Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/uuu92TApz3gyyXjJqU0763bhlJE.roa
File: uuu92TApz3gyyXjJqU0763bhlJE.roa (raw, json)
Hash identifier: I5zfNHZp7x+NWFfiNxCkryPgC+JUs3vMkfJLOzzqYQ0=
Subject key identifier: BA:EB:BD:D9:30:29:CF:78:32:C9:78:C9:A9:4D:3B:EB:76:E1:94:91
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 0237C17A
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/uuu92TApz3gyyXjJqU0763bhlJE.roa
Signing time: Sat 01 Jan 2022 11:59:49 +0000
ROA not before: Sat 01 Jan 2022 11:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35699
IP address blocks: 185.86.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37208442 (0x237c17a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: Jan 1 11:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=baebbdd93029cf7832c978c9a94d3beb76e19491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:26:1c:fd:f2:28:5e:b0:fb:d2:46:b0:d3:f9:
92:35:d3:30:af:a2:31:c7:c7:50:f0:2e:bf:d3:64:
44:17:bb:ad:83:57:2d:a3:f2:fa:84:cf:2f:e2:ff:
df:ae:49:d0:c9:0a:a3:eb:9d:f8:a6:99:65:8d:6d:
19:ce:02:7f:f7:68:94:15:d8:12:e9:96:d4:e9:0d:
fc:d8:6b:0c:a7:57:a5:35:a6:f7:c4:00:b8:40:55:
81:a7:88:81:0f:f9:96:c9:4e:7d:8f:e1:8b:46:ba:
9c:d4:4c:f9:b3:8e:21:d7:b4:d5:9d:fc:53:73:87:
32:ad:35:3b:b4:08:04:58:d6:7c:9e:c9:30:41:b5:
7a:40:39:30:55:23:be:74:32:a6:c1:49:9a:87:1d:
60:fa:ad:61:f5:d3:da:7f:60:1b:6c:93:3c:c5:85:
ef:36:1b:0b:2b:8d:44:24:d7:87:77:74:de:a4:c9:
b1:42:c8:90:cc:9f:b1:d6:0f:ab:4a:8e:73:7a:13:
d0:dd:80:a7:63:24:bb:90:8f:08:18:ba:ba:ab:af:
df:ba:f1:8c:55:06:85:cb:bb:1d:be:bb:80:9b:31:
52:41:22:ae:05:23:65:ed:39:2b:58:90:f4:d7:0a:
90:09:e5:34:00:fd:54:22:39:ba:83:32:f0:af:87:
04:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:EB:BD:D9:30:29:CF:78:32:C9:78:C9:A9:4D:3B:EB:76:E1:94:91
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/uuu92TApz3gyyXjJqU0763bhlJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.9.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:6e:7b:2d:d3:02:d1:2a:4b:09:b6:ae:64:4f:d3:cb:5c:ad:
8b:cb:7d:ba:28:d9:ef:90:f5:6e:41:e4:96:63:be:fd:97:50:
16:00:63:0c:e2:db:f7:8c:0a:e5:f5:16:7c:b8:9f:1f:3d:78:
39:31:37:a1:07:eb:ba:35:16:18:26:19:d2:d8:8e:13:41:d8:
b3:1b:c8:62:3a:0a:d4:e8:19:14:0e:e1:16:84:42:04:33:7a:
c0:22:44:ad:94:af:60:a7:9d:60:8a:17:15:2a:bb:4e:23:77:
a7:49:6d:77:cb:d9:ed:a4:dd:d0:92:ba:bf:cc:12:ad:74:fc:
a4:72:fb:21:4b:bd:92:76:4f:d8:ec:67:9e:01:be:fe:3c:ae:
0e:b7:e3:7f:d9:64:10:67:e8:77:c4:ba:92:c8:3d:55:26:d4:
cc:46:76:16:6a:12:1f:45:92:ad:28:86:77:ea:ec:b4:4e:84:
df:78:1f:15:2d:6b:3a:0e:ec:01:d1:4c:f1:08:1a:a2:d8:e8:
b5:1d:cc:71:82:bb:2b:0d:55:d9:38:a6:d8:8a:03:3d:6f:1c:
1c:07:e4:07:47:e7:41:85:d5:c9:c3:00:e0:9e:9f:52:30:fb:
08:ed:ef:9b:79:f9:13:b9:c4:e1:95:cc:98:c0:f6:a7:28:66:
8d:29:d8:3a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAjfBejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
Mzc4NjJiNDYwOGM3OWY0NTAyOTVlYzVjODBjN2M3YWQ2ZGZlMmEyMB4XDTIyMDEw
MTExNTk0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmFlYmJkZDkzMDI5
Y2Y3ODMyYzk3OGM5YTk0ZDNiZWI3NmUxOTQ5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOMmHP3yKF6w+9JGsNP5kjXTMK+iMcfHUPAuv9NkRBe7rYNX
LaPy+oTPL+L/365J0MkKo+ud+KaZZY1tGc4Cf/dolBXYEumW1OkN/NhrDKdXpTWm
98QAuEBVgaeIgQ/5lslOfY/hi0a6nNRM+bOOIde01Z38U3OHMq01O7QIBFjWfJ7J
MEG1ekA5MFUjvnQypsFJmocdYPqtYfXT2n9gG2yTPMWF7zYbCyuNRCTXh3d03qTJ
sULIkMyfsdYPq0qOc3oT0N2Ap2Mku5CPCBi6uquv37rxjFUGhcu7Hb67gJsxUkEi
rgUjZe05K1iQ9NcKkAnlNAD9VCI5uoMy8K+HBN8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS6673ZMCnPeDLJeMmpTTvrduGUkTAfBgNVHSMEGDAWgBQDeGK0YIx59FAp
XsXIDHx61t/iojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0EzaGl0R0NNZWZSUUtWN0Z5QXg4ZXRiZjRxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvMWFmZTUzLWYxYjgtNDMxNS1hYjFjLWY0NzRmN2JkMzUzMS8x
L3V1dTkyVEFwejNneXlYakpxVTA3NjNiaGxKRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
MWFmZTUzLWYxYjgtNDMxNS1hYjFjLWY0NzRmN2JkMzUzMS8xL0EzaGl0R0NNZWZS
UUtWN0Z5QXg4ZXRiZjRxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlWCTANBgkqhkiG9w0BAQsFAAOC
AQEAXm57LdMC0SpLCbauZE/Ty1yti8t9uijZ75D1bkHklmO+/ZdQFgBjDOLb94wK
5fUWfLifHz14OTE3oQfrujUWGCYZ0tiOE0HYsxvIYjoK1OgZFA7hFoRCBDN6wCJE
rZSvYKedYIoXFSq7TiN3p0ltd8vZ7aTd0JK6v8wSrXT8pHL7IUu9knZP2OxnngG+
/jyuDrfjf9lkEGfod8S6ksg9VSbUzEZ2FmoSH0WSrSiGd+rstE6E33gfFS1rOg7s
AdFM8QgaotjotR3McYK7Kw1V2Tim2IoDPW8cHAfkB0fnQYXVycMA4J6fUjD7CO3v
m3n5E7nE4ZXMmMD2pyhmjSnYOg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-ams.rpki-client.org