Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/aLN0YjeqJzmtBCOuZhbwwMZoIk4.roa
File: aLN0YjeqJzmtBCOuZhbwwMZoIk4.roa (raw, json)
Hash identifier: 5VLbcN8OEj1dfo5BwqKh6nWwiQHuM/M/6eNC7GWLStE=
Subject key identifier: 68:B3:74:62:37:AA:27:39:AD:04:23:AE:66:16:F0:C0:C6:68:22:4E
Certificate issuer: /CN=fbbe33c8d18e53bfd24822098dc748640550c504
Certificate serial: 05B45D73
Authority key identifier: FB:BE:33:C8:D1:8E:53:BF:D2:48:22:09:8D:C7:48:64:05:50:C5:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/aLN0YjeqJzmtBCOuZhbwwMZoIk4.roa
Signing time: Sat 01 Jan 2022 04:03:27 +0000
ROA not before: Sat 01 Jan 2022 04:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.118.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95706483 (0x5b45d73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbbe33c8d18e53bfd24822098dc748640550c504
Validity
Not Before: Jan 1 04:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68b3746237aa2739ad0423ae6616f0c0c668224e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7d:b1:02:d6:7f:29:f9:06:08:bf:ef:1c:8b:
93:e2:ed:94:79:8f:0c:2f:ab:2c:eb:58:6b:a1:78:
c8:94:46:09:d6:05:52:f9:ec:40:6f:ba:9b:b0:3b:
f9:81:88:f2:5c:1b:d5:13:91:c9:20:db:bc:c9:f5:
a8:c9:ee:be:09:c2:b4:e8:f8:4e:05:1d:d7:71:e1:
ce:be:a3:27:32:00:ef:f9:de:a1:6f:fc:b7:31:0d:
2f:5c:2a:38:bb:94:d7:98:7e:76:71:e5:ae:b8:3c:
1e:26:03:c3:e9:3c:90:31:43:08:eb:2a:7b:6f:3c:
df:7a:41:e6:6a:09:52:c0:48:b5:8f:65:b9:0c:2d:
73:3b:5a:5d:60:09:31:e2:c1:9f:a2:76:a7:28:f4:
6d:cf:70:f5:e0:01:09:5f:de:9b:0a:0a:b4:f8:3b:
87:9b:f5:25:77:f6:d3:98:e1:3f:ed:66:8b:96:59:
42:27:96:2c:7a:1e:ed:f5:40:6d:07:e8:ed:b9:c8:
00:f4:64:49:20:d5:12:16:02:22:3e:f6:59:d9:35:
d2:e9:47:90:bb:d8:4b:c8:19:a5:c8:13:0a:36:94:
06:9b:fd:37:7e:a5:4b:7c:b3:cf:c2:15:ef:a9:ec:
c6:c4:ba:ef:93:85:84:cf:c2:a2:ae:af:8d:65:c6:
16:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B3:74:62:37:AA:27:39:AD:04:23:AE:66:16:F0:C0:C6:68:22:4E
X509v3 Authority Key Identifier:
keyid:FB:BE:33:C8:D1:8E:53:BF:D2:48:22:09:8D:C7:48:64:05:50:C5:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/aLN0YjeqJzmtBCOuZhbwwMZoIk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:74:ba:3d:25:21:2c:ea:ac:a6:9c:3b:ef:a3:73:dc:16:6b:
42:21:78:e7:a0:1a:5b:6f:d1:c9:a2:68:7d:a9:b2:32:02:be:
76:bc:94:7f:44:cb:e7:23:8f:95:fe:85:76:bc:b4:e9:35:e8:
