Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/B7LhJ3nZGatGgp2Bh7xhzraWGg8.roa
File: B7LhJ3nZGatGgp2Bh7xhzraWGg8.roa (raw, json)
Hash identifier: VH+oHF6ZAXzVH0xNTCnMvqIf5cq5biGd8EhyTGEOBRI=
Subject key identifier: 07:B2:E1:27:79:D9:19:AB:46:82:9D:81:87:BC:61:CE:B6:96:1A:0F
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0838BC0F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/B7LhJ3nZGatGgp2Bh7xhzraWGg8.roa
Signing time: Wed 26 Jan 2022 06:33:42 +0000
ROA not before: Wed 26 Jan 2022 06:33:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56815
IP address blocks: 185.140.240.0/24 maxlen: 24
185.140.243.0/24 maxlen: 24
185.140.242.0/24 maxlen: 24
185.140.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137935887 (0x838bc0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 26 06:33:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07b2e12779d919ab46829d8187bc61ceb6961a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7c:a8:cc:b4:90:5a:b3:4e:06:6d:90:a6:c7:
fd:77:67:e6:4c:76:f2:90:95:0a:b4:57:29:93:c9:
4f:64:da:76:12:e5:27:03:d5:7d:32:6c:d1:f8:9b:
d1:cc:a8:8d:18:24:ff:bd:9a:e5:eb:21:2c:cc:30:
06:f9:26:b1:c2:50:60:95:03:19:45:93:77:b1:30:
14:51:ba:5a:0c:c9:48:01:39:c3:49:ef:8c:18:4e:
9a:83:87:b4:f8:d7:99:7a:94:ee:d8:b8:0b:3f:e9:
29:7a:25:87:04:ca:9f:40:79:da:94:0f:4d:d8:14:
f5:f3:e9:30:74:6f:14:7e:21:83:d6:8a:61:22:48:
fb:09:17:ea:80:0e:f2:29:3d:13:2a:a2:d0:30:32:
38:c5:81:83:54:e3:89:6e:66:df:bf:c6:ac:ed:d2:
95:a4:55:49:c8:20:d9:4b:b5:ce:af:33:16:81:29:
23:08:31:5f:d1:c1:12:1a:d2:18:8a:05:82:b2:30:
1e:cf:7a:25:2c:1b:7d:7f:03:e8:e4:fb:b5:91:2b:
da:b3:20:32:83:44:3f:03:80:e4:51:3f:69:f2:83:
b2:9b:ee:ac:c6:b7:24:fc:fd:43:79:76:4c:f0:41:
f6:f5:64:53:17:39:94:9c:03:c0:e7:b4:6e:33:2a:
ae:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B2:E1:27:79:D9:19:AB:46:82:9D:81:87:BC:61:CE:B6:96:1A:0F
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/B7LhJ3nZGatGgp2Bh7xhzraWGg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.240.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:e6:d8:64:33:df:58:da:34:2f:81:c5:63:fb:41:f4:0e:33:
a1:61:4a:21:74:91:7e:f8:76:70:68:b3:38:97:40:df:45:c3:
69:55:ff:e6:0c:3b:d8:61:3a:33:ef:5c:58:ac:ff:23:f2:6c:
56:cb:28:f5:ff:ca:44:cd:99:c6:4a:9f:4a:3e:5c:ce:62:b3:
9d:39:21:8c:93:43:3b:00:e0:ae:15:9b:8d:85:57:d1:14:a3:
ad:4d:ad:20:1a:5d:39:79:39:a5:c2:fb:92:87:44:cd:85:0d:
8b:2d:0c:77:2e:43:5b:65:0d:5a:f4:6a:61:9d:cb:6b:d9:70:
77:05:ff:36:13:41:d8:ac:9c:6c:73:b4:61:e0:57:34:3a:e9:
ec:df:4e:d4:36:6c:48:40:6a:2b:66:19:c9:da:ae:ba:55:db:
09:4f:0c:2b:fc:24:72:b0:2c:a5:1c:82:05:ac:82:11:82:7f:
8a:7a:d7:07:21:37:49:87:ca:6a:db:a7:e4:32:ff:d7:bb:63:
c5:5c:64:a2:84:7a:33:b8:79:4b:a7:fa:1c:73:f5:2c:37:61:
c3:53:04:14:da:eb:46:b4:f5:11:43:4f:a0:d6:34:c9:2d:d7:
e0:9a:9b:3d:1e:72:02:f5:48:2e:05:bf:45:0b:6c:e5:80:6d:
5f:f4:7d:a5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECDi8DzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mjc3OGRlMmE5YmU5ODAyMTIwMzgyZTc1MGQxNTllOTU4NzJjMmFlMB4XDTIyMDEy
NjA2MzM0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDdiMmUxMjc3OWQ5
MTlhYjQ2ODI5ZDgxODdiYzYxY2ViNjk2MWEwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOt8qMy0kFqzTgZtkKbH/Xdn5kx28pCVCrRXKZPJT2TadhLl
JwPVfTJs0fib0cyojRgk/72a5eshLMwwBvkmscJQYJUDGUWTd7EwFFG6WgzJSAE5
w0nvjBhOmoOHtPjXmXqU7ti4Cz/pKXolhwTKn0B52pQPTdgU9fPpMHRvFH4hg9aK
YSJI+wkX6oAO8ik9Eyqi0DAyOMWBg1TjiW5m37/GrO3SlaRVScgg2Uu1zq8zFoEp
IwgxX9HBEhrSGIoFgrIwHs96JSwbfX8D6OT7tZEr2rMgMoNEPwOA5FE/afKDspvu
rMa3JPz9Q3l2TPBB9vVkUxc5lJwDwOe0bjMqri0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQHsuEnedkZq0aCnYGHvGHOtpYaDzAfBgNVHSMEGDAWgBTCd43iqb6YAhID
gudQ0VnpWHLCrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3duZU40cW0tbUFJU0E0TG5VTkZaNlZoeXdxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8x
L0I3TGhKM25aR2F0R2dwMkJoN3hoenJhV0dnOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8xL3duZU40cW0tbUFJ
U0E0TG5VTkZaNlZoeXdxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmM8DANBgkqhkiG9w0BAQsFAAOC
AQEAC+bYZDPfWNo0L4HFY/tB9A4zoWFKIXSRfvh2cGizOJdA30XDaVX/5gw72GE6
M+9cWKz/I/JsVsso9f/KRM2ZxkqfSj5czmKznTkhjJNDOwDgrhWbjYVX0RSjrU2t
IBpdOXk5pcL7kodEzYUNiy0Mdy5DW2UNWvRqYZ3La9lwdwX/NhNB2KycbHO0YeBX
NDrp7N9O1DZsSEBqK2YZydquulXbCU8MK/wkcrAspRyCBayCEYJ/inrXByE3SYfK
atun5DL/17tjxVxkooR6M7h5S6f6HHP1LDdhw1MEFNrrRrT1EUNPoNY0yS3X4Jqb
PR5yAvVILgW/RQts5YBtX/R9pQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org