Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/DyNHUsk9Seaxi9kIKz5mxhBEuxs.roa
File: DyNHUsk9Seaxi9kIKz5mxhBEuxs.roa (raw, json)
Hash identifier: oaECW8Cb88zjsYEkEf/9J1Jm1XbgDA7twtzNH9AWvps=
Subject key identifier: 0F:23:47:52:C9:3D:49:E6:B1:8B:D9:08:2B:3E:66:C6:10:44:BB:1B
Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1
Certificate serial: 0316606F
Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/DyNHUsk9Seaxi9kIKz5mxhBEuxs.roa
Signing time: Sat 01 Jan 2022 11:03:52 +0000
ROA not before: Sat 01 Jan 2022 11:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 217.65.131.0/24 maxlen: 24
185.233.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51798127 (0x316606f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8402924861cbc088c655a872535a903108a07bf1
Validity
Not Before: Jan 1 11:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f234752c93d49e6b18bd9082b3e66c61044bb1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f4:26:e6:07:78:b1:6a:76:84:03:e5:f4:81:
b2:8a:1d:f3:be:d4:d4:98:64:5f:4c:11:36:f8:88:
b3:6a:f1:11:af:23:6c:4c:23:51:9b:02:a3:17:93:
5d:a5:be:34:47:a6:95:04:11:ee:44:54:37:8d:2e:
3f:16:c2:1d:a4:ec:dd:58:ca:06:55:05:13:4f:15:
df:3b:27:0f:cc:0f:57:ea:6c:d0:a0:8a:16:00:2f:
51:07:f1:ee:cf:ef:47:3e:76:4c:aa:43:61:36:16:
6a:f5:0a:5c:d2:8a:21:f6:06:bb:17:87:4d:30:3e:
43:58:7d:cd:3f:83:45:c6:fe:f8:e6:8e:eb:56:28:
4d:f2:0f:71:0a:d6:4b:15:5d:29:be:d5:28:4a:ed:
eb:a2:ac:43:26:71:85:77:4d:e0:fa:3f:ae:f3:ae:
11:60:0f:ba:f6:71:1e:1e:77:6e:71:a8:21:6a:74:
ae:29:33:55:ab:5c:68:3f:25:c1:38:f5:bc:e1:29:
fc:0f:1a:4b:4b:30:c6:00:79:38:2d:40:59:81:9a:
30:b9:5c:2c:5f:85:bb:db:96:83:77:8b:d2:31:87:
95:2f:cd:7e:27:30:5b:29:28:cf:41:34:9e:cd:17:
f3:67:0a:6a:37:9b:d6:ba:c2:70:a8:65:cc:ae:57:
64:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:23:47:52:C9:3D:49:E6:B1:8B:D9:08:2B:3E:66:C6:10:44:BB:1B
X509v3 Authority Key Identifier:
keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/DyNHUsk9Seaxi9kIKz5mxhBEuxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.66.0/24
217.65.131.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0a:05:e7:df:d7:30:ce:38:ce:54:25:17:cf:06:4f:a1:9e:
f4:c3:bf:ef:67:31:82:32:31:cf:06:30:44:81:50:95:31:51:
0a:a5:6e:7e:18:fd:96:60:ec:71:f8:f1:e2:38:ad:db:f0:55:
2f:99:97:f6:06:17:2c:c1:ec:36:75:24:eb:16:24:e0:07:7f:
d0:24:42:4e:a8:57:ef:59:9b:ab:20:04:11:60:5e:8c:74:bf:
ab:a9:51:29:39:4c:3c:cb:db:39:b3:be:b2:2c:d5:f9:f0:6c:
b3:ed:33:77:33:88:b1:ee:af:85:fa:a6:4f:8f:79:51:c8:4a:
50:28:2b:6c:2b:93:04:1d:bd:55:cf:bd:c8:4a:54:b4:fc:1d:
6f:65:8b:14:03:53:06:6c:44:bb:1b:4c:7e:7b:50:f8:1d:5e:
2f:41:47:2e:e6:38:f6:95:d5:c0:d8:3b:0c:a5:43:7c:eb:b7:
e8:7b:9c:90:e2:f4:a2:84:be:1d:c1:5a:30:56:45:92:c0:05:
3b:ba:36:6d:07:a5:67:9f:c7:54:aa:52:e6:52:12:ae:02:92:
1c:45:ba:25:76:36:c1:c1:3e:8f:d7:cd:3e:6c:61:d4:fd:b3:
1d:e5:27:f3:88:06:f5:13:47:cf:09:37:48:ab:af:84:4d:7e:
27:66:46:49
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAxZgbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NDAyOTI0ODYxY2JjMDg4YzY1NWE4NzI1MzVhOTAzMTA4YTA3YmYxMB4XDTIyMDEw
MTExMDM1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGYyMzQ3NTJjOTNk
NDllNmIxOGJkOTA4MmIzZTY2YzYxMDQ0YmIxYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI/0JuYHeLFqdoQD5fSBsood877U1JhkX0wRNviIs2rxEa8j
bEwjUZsCoxeTXaW+NEemlQQR7kRUN40uPxbCHaTs3VjKBlUFE08V3zsnD8wPV+ps
0KCKFgAvUQfx7s/vRz52TKpDYTYWavUKXNKKIfYGuxeHTTA+Q1h9zT+DRcb++OaO
61YoTfIPcQrWSxVdKb7VKErt66KsQyZxhXdN4Po/rvOuEWAPuvZxHh53bnGoIWp0
rikzVatcaD8lwTj1vOEp/A8aS0swxgB5OC1AWYGaMLlcLF+Fu9uWg3eL0jGHlS/N
ficwWykoz0E0ns0X82cKajeb1rrCcKhlzK5XZA0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQPI0dSyT1J5rGL2QgrPmbGEES7GzAfBgNVHSMEGDAWgBSEApJIYcvAiMZV
qHJTWpAxCKB78TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hBS1NTR0hMd0lqR1ZhaHlVMXFRTVFpZ2VfRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvMDkyNGZhLTU0ZmItNDI1NC1iNjRlLTBhYzliM2JhZTZmNS8x
L0R5TkhVc2s5U2VheGk5a0lLejVteGhCRXV4cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
MDkyNGZhLTU0ZmItNDI1NC1iNjRlLTBhYzliM2JhZTZmNS8xL2hBS1NTR0hMd0lq
R1ZhaHlVMXFRTVFpZ2VfRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALnpQgMEANlBgzANBgkqhkiG9w0B
AQsFAAOCAQEASAoF59/XMM44zlQlF88GT6Ge9MO/72cxgjIxzwYwRIFQlTFRCqVu
fhj9lmDscfjx4jit2/BVL5mX9gYXLMHsNnUk6xYk4Ad/0CRCTqhX71mbqyAEEWBe
jHS/q6lRKTlMPMvbObO+sizV+fBss+0zdzOIse6vhfqmT495UchKUCgrbCuTBB29
Vc+9yEpUtPwdb2WLFANTBmxEuxtMfntQ+B1eL0FHLuY49pXVwNg7DKVDfOu36Huc
kOL0ooS+HcFaMFZFksAFO7o2bQelZ5/HVKpS5lISrgKSHEW6JXY2wcE+j9fNPmxh
1P2zHeUn84gG9RNHzwk3SKuvhE1+J2ZGSQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org