Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/bhXfwsZYy7RVCL9kS9zliIGSeFk.roa
File: bhXfwsZYy7RVCL9kS9zliIGSeFk.roa (raw, json)
Hash identifier: aDjIj6ZEsj2mNiL6KQ0tbEtsyNR6KVR3Xy4vJfgWfYM=
Subject key identifier: 6E:15:DF:C2:C6:58:CB:B4:55:08:BF:64:4B:DC:E5:88:81:92:78:59
Certificate issuer: /CN=9891c4488699e6d024e39cc4d61eeeabd38010fa
Certificate serial: 0812F187
Authority key identifier: 98:91:C4:48:86:99:E6:D0:24:E3:9C:C4:D6:1E:EE:AB:D3:80:10:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mJHESIaZ5tAk45zE1h7uq9OAEPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/bhXfwsZYy7RVCL9kS9zliIGSeFk.roa
Signing time: Sat 01 Jan 2022 13:01:21 +0000
ROA not before: Sat 01 Jan 2022 13:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212490
IP address blocks: 185.41.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135459207 (0x812f187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9891c4488699e6d024e39cc4d61eeeabd38010fa
Validity
Not Before: Jan 1 13:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e15dfc2c658cbb45508bf644bdce58881927859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9d:38:8c:e4:dd:a5:37:35:4b:41:e5:5b:31:
f7:f9:73:99:f9:5b:b0:bb:00:df:76:8a:0f:d7:9f:
17:ec:dc:70:24:b1:12:f0:ec:f9:b1:cd:60:b0:62:
b5:05:4a:d6:5b:d1:96:9b:69:b2:fd:69:35:aa:fe:
90:a6:b5:98:40:16:c1:66:33:c4:34:eb:7f:3d:56:
80:c3:6a:e6:e7:b3:13:15:00:48:cb:60:5f:59:78:
31:3b:6d:f3:74:3e:3d:d3:bc:fb:3a:22:b9:ad:32:
88:1b:92:2a:65:4a:d0:c2:e2:da:d7:06:18:29:40:
24:4a:e8:a3:a0:8d:27:75:4b:2f:0c:81:92:00:d9:
ca:9b:45:d9:a4:e0:10:38:44:a6:93:81:b2:8d:47:
f3:ba:65:d6:62:ea:b2:06:74:58:09:f2:c1:5f:e8:
3b:d8:aa:87:65:ad:c5:9e:83:0a:80:33:15:23:a9:
4d:78:90:1a:dd:b7:6b:30:cc:0c:a5:d6:ce:01:e5:
11:97:20:be:68:7c:e4:3d:85:d0:2b:d3:93:1a:1f:
e8:a3:2e:5d:db:bc:f8:c3:ff:7a:46:0a:71:23:d3:
28:f1:c4:42:ea:74:78:33:8d:b9:64:1d:1e:eb:e9:
b1:62:48:6b:f0:92:bd:8d:5f:d5:40:32:c1:23:20:
bd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:15:DF:C2:C6:58:CB:B4:55:08:BF:64:4B:DC:E5:88:81:92:78:59
X509v3 Authority Key Identifier:
keyid:98:91:C4:48:86:99:E6:D0:24:E3:9C:C4:D6:1E:EE:AB:D3:80:10:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mJHESIaZ5tAk45zE1h7uq9OAEPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/bhXfwsZYy7RVCL9kS9zliIGSeFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/mJHESIaZ5tAk45zE1h7uq9OAEPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.184.0/24
Signature Algorithm: sha256WithRSAEncryption