4a:d0:94:db:6b:ca:55:d4:45:c4:e9:69:57:4b:49:11:e4:86:
df:37:0b:dd:44:74:b0:e5:5c:50:e9:d5:9d:61:38:8e:85:35:
98:32:e9:71:dc:00:3a:a8:2d:69:da:95:ad:6e:3f:a4:89:c3:
88:ca:95:d3:08:24:29:64:0e:ee:a2:e3:3f:ca:cc:7e:3d:d4:
46:c7:e1:2f:44:f8:5e:23:93:20:89:7b:bf:20:05:73:7b:54:
01:da:c5:01:61:8b:c7:56:fe:6a:41:aa:b2:8f:66:d8:e5:dc:
a1:9e:06:f9:0a:df:d7:9f:b2:65:3c:86:b1:1c:ba:a4:3c:ad:
2d:9e:9a:ac:e5:7b:29:73:30:bf:ce:fc:ca:3e:62:1e:8e:f0:
37:ac:79:50:7b:95:e8:a7:80:5d:16:01:1c:82:3d:a9:61:3c:
ff:aa:db:06:f4:02:86:29:8d:d9:cf:9b:31:65:27:9a:5d:40:
07:94:9c:93:40:93:ac:41:6e:e2:d1:19:0a:bd:19:27:4c:5e:
53:4f:d0:37
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEBbRdczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YmJlMzNjOGQxOGU1M2JmZDI0ODIyMDk4ZGM3NDg2NDA1NTBjNTA0MB4XDTIyMDEw
MTA0MDMyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjhiMzc0NjIzN2Fh
MjczOWFkMDQyM2FlNjYxNmYwYzBjNjY4MjI0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKp9sQLWfyn5Bgi/7xyLk+LtlHmPDC+rLOtYa6F4yJRGCdYF
UvnsQG+6m7A7+YGI8lwb1RORySDbvMn1qMnuvgnCtOj4TgUd13Hhzr6jJzIA7/ne
oW/8tzENL1wqOLuU15h+dnHlrrg8HiYDw+k8kDFDCOsqe28833pB5moJUsBItY9l
uQwtcztaXWAJMeLBn6J2pyj0bc9w9eABCV/emwoKtPg7h5v1JXf205jhP+1mi5ZZ
QieWLHoe7fVAbQfo7bnIAPRkSSDVEhYCIj72Wdk10ulHkLvYS8gZpcgTCjaUBpv9
N36lS3yzz8IV76nsxsS675OFhM/Coq6vjWXGFqECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRos3RiN6onOa0EI65mFvDAxmgiTjAfBgNVHSMEGDAWgBT7vjPI0Y5Tv9JI
IgmNx0hkBVDFBDAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtNzR6eU5HT1U3X1NTQ0lKamNkSVpBVlF4UVEuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzcwLzljZmVlOC05NDQ2LTRmNWUtYWQxZS0wNTU0MzExZDg3YjUv
MS9hTE4wWWplcUp6bXRCQ091Wmhid3dNWm9JazQucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcw
LzljZmVlOC05NDQ2LTRmNWUtYWQxZS0wNTU0MzExZDg3YjUvMS8xLTc0enlOR09V
N19TU0NJSmpjZElaQVZReFFRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXZoMA0GCSqGSIb3DQEBCwUA
A4IBAQCMdLo9JSEs6qymnDvvo3PcFmtCIXjnoBpbb9HJomh9qbIyAr52vJR/RMvn
I4+V/oV2vLTpNehK0JTba8pV1EXE6WlXS0kR5IbfNwvdRHSw5VxQ6dWdYTiOhTWY
Mulx3AA6qC1p2pWtbj+kicOIypXTCCQpZA7uouM/ysx+PdRGx+EvRPheI5MgiXu/
IAVze1QB2sUBYYvHVv5qQaqyj2bY5dyhngb5Ct/Xn7JlPIaxHLqkPK0tnpqs5Xsp
czC/zvzKPmIejvA3rHlQe5Xop4BdFgEcgj2pYTz/qtsG9AKGKY3Zz5sxZSeaXUAH
lJyTQJOsQW7i0RkKvRknTF5TT9A3
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:26 2023 by rpki-client on console-ams.rpki-client.org