Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/czSFCbnTFY7wYGl4jTDmel1Dl6w.roa
File: czSFCbnTFY7wYGl4jTDmel1Dl6w.roa (raw, json)
Hash identifier: zDOMRvyHLaacvkKAAtgm1y30aq+PawG9rdjNNS1AWuw=
Subject key identifier: 73:34:85:09:B9:D3:15:8E:F0:60:69:78:8D:30:E6:7A:5D:43:97:AC
Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Certificate serial: 05C33B5B
Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/czSFCbnTFY7wYGl4jTDmel1Dl6w.roa
Signing time: Mon 03 Jan 2022 00:40:39 +0000
ROA not before: Mon 03 Jan 2022 00:40:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198192
IP address blocks: 185.92.237.0/24 maxlen: 24
158.255.236.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96680795 (0x5c33b5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Validity
Not Before: Jan 3 00:40:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73348509b9d3158ef06069788d30e67a5d4397ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d2:86:a2:4c:87:fd:dd:9f:c6:17:4d:bc:a9:
9a:d3:e3:db:f4:b8:5f:53:a8:c5:52:9d:bb:ad:f1:
35:f9:14:e1:96:92:75:00:0c:67:ce:54:2c:4f:ee:
f1:b1:4f:df:89:ab:12:1c:b9:8f:98:3b:e4:65:e7:
88:30:56:5e:87:0c:20:df:df:1c:97:4c:e5:22:74:
97:8e:06:30:76:c9:52:a8:1f:f9:33:4d:a6:19:3a:
39:5e:93:39:7b:a8:81:d9:b5:c7:b2:9a:f6:e7:2d:
1d:8a:31:e2:44:0d:6d:90:33:5a:ed:f5:e1:d2:bc:
4d:d0:32:4e:ef:38:b9:a2:a5:18:57:f1:7c:c3:bb:
47:1c:4c:4f:10:f4:46:75:fc:5e:d1:3b:5d:0d:f1:
0a:93:0b:4c:1c:f7:40:06:59:71:ff:46:9f:5e:62:
8a:b6:3e:02:a2:89:25:0f:63:2f:ed:cc:25:27:fa:
90:2a:8f:59:13:3c:65:48:c9:ca:9d:bd:9d:a6:f3:
72:17:3e:ec:d6:93:8b:95:2b:b3:3f:62:86:85:4f:
92:df:16:c2:de:bd:86:87:c3:c1:d0:52:aa:f7:21:
a1:75:81:e5:6b:c0:04:64:c8:e7:b0:22:8d:7c:e4:
79:9a:6c:6d:86:ac:a0:c2:fa:9f:9b:4b:c3:55:b1:
3f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:34:85:09:B9:D3:15:8E:F0:60:69:78:8D:30:E6:7A:5D:43:97:AC
X509v3 Authority Key Identifier:
keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/czSFCbnTFY7wYGl4jTDmel1Dl6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.255.236.0/23
185.92.237.0/24
Signature Algorithm: sha256WithRSAEncryption
11:5f:82:02:33:3b:eb:05:6c:c7:ae:7b:ba:f2:9d:9f:1a:47:
eb:6f:36:3a:c0:11:79:36:53:79:50:76:a4:9d:be:d1:af:d6:
52:67:78:3e:fd:55:51:91:11:eb:8b:4f:93:1d:2e:a2:50:0e:
ad:f5:e5:e0:51:4c:4c:44:7e:9a:3f:63:63:f5:5e:23:aa:25:
ed:fc:fa:5a:f7:be:83:bf:8f:22:1e:43:c3:39:9a:36:6f:86:
c4:63:7d:9d:c7:73:5a:e4:f6:ba:c7:b2:95:2a:00:39:c1:fa:
02:ce:d2:48:de:0b:02:4a:fb:ca:ab:02:62:c8:c2:3b:92:e8:
b5:4d:de:37:3a:8b:e3:85:83:b8:5f:3b:2a:a7:9a:13:a4:62:
2e:6e:fe:9f:27:ee:aa:6f:70:61:95:1a:a6:51:ac:8e:b8:6e:
38:59:b0:1b:3d:59:39:8a:85:6c:0f:5a:57:f2:2f:0e:dc:35:
b1:5a:86:d7:fa:28:3c:be:0e:f6:32:43:b4:64:fb:7b:5b:38:
5f:47:08:1e:53:6e:b6:0b:75:29:2f:04:3b:69:43:00:ef:94:
b2:76:58:0e:60:18:85:d4:fa:2c:7a:df:8c:14:38:d6:ec:b5:
ee:72:73:11:31:a7:32:f7:01:f4:19:7a:b4:42:db:da:e5:17:
7a:50:c7:13
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBcM7WzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YmM1ZGU3ZDcyNTViN2Q1ODI2MGM2NWExMjBiMTY0ZWYxMGVmOTAzMB4XDTIyMDEw
MzAwNDAzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzMzNDg1MDliOWQz
MTU4ZWYwNjA2OTc4OGQzMGU2N2E1ZDQzOTdhYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALvShqJMh/3dn8YXTbypmtPj2/S4X1OoxVKdu63xNfkU4ZaS
dQAMZ85ULE/u8bFP34mrEhy5j5g75GXniDBWXocMIN/fHJdM5SJ0l44GMHbJUqgf
+TNNphk6OV6TOXuogdm1x7Ka9uctHYox4kQNbZAzWu314dK8TdAyTu84uaKlGFfx
fMO7RxxMTxD0RnX8XtE7XQ3xCpMLTBz3QAZZcf9Gn15iirY+AqKJJQ9jL+3MJSf6
kCqPWRM8ZUjJyp29nabzchc+7NaTi5Ursz9ihoVPkt8Wwt69hofDwdBSqvchoXWB
5WvABGTI57AijXzkeZpsbYasoML6n5tLw1WxPy8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRzNIUJudMVjvBgaXiNMOZ6XUOXrDAfBgNVHSMEGDAWgBRrxd59clW31YJg
xloSCxZO8Q75AzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2E4WGVmWEpWdDlXQ1lNWmFFZ3NXVHZFTy1RTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvMzIxMDllLTI0YzktNGM4OC1hOGU4LWZkZjY2MzhkMmMwNC8x
L2N6U0ZDYm5URlk3d1lHbDRqVERtZWwxRGw2dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
MzIxMDllLTI0YzktNGM4OC1hOGU4LWZkZjY2MzhkMmMwNC8xL2E4WGVmWEpWdDlX
Q1lNWmFFZ3NXVHZFTy1RTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAZ7/7AMEALlc7TANBgkqhkiG9w0B
AQsFAAOCAQEAEV+CAjM76wVsx657uvKdnxpH6282OsAReTZTeVB2pJ2+0a/WUmd4
Pv1VUZER64tPkx0uolAOrfXl4FFMTER+mj9jY/VeI6ol7fz6Wve+g7+PIh5Dwzma
Nm+GxGN9ncdzWuT2useylSoAOcH6As7SSN4LAkr7yqsCYsjCO5LotU3eNzqL44WD
uF87KqeaE6RiLm7+nyfuqm9wYZUaplGsjrhuOFmwGz1ZOYqFbA9aV/IvDtw1sVqG
1/ooPL4O9jJDtGT7e1s4X0cIHlNutgt1KS8EO2lDAO+UsnZYDmAYhdT6LHrfjBQ4
1uy17nJzETGnMvcB9Bl6tELb2uUXelDHEw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:34 2024 by rpki-client on console-fra.rpki-client.org