Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/B0CeYm4A1HTin8ETlpTiTFCotfY.roa
File: B0CeYm4A1HTin8ETlpTiTFCotfY.roa (raw, json)
Hash identifier: Xd+J2rwc5yPqL5vm2jcKcWK4GFm1jgJ054la9M1mx1E=
Subject key identifier: 07:40:9E:62:6E:00:D4:74:E2:9F:C1:13:96:94:E2:4C:50:A8:B5:F6
Certificate issuer: /CN=863589feecbe4c4ab444d93864454dbcd7cd0de7
Certificate serial: 09789792
Authority key identifier: 86:35:89:FE:EC:BE:4C:4A:B4:44:D9:38:64:45:4D:BC:D7:CD:0D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/B0CeYm4A1HTin8ETlpTiTFCotfY.roa
Signing time: Sat 01 Jan 2022 03:55:08 +0000
ROA not before: Sat 01 Jan 2022 03:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9021
IP address blocks: 185.66.124.0/24 maxlen: 24
185.66.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158898066 (0x9789792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863589feecbe4c4ab444d93864454dbcd7cd0de7
Validity
Not Before: Jan 1 03:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07409e626e00d474e29fc1139694e24c50a8b5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:81:26:b5:ae:1d:6c:89:60:c1:e1:d2:fb:51:
ca:90:3e:e6:ef:0e:38:c5:b4:71:f6:fa:c0:e2:e9:
df:cb:1a:fa:ce:14:ac:31:62:86:e8:37:30:cb:c3:
c6:bc:fc:cb:22:b4:fa:0a:81:31:d7:ce:5a:18:82:
57:ef:de:40:28:b7:cc:99:c1:9a:3f:24:10:9f:d0:
20:7e:94:c2:e1:fe:24:2e:6a:61:e8:31:91:7a:cf:
23:8c:dd:21:6a:0a:55:3d:92:71:c8:f3:1b:3c:15:
48:aa:72:f7:37:d0:d9:31:13:b1:0d:2d:5f:cc:43:
8e:41:6b:f1:c5:80:a1:d6:7a:c8:8f:d4:ad:92:2b:
35:cb:c7:e0:72:63:23:04:4a:3e:12:73:27:45:23:
2f:e6:ec:aa:4a:96:87:52:89:6e:5d:f2:af:1a:a4:
8a:fd:cf:3d:cd:c2:1f:76:2c:fe:2c:7f:84:8e:d3:
f4:5d:ba:56:49:0b:cb:8c:96:3f:16:24:68:b1:44:
30:52:8f:06:0b:8e:3e:ff:16:66:fe:17:ab:53:60:
29:bd:0d:9d:aa:43:c5:09:91:aa:a8:53:3c:6b:35:
13:49:b0:ed:c9:5a:ca:3e:f3:39:64:03:d2:c1:43:
77:77:7c:51:bc:f5:3b:7b:00:90:9b:09:c2:ee:df:
ab:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:40:9E:62:6E:00:D4:74:E2:9F:C1:13:96:94:E2:4C:50:A8:B5:F6
X509v3 Authority Key Identifier:
keyid:86:35:89:FE:EC:BE:4C:4A:B4:44:D9:38:64:45:4D:BC:D7:CD:0D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/B0CeYm4A1HTin8ETlpTiTFCotfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.124.0/23
Signature Algorithm: sha256WithRSAEncryption
62:aa:a5:d9:12:68:20:59:42:ff:ec:71:c4:87:c1:79:6d:0b:
7a:27:91:21:2a:e2:ad:b7:65:5c:99:79:ff:db:aa:1d:d7:b5:
df:5b:f7:07:07:bf:f8:e1:56:ba:9b:67:44:10:c5:14:1a:71:
99:0c:98:f2:8f:21:17:4b:d2:7b:79:bb:87:43:e2:d2:f8:22:
8d:05:6b:75:38:35:ec:28:03:52:f5:22:b5:d9:b6:a5:39:0f:
6c:07:eb:fa:89:a9:2d:20:18:08:2d:fa:9a:53:83:a4:fc:b7:
e3:a1:fb:31:6a:eb:49:8b:90:d1:95:bb:e0:07:a7:3f:93:7c:
5a:57:ee:bf:0d:4d:8f:37:98:f9:de:1a:15:b0:1c:4d:11:d1:
07:87:15:4a:f6:fd:9a:25:3f:a9:9f:0c:f1:38:0c:aa:ba:e5:
c7:41:a8:08:1d:fb:64:6e:45:8b:0d:59:76:ea:df:0e:7c:78:
f8:23:f1:31:11:5b:bd:bc:f2:ea:5a:06:9d:c6:5e:e6:14:70:
be:e2:5c:18:46:64:d8:01:bf:d6:b0:03:86:98:3f:94:15:41:
3c:d0:97:fb:e1:44:f9:e6:bd:47:49:1f:72:4d:cc:c4:c3:3f:
f3:e3:b4:b4:1d:3f:65:87:38:20:c6:b9:68:59:84:db:1a:83:
e5:c3:2b:09
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECXiXkjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NjM1ODlmZWVjYmU0YzRhYjQ0NGQ5Mzg2NDQ1NGRiY2Q3Y2QwZGU3MB4XDTIyMDEw
MTAzNTUwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDc0MDllNjI2ZTAw
ZDQ3NGUyOWZjMTEzOTY5NGUyNGM1MGE4YjVmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMqBJrWuHWyJYMHh0vtRypA+5u8OOMW0cfb6wOLp38sa+s4U
rDFihug3MMvDxrz8yyK0+gqBMdfOWhiCV+/eQCi3zJnBmj8kEJ/QIH6UwuH+JC5q
YegxkXrPI4zdIWoKVT2SccjzGzwVSKpy9zfQ2TETsQ0tX8xDjkFr8cWAodZ6yI/U
rZIrNcvH4HJjIwRKPhJzJ0UjL+bsqkqWh1KJbl3yrxqkiv3PPc3CH3Ys/ix/hI7T
9F26VkkLy4yWPxYkaLFEMFKPBguOPv8WZv4Xq1NgKb0NnapDxQmRqqhTPGs1E0mw
7clayj7zOWQD0sFDd3d8Ubz1O3sAkJsJwu7fq+sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQHQJ5ibgDUdOKfwROWlOJMUKi19jAfBgNVHSMEGDAWgBSGNYn+7L5MSrRE
2ThkRU28180N5zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hqV0pfdXktVEVxMFJOazRaRVZOdk5mTkRlYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvNTE0MGZmLTA5MGUtNDNkYS1iN2M4LTU5ZTgxOGM2YjcxYi8x
L0IwQ2VZbTRBMUhUaW44RVRscFRpVEZDb3RmWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
NTE0MGZmLTA5MGUtNDNkYS1iN2M4LTU5ZTgxOGM2YjcxYi8xL2hqV0pfdXktVEVx
MFJOazRaRVZOdk5mTkRlYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAblCfDANBgkqhkiG9w0BAQsFAAOC
AQEAYqql2RJoIFlC/+xxxIfBeW0LeieRISrirbdlXJl5/9uqHde131v3Bwe/+OFW
uptnRBDFFBpxmQyY8o8hF0vSe3m7h0Pi0vgijQVrdTg17CgDUvUitdm2pTkPbAfr
+ompLSAYCC36mlODpPy346H7MWrrSYuQ0ZW74AenP5N8Wlfuvw1NjzeY+d4aFbAc
TRHRB4cVSvb9miU/qZ8M8TgMqrrlx0GoCB37ZG5Fiw1ZdurfDnx4+CPxMRFbvbzy
6loGncZe5hRwvuJcGEZk2AG/1rADhpg/lBVBPNCX++FE+ea9R0kfck3MxMM/8+O0
tB0/ZYc4IMa5aFmE2xqD5cMrCQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:18 2024 by rpki-client on console-fra.rpki-client.org