Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/B-GrYI6xKxJ5b3g-c2mKBHCAWfE.roa
File: B-GrYI6xKxJ5b3g-c2mKBHCAWfE.roa (raw, json)
Hash identifier: ag5W+bF5QsqWLOWOtDKMUR+kb9E9zXBZih5NQWii+Cs=
Subject key identifier: 07:E1:AB:60:8E:B1:2B:12:79:6F:78:3E:73:69:8A:04:70:80:59:F1
Certificate issuer: /CN=e0cde2c1fce3d6fe2185347dd89dcfd13ebbb151
Certificate serial: 07CD578E
Authority key identifier: E0:CD:E2:C1:FC:E3:D6:FE:21:85:34:7D:D8:9D:CF:D1:3E:BB:B1:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4M3iwfzj1v4hhTR92J3P0T67sVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/B-GrYI6xKxJ5b3g-c2mKBHCAWfE.roa
Signing time: Sat 01 Jan 2022 13:07:00 +0000
ROA not before: Sat 01 Jan 2022 13:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49879
IP address blocks: 185.141.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130897806 (0x7cd578e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0cde2c1fce3d6fe2185347dd89dcfd13ebbb151
Validity
Not Before: Jan 1 13:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07e1ab608eb12b12796f783e73698a04708059f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:21:35:c3:4f:a8:ba:9c:57:f1:51:c4:22:08:
11:c6:10:39:5b:bf:a5:69:33:7f:87:d8:59:5c:40:
7b:dc:ca:b3:84:16:a9:76:53:fa:b6:f1:bb:ca:78:
5b:36:30:57:c8:b5:a6:1c:bf:93:04:5f:cf:09:c6:
be:e2:6d:57:22:48:65:e0:7f:ef:7c:31:dc:03:e8:
03:dc:33:49:c7:c1:9b:04:1c:20:b6:c5:66:16:ea:
37:37:9a:73:5a:18:3c:75:3b:b0:46:e0:da:40:4d:
ca:22:c8:35:4a:e7:0d:57:39:6f:e7:28:bf:b8:15:
52:36:e8:51:09:f5:13:3a:c8:56:0b:6d:f6:35:dc:
d8:f4:7d:db:f0:d4:0c:34:b6:3c:08:d6:ac:22:2e:
ba:c8:12:69:37:bf:b1:3a:eb:9b:a4:25:bf:78:0e:
b2:2f:c6:91:7d:ec:0b:69:d9:ee:c3:18:91:4f:7f:
d6:b7:6b:05:52:aa:27:97:55:bb:6f:13:a0:9b:01:
45:22:42:d2:d1:d0:d2:59:0a:a7:29:a0:cb:3a:18:
90:d5:3b:d1:86:46:d6:4e:cd:c0:29:f8:22:79:b3:
53:9f:2d:0b:30:ea:cc:e8:20:d0:c1:fc:c4:45:ad:
1c:a4:43:1f:01:70:1e:ac:cc:82:8e:fa:92:3d:5a:
97:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E1:AB:60:8E:B1:2B:12:79:6F:78:3E:73:69:8A:04:70:80:59:F1
X509v3 Authority Key Identifier:
keyid:E0:CD:E2:C1:FC:E3:D6:FE:21:85:34:7D:D8:9D:CF:D1:3E:BB:B1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4M3iwfzj1v4hhTR92J3P0T67sVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/B-GrYI6xKxJ5b3g-c2mKBHCAWfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/4M3iwfzj1v4hhTR92J3P0T67sVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.109.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:74:51:a6:54:14:e9:82:98:1c:b4:fb:cd:68:5f:c2:82:4e:
