Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/2e0536-4ca2-4afe-83d6-336e874f3d87/1/81W6417Q9m6QBQW_-ufngGmZLDQ.roa
File: 81W6417Q9m6QBQW_-ufngGmZLDQ.roa (raw, json)
Hash identifier: yNTL0+QIO+psNM8AEJYm2Ufh4ROyMQieIHp+x8WjpRk=
Subject key identifier: F3:55:BA:E3:5E:D0:F6:6E:90:05:05:BF:FA:E7:E7:80:69:99:2C:34
Certificate issuer: /CN=08818cbb0f9d1e573773d791138a0122f28bec56
Certificate serial: 06CB0859
Authority key identifier: 08:81:8C:BB:0F:9D:1E:57:37:73:D7:91:13:8A:01:22:F2:8B:EC:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIGMuw-dHlc3c9eRE4oBIvKL7FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/2e0536-4ca2-4afe-83d6-336e874f3d87/1/81W6417Q9m6QBQW_-ufngGmZLDQ.roa
Signing time: Fri 29 Apr 2022 01:16:31 +0000
ROA not before: Fri 29 Apr 2022 01:16:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206818
IP address blocks: 185.158.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113969241 (0x6cb0859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08818cbb0f9d1e573773d791138a0122f28bec56
Validity
Not Before: Apr 29 01:16:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f355bae35ed0f66e900505bffae7e78069992c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ef:2e:d7:12:f8:1e:fd:bf:6a:6e:19:95:6e:
10:99:74:f3:c4:2c:33:2e:73:0f:3f:d1:b8:fe:b3:
97:2d:6c:4e:cb:19:ad:df:6f:6c:4b:5b:ff:68:c9:
2f:4a:d7:29:33:70:c6:48:8c:ed:1f:69:24:b1:66:
7b:78:42:30:63:57:86:8e:13:a7:1e:0e:99:fb:5d:
12:d5:27:a5:d6:e4:e3:2e:92:13:f4:c6:2b:7c:62:
f4:29:6b:e5:f8:69:15:27:9f:5e:a3:52:b8:ab:24:
3a:49:c1:ef:4a:2a:f3:c6:61:ff:39:d0:c8:fa:46:
08:0f:72:31:c2:90:2b:21:6c:eb:c2:89:de:b1:3d:
4b:2f:69:f0:fd:3d:4c:73:ab:c7:45:d0:e4:a0:1f:
fc:e5:d7:6d:39:88:79:b9:d0:96:3d:95:90:58:43:
55:ad:ee:30:fb:20:23:da:16:f9:bf:61:2d:a0:40:
f8:a9:e0:90:82:d1:b0:4f:be:95:09:e5:94:34:36:
ae:4a:ce:35:d1:cc:d3:09:2f:b5:ac:d6:e9:d2:80:
03:9e:61:6a:68:ea:dc:b7:e7:29:dd:47:c2:65:1d:
13:31:b8:68:d5:26:9f:ca:d6:35:82:87:53:36:54:
90:27:9b:e5:2c:d5:f4:79:d7:91:9f:cb:e6:af:56:
97:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:55:BA:E3:5E:D0:F6:6E:90:05:05:BF:FA:E7:E7:80:69:99:2C:34
X509v3 Authority Key Identifier:
keyid:08:81:8C:BB:0F:9D:1E:57:37:73:D7:91:13:8A:01:22:F2:8B:EC:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIGMuw-dHlc3c9eRE4oBIvKL7FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2e0536-4ca2-4afe-83d6-336e874f3d87/1/81W6417Q9m6QBQW_-ufngGmZLDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2e0536-4ca2-4afe-83d6-336e874f3d87/1/CIGMuw-dHlc3c9eRE4oBIvKL7FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.126.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:6b:d5:5c:e1:aa:4f:98:2c:30:fc:ed:03:83:c7:79:00:9e:
10:a6:8f:bc:f5:b0:ed:f1:ad:e5:fd:0e:31:dc:fa:4f:aa:63:
94:03:84:d8:90:cc:6d:49:c1:e5:c5:84:c0:2f:2c:f6:6d:ef:
1c:38:b9:9f:da:86:3c:9e:43:7b:2e:df:ab:a2:d4:0e:ee:e5:
91:69:c7:ed:8c:54:f9:5a:ee:f1:fd:b1:2b:d1:5e:af:24:2c:
32:a4:45:7a:30:04:97:3c:13:2d:8d:cc:55:b8:eb:8b:b4:e1:
3b:ce:6b:9f:04:76:be:6a:2b:a9:87:b4:a8:cd:92:a9:7b:4e:
53:3f:92:f1:45:f1:bf:b4:79:6b:4c:d6:3a:86:a3:cc:dd:a8:
bf:5d:35:18:5f:90:e0:d3:66:ac:02:d7:7a:16:02:9a:36:ff:
62:c1:cb:23:1b:27:c4:59:0f:23:47:f0:39:bd:be:69:ec:37:
7c:09:bf:0b:1a:f1:30:d0:7c:44:ce:9d:04:29:4f:97:00:ec:
1c:65:fd:90:c6:ad:6e:40:82:fd:2f:07:06:51:7d:d3:ee:21:
62:d1:7b:98:1b:93:1d:41:f3:62:71:37:d7:98:42:b0:ac:5a:
2b:c7:cd:8a:fc:7c:39:8e:79:e7:a0:e9:22:28:31:f9:ed:4a:
91:c7:5a:bc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBssIWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ODgxOGNiYjBmOWQxZTU3Mzc3M2Q3OTExMzhhMDEyMmYyOGJlYzU2MB4XDTIyMDQy
OTAxMTYzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjM1NWJhZTM1ZWQw
ZjY2ZTkwMDUwNWJmZmFlN2U3ODA2OTk5MmMzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALnvLtcS+B79v2puGZVuEJl088QsMy5zDz/RuP6zly1sTssZ
rd9vbEtb/2jJL0rXKTNwxkiM7R9pJLFme3hCMGNXho4Tpx4OmftdEtUnpdbk4y6S
E/TGK3xi9Clr5fhpFSefXqNSuKskOknB70oq88Zh/znQyPpGCA9yMcKQKyFs68KJ
3rE9Sy9p8P09THOrx0XQ5KAf/OXXbTmIebnQlj2VkFhDVa3uMPsgI9oW+b9hLaBA
+KngkILRsE++lQnllDQ2rkrONdHM0wkvtazW6dKAA55hamjq3LfnKd1HwmUdEzG4
aNUmn8rWNYKHUzZUkCeb5SzV9HnXkZ/L5q9Wl0UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTzVbrjXtD2bpAFBb/65+eAaZksNDAfBgNVHSMEGDAWgBQIgYy7D50eVzdz
15ETigEi8ovsVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NJR011dy1kSGxjM2M5ZVJFNG9CSXZLTDdGWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGYvMmUwNTM2LTRjYTItNGFmZS04M2Q2LTMzNmU4NzRmM2Q4Ny8x
LzgxVzY0MTdROW02UUJRV18tdWZuZ0dtWkxEUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYv
MmUwNTM2LTRjYTItNGFmZS04M2Q2LTMzNmU4NzRmM2Q4Ny8xL0NJR011dy1kSGxj
M2M5ZVJFNG9CSXZLTDdGWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmefjANBgkqhkiG9w0BAQsFAAOC
AQEAHGvVXOGqT5gsMPztA4PHeQCeEKaPvPWw7fGt5f0OMdz6T6pjlAOE2JDMbUnB
5cWEwC8s9m3vHDi5n9qGPJ5Dey7fq6LUDu7lkWnH7YxU+Vru8f2xK9FeryQsMqRF
ejAElzwTLY3MVbjri7ThO85rnwR2vmorqYe0qM2SqXtOUz+S8UXxv7R5a0zWOoaj
zN2ov101GF+Q4NNmrALXehYCmjb/YsHLIxsnxFkPI0fwOb2+aew3fAm/CxrxMNB8
RM6dBClPlwDsHGX9kMatbkCC/S8HBlF90+4hYtF7mBuTHUHzYnE315hCsKxaK8fN
ivx8OY5556DpIigx+e1KkcdavA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:20 2023 by rpki-client on console-fra.rpki-client.org