16:9b:4e:ee:c2:f1:d5:e7:de:74:84:4f:00:4f:5b:62:85:70:
17:31:a6:50:b9:41:c9:06:18:14:72:2e:04:5f:4e:19:cb:1b:
f1:27:fb:6d:c1:7e:31:ab:83:df:a1:27:9f:b0:c5:0c:46:94:
ed:25:02:c0:d6:85:25:26:54:94:48:1a:8d:e4:21:89:73:f2:
33:fa:7e:15:e0:89:02:d7:f5:b4:89:b4:0f:e8:78:3b:ac:27:
33:1f:86:da:3f:6c:44:37:ca:5d:70:29:86:9b:9b:a6:fe:98:
b5:dd:3b:d1:66:73:26:02:19:a4:2b:0d:00:7a:a7:7f:fb:5d:
3e:24:67:06:92:a8:69:79:7c:9b:53:a5:4c:aa:87:63:19:ee:
0d:8e:06:de:2f:e4:64:28:a8:01:3a:62:46:f8:5b:59:e6:64:
53:08:e0:99:20:62:53:a7:9a:13:10:c5:1c:2e:cb:f3:9a:04:
a5:6a:8f:e2:c8:eb:57:9a:94:b6:01:ea:af:87:17:be:27:9f:
f1:75:b2:78:0f:17:c8:8a:16:17:75:bb:b7:53:6b:c5:7b:85:
46:f3:0d:59:2b:7f:f1:88:d8:15:b2:ca:ca:81:ee:fc:a5:dd:
8a:c1:51:f5:6f:3d:c8:f6:27:45:5c:78:3c:9a:9e:ae:ea:6e:
9f:61:e2:10
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECBLxhzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODkxYzQ0ODg2OTllNmQwMjRlMzljYzRkNjFlZWVhYmQzODAxMGZhMB4XDTIyMDEw
MTEzMDEyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmUxNWRmYzJjNjU4
Y2JiNDU1MDhiZjY0NGJkY2U1ODg4MTkyNzg1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKGdOIzk3aU3NUtB5Vsx9/lzmflbsLsA33aKD9efF+zccCSx
EvDs+bHNYLBitQVK1lvRlptpsv1pNar+kKa1mEAWwWYzxDTrfz1WgMNq5uezExUA
SMtgX1l4MTtt83Q+PdO8+zoiua0yiBuSKmVK0MLi2tcGGClAJEroo6CNJ3VLLwyB
kgDZyptF2aTgEDhEppOBso1H87pl1mLqsgZ0WAnywV/oO9iqh2WtxZ6DCoAzFSOp
TXiQGt23azDMDKXWzgHlEZcgvmh85D2F0CvTkxof6KMuXdu8+MP/ekYKcSPTKPHE
Qup0eDONuWQdHuvpsWJIa/CSvY1f1UAywSMgvV8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRuFd/CxljLtFUIv2RL3OWIgZJ4WTAfBgNVHSMEGDAWgBSYkcRIhpnm0CTj
nMTWHu6r04AQ+jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21KSEVTSWFaNXRBazQ1ekUxaDd1cTlPQUVQby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvNDdkZjAwLTg0NjgtNGMzOS1iZTk1LWUxMGE2MDU5NmMyNi8x
L2JoWGZ3c1pZeTdSVkNMOWtTOXpsaUlHU2VGay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
NDdkZjAwLTg0NjgtNGMzOS1iZTk1LWUxMGE2MDU5NmMyNi8xL21KSEVTSWFaNXRB
azQ1ekUxaDd1cTlPQUVQby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkpuDANBgkqhkiG9w0BAQsFAAOC
AQEAFptO7sLx1efedIRPAE9bYoVwFzGmULlByQYYFHIuBF9OGcsb8Sf7bcF+MauD
36Enn7DFDEaU7SUCwNaFJSZUlEgajeQhiXPyM/p+FeCJAtf1tIm0D+h4O6wnMx+G
2j9sRDfKXXAphpubpv6Ytd070WZzJgIZpCsNAHqnf/tdPiRnBpKoaXl8m1OlTKqH
YxnuDY4G3i/kZCioATpiRvhbWeZkUwjgmSBiU6eaExDFHC7L85oEpWqP4sjrV5qU
tgHqr4cXvief8XWyeA8XyIoWF3W7t1NrxXuFRvMNWSt/8YjYFbLKyoHu/KXdisFR
9W89yPYnRVx4PJqerupun2HiEA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org