Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/08bb92-6f00-4e5c-924a-ef6cce145d82/1/97faUIFBp34mLqfWETjxEAnpG0k.roa
File: 97faUIFBp34mLqfWETjxEAnpG0k.roa (raw, json)
Hash identifier: URhou3cSmjDqSvp86Xi7lFkSa2P/ELdr98Nq9FxLwhU=
Subject key identifier: F7:B7:DA:50:81:41:A7:7E:26:2E:A7:D6:11:38:F1:10:09:E9:1B:49
Certificate issuer: /CN=bcc7e674665440f6e6b80e6ff155aad6a89cb3f2
Certificate serial: 01856BDC671F02AC57AD54B5A435C40BF409
Authority key identifier: BC:C7:E6:74:66:54:40:F6:E6:B8:0E:6F:F1:55:AA:D6:A8:9C:B3:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vMfmdGZUQPbmuA5v8VWq1qics_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/08bb92-6f00-4e5c-924a-ef6cce145d82/1/97faUIFBp34mLqfWETjxEAnpG0k.roa
Signing time: Sun 01 Jan 2023 05:44:44 +0000
ROA not before: Sun 01 Jan 2023 05:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47195
IP address blocks: 185.13.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:67:1f:02:ac:57:ad:54:b5:a4:35:c4:0b:f4:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcc7e674665440f6e6b80e6ff155aad6a89cb3f2
Validity
Not Before: Jan 1 05:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7b7da508141a77e262ea7d61138f11009e91b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:77:d9:dc:a7:f7:8b:63:46:89:f4:33:4d:39:
cc:bd:01:b0:0c:2e:9f:7e:bd:cc:98:90:c0:2c:46:
b5:7a:6a:72:b0:69:07:fd:e1:32:38:02:66:f0:17:
44:25:47:8b:78:af:35:72:4b:03:f3:6a:fc:7b:bc:
ea:62:45:26:fb:14:d3:03:36:20:33:12:66:6a:f9:
99:65:38:f9:aa:08:cf:68:ac:5a:e9:88:11:53:b9:
58:a7:6c:4b:95:ed:2d:7d:56:1d:9b:26:a0:01:68:
f4:b9:5f:b7:46:37:a1:76:67:c3:0c:34:0a:a8:69:
f7:df:b7:f1:1b:7f:92:25:86:d0:80:b2:c4:f5:2c:
e9:77:1c:e6:5a:50:95:d2:6c:75:ac:4a:5d:ce:df:
b3:85:4b:e8:8d:e5:fe:2c:aa:0c:71:7a:c3:46:5c:
48:d9:99:8b:26:2c:90:7b:ea:eb:2b:26:43:86:9f:
b7:16:1e:eb:4f:10:0e:5e:90:fd:f6:66:1d:ce:5f:
e0:18:e7:01:04:5a:80:a3:63:1c:e3:1e:81:1a:3d:
40:25:10:d3:2e:76:8a:83:d4:23:e0:2d:4e:80:c6:
6d:5a:5c:67:9c:b3:42:c6:f0:a3:bc:d0:7c:f8:2f:
ca:92:f4:a7:87:c3:74:1c:94:3e:cf:4d:8f:64:45:
ba:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B7:DA:50:81:41:A7:7E:26:2E:A7:D6:11:38:F1:10:09:E9:1B:49
X509v3 Authority Key Identifier:
keyid:BC:C7:E6:74:66:54:40:F6:E6:B8:0E:6F:F1:55:AA:D6:A8:9C:B3:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vMfmdGZUQPbmuA5v8VWq1qics_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/08bb92-6f00-4e5c-924a-ef6cce145d82/1/97faUIFBp34mLqfWETjxEAnpG0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/08bb92-6f00-4e5c-924a-ef6cce145d82/1/vMfmdGZUQPbmuA5v8VWq1qics_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.85.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:00:ff:9f:f0:2d:29:9a:fd:65:b5:ae:b3:06:e4:ee:d1:68:
