Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/iAKiW_LAsW1jfZywPEyxcwWc964.roa
File: iAKiW_LAsW1jfZywPEyxcwWc964.roa (raw, json)
Hash identifier: OZbfGa8PJdyI5tWPCKRZVYPs4ukE3Ztc9Cfr+hZMXs0=
Subject key identifier: 88:02:A2:5B:F2:C0:B1:6D:63:7D:9C:B0:3C:4C:B1:73:05:9C:F7:AE
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 16CF5D96
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/iAKiW_LAsW1jfZywPEyxcwWc964.roa
Signing time: Sat 01 Jan 2022 02:51:22 +0000
ROA not before: Sat 01 Jan 2022 02:51:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202537
IP address blocks: 85.142.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382688662 (0x16cf5d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 02:51:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8802a25bf2c0b16d637d9cb03c4cb173059cf7ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:29:5e:ce:a4:be:ab:0c:4e:15:84:aa:a1:1c:
89:bd:2f:7c:18:31:58:e6:11:04:85:7f:24:da:24:
2c:73:b8:ab:2e:6d:7c:c9:23:4e:11:12:23:da:0c:
9d:5d:ed:4a:8f:24:cd:7c:82:81:50:79:7d:38:86:
91:0c:4d:a2:6d:e8:59:fe:c1:a4:7f:b1:05:8f:83:
50:2f:a5:21:4f:25:50:4d:be:11:e3:18:e8:13:9e:
4f:b4:c8:79:c0:81:bb:df:a2:36:b0:59:0c:30:89:
9e:8c:70:47:52:0e:7f:d1:b5:58:df:83:7a:e4:88:
2e:26:bf:8b:f4:62:4a:ca:51:b7:e0:bd:69:8e:7b:
00:60:57:7f:52:30:2f:22:87:0c:5e:6c:e9:76:0f:
bf:8b:48:56:60:77:95:60:60:91:48:4c:8e:a6:8f:
a4:2b:5c:7f:24:da:d2:94:a6:5b:8b:7f:ad:04:1c:
7f:13:ab:22:f8:cb:74:6c:8e:1c:6c:a9:60:14:1f:
c6:1c:a4:20:c7:9a:90:01:82:1f:3e:b9:bd:2c:34:
ec:26:62:34:69:62:b8:5a:40:3f:9c:72:d4:44:b6:
b8:b1:48:37:1f:b2:b7:35:5b:13:93:49:92:c5:e8:
cf:a6:d7:28:04:50:d6:d5:14:7b:0b:b7:48:5b:a3:
6f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:02:A2:5B:F2:C0:B1:6D:63:7D:9C:B0:3C:4C:B1:73:05:9C:F7:AE
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/iAKiW_LAsW1jfZywPEyxcwWc964.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.142.247.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:89:b0:3a:76:94:64:18:de:25:29:14:fd:cb:05:af:15:80:
13:a4:6c:de:bf:78:b5:89:8a:9d:3d:23:86:35:9a:87:74:72:
f2:1d:ad:b8:18:41:86:88:b0:f8:82:2b:01:25:f4:44:6a:c3:
80:eb:9c:e2:79:9c:a3:cc:e0:f8:ce:ef:be:38:ff:c8:33:ce:
73:1d:b5:14:00:e2:f4:91:b0:67:79:c3:d4:27:02:83:28:f4:
72:e5:0f:33:46:cd:55:b3:5d:a4:6e:36:23:90:72:f9:93:cb:
6a:c1:a9:62:98:21:7e:05:87:43:a3:0c:38:c4:6c:d3:1c:b4:
63:8b:33:9a:22:6f:8f:98:44:63:77:f0:57:d5:dd:cf:c5:24:
77:02:ca:7b:80:f4:a5:bd:96:6e:9b:30:c2:12:d7:91:23:3b:
5a:a2:ac:7f:b5:06:56:b1:10:5e:15:92:73:eb:ca:2e:8c:3a:
ee:ef:80:b0:15:0c:17:fc:1a:e2:ab:a1:96:9e:8c:ac:f3:dd:
a2:c9:32:5f:a6:b1:e2:b1:84:ce:37:cc:27:13:24:98:4b:87:
fe:b5:80:50:84:e9:1b:11:f6:50:8f:28:43:9c:d1:1b:e3:97:
2c:06:26:7d:32:ae:d6:f6:2e:13:ac:f6:e6:8d:39:bc:95:e3:
77:a6:2c:be
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFs9dljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OGIyMjAyM2I2ZWFkNGMyOTY4M2E5ZmVkNDQ5M2QwM2RlZTJjNjg1MB4XDTIyMDEw
MTAyNTEyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODgwMmEyNWJmMmMw
YjE2ZDYzN2Q5Y2IwM2M0Y2IxNzMwNTljZjdhZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPQpXs6kvqsMThWEqqEcib0vfBgxWOYRBIV/JNokLHO4qy5t
fMkjThESI9oMnV3tSo8kzXyCgVB5fTiGkQxNom3oWf7BpH+xBY+DUC+lIU8lUE2+
EeMY6BOeT7TIecCBu9+iNrBZDDCJnoxwR1IOf9G1WN+DeuSILia/i/RiSspRt+C9
aY57AGBXf1IwLyKHDF5s6XYPv4tIVmB3lWBgkUhMjqaPpCtcfyTa0pSmW4t/rQQc
fxOrIvjLdGyOHGypYBQfxhykIMeakAGCHz65vSw07CZiNGliuFpAP5xy1ES2uLFI
Nx+ytzVbE5NJksXoz6bXKARQ1tUUewu3SFujb/sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSIAqJb8sCxbWN9nLA8TLFzBZz3rjAfBgNVHSMEGDAWgBQ4siAjturUwpaD
qf7UST0D3uLGhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09MSWdJN2JxMU1LV2c2bi0xRWs5QTk3aXhvVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8x
L2lBS2lXX0xBc1cxamZaeXdQRXl4Y3dXYzk2NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
ODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8xL09MSWdJN2JxMU1L
V2c2bi0xRWs5QTk3aXhvVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFWO9zANBgkqhkiG9w0BAQsFAAOC
AQEAHImwOnaUZBjeJSkU/csFrxWAE6Rs3r94tYmKnT0jhjWah3Ry8h2tuBhBhoiw
+IIrASX0RGrDgOuc4nmco8zg+M7vvjj/yDPOcx21FADi9JGwZ3nD1CcCgyj0cuUP
M0bNVbNdpG42I5By+ZPLasGpYpghfgWHQ6MMOMRs0xy0Y4szmiJvj5hEY3fwV9Xd
z8UkdwLKe4D0pb2WbpswwhLXkSM7WqKsf7UGVrEQXhWSc+vKLow67u+AsBUMF/wa
4quhlp6MrPPdoskyX6ax4rGEzjfMJxMkmEuH/rWAUITpGxH2UI8oQ5zRG+OXLAYm
fTKu1vYuE6z25o05vJXjd6Ysvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org