Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/cvBJLqfdYF_e3owpeyIk9Kmgg5E.roa
File: cvBJLqfdYF_e3owpeyIk9Kmgg5E.roa (raw, json)
Hash identifier: sk6wREjAHFeYJmAD4M+wcMEGjGdUx9iMFQEIAnCp4GM=
Subject key identifier: 72:F0:49:2E:A7:DD:60:5F:DE:DE:8C:29:7B:22:24:F4:A9:A0:83:91
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1BBDD60E
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/cvBJLqfdYF_e3owpeyIk9Kmgg5E.roa
Signing time: Wed 13 Apr 2022 12:05:51 +0000
ROA not before: Wed 13 Apr 2022 12:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206995
IP address blocks: 85.153.156.0/24 maxlen: 24
176.88.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465425934 (0x1bbdd60e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Apr 13 12:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72f0492ea7dd605fdede8c297b2224f4a9a08391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:34:dd:bf:d2:95:e4:df:a6:f3:d4:6e:92:bb:
e3:d9:c6:2b:6f:8a:e8:ea:86:3a:4c:5a:98:c0:e7:
f4:20:df:fb:e7:17:be:31:18:94:c2:47:14:21:72:
26:7b:ea:85:d4:3a:de:82:d3:d9:86:51:ac:27:f7:
99:95:de:ca:de:15:f1:bb:5a:a4:5a:68:02:91:bd:
23:55:61:37:c7:53:43:ad:37:eb:79:42:eb:82:af:
24:a4:fe:ad:4e:0e:88:27:4c:f6:6c:3c:9e:b3:e7:
9a:2a:48:b4:b6:45:d5:55:22:d1:09:01:be:f8:d7:
23:b5:42:5a:4b:16:5a:ed:d6:00:ed:f7:cf:be:4a:
2d:75:8f:06:de:2e:6b:95:23:97:50:e3:cf:24:35:
b9:fc:9d:4d:d3:a5:a2:e2:f5:4d:9b:65:99:71:71:
0f:34:dd:cf:81:17:63:63:93:f0:ba:94:09:9b:99:
04:49:fd:a5:6f:1b:4f:4d:66:c3:65:ab:61:20:b5:
89:20:df:cc:c0:ab:a1:5f:fc:d3:69:f3:d5:89:d4:
99:af:b5:9f:28:0a:d0:b1:31:28:46:29:74:47:e3:
37:f5:a5:fb:3c:68:4a:18:5e:13:48:2b:db:ef:54:
8f:79:8e:77:7a:51:9c:74:50:60:3b:9c:79:c7:03:
54:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F0:49:2E:A7:DD:60:5F:DE:DE:8C:29:7B:22:24:F4:A9:A0:83:91
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/cvBJLqfdYF_e3owpeyIk9Kmgg5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.156.0/24
176.88.51.0/24
Signature Algorithm: sha256WithRSAEncryption
58:36:5b:6e:42:b9:84:df:c2:9b:b3:81:38:75:fb:89:4c:46:
f1:6b:6f:fa:c1:c8:ff:59:f8:49:7b:f5:7e:d5:58:42:70:96:
80:fe:05:39:a1:30:33:7e:49:c4:a5:59:82:95:0d:ea:cf:e0:
e0:fd:0e:f5:5e:7f:b3:52:8a:0f:af:37:40:eb:5a:68:f6:41:
26:65:51:cf:38:6d:18:53:8f:6a:a6:8f:51:9d:46:90:e6:c5:
e6:ae:a2:fa:b4:3d:11:47:1d:c4:72:a5:0b:91:78:90:3c:d4:
75:1b:a6:b6:74:71:f2:92:d7:c5:a3:7c:f4:60:9a:d2:6b:9b:
3a:98:1d:ce:52:03:d3:76:7a:0f:85:9b:a9:c4:96:c9:3f:d3:
c8:42:ef:2c:12:d8:4d:ea:83:bc:da:fb:fb:36:7a:6a:26:a4:
7c:15:a0:bc:9d:4c:2f:16:74:80:19:bd:d5:5a:63:e5:f9:ae:
b7:a1:03:e0:39:96:41:73:3c:46:f8:7a:5f:9c:d1:96:97:7a:
c1:13:73:88:8e:33:e2:a7:58:d6:89:a3:60:0f:37:f3:75:24:
b7:bb:4c:e3:79:bb:ac:54:07:ec:94:ed:1c:d1:f4:3a:34:57:
8f:2e:1c:b8:6e:f7:1f:76:53:3e:5e:08:68:7f:ac:35:19:67:
63:4d:7a:03
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEG73WDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDU5YzQzMjNmNzY3Y2U0ZmZjODVkYWFkMjA4YjkwYzA0ZmJkM2U5MB4XDTIyMDQx
MzEyMDU1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJmMDQ5MmVhN2Rk
NjA1ZmRlZGU4YzI5N2IyMjI0ZjRhOWEwODM5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQ03b/SleTfpvPUbpK749nGK2+K6OqGOkxamMDn9CDf++cX
vjEYlMJHFCFyJnvqhdQ63oLT2YZRrCf3mZXeyt4V8btapFpoApG9I1VhN8dTQ603
63lC64KvJKT+rU4OiCdM9mw8nrPnmipItLZF1VUi0QkBvvjXI7VCWksWWu3WAO33
z75KLXWPBt4ua5Ujl1DjzyQ1ufydTdOlouL1TZtlmXFxDzTdz4EXY2OT8LqUCZuZ
BEn9pW8bT01mw2WrYSC1iSDfzMCroV/802nz1YnUma+1nygK0LExKEYpdEfjN/Wl
+zxoShheE0gr2+9Uj3mOd3pRnHRQYDuceccDVDECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRy8Ekup91gX97ejCl7IiT0qaCDkTAfBgNVHSMEGDAWgBSNWcQyP3Z85P/I
XarSCLkMBPvT6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pWbkVNajkyZk9UX3lGMnEwZ2k1REFUNzAtay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8x
L2N2QkpMcWZkWUZfZTNvd3BleUlrOUttZ2c1RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8xL2pWbkVNajkyZk9U
X3lGMnEwZ2k1REFUNzAtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFWZnAMEALBYMzANBgkqhkiG9w0B
AQsFAAOCAQEAWDZbbkK5hN/Cm7OBOHX7iUxG8Wtv+sHI/1n4SXv1ftVYQnCWgP4F
OaEwM35JxKVZgpUN6s/g4P0O9V5/s1KKD683QOtaaPZBJmVRzzhtGFOPaqaPUZ1G
kObF5q6i+rQ9EUcdxHKlC5F4kDzUdRumtnRx8pLXxaN89GCa0mubOpgdzlID03Z6
D4WbqcSWyT/TyELvLBLYTeqDvNr7+zZ6aiakfBWgvJ1MLxZ0gBm91Vpj5fmut6ED
4DmWQXM8Rvh6X5zRlpd6wRNziI4z4qdY1omjYA8383Ukt7tM43m7rFQH7JTtHNH0
OjRXjy4cuG73H3ZTPl4IaH+sNRlnY016Aw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org