Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/1-nSY7TcI-XICd5WfQUDITSkazbs.roa
File: 1-nSY7TcI-XICd5WfQUDITSkazbs.roa (raw, json)
Hash identifier: OI7a0Ulo0EQFFLJoc2WY/Q2g4JpV4ikEsv6ehYYnvEg=
Subject key identifier: FA:74:98:ED:37:08:F9:72:02:77:95:9F:41:40:C8:4D:29:1A:CD:BB
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 088DC21B
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/1-nSY7TcI-XICd5WfQUDITSkazbs.roa
Signing time: Sat 01 Jan 2022 03:50:59 +0000
ROA not before: Sat 01 Jan 2022 03:50:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50242
IP address blocks: 85.248.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143507995 (0x88dc21b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa7498ed3708f9720277959f4140c84d291acdbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8e:ef:f9:90:3b:d0:25:3d:19:d9:d5:8d:82:
e0:00:0b:0b:17:cd:a1:83:bf:3d:fc:0a:88:4a:d6:
20:95:42:19:9f:fd:50:5d:e0:a1:4d:66:eb:83:41:
9e:02:8d:91:9a:cf:be:65:95:27:4a:1a:60:1d:1b:
9d:10:d1:b3:0b:6a:47:ae:e3:61:6b:9d:67:93:d9:
aa:09:32:af:92:40:95:8f:7c:23:7f:7f:10:c9:17:
bf:f4:49:cd:e5:97:5a:be:d8:94:16:3c:18:32:02:
44:6b:3d:cf:16:52:c9:31:bc:aa:d2:ba:36:d1:3f:
ed:d6:4a:14:db:15:80:4f:4c:75:d1:73:84:85:83:
93:25:8c:f5:8d:cc:b6:92:82:34:5c:a9:b7:9e:e1:
f2:b4:7e:6b:31:89:10:d1:42:d9:a8:ff:a8:c7:ba:
19:a9:2b:c4:b5:b7:f7:a3:17:c7:37:3e:7f:ec:b2:
42:80:9d:16:0f:e7:53:92:b0:ee:96:3e:e7:2e:5b:
1a:f5:ad:42:77:9d:26:89:06:58:77:4f:26:d0:4c:
e9:2f:7e:bb:0c:de:ef:a5:b1:b4:82:50:aa:bd:fd:
06:da:29:7e:89:b1:dd:f0:b8:d2:a3:89:4b:b4:f8:
a6:57:00:9b:87:ef:67:eb:57:32:6c:af:24:1e:28:
78:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:74:98:ED:37:08:F9:72:02:77:95:9F:41:40:C8:4D:29:1A:CD:BB
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/1-nSY7TcI-XICd5WfQUDITSkazbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.248.124.0/24
Signature Algorithm: sha256WithRSAEncryption
00:44:69:01:f7:7a:15:74:97:4d:54:e0:e0:81:62:08:2d:72:
2e:f0:e1:24:bd:30:fe:40:56:75:21:ba:67:6a:cd:5a:e1:f1:
fd:87:de:31:45:6a:a9:12:22:5f:4c:48:ef:9d:e3:ea:67:20:
e9:84:1b:73:1d:31:aa:95:f0:e7:76:9a:8d:38:59:74:4c:19:
76:4e:d3:75:e4:51:8c:21:6a:8c:e4:d9:81:82:4a:55:8b:a9:
f1:ab:e0:b1:68:ba:be:3a:d1:d6:07:0b:3e:27:61:af:9d:01:
03:f2:0d:3e:1f:c5:d7:7c:6e:9f:d1:1e:ac:4a:29:81:d6:e4:
57:ac:13:37:8b:01:3b:2c:0e:54:3e:d6:b1:45:01:0a:52:1a:
b2:aa:9f:64:6b:1d:b6:29:13:bd:a6:c8:32:0d:c2:80:0f:3e:
25:fa:b3:be:cc:c4:21:db:36:ad:74:40:b5:c4:01:d0:d8:b2:
40:b1:35:4e:09:45:c3:48:6c:da:8c:84:06:20:e8:2f:e6:29:
25:5b:55:05:e3:cc:8f:38:73:22:68:30:33:f0:ab:69:70:14:
6e:00:b1:d1:7a:fb:3f:f1:7a:b4:d8:85:46:e2:65:22:cf:30:
8c:6c:b2:73:d6:6c:86:e8:b9:ce:a6:25:b4:26:70:00:db:c1:
1c:d3:fa:50
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECI3CGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
N2Y4ODE0MDFhYmFjYzg4Yzk0MWZkZjc0MGYxYWIxNTM2ZjA1ZGJhMB4XDTIyMDEw
MTAzNTA1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmE3NDk4ZWQzNzA4
Zjk3MjAyNzc5NTlmNDE0MGM4NGQyOTFhY2RiYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMiO7/mQO9AlPRnZ1Y2C4AALCxfNoYO/PfwKiErWIJVCGZ/9
UF3goU1m64NBngKNkZrPvmWVJ0oaYB0bnRDRswtqR67jYWudZ5PZqgkyr5JAlY98
I39/EMkXv/RJzeWXWr7YlBY8GDICRGs9zxZSyTG8qtK6NtE/7dZKFNsVgE9MddFz
hIWDkyWM9Y3MtpKCNFypt57h8rR+azGJENFC2aj/qMe6GakrxLW396MXxzc+f+yy
QoCdFg/nU5Kw7pY+5y5bGvWtQnedJokGWHdPJtBM6S9+uwze76WxtIJQqr39Btop
fomx3fC40qOJS7T4plcAm4fvZ+tXMmyvJB4oeJcCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT6dJjtNwj5cgJ3lZ9BQMhNKRrNuzAfBgNVHSMEGDAWgBTn+IFAGrrMiMlB
/fdA8asVNvBdujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVfaUJRQnE2eklqSlFmMzNRUEdyRlRid1hiby5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvZjU1MzRhLWE2MTMtNDdiZS1iNDJiLWUyZmJjM2E2ODgwMC8x
LzEtblNZN1RjSS1YSUNkNVdmUVVESVRTa2F6YnMucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY5
L2Y1NTM0YS1hNjEzLTQ3YmUtYjQyYi1lMmZiYzNhNjg4MDAvMS81X2lCUUJxNnpJ
akpRZjMzUVBHckZUYndYYm8uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABV+HwwDQYJKoZIhvcNAQELBQAD
ggEBAABEaQH3ehV0l01U4OCBYggtci7w4SS9MP5AVnUhumdqzVrh8f2H3jFFaqkS
Il9MSO+d4+pnIOmEG3MdMaqV8Od2mo04WXRMGXZO03XkUYwhaozk2YGCSlWLqfGr
4LFour460dYHCz4nYa+dAQPyDT4fxdd8bp/RHqxKKYHW5FesEzeLATssDlQ+1rFF
AQpSGrKqn2RrHbYpE72myDINwoAPPiX6s77MxCHbNq10QLXEAdDYskCxNU4JRcNI
bNqMhAYg6C/mKSVbVQXjzI84cyJoMDPwq2lwFG4AsdF6+z/xerTYhUbiZSLPMIxs
snPWbIbouc6mJbQmcADbwRzT+lA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:04 2023 by rpki-client on console-ams.rpki-client.org