35:1c:aa:79:6b:f4:f1:3c:75:6a:36:14:2c:3c:a6:16:40:27:
92:11:18:cb:af:46:8c:57:52:d6:69:11:f6:f8:1b:40:93:f6:
c0:81:bf:d7:75:a7:10:5f:84:9c:c1:fd:c4:de:60:e7:ad:87:
dc:4e:69:b0:6d:a6:59:26:4a:d4:fa:dd:0d:79:62:8a:b6:8d:
76:9e:b7:54:8c:be:ac:a2:a4:fd:dd:d7:c3:28:73:d5:00:d4:
dd:13:2c:8b:29:e5:5e:77:02:a2:74:53:70:5c:53:8e:f6:b4:
ab:d3:07:67:5e:59:31:6b:ba:9b:36:5f:12:4d:25:5a:f6:f7:
87:11:2a:7b:a3:41:e4:1a:b2:8f:a7:31:34:10:46:ea:bf:45:
4d:07:63:9a:e9:1f:3c:6f:1d:52:20:35:5a:89:45:8b:6a:fe:
fb:14:b5:09:84:de:9b:26:7e:6c:df:01:fa:81:47:65:ca:83:
c1:ba:c2:ad:4f:7d:f6:81:5d:88:e6:05:11:51:80:e4:f7:dd:
a9:ba:f7:ab:2c:55:8b:56:3e:2d:72:c0:cb:b9:3c:4e:ef:7f:
6b:0b:03:f6:58:65:1b:bb:8e:7b:2d:56:96:03:e2:2c:d5:dd:
c7:63:25:be
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB81XjjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MGNkZTJjMWZjZTNkNmZlMjE4NTM0N2RkODlkY2ZkMTNlYmJiMTUxMB4XDTIyMDEw
MTEzMDcwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDdlMWFiNjA4ZWIx
MmIxMjc5NmY3ODNlNzM2OThhMDQ3MDgwNTlmMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANghNcNPqLqcV/FRxCIIEcYQOVu/pWkzf4fYWVxAe9zKs4QW
qXZT+rbxu8p4WzYwV8i1phy/kwRfzwnGvuJtVyJIZeB/73wx3APoA9wzScfBmwQc
ILbFZhbqNzeac1oYPHU7sEbg2kBNyiLINUrnDVc5b+cov7gVUjboUQn1EzrIVgtt
9jXc2PR92/DUDDS2PAjWrCIuusgSaTe/sTrrm6Qlv3gOsi/GkX3sC2nZ7sMYkU9/
1rdrBVKqJ5dVu28ToJsBRSJC0tHQ0lkKpymgyzoYkNU70YZG1k7NwCn4InmzU58t
CzDqzOgg0MH8xEWtHKRDHwFwHqzMgo76kj1alycCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQH4atgjrErEnlveD5zaYoEcIBZ8TAfBgNVHSMEGDAWgBTgzeLB/OPW/iGF
NH3Ync/RPruxUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRNM2l3ZnpqMXY0aGhUUjkySjNQMFQ2N3NWRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2IvZWNkZDkzLTFhYTAtNGI5YS1iNmFhLWVjYjMxMjZmYzhlZC8x
L0ItR3JZSTZ4S3hKNWIzZy1jMm1LQkhDQVdmRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Iv
ZWNkZDkzLTFhYTAtNGI5YS1iNmFhLWVjYjMxMjZmYzhlZC8xLzRNM2l3ZnpqMXY0
aGhUUjkySjNQMFQ2N3NWRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmNbTANBgkqhkiG9w0BAQsFAAOC
AQEAPHRRplQU6YKYHLT7zWhfwoJONRyqeWv08Tx1ajYULDymFkAnkhEYy69GjFdS
1mkR9vgbQJP2wIG/13WnEF+EnMH9xN5g562H3E5psG2mWSZK1PrdDXliiraNdp63
VIy+rKKk/d3Xwyhz1QDU3RMsiynlXncConRTcFxTjva0q9MHZ15ZMWu6mzZfEk0l
Wvb3hxEqe6NB5Bqyj6cxNBBG6r9FTQdjmukfPG8dUiA1WolFi2r++xS1CYTemyZ+
bN8B+oFHZcqDwbrCrU999oFdiOYFEVGA5Pfdqbr3qyxVi1Y+LXLAy7k8Tu9/awsD
9lhlG7uOey1WlgPiLNXdx2Mlvg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:55 2025 by rpki-client