Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5e6fd3-67ef-45ab-a420-4877fc59d319/1/DJb3bmxapLIM3sCJuNVPvTR2_Co.roa
File: DJb3bmxapLIM3sCJuNVPvTR2_Co.roa (raw, json)
Hash identifier: 4tXNLmkDKVMTMdP1oaNBw7e6hVG9lQs19g6J1RnoYag=
Subject key identifier: 0C:96:F7:6E:6C:5A:A4:B2:0C:DE:C0:89:B8:D5:4F:BD:34:76:FC:2A
Certificate issuer: /CN=d06989a9cd6bd2f2c3c0dec608a28be3d3ba4e81
Certificate serial: 37627047
Authority key identifier: D0:69:89:A9:CD:6B:D2:F2:C3:C0:DE:C6:08:A2:8B:E3:D3:BA:4E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0GmJqc1r0vLDwN7GCKKL49O6ToE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5e6fd3-67ef-45ab-a420-4877fc59d319/1/DJb3bmxapLIM3sCJuNVPvTR2_Co.roa
Signing time: Sat 01 Jan 2022 11:03:40 +0000
ROA not before: Sat 01 Jan 2022 11:03:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48661
IP address blocks: 94.230.144.0/20 maxlen: 21
185.224.112.0/22 maxlen: 23
2a00:c500::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 929198151 (0x37627047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d06989a9cd6bd2f2c3c0dec608a28be3d3ba4e81
Validity
Not Before: Jan 1 11:03:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c96f76e6c5aa4b20cdec089b8d54fbd3476fc2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b2:54:f2:0b:98:03:0d:e6:8c:22:53:06:1b:
4d:f5:a5:7d:b8:b6:37:cb:67:de:b3:30:82:55:3f:
13:f8:10:0e:7e:d3:9b:e8:e9:4c:4b:20:c7:c7:7a:
f5:77:93:7b:48:7d:67:fe:13:af:c2:84:ea:2c:d0:
9f:68:66:05:d2:f0:80:d8:83:1c:90:61:ad:ba:f9:
5c:09:25:17:46:6e:46:02:fa:db:0a:6d:89:4a:ec:
53:a5:a1:78:54:ff:bc:c7:9d:e0:bd:fe:0c:df:60:
40:bb:39:ed:57:e1:59:cb:16:31:0c:77:54:eb:d4:
4d:db:ad:50:f8:13:9b:6a:fe:7a:5c:c2:80:16:de:
9a:b9:2c:ee:5e:aa:fd:12:a0:19:ab:a7:ab:0b:f2:
3b:c0:4e:5e:89:36:ee:79:57:f5:9a:6b:1a:9e:fc:
54:b4:de:55:8d:36:7d:cc:00:66:75:b7:68:e2:27:
78:17:77:87:b7:50:93:96:4c:ff:d1:d0:ad:a3:75:
c6:19:93:97:f1:d6:47:cd:e9:be:6a:c7:91:98:e0:
25:b2:38:23:d0:50:93:d9:68:6f:bc:14:9f:60:08:
3c:cc:a0:1b:32:60:1e:53:0f:0c:28:b0:dc:ac:12:
85:c7:9d:3e:b6:23:b4:be:9f:2a:d9:c1:8a:a9:95:
29:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:96:F7:6E:6C:5A:A4:B2:0C:DE:C0:89:B8:D5:4F:BD:34:76:FC:2A
X509v3 Authority Key Identifier:
keyid:D0:69:89:A9:CD:6B:D2:F2:C3:C0:DE:C6:08:A2:8B:E3:D3:BA:4E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0GmJqc1r0vLDwN7GCKKL49O6ToE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5e6fd3-67ef-45ab-a420-4877fc59d319/1/DJb3bmxapLIM3sCJuNVPvTR2_Co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5e6fd3-67ef-45ab-a420-4877fc59d319/1/0GmJqc1r0vLDwN7GCKKL49O6ToE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.230.144.0/20
