Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/Or73CMiVnBdX-dxQmo7-zCJDGLk.roa
File: Or73CMiVnBdX-dxQmo7-zCJDGLk.roa (raw, json)
Hash identifier: ho93RztKiEJ5zyygfPp9hkpAJYZuAvAosaTvUe0JzQw=
Subject key identifier: 3A:BE:F7:08:C8:95:9C:17:57:F9:DC:50:9A:8E:FE:CC:22:43:18:B9
Certificate issuer: /CN=126c660b30f5692b2b16e289b24901c518fda520
Certificate serial: 085B633B
Authority key identifier: 12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/Or73CMiVnBdX-dxQmo7-zCJDGLk.roa
Signing time: Wed 29 Jun 2022 08:20:05 +0000
ROA not before: Wed 29 Jun 2022 08:20:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204860
IP address blocks: 185.217.234.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140206907 (0x85b633b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126c660b30f5692b2b16e289b24901c518fda520
Validity
Not Before: Jun 29 08:20:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3abef708c8959c1757f9dc509a8efecc224318b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3e:e4:0d:4b:1b:09:97:fe:d7:fd:f9:b3:e9:
e9:fa:e2:57:d9:ae:ff:ec:28:6c:a0:b9:94:71:25:
26:bc:42:57:8d:02:0f:25:7c:f3:4f:1a:1c:ec:eb:
2d:14:71:b9:9e:4a:19:77:1b:56:d0:1e:4b:b5:9d:
11:91:fe:0a:59:2a:f9:61:da:6c:94:52:d6:77:38:
23:cd:ca:6e:72:92:2d:29:80:33:3f:63:a9:c6:6b:
e5:13:db:6a:8d:fe:77:4d:a7:da:3a:4c:ff:1a:0e:
1f:e5:99:7c:71:ea:63:fc:cc:e9:ec:ef:4a:bf:e4:
be:bc:f2:89:6e:f3:6a:7f:fb:4e:9b:3b:3d:13:eb:
30:6c:0a:0d:6d:f8:70:80:f8:6d:7e:b6:a6:5c:11:
64:77:19:89:be:1c:34:58:83:e8:5d:f4:f7:b2:d1:
a2:94:eb:7d:19:87:27:66:76:e9:12:5a:e7:9b:e3:
4f:b6:a0:67:b3:02:2b:12:67:81:b2:b5:d1:c3:66:
af:e3:96:8b:83:fb:84:35:ce:0e:f6:d6:ac:ad:ad:
bb:60:46:45:6d:03:73:8d:39:35:84:56:50:5c:71:
29:1d:91:48:71:30:d2:14:cf:04:0f:06:40:7b:e9:
5f:f4:91:18:3d:b5:86:96:f4:02:b8:3b:1b:67:06:
59:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BE:F7:08:C8:95:9C:17:57:F9:DC:50:9A:8E:FE:CC:22:43:18:B9
X509v3 Authority Key Identifier:
keyid:12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/Or73CMiVnBdX-dxQmo7-zCJDGLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.234.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:29:96:d7:64:a7:4a:63:a2:ad:df:98:9d:1c:91:f3:9d:f3:
97:0f:67:66:0e:5e:9f:dc:53:75:3a:4f:f4:10:a8:64:71:c7:
87:d2:1e:70:aa:8b:e5:29:4a:b2:30:9e:08:6d:3a:e7:06:8c:
07:1d:a8:9c:99:66:cf:11:ac:9c:24:d4:28:a2:04:74:16:31:
95:da:f4:3d:64:f3:72:29:01:40:f6:d3:97:4f:f4:ec:d9:d0:
bb:06:c1:80:a8:3b:16:bb:cd:04:ec:b3:f1:60:2c:7b:93:77:
e5:c4:d9:5b:9b:36:bb:23:4a:f2:a7:f9:27:5b:9c:23:d2:96:
15:3f:5a:b4:eb:3d:6a:0a:92:70:21:f7:f3:89:5b:9c:11:5c:
7a:d3:9c:fd:e8:46:ae:3f:12:53:15:fc:07:91:d1:10:1a:da:
8b:fd:8a:00:4a:66:d7:8a:74:fa:fd:e4:7f:c3:09:f1:11:c9:
a6:cc:f3:1c:a8:a8:ff:a5:b3:97:a9:e0:1a:0d:e6:5f:bd:09:
a8:98:10:55:dd:b7:1f:0f:14:0d:f3:06:ac:98:fd:50:c8:c9:
b6:ba:35:6c:3d:b1:a0:c0:7a:e4:56:24:d7:e5:49:9b:0c:60:
f5:76:0f:86:11:5b:fd:26:27:3f:95:66:47:15:2f:1c:f1:00:
b6:2d:51:9c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECFtjOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjZjNjYwYjMwZjU2OTJiMmIxNmUyODliMjQ5MDFjNTE4ZmRhNTIwMB4XDTIyMDYy
OTA4MjAwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2FiZWY3MDhjODk1
OWMxNzU3ZjlkYzUwOWE4ZWZlY2MyMjQzMThiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIU+5A1LGwmX/tf9+bPp6friV9mu/+wobKC5lHElJrxCV40C
DyV8808aHOzrLRRxuZ5KGXcbVtAeS7WdEZH+Clkq+WHabJRS1nc4I83KbnKSLSmA
Mz9jqcZr5RPbao3+d02n2jpM/xoOH+WZfHHqY/zM6ezvSr/kvrzyiW7zan/7Tps7
PRPrMGwKDW34cID4bX62plwRZHcZib4cNFiD6F3097LRopTrfRmHJ2Z26RJa55vj
T7agZ7MCKxJngbK10cNmr+OWi4P7hDXODvbWrK2tu2BGRW0Dc405NYRWUFxxKR2R
SHEw0hTPBA8GQHvpX/SRGD21hpb0Arg7G2cGWaECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ6vvcIyJWcF1f53FCajv7MIkMYuTAfBgNVHSMEGDAWgBQSbGYLMPVpKysW
4omySQHFGP2lIDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VteG1DekQxYVNzckZ1S0pza2tCeFJqOXBTQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGYvZGI3ODdmLWMyN2EtNGYyMy05OWIyLTQzOGFjYjcyZmM1Yi8x
L09yNzNDTWlWbkJkWC1keFFtbzctekNKREdMay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYv
ZGI3ODdmLWMyN2EtNGYyMy05OWIyLTQzOGFjYjcyZmM1Yi8xL0VteG1DekQxYVNz
ckZ1S0pza2tCeFJqOXBTQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnZ6jANBgkqhkiG9w0BAQsFAAOC
AQEAeimW12SnSmOird+YnRyR853zlw9nZg5en9xTdTpP9BCoZHHHh9IecKqL5SlK
sjCeCG065waMBx2onJlmzxGsnCTUKKIEdBYxldr0PWTzcikBQPbTl0/07NnQuwbB
gKg7FrvNBOyz8WAse5N35cTZW5s2uyNK8qf5J1ucI9KWFT9atOs9agqScCH384lb
nBFcetOc/ehGrj8SUxX8B5HREBrai/2KAEpm14p0+v3kf8MJ8RHJpszzHKio/6Wz
l6ngGg3mX70JqJgQVd23Hw8UDfMGrJj9UMjJtro1bD2xoMB65FYk1+VJmwxg9XYP
hhFb/SYnP5VmRxUvHPEAti1RnA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:34 2024 by rpki-client on console-ams.rpki-client.org