Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/jubqSjmjIvGYarkm-Rv3oIgD2Mg.roa
File: jubqSjmjIvGYarkm-Rv3oIgD2Mg.roa (raw, json)
Hash identifier: h07zcgLAiAK9pxEmX1JoSmAtQKVsyqGtln0BbgJtjXo=
Subject key identifier: 8E:E6:EA:4A:39:A3:22:F1:98:6A:B9:26:F9:1B:F7:A0:88:03:D8:C8
Certificate issuer: /CN=fb236b213d56493f3b077e6b41f42e4f3df8cdce
Certificate serial: 01E2A5E6
Authority key identifier: FB:23:6B:21:3D:56:49:3F:3B:07:7E:6B:41:F4:2E:4F:3D:F8:CD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-yNrIT1WST87B35rQfQuTz34zc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/jubqSjmjIvGYarkm-Rv3oIgD2Mg.roa
Signing time: Sat 01 Jan 2022 04:03:13 +0000
ROA not before: Sat 01 Jan 2022 04:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2116
IP address blocks: 85.194.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31630822 (0x1e2a5e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb236b213d56493f3b077e6b41f42e4f3df8cdce
Validity
Not Before: Jan 1 04:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ee6ea4a39a322f1986ab926f91bf7a08803d8c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:e7:b0:68:a9:aa:52:f7:37:fc:a2:57:fc:
c0:67:07:57:32:38:40:3e:d4:4b:bc:d5:94:8d:d2:
3a:0d:da:3c:eb:d1:54:fb:6b:6d:0b:6d:e5:51:7b:
d5:41:1f:27:0c:df:be:4c:d3:72:13:a4:29:96:f5:
d8:c0:a8:6b:9e:fe:d5:0a:98:9f:dd:4f:a4:6c:93:
9d:0c:88:e5:83:55:2e:97:37:85:e7:9d:96:7d:bb:
90:6b:9c:76:95:d2:bf:6c:91:64:2b:80:e2:0f:f9:
a5:d8:0b:e1:7e:66:5d:f8:63:e6:1d:de:a0:c3:fd:
f2:75:24:72:a3:7f:e8:df:4a:41:f2:c6:f4:6b:bb:
23:f0:b7:b4:a4:bf:02:93:7d:d9:c8:ff:9e:b5:dc:
65:22:57:7d:3c:02:32:bf:87:7c:4a:16:35:2f:12:
18:34:5f:14:4e:57:3e:0e:34:44:e4:1e:9f:2f:0c:
ca:d0:e5:6f:15:ea:23:08:a1:c8:ee:ee:eb:13:50:
57:77:39:3f:62:21:e9:81:fc:f4:f4:85:36:7e:77:
ee:62:be:05:05:08:f3:d1:38:8f:9b:6b:01:cd:f8:
16:7a:ec:f3:80:1e:c5:b0:4e:a4:73:3a:45:f2:13:
0c:5d:a2:92:6a:2f:ff:16:81:a5:bd:b0:50:13:a8:
32:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E6:EA:4A:39:A3:22:F1:98:6A:B9:26:F9:1B:F7:A0:88:03:D8:C8
X509v3 Authority Key Identifier:
keyid:FB:23:6B:21:3D:56:49:3F:3B:07:7E:6B:41:F4:2E:4F:3D:F8:CD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-yNrIT1WST87B35rQfQuTz34zc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/jubqSjmjIvGYarkm-Rv3oIgD2Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/1-yNrIT1WST87B35rQfQuTz34zc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.194.254.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:67:04:4e:a9:3a:e2:14:22:95:a9:ae:4b:f5:2c:44:2e:e6:
26:d5:99:0f:b0:62:79:84:de:4e:36:36:e8:d2:27:50:6f:b0:
3d:fc:c8:0e:1b:4e:da:0f:9a:0a:b9:f1:e3:8a:bd:c0:55:84:
0f:42:b9:c1:39:ba:fe:56:d2:9e:79:00:51:20:f5:cd:10:c1:
67:ef:80:00:b8:f0:a8:ef:02:90:d0:ad:3d:96:42:f9:56:8f:
92:b9:3b:e9:ca:db:a1:c3:f8:6a:1c:6b:4d:83:06:cd:de:3f:
b5:05:7d:27:0f:72:e6:0f:98:7c:5a:d3:f2:5d:7e:9b:e8:ff:
e6:a9:2f:91:81:54:03:19:1e:68:51:46:70:38:60:fd:28:9d:
3a:22:c3:a5:87:e7:ea:df:ca:f4:e0:a4:32:31:b8:5e:df:02:
51:3d:b2:1d:d4:91:2d:66:9d:a1:3d:e5:5f:07:47:82:b5:62:
7f:a6:e6:77:07:45:07:2e:23:75:e4:7d:28:26:2c:63:63:f1:
75:36:57:f0:92:eb:03:55:8b:86:34:05:5e:67:6b:08:ee:10:
f4:2b:c0:1f:7d:33:15:2c:5a:b6:ca:60:e3:27:1c:b0:61:1c:
31:05:fa:89:7e:08:76:47:36:18:cb:3e:5e:5a:7d:10:b0:68:
88:68:19:72
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAeKl5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YjIzNmIyMTNkNTY0OTNmM2IwNzdlNmI0MWY0MmU0ZjNkZjhjZGNlMB4XDTIyMDEw
MTA0MDMxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGVlNmVhNGEzOWEz
MjJmMTk4NmFiOTI2ZjkxYmY3YTA4ODAzZDhjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpd57BoqapS9zf8olf8wGcHVzI4QD7US7zVlI3SOg3aPOvR
VPtrbQtt5VF71UEfJwzfvkzTchOkKZb12MCoa57+1QqYn91PpGyTnQyI5YNVLpc3
heedln27kGucdpXSv2yRZCuA4g/5pdgL4X5mXfhj5h3eoMP98nUkcqN/6N9KQfLG
9Gu7I/C3tKS/ApN92cj/nrXcZSJXfTwCMr+HfEoWNS8SGDRfFE5XPg40ROQeny8M
ytDlbxXqIwihyO7u6xNQV3c5P2Ih6YH89PSFNn537mK+BQUI89E4j5trAc34Fnrs
84AexbBOpHM6RfITDF2ikmov/xaBpb2wUBOoMvMCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSO5upKOaMi8ZhquSb5G/egiAPYyDAfBgNVHSMEGDAWgBT7I2shPVZJPzsH
fmtB9C5PPfjNzjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEteU5ySVQxV1NUODdCMzVyUWZRdVR6MzR6YzQuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzg1LzIwZjRhYy04MGQ5LTQwZTItYTllNi0xYzg4ZWViZWIyOTMv
MS9qdWJxU2ptakl2R1lhcmttLVJ2M29JZ0QyTWcucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg1
LzIwZjRhYy04MGQ5LTQwZTItYTllNi0xYzg4ZWViZWIyOTMvMS8xLXlOcklUMVdT
VDg3QjM1clFmUXVUejM0emM0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVcL+MA0GCSqGSIb3DQEBCwUA
A4IBAQBaZwROqTriFCKVqa5L9SxELuYm1ZkPsGJ5hN5ONjbo0idQb7A9/MgOG07a
D5oKufHjir3AVYQPQrnBObr+VtKeeQBRIPXNEMFn74AAuPCo7wKQ0K09lkL5Vo+S
uTvpytuhw/hqHGtNgwbN3j+1BX0nD3LmD5h8WtPyXX6b6P/mqS+RgVQDGR5oUUZw
OGD9KJ06IsOlh+fq38r04KQyMbhe3wJRPbId1JEtZp2hPeVfB0eCtWJ/puZ3B0UH
LiN15H0oJixjY/F1NlfwkusDVYuGNAVeZ2sI7hD0K8AffTMVLFq2ymDjJxywYRwx
BfqJfgh2RzYYyz5eWn0QsGiIaBly
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:28 2023 by rpki-client on console-ams.rpki-client.org