7a:82:ef:1d:89:19:87:3c:24:e0:d8:37:9d:26:86:79:1c:e9:
dd:36:30:fb:84:69:c1:46:b5:18:4d:42:51:ee:53:17:53:c2:
0f:d6:fe:dc:b0:4c:91:2c:67:8a:11:aa:60:24:a2:f6:0e:48:
5b:c3:01:b1:ec:49:75:8a:09:46:8b:70:c5:fb:42:21:6b:b7:
29:f4:f5:0b:e0:f6:7c:ca:52:87:8c:d0:70:e6:50:1b:66:1f:
dc:d5:66:4e:6c:ff:1f:64:a6:2d:64:34:c9:f6:b0:d8:1d:17:
a6:ba:c6:e6:58:c2:5f:94:09:a1:b8:b2:5b:7b:4a:41:68:d7:
b6:a7:98:55:65:95:3f:52:e4:35:ac:95:86:eb:2a:c2:22:96:
f9:c2:97:d6:88:63:c2:29:89:08:83:54:4c:8a:21:69:f2:a0:
2e:49:8d:e7:0d:c7:ff:4d:2b:32:d7:e6:13:3c:6d:53:89:1f:
97:03:3f:99:eb:c6:b4:7c:aa:e5:66:30:6b:28:c9:87:d0:fb:
a7:a9:e7:4f:87:18:e2:13:61:7f:b2:6d:bb:b7:04:87:2a:56:
85:d8:33:9b:dd:b9:02:63:fd:2a:2d:2f:a6:2f:4a:c0:5c:b9:
88:f0:06:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr3GcfAqxXrVS1pDXEC/QJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjYzdlNjc0NjY1NDQwZjZlNmI4MGU2ZmYxNTVhYWQ2YTg5
Y2IzZjIwHhcNMjMwMTAxMDU0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2I3ZGE1MDgxNDFhNzdlMjYyZWE3ZDYxMTM4ZjExMDA5ZTkxYjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnfZ3Kf3i2NGifQzTTnMvQGwDC6f
fr3MmJDALEa1empysGkH/eEyOAJm8BdEJUeLeK81cksD82r8e7zqYkUm+xTTAzYg
MxJmavmZZTj5qgjPaKxa6YgRU7lYp2xLle0tfVYdmyagAWj0uV+3RjehdmfDDDQK
qGn337fxG3+SJYbQgLLE9SzpdxzmWlCV0mx1rEpdzt+zhUvojeX+LKoMcXrDRlxI
2ZmLJiyQe+rrKyZDhp+3Fh7rTxAOXpD99mYdzl/gGOcBBFqAo2Mc4x6BGj1AJRDT
LnaKg9Qj4C1OgMZtWlxnnLNCxvCjvNB8+C/KkvSnh8N0HJQ+z02PZEW6LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPe32lCBQad+Ji6n1hE48RAJ6RtJMB8GA1UdIwQY
MBaAFLzH5nRmVED25rgOb/FVqtaonLPyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdk1mbWRHWlVRUGJtdUE1djhWV3ExcWljc19JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8wOGJiOTItNmYwMC00ZTVjLTkyNGEt
ZWY2Y2NlMTQ1ZDgyLzEvOTdmYVVJRkJwMzRtTHFmV0VUanhFQW5wRzBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS8wOGJiOTItNmYwMC00ZTVjLTkyNGEtZWY2Y2NlMTQ1ZDgy
LzEvdk1mbWRHWlVRUGJtdUE1djhWV3ExcWljc19JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQ1VMA0G
CSqGSIb3DQEBCwUAA4IBAQBeAP+f8C0pmv1lta6zBuTu0Wh6gu8diRmHPCTg2Ded
JoZ5HOndNjD7hGnBRrUYTUJR7lMXU8IP1v7csEyRLGeKEapgJKL2DkhbwwGx7El1
iglGi3DF+0Iha7cp9PUL4PZ8ylKHjNBw5lAbZh/c1WZObP8fZKYtZDTJ9rDYHRem
usbmWMJflAmhuLJbe0pBaNe2p5hVZZU/UuQ1rJWG6yrCIpb5wpfWiGPCKYkIg1RM
iiFp8qAuSY3nDcf/TSsy1+YTPG1TiR+XAz+Z68a0fKrlZjBrKMmH0PunqedPhxji
E2F/sm27twSHKlaF2DOb3bkCY/0qLS+mL0rAXLmI8AbT
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:28 2025 by rpki-client