Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/LJF6ip7rGrpKPTlDdC9DyTZh66g.roa
File: LJF6ip7rGrpKPTlDdC9DyTZh66g.roa (raw, json)
Hash identifier: mrFXsJZJCEP/i8aEA94D6wlWClXifkHOMtsRxHiVUNA=
Subject key identifier: 2C:91:7A:8A:9E:EB:1A:BA:4A:3D:39:43:74:2F:43:C9:36:61:EB:A8
Certificate issuer: /CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Certificate serial: 09A677B7
Authority key identifier: BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/LJF6ip7rGrpKPTlDdC9DyTZh66g.roa
Signing time: Wed 20 Apr 2022 15:00:07 +0000
ROA not before: Wed 20 Apr 2022 15:00:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.151.44.0/23 maxlen: 23
185.151.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161904567 (0x9a677b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Validity
Not Before: Apr 20 15:00:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c917a8a9eeb1aba4a3d3943742f43c93661eba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:37:2f:9e:ed:66:1b:25:1a:3a:56:e5:df:be:
d8:fd:3e:4f:35:9a:56:e3:eb:35:a4:fd:9e:8b:d5:
d2:dc:7c:0b:f5:ec:31:6e:ab:f4:c8:89:9f:c1:f5:
cb:5d:7a:e5:d5:a2:40:c5:6f:a4:a5:7b:65:77:c1:
f1:1f:3f:21:c8:74:d0:64:a0:16:b4:43:16:77:ac:
7b:c4:fb:32:61:a0:76:78:44:3f:55:90:1c:13:dc:
16:2c:d9:1a:f2:ed:ec:50:1b:ae:d9:d7:2f:bc:d5:
5f:fe:5e:0b:ce:bc:ec:c5:25:52:81:b0:25:9a:39:
12:ed:39:8e:4c:25:29:7d:35:9f:7f:1b:b6:a7:0e:
60:da:33:b0:0c:63:e7:a6:32:56:ff:4f:bf:a5:65:
95:35:45:59:95:a1:dd:cb:ea:32:9b:dd:48:85:1e:
d3:4e:c3:89:26:e4:6a:88:6b:3c:14:0c:f1:c8:5d:
17:af:9a:7c:9a:dd:2e:b3:1a:d1:b0:03:55:29:48:
1c:11:c8:e9:58:e6:fd:33:f6:21:77:b6:e5:67:f5:
eb:f7:2f:32:4d:16:42:37:66:91:8b:4f:8f:d3:df:
65:d1:bc:ec:fc:1a:42:f9:a2:a0:8d:4c:93:9e:09:
0f:e2:b3:48:58:bb:a5:00:9d:5b:95:53:43:18:3c:
23:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:91:7A:8A:9E:EB:1A:BA:4A:3D:39:43:74:2F:43:C9:36:61:EB:A8
X509v3 Authority Key Identifier:
keyid:BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/LJF6ip7rGrpKPTlDdC9DyTZh66g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/vE4hsn1vhOvdiIxo55zlVchG2ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.44.0/23
185.151.47.0/24
Signature Algorithm: sha256WithRSAEncryption
25:6f:fc:a4:56:d4:ac:2c:00:e1:0f:df:a1:ca:43:99:d2:c6:
93:e4:95:ca:34:66:64:fd:0d:4d:7d:ae:63:4a:8d:2e:37:3e:
45:64:27:f3:39:1c:c9:b4:b8:47:07:f7:dc:36:d7:d8:71:e6:
b6:17:c8:67:c2:b3:8a:50:77:41:2d:ae:bc:f3:0a:89:6d:48:
de:4b:79:98:a6:d1:1d:54:4a:e0:3d:2f:2a:f2:dc:83:23:19:
f4:bd:fa:58:40:97:3a:c0:9d:8e:c6:61:86:0c:a8:6e:19:0a:
21:2b:61:5b:7b:20:72:08:da:4e:28:6a:d0:b4:f8:fe:79:ce:
20:7d:24:b7:b2:74:33:e3:e5:4f:9f:00:06:be:5a:04:e1:2a:
64:8f:2d:94:6b:2d:f7:b0:1c:1c:ef:ad:ae:ad:85:d1:91:3e:
46:bf:55:be:13:27:f3:56:9b:be:61:5a:89:56:58:98:3f:64:
75:b5:d3:a1:e1:86:c9:f5:24:30:45:23:97:f3:9a:67:e7:40:
e5:60:f8:c9:5e:f9:16:34:5b:92:4e:5c:b2:bf:01:98:62:16:
3b:54:5b:96:12:95:eb:61:c7:95:8d:1a:80:fb:0b:3a:d0:9a:
ed:e8:34:12:6e:c9:1e:da:1d:8a:46:db:2a:32:da:f5:17:72:
ed:59:3a:f3
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECaZ3tzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YzRlMjFiMjdkNmY4NGViZGQ4ODhjNjhlNzljZTU1NWM4NDZkYWNiMB4XDTIyMDQy
MDE1MDAwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmM5MTdhOGE5ZWVi
MWFiYTRhM2QzOTQzNzQyZjQzYzkzNjYxZWJhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOs3L57tZhslGjpW5d++2P0+TzWaVuPrNaT9novV0tx8C/Xs
MW6r9MiJn8H1y1165dWiQMVvpKV7ZXfB8R8/Ich00GSgFrRDFnese8T7MmGgdnhE
P1WQHBPcFizZGvLt7FAbrtnXL7zVX/5eC8687MUlUoGwJZo5Eu05jkwlKX01n38b
tqcOYNozsAxj56YyVv9Pv6VllTVFWZWh3cvqMpvdSIUe007DiSbkaohrPBQM8chd
F6+afJrdLrMa0bADVSlIHBHI6Vjm/TP2IXe25Wf16/cvMk0WQjdmkYtPj9PfZdG8
7PwaQvmioI1Mk54JD+KzSFi7pQCdW5VTQxg8I88CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQskXqKnusauko9OUN0L0PJNmHrqDAfBgNVHSMEGDAWgBS8TiGyfW+E692I
jGjnnOVVyEbayzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZFNGhzbjF2aE92ZGlJeG81NXpsVmNoRzJzcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvYTBkNzNkLTY1NjQtNDE0Mi1hNmVlLTgzZTczY2IyNWVhNS8x
L0xKRjZpcDdyR3JwS1BUbERkQzlEeVRaaDY2Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
YTBkNzNkLTY1NjQtNDE0Mi1hNmVlLTgzZTczY2IyNWVhNS8xL3ZFNGhzbjF2aE92
ZGlJeG81NXpsVmNoRzJzcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAbmXLAMEALmXLzANBgkqhkiG9w0B
AQsFAAOCAQEAJW/8pFbUrCwA4Q/focpDmdLGk+SVyjRmZP0NTX2uY0qNLjc+RWQn
8zkcybS4Rwf33DbX2HHmthfIZ8KzilB3QS2uvPMKiW1I3kt5mKbRHVRK4D0vKvLc
gyMZ9L36WECXOsCdjsZhhgyobhkKISthW3sgcgjaTihq0LT4/nnOIH0kt7J0M+Pl
T58ABr5aBOEqZI8tlGst97AcHO+trq2F0ZE+Rr9VvhMn81abvmFaiVZYmD9kdbXT
oeGGyfUkMEUjl/OaZ+dA5WD4yV75FjRbkk5csr8BmGIWO1RblhKV62HHlY0agPsL
OtCa7eg0Em7JHtodikbbKjLa9Rdy7Vk68w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:04 2024 by rpki-client on console-ams.rpki-client.org