Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/C81khPd_oUvhuNbB9YvtLHamF30.roa
File: C81khPd_oUvhuNbB9YvtLHamF30.roa (raw, json)
Hash identifier: 6OLTzmsJj0Uh78X+a1FqEc3+YhT4zar/w/s68tfZAaY=
Subject key identifier: 0B:CD:64:84:F7:7F:A1:4B:E1:B8:D6:C1:F5:8B:ED:2C:76:A6:17:7D
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 16D12ECA
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/C81khPd_oUvhuNbB9YvtLHamF30.roa
Signing time: Sat 01 Jan 2022 02:51:24 +0000
ROA not before: Sat 01 Jan 2022 02:51:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202974
IP address blocks: 85.143.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382807754 (0x16d12eca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 02:51:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bcd6484f77fa14be1b8d6c1f58bed2c76a6177d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9f:42:45:64:6b:81:39:9b:2c:83:13:47:f0:
60:70:3c:46:0d:aa:49:18:36:98:d1:b5:af:e1:26:
67:02:3c:0f:1d:b3:1c:76:a8:cf:8a:e6:61:98:2f:
f9:a3:6e:3b:1d:6a:6b:4f:ed:15:7f:18:46:2b:b9:
3e:40:fa:f1:72:0a:5d:a9:dc:f6:6f:9d:d0:3e:b3:
03:52:55:71:f5:47:21:4a:7c:a2:2b:7f:90:c9:0c:
23:21:33:b9:b0:e8:19:d1:7e:d1:00:40:62:1f:59:
d6:ac:ed:b6:55:f3:dc:7c:dd:78:1c:d0:e8:68:60:
bd:f9:92:b1:65:9d:70:82:89:2e:c7:ff:21:54:84:
ad:69:9a:55:b2:09:25:e8:2d:60:37:f8:b5:84:a0:
a7:66:e0:8c:8f:e9:cd:bb:08:dc:8c:d6:1c:9e:b7:
70:77:af:5a:b9:2f:1c:58:6f:7b:53:38:3e:e4:b4:
f9:01:f9:39:e3:c3:1c:65:1c:62:8e:0f:cf:56:4f:
f4:51:a1:db:f2:25:89:d7:2e:ba:1b:c4:3e:d0:61:
01:47:08:93:27:19:20:2a:d0:78:83:05:1a:41:69:
fd:ef:22:43:29:04:f7:28:bd:9f:05:34:3e:fe:5e:
e9:c9:70:d7:bb:cf:c2:7c:0a:0a:23:26:ac:e2:33:
ad:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CD:64:84:F7:7F:A1:4B:E1:B8:D6:C1:F5:8B:ED:2C:76:A6:17:7D
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/C81khPd_oUvhuNbB9YvtLHamF30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.249.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:4b:e4:65:41:3b:81:19:ab:68:5f:91:d4:6b:4a:75:2b:b0:
f8:e8:cb:ac:66:45:29:e8:04:cd:63:56:0c:39:b5:82:da:67:
6b:2f:f1:ee:20:6f:99:f2:9f:74:01:7b:a9:ff:16:24:f2:6d:
ed:a7:a5:31:d2:eb:c8:bb:84:96:07:6a:ea:67:99:b8:69:41:
f3:b3:8d:88:f9:04:6a:fe:99:4d:1e:c0:c3:7e:cb:1b:bd:91:
dd:d2:64:c4:e1:2d:9a:5b:80:0d:ab:90:79:e5:f2:73:01:02:
78:35:2f:a8:43:9d:b7:b9:40:f3:7e:ed:70:b6:4e:67:d8:7e:
20:0f:38:77:b6:8e:d6:a9:fe:f3:f8:2f:c7:bd:47:b0:fa:d2:
e2:14:ab:64:9f:f9:ce:60:b5:6a:14:86:82:12:24:84:07:f5:
68:f6:83:6a:c6:81:ac:44:4a:86:22:9c:82:05:fd:d4:bf:8a:
3c:7a:3a:29:19:8e:8e:e7:dc:78:59:0f:c4:d7:2b:80:00:96:
20:fd:e5:a5:07:87:0b:a9:26:2c:79:7d:0a:a6:0f:2e:19:61:
8a:55:1a:84:f5:c3:68:59:5e:12:26:df:ae:3f:cb:c2:d2:5e:
b6:ab:a4:bc:f2:94:90:d7:28:01:f2:8b:48:58:fd:02:7b:d1:
60:cb:41:92
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFtEuyjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OGIyMjAyM2I2ZWFkNGMyOTY4M2E5ZmVkNDQ5M2QwM2RlZTJjNjg1MB4XDTIyMDEw
MTAyNTEyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGJjZDY0ODRmNzdm
YTE0YmUxYjhkNmMxZjU4YmVkMmM3NmE2MTc3ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMOfQkVka4E5myyDE0fwYHA8Rg2qSRg2mNG1r+EmZwI8Dx2z
HHaoz4rmYZgv+aNuOx1qa0/tFX8YRiu5PkD68XIKXanc9m+d0D6zA1JVcfVHIUp8
oit/kMkMIyEzubDoGdF+0QBAYh9Z1qzttlXz3HzdeBzQ6GhgvfmSsWWdcIKJLsf/
IVSErWmaVbIJJegtYDf4tYSgp2bgjI/pzbsI3IzWHJ63cHevWrkvHFhve1M4PuS0
+QH5OePDHGUcYo4Pz1ZP9FGh2/IlidcuuhvEPtBhAUcIkycZICrQeIMFGkFp/e8i
QykE9yi9nwU0Pv5e6clw17vPwnwKCiMmrOIzrbkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQLzWSE93+hS+G41sH1i+0sdqYXfTAfBgNVHSMEGDAWgBQ4siAjturUwpaD
qf7UST0D3uLGhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09MSWdJN2JxMU1LV2c2bi0xRWs5QTk3aXhvVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8x
L0M4MWtoUGRfb1V2aHVOYkI5WXZ0TEhhbUYzMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
ODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8xL09MSWdJN2JxMU1L
V2c2bi0xRWs5QTk3aXhvVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFWP+TANBgkqhkiG9w0BAQsFAAOC
AQEAOkvkZUE7gRmraF+R1GtKdSuw+OjLrGZFKegEzWNWDDm1gtpnay/x7iBvmfKf
dAF7qf8WJPJt7aelMdLryLuElgdq6meZuGlB87ONiPkEav6ZTR7Aw37LG72R3dJk
xOEtmluADauQeeXycwECeDUvqEOdt7lA837tcLZOZ9h+IA84d7aO1qn+8/gvx71H
sPrS4hSrZJ/5zmC1ahSGghIkhAf1aPaDasaBrERKhiKcggX91L+KPHo6KRmOjufc
eFkPxNcrgACWIP3lpQeHC6kmLHl9CqYPLhlhilUahPXDaFleEibfrj/LwtJetquk
vPKUkNcoAfKLSFj9AnvRYMtBkg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org