kBVsVln33wRXy1h
HQDwivqc8HC0/RNIMCMVQhUOWTsh75P06chdlh0RL0n5Sl3hdA9ttZNSwz9T4OyG
d8VIHOx7dlPAo0O76zFLVlfiVuhxGJ8SG6m5/Fpk+II0hzuQN3i0p2U/l5QspPwD
RRFamhki+xTXG/wZzLtyUWtoSG9x7txPz8YUBAvcBPL4fJjnqwB/Iy3X1dKSsmwc
5lgwUBmwFwjSW3iWHfcHnnKL6KFN/85w1mlBGxPak7C/mwMS8K4kdetnZcml8r+B
uGpMBbPHSYx+BFacsfLtjtYKbZDzm2ir/Hp/7QLxh9nVgA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:00 2024 by rpki-client on console-fra.rpki-client.org