Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/09GrNtiexekE9NfhTcTiv59iOrw.roa
File: 09GrNtiexekE9NfhTcTiv59iOrw.roa (raw, json)
Hash identifier: R+1WY3AyJ42l6mspLoEqP1vGl+mSlE6sgnMFjI5d3Sg=
Subject key identifier: D3:D1:AB:36:D8:9E:C5:E9:04:F4:D7:E1:4D:C4:E2:BF:9F:62:3A:BC
Certificate issuer: /CN=36b55fb34d29f962545132a025b52644fdffbf6f
Certificate serial: 02DAD60E
Authority key identifier: 36:B5:5F:B3:4D:29:F9:62:54:51:32:A0:25:B5:26:44:FD:FF:BF:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NrVfs00p-WJUUTKgJbUmRP3_v28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/09GrNtiexekE9NfhTcTiv59iOrw.roa
Signing time: Sat 01 Jan 2022 04:59:12 +0000
ROA not before: Sat 01 Jan 2022 04:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132335
IP address blocks: 185.206.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47896078 (0x2dad60e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b55fb34d29f962545132a025b52644fdffbf6f
Validity
Not Before: Jan 1 04:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3d1ab36d89ec5e904f4d7e14dc4e2bf9f623abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:9d:71:d8:24:62:6b:2c:b5:d8:d8:68:4d:d3:
ed:ee:5e:e9:4f:b7:08:bc:12:7e:d8:53:c8:c3:8c:
4e:a0:66:56:46:87:03:0d:ad:d3:6a:1b:fb:7c:fd:
bd:b2:fc:c1:e8:5d:3e:5e:7f:31:7f:01:ed:4b:34:
74:f6:db:e5:65:d2:80:73:da:f3:cf:1a:8a:8e:de:
b4:f1:10:4e:4f:22:a7:19:f7:26:e8:81:28:9c:47:
1d:0c:da:5a:0a:c5:bf:eb:4e:8e:c8:6b:1d:50:bf:
5c:32:4b:af:b0:48:e0:0e:df:79:5c:46:7e:40:b6:
2e:e3:ba:c8:c7:d4:ca:0f:e9:92:32:a7:85:ad:60:
26:66:15:af:99:77:d0:a9:78:e1:8e:60:d3:f3:b9:
5d:6e:cc:e0:c6:d6:00:5c:ff:ec:eb:4c:1c:41:e2:
9a:5e:7f:1d:5b:6d:0d:fa:94:60:ca:2e:9e:80:7a:
72:a0:aa:9e:61:ef:04:09:6f:21:06:04:ec:f1:4a:
97:42:c0:fa:20:87:87:46:b5:c3:f6:90:2b:46:17:
d5:47:02:fd:5c:44:e8:2f:c1:cb:c6:a2:4c:a4:c7:
2b:4f:43:68:d0:9c:5a:1f:bf:14:e5:e8:3d:34:ea:
82:95:7a:61:97:af:c9:e3:4f:95:c0:01:59:1f:2a:
6b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D1:AB:36:D8:9E:C5:E9:04:F4:D7:E1:4D:C4:E2:BF:9F:62:3A:BC
X509v3 Authority Key Identifier:
keyid:36:B5:5F:B3:4D:29:F9:62:54:51:32:A0:25:B5:26:44:FD:FF:BF:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NrVfs00p-WJUUTKgJbUmRP3_v28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/09GrNtiexekE9NfhTcTiv59iOrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/NrVfs00p-WJUUTKgJbUmRP3_v28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.123.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:33:b3:78:50:38:ed:3c:b0:08:dd:69:3b:20:a9:dd:8d:28:
7c:b6:b2:fd:07:fa:14:55:db:7d:b2:a2:6b:5d:8a:95:22:0e:
8f:1d:27:dc:70:65:36:87:ba:72:50:cf:b6:c8:be:92:02:b0:
3c:60:82:46:26:1c:45:c2:10:89:68:a8:84:ee:7e:4b:77:8a:
2d:62:84:6e:42:38:10:9a:18:98:b5:7d:90:e8:2d:a0:53:7a:
fa:a6:96:a9:c7:a5:26:98:b1:7e:18:aa:62:2f:6f:7a:57:bf:
cd:9a:44:02:a1:2f:b5:82:e1:4e:97:13:79:50:16:e4:c4:6e:
cb:0c:c7:88:86:26:08:28:63:89:74:f1:94:6a:c9:71:e6:81:
1f:95:7b:b2:ac:e3:5d:a0:6b:65:be:d6:e7:67:c3:21:ad:d7:
b3:f0:ba:04:57:c8:6c:f8:74:1c:83:9f:96:bc:e5:5f:1c:c9:
e4:c6:9a:70:16:f4:df:e7:87:d5:eb:7f:a2:32:9d:0e:13:22:
28:fb:bf:33:0b:08:8c:ba:e6:1c:5d:60:91:00:75:f6:03:43:
a4:b0:15:19:15:09:81:2b:6f:00:e2:33:55:12:90:1a:af:d0:
97:31:39:2a:b0:f6:80:0b:a1:3b:b8:1d:70:ec:a1:85:e2:82:
0b:95:ae:9f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAtrWDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NmI1NWZiMzRkMjlmOTYyNTQ1MTMyYTAyNWI1MjY0NGZkZmZiZjZmMB4XDTIyMDEw
MTA0NTkxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDNkMWFiMzZkODll
YzVlOTA0ZjRkN2UxNGRjNGUyYmY5ZjYyM2FiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO6dcdgkYmsstdjYaE3T7e5e6U+3CLwSfthTyMOMTqBmVkaH
Aw2t02ob+3z9vbL8wehdPl5/MX8B7Us0dPbb5WXSgHPa888aio7etPEQTk8ipxn3
JuiBKJxHHQzaWgrFv+tOjshrHVC/XDJLr7BI4A7feVxGfkC2LuO6yMfUyg/pkjKn
ha1gJmYVr5l30Kl44Y5g0/O5XW7M4MbWAFz/7OtMHEHiml5/HVttDfqUYMounoB6
cqCqnmHvBAlvIQYE7PFKl0LA+iCHh0a1w/aQK0YX1UcC/VxE6C/By8aiTKTHK09D
aNCcWh+/FOXoPTTqgpV6YZevyeNPlcABWR8qa/cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTT0as22J7F6QT01+FNxOK/n2I6vDAfBgNVHSMEGDAWgBQ2tV+zTSn5YlRR
MqAltSZE/f+/bzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05yVmZzMDBwLVdKVVVUS2dKYlVtUlAzX3YyOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWMvMmJmMDBiLWJmYmMtNGY2Yi1hMTNlLWYxMGY3M2E5ZWNiMy8x
LzA5R3JOdGlleGVrRTlOZmhUY1RpdjU5aU9ydy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMv
MmJmMDBiLWJmYmMtNGY2Yi1hMTNlLWYxMGY3M2E5ZWNiMy8xL05yVmZzMDBwLVdK
VVVUS2dKYlVtUlAzX3YyOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnOezANBgkqhkiG9w0BAQsFAAOC
AQEALzOzeFA47TywCN1pOyCp3Y0ofLay/Qf6FFXbfbKia12KlSIOjx0n3HBlNoe6
clDPtsi+kgKwPGCCRiYcRcIQiWiohO5+S3eKLWKEbkI4EJoYmLV9kOgtoFN6+qaW
qcelJpixfhiqYi9vele/zZpEAqEvtYLhTpcTeVAW5MRuywzHiIYmCChjiXTxlGrJ
ceaBH5V7sqzjXaBrZb7W52fDIa3Xs/C6BFfIbPh0HIOflrzlXxzJ5MaacBb03+eH
1et/ojKdDhMiKPu/MwsIjLrmHF1gkQB19gNDpLAVGRUJgStvAOIzVRKQGq/QlzE5
KrD2gAuhO7gdcOyhheKCC5Wunw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:01 2023 by rpki-client on console-fra.rpki-client.org