Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/2fyGrciCUgEbP3_orly_zuGV1Us.roa
File: 2fyGrciCUgEbP3_orly_zuGV1Us.roa (raw, json)
Hash identifier: 5dCpcGZf7oRiq/Md6FyOO7ZYWtyDCH5yYyYLfhJRNT0=
Subject key identifier: D9:FC:86:AD:C8:82:52:01:1B:3F:7F:E8:AE:5C:BF:CE:E1:95:D5:4B
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42F0BC10
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/2fyGrciCUgEbP3_orly_zuGV1Us.roa
Signing time: Tue 10 May 2022 05:50:03 +0000
ROA not before: Tue 10 May 2022 05:50:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62162
IP address blocks: 85.204.43.0/24 maxlen: 24
85.204.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1123073040 (0x42f0bc10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 10 05:50:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9fc86adc88252011b3f7fe8ae5cbfcee195d54b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d7:73:f7:79:ff:d7:3a:f3:a8:b1:23:6a:92:
27:ce:06:6f:a4:5c:81:70:1e:ff:79:eb:f7:09:20:
66:d0:f6:08:95:76:ea:8c:cc:f0:80:53:6b:11:94:
ba:1c:33:22:bc:40:ca:9d:59:e4:86:7f:8d:26:6d:
70:9e:cc:c2:a0:d6:5c:cc:09:31:05:7e:8c:19:a6:
c1:5a:d7:31:04:9b:d7:5a:c0:41:f2:bd:c1:0e:bf:
f3:1a:2f:14:b6:9f:a4:94:c2:7b:c6:11:de:e7:2d:
dc:b8:19:6b:fa:3b:3e:91:c4:ea:20:f3:72:ba:cf:
af:da:72:fb:06:1f:af:cc:54:66:cb:95:25:be:bd:
59:f3:87:4a:f5:31:22:b3:6e:02:a7:c8:4f:50:19:
80:62:72:89:95:32:0c:86:31:ac:cf:cd:cf:e0:93:
9b:86:66:77:60:d4:f1:82:c1:0c:16:e6:ef:f7:2a:
42:bc:d4:72:52:a5:c7:15:29:de:a5:d2:29:a2:65:
5f:91:d9:a2:06:1d:cf:40:d9:99:f1:ed:90:9c:1a:
62:f5:ba:1d:26:8c:3b:b2:ce:e8:7b:0a:a3:c1:00:
b9:f8:f0:93:50:8b:12:95:0b:35:1c:f8:50:44:c0:
6d:ae:10:3c:9f:ae:04:6f:8b:30:8f:db:0c:60:da:
92:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FC:86:AD:C8:82:52:01:1B:3F:7F:E8:AE:5C:BF:CE:E1:95:D5:4B
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/2fyGrciCUgEbP3_orly_zuGV1Us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.43.0/24
85.204.73.0/24
Signature Algorithm: sha256WithRSAEncryption
69:95:5a:42:b6:51:bc:95:cf:b0:3c:ec:8e:98:cd:9d:6b:25:
77:c0:23:87:ef:63:83:9c:30:9c:da:c1:ba:45:57:ae:5b:63:
84:39:05:d7:68:87:d3:45:6e:f0:0c:af:eb:8d:95:ad:5d:b7:
d8:77:30:e8:6b:16:03:d0:03:01:eb:2f:22:55:06:24:dd:2c:
14:6f:8a:74:80:54:1d:2d:d5:9f:b8:d8:6c:99:e8:87:1f:2f:
d1:4a:ea:2e:f8:bb:cb:9b:c2:73:c6:ee:c1:01:ec:83:35:d2:
60:35:ab:b1:f1:20:1b:3e:56:47:62:c2:da:08:88:56:67:17:
cb:ce:7d:ea:6e:4f:39:46:5e:65:e4:56:12:fa:83:3d:d9:3e:
75:71:e0:81:46:ec:f7:da:4c:4f:6b:76:98:09:c1:f8:45:da:
2b:6f:27:20:3c:0c:a6:93:14:89:e2:67:35:b7:5b:11:e0:d3:
4a:40:49:db:24:56:ae:e2:f6:45:cd:54:92:60:33:0a:04:ca:
6e:9c:a2:14:b2:eb:85:7c:48:2c:cd:1e:65:ea:43:8e:9d:39:
32:19:76:d4:bc:76:15:ee:83:31:0e:be:10:c7:9d:b6:96:f1:
35:42:33:fe:50:4f:82:d9:bb:31:55:71:63:c0:a5:3f:dc:e2:
a6:9b:88:1d
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEQvC8EDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDUx
MDA1NTAwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDlmYzg2YWRjODgy
NTIwMTFiM2Y3ZmU4YWU1Y2JmY2VlMTk1ZDU0YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAInXc/d5/9c686ixI2qSJ84Gb6RcgXAe/3nr9wkgZtD2CJV2
6ozM8IBTaxGUuhwzIrxAyp1Z5IZ/jSZtcJ7MwqDWXMwJMQV+jBmmwVrXMQSb11rA
QfK9wQ6/8xovFLafpJTCe8YR3uct3LgZa/o7PpHE6iDzcrrPr9py+wYfr8xUZsuV
Jb69WfOHSvUxIrNuAqfIT1AZgGJyiZUyDIYxrM/Nz+CTm4Zmd2DU8YLBDBbm7/cq
QrzUclKlxxUp3qXSKaJlX5HZogYdz0DZmfHtkJwaYvW6HSaMO7LO6HsKo8EAufjw
k1CLEpULNRz4UETAba4QPJ+uBG+LMI/bDGDakokCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTZ/IatyIJSARs/f+iuXL/O4ZXVSzAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS8yZnlHcmNpQ1VnRWJQM19vcmx5X3p1R1YxVXMucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVcwrAwQAVcxJMA0GCSqGSIb3
DQEBCwUAA4IBAQBplVpCtlG8lc+wPOyOmM2dayV3wCOH72ODnDCc2sG6RVeuW2OE
OQXXaIfTRW7wDK/rjZWtXbfYdzDoaxYD0AMB6y8iVQYk3SwUb4p0gFQdLdWfuNhs
meiHHy/RSuou+LvLm8Jzxu7BAeyDNdJgNaux8SAbPlZHYsLaCIhWZxfLzn3qbk85
Rl5l5FYS+oM92T51ceCBRuz32kxPa3aYCcH4RdorbycgPAymkxSJ4mc1t1sR4NNK
QEnbJFau4vZFzVSSYDMKBMpunKIUsuuFfEgszR5l6kOOnTkyGXbUvHYV7oMxDr4Q
x522lvE1QjP+UE+C2bsxVXFjwKU/3OKmm4gd
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org