Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/It60K89f0gMtsy8q_lY6vJqXrEQ.roa
File: It60K89f0gMtsy8q_lY6vJqXrEQ.roa (raw, json)
Hash identifier: +f07i4rNxpm3S993TWM0CwpuNPWvECFHhXZU3xf/nTk=
Subject key identifier: 22:DE:B4:2B:CF:5F:D2:03:2D:B3:2F:2A:FE:56:3A:BC:9A:97:AC:44
Certificate issuer: /CN=b9df156ee18b6958d4306b6311b4a086763eff62
Certificate serial: 0380A2FD
Authority key identifier: B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/It60K89f0gMtsy8q_lY6vJqXrEQ.roa
Signing time: Wed 23 Feb 2022 11:15:11 +0000
ROA not before: Wed 23 Feb 2022 11:15:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60798
IP address blocks: 185.116.60.0/24 maxlen: 24
2a0c:79c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58761981 (0x380a2fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9df156ee18b6958d4306b6311b4a086763eff62
Validity
Not Before: Feb 23 11:15:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22deb42bcf5fd2032db32f2afe563abc9a97ac44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:53:65:7c:db:d2:1f:d4:ee:4f:b8:28:47:f5:
c5:d1:aa:65:14:35:c9:24:71:b6:ac:78:48:5b:43:
d2:7f:b1:e5:1f:37:27:19:0a:7f:81:31:a3:a8:3c:
a8:3a:b2:cc:bf:42:ec:63:1c:12:42:14:0b:ff:bd:
37:c2:08:9e:10:12:b5:fc:8d:8b:5a:90:fe:97:95:
f5:1c:c7:de:01:97:29:d9:5b:9d:89:69:e1:23:58:
82:59:2d:47:f1:ba:c4:63:b7:86:8e:18:53:be:12:
6b:2c:7f:90:80:1f:79:9c:0f:16:52:67:9c:16:7d:
5a:e7:9b:3c:27:bb:43:c5:17:0d:bd:bf:7a:f6:51:
c6:4e:35:8e:c8:ad:f3:1a:e2:a9:16:72:49:a0:da:
cd:5c:cc:03:0a:94:77:f3:69:58:03:46:6a:70:6f:
33:64:c7:9d:fa:e1:51:5b:e2:38:33:e3:95:04:51:
f0:40:db:f3:95:79:83:fb:ff:01:d4:db:31:14:13:
3b:9d:97:2e:83:56:7f:9d:9b:2b:8e:53:c3:db:a8:
39:7c:82:8f:23:04:89:ce:a1:ab:fa:d6:0f:5a:82:
76:0e:0c:31:d4:d8:cf:e8:34:f0:9c:96:7f:55:65:
43:68:73:01:a7:de:88:9c:84:eb:ce:8b:ee:bc:7f:
d6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:DE:B4:2B:CF:5F:D2:03:2D:B3:2F:2A:FE:56:3A:BC:9A:97:AC:44
X509v3 Authority Key Identifier:
keyid:B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/It60K89f0gMtsy8q_lY6vJqXrEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/ud8VbuGLaVjUMGtjEbSghnY-_2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.60.0/24
IPv6:
2a0c:79c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
96:d1:18:8e:31:cf:d2:90:92:6f:8d:1b:a5:dd:a2:0b:8e:5c:
37:ba:29:d3:f7:01:b9:e4:08:ee:d8:d4:31:db:0c:82:c5:9f:
5f:e8:b5:db:8f:67:3b:f1:ca:95:59:c2:73:eb:7d:10:50:a9:
cd:7e:15:ee:a4:d1:1e:5f:da:5a:ea:33:5b:a5:c4:b3:96:6f:
46:dd:c6:a1:05:cb:c5:67:83:0d:b8:75:40:ed:b6:ad:94:94:
b1:b8:8a:c3:24:c2:5d:7d:6f:48:e8:a7:2c:47:8a:c1:fa:1e:
10:14:94:7d:67:4a:55:82:13:00:c6:05:6d:39:28:1c:ad:d3:
dc:92:6a:21:2a:0b:21:2a:91:93:ca:43:1c:93:83:76:a0:76:
a4:3a:2a:85:20:d9:7c:91:8a:d0:81:72:c5:2a:6a:43:f6:6a:
db:21:12:05:17:13:54:f8:6b:3a:f4:84:62:10:6f:11:06:fe:
c5:64:c3:39:c1:4b:64:42:1b:e6:52:1e:08:d1:20:a6:9d:83:
02:4c:3e:cc:6e:19:6b:07:22:83:45:75:41:26:c9:ad:6c:d8:
6c:96:a0:af:f7:4a:3e:61:c7:b2:f6:4c:d6:d3:b4:ba:1f:11:
d2:eb:a9:67:a7:b9:b0:72:97:86:3f:db:ec:9d:e7:1a:d0:c1:
dc:cc:e4:e3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEA4Ci/TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OWRmMTU2ZWUxOGI2OTU4ZDQzMDZiNjMxMWI0YTA4Njc2M2VmZjYyMB4XDTIyMDIy
MzExMTUxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjJkZWI0MmJjZjVm
ZDIwMzJkYjMyZjJhZmU1NjNhYmM5YTk3YWM0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1TZXzb0h/U7k+4KEf1xdGqZRQ1ySRxtqx4SFtD0n+x5R83
JxkKf4Exo6g8qDqyzL9C7GMcEkIUC/+9N8IInhAStfyNi1qQ/peV9RzH3gGXKdlb
nYlp4SNYglktR/G6xGO3ho4YU74Sayx/kIAfeZwPFlJnnBZ9WuebPCe7Q8UXDb2/
evZRxk41jsit8xriqRZySaDazVzMAwqUd/NpWANGanBvM2THnfrhUVviODPjlQRR
8EDb85V5g/v/AdTbMRQTO52XLoNWf52bK45Tw9uoOXyCjyMEic6hq/rWD1qCdg4M
MdTYz+g08JyWf1VlQ2hzAafeiJyE686L7rx/1vcCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQi3rQrz1/SAy2zLyr+Vjq8mpesRDAfBgNVHSMEGDAWgBS53xVu4YtpWNQw
a2MRtKCGdj7/YjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VkOFZidUdMYVZqVU1HdGpFYlNnaG5ZLV8ySS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWMvZDY0NjFmLTE3ZTMtNDk4Ni1hNWY2LTcyYTRiM2E5YmI0NC8x
L0l0NjBLODlmMGdNdHN5OHFfbFk2dkpxWHJFUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMv
ZDY0NjFmLTE3ZTMtNDk4Ni1hNWY2LTcyYTRiM2E5YmI0NC8xL3VkOFZidUdMYVZq
VU1HdGpFYlNnaG5ZLV8ySS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALl0PDAPBAIAAjAJAwcAKgx5wAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQCW0RiOMc/SkJJvjRul3aILjlw3uinT9wG55Aju
2NQx2wyCxZ9f6LXbj2c78cqVWcJz630QUKnNfhXupNEeX9pa6jNbpcSzlm9G3cah
BcvFZ4MNuHVA7batlJSxuIrDJMJdfW9I6KcsR4rB+h4QFJR9Z0pVghMAxgVtOSgc
rdPckmohKgshKpGTykMck4N2oHakOiqFINl8kYrQgXLFKmpD9mrbIRIFFxNU+Gs6
9IRiEG8RBv7FZMM5wUtkQhvmUh4I0SCmnYMCTD7MbhlrByKDRXVBJsmtbNhslqCv
90o+Ycey9kzW07S6HxHS66lnp7mwcpeGP9vsneca0MHczOTj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:18 2024 by rpki-client on console-fra.rpki-client.org