185.224.112.0/22
IPv6:
2a00:c500::/32
Signature Algorithm: sha256WithRSAEncryption
5d:7b:ec:bf:53:91:9c:68:76:09:b2:03:f2:fb:ce:94:ef:f5:
cb:5e:b8:93:ba:1a:ae:1f:da:64:77:79:b6:be:93:e0:72:6b:
81:23:1e:1a:f5:e9:53:40:b1:dc:a4:8b:4d:b2:2c:2d:13:67:
be:63:c2:53:21:75:98:2f:6d:dc:23:39:f4:ac:d7:0b:59:dc:
eb:92:43:1f:56:15:51:34:a2:23:0f:44:fb:1d:f6:54:71:80:
d9:12:79:82:46:92:d0:34:36:f6:60:22:5e:2c:45:54:ad:1d:
57:03:4e:05:1b:59:0e:dc:18:7e:f0:28:4b:c4:03:fb:07:91:
4d:94:59:5f:f1:48:8f:02:53:46:4b:fc:7c:be:57:1d:56:04:
f5:85:25:6b:dc:db:3a:1f:5b:d1:0f:dd:70:d3:b8:16:c3:29:
40:e9:ee:ac:02:44:40:6d:54:83:82:62:bc:62:57:df:2a:05:
89:2c:aa:f9:78:ba:88:81:72:b8:17:d3:b4:cf:50:c3:6f:72:
03:86:6a:bc:c9:ba:21:e4:58:f1:41:c1:0a:35:dd:a0:b5:b2:
09:75:84:0c:ab:2f:a1:bb:2f:8a:20:37:e7:50:d3:1f:a8:7f:
9d:16:cc:83:bc:58:7c:fd:97:96:3f:02:9d:28:9c:e7:32:5f:
a4:4c:42:89
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEN2JwRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDY5ODlhOWNkNmJkMmYyYzNjMGRlYzYwOGEyOGJlM2QzYmE0ZTgxMB4XDTIyMDEw
MTExMDM0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGM5NmY3NmU2YzVh
YTRiMjBjZGVjMDg5YjhkNTRmYmQzNDc2ZmMyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMCyVPILmAMN5owiUwYbTfWlfbi2N8tn3rMwglU/E/gQDn7T
m+jpTEsgx8d69XeTe0h9Z/4Tr8KE6izQn2hmBdLwgNiDHJBhrbr5XAklF0ZuRgL6
2wptiUrsU6WheFT/vMed4L3+DN9gQLs57VfhWcsWMQx3VOvUTdutUPgTm2r+elzC
gBbemrks7l6q/RKgGaunqwvyO8BOXok27nlX9ZprGp78VLTeVY02fcwAZnW3aOIn
eBd3h7dQk5ZM/9HQraN1xhmTl/HWR83pvmrHkZjgJbI4I9BQk9lob7wUn2AIPMyg
GzJgHlMPDCiw3KwShcedPrYjtL6fKtnBiqmVKckCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQMlvdubFqksgzewIm41U+9NHb8KjAfBgNVHSMEGDAWgBTQaYmpzWvS8sPA
3sYIoovj07pOgTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBHbUpxYzFyMHZMRHdON0dDS0tMNDlPNlRvRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNWU2ZmQzLTY3ZWYtNDVhYi1hNDIwLTQ4NzdmYzU5ZDMxOS8x
L0RKYjNibXhhcExJTTNzQ0p1TlZQdlRSMl9Dby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NWU2ZmQzLTY3ZWYtNDVhYi1hNDIwLTQ4NzdmYzU5ZDMxOS8xLzBHbUpxYzFyMHZM
RHdON0dDS0tMNDlPNlRvRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBF7mkAMEArngcDANBAIAAjAHAwUA
KgDFADANBgkqhkiG9w0BAQsFAAOCAQEAXXvsv1ORnGh2CbID8vvOlO/1y164k7oa
rh/aZHd5tr6T4HJrgSMeGvXpU0Cx3KSLTbIsLRNnvmPCUyF1mC9t3CM59KzXC1nc
65JDH1YVUTSiIw9E+x32VHGA2RJ5gkaS0DQ29mAiXixFVK0dVwNOBRtZDtwYfvAo
S8QD+weRTZRZX/FIjwJTRkv8fL5XHVYE9YUla9zbOh9b0Q/dcNO4FsMpQOnurAJE
QG1Ug4JivGJX3yoFiSyq+Xi6iIFyuBfTtM9Qw29yA4ZqvMm6IeRY8UHBCjXdoLWy
CXWEDKsvobsviiA351DTH6h/nRbMg7xYfP2Xlj8CnSic5zJfpExCiQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:36 2024 by rpki-client on console-fra.rpki-client.org