Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/C_g9uXrqk6yp3Zrqbk1i7TvkXBk.roa
File: C_g9uXrqk6yp3Zrqbk1i7TvkXBk.roa (raw, json)
Hash identifier: an027P+Rw11WEqLlr81JFkA5lHonohGDipuApN+ynj0=
Subject key identifier: 0B:F8:3D:B9:7A:EA:93:AC:A9:DD:9A:EA:6E:4D:62:ED:3B:E4:5C:19
Certificate issuer: /CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Certificate serial: 0790D89B
Authority key identifier: F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/C_g9uXrqk6yp3Zrqbk1i7TvkXBk.roa
Signing time: Thu 02 Jun 2022 06:01:20 +0000
ROA not before: Thu 02 Jun 2022 06:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42296
IP address blocks: 185.240.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126933147 (0x790d89b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Validity
Not Before: Jun 2 06:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bf83db97aea93aca9dd9aea6e4d62ed3be45c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6e:be:a9:33:8d:47:47:11:86:2b:4d:85:5e:
b3:76:82:4b:f8:94:fb:4c:41:35:09:b0:4c:f0:2b:
e0:e4:0b:5f:ca:64:88:5f:da:09:c9:25:48:30:f8:
89:40:33:b2:76:98:75:09:26:2a:1f:24:72:a9:ff:
78:9c:6d:13:33:5b:ba:8e:1b:e8:36:74:e8:d4:76:
31:ec:ef:dc:ef:be:71:7f:91:d2:19:d6:09:2f:2c:
d1:7a:db:0f:3b:08:58:5a:2f:5c:6a:93:0f:c0:03:
76:0c:cb:0d:78:36:3a:58:99:00:37:66:ad:30:09:
ee:54:e3:3d:5e:41:88:f6:f6:59:d0:f5:53:4d:f3:
cc:c9:5b:c7:83:50:f3:46:f1:b0:0c:01:d8:e8:39:
3c:c3:9e:1f:6e:09:72:9d:7a:f7:8b:d7:3f:5d:5a:
ca:bb:b5:fa:5d:39:8c:6e:eb:7b:9a:e9:81:96:b0:
80:32:e5:73:77:01:6b:48:bc:dc:ae:01:86:9c:6d:
fb:db:12:35:10:f8:bd:68:0d:4c:a6:9a:cd:59:5e:
ee:3d:89:c1:6d:4d:e5:3a:92:55:4e:4f:bf:8a:f8:
f9:73:44:bc:ca:7f:35:70:b1:53:8e:8c:34:ad:30:
bc:ab:f6:d7:df:89:96:b5:90:81:1f:76:d9:1b:46:
59:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F8:3D:B9:7A:EA:93:AC:A9:DD:9A:EA:6E:4D:62:ED:3B:E4:5C:19
X509v3 Authority Key Identifier:
keyid:F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/C_g9uXrqk6yp3Zrqbk1i7TvkXBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/8FIRKM9jSqavp-9S1THz_NVWKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.253.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:49:f8:bd:e4:67:c3:f9:b3:ac:c5:3f:72:5b:ee:4d:d5:a7:
27:b9:90:cb:46:0e:b0:f6:f5:01:a6:e2:2c:84:d7:9b:31:b6:
36:2c:f0:bd:58:d6:6b:94:e8:bb:97:90:65:09:f4:ed:a8:29:
1d:63:59:52:96:26:ea:ab:32:65:01:ac:e0:c2:be:f6:62:4d:
60:ea:12:46:93:8c:6b:00:3c:fc:ab:d1:ee:bc:41:58:08:9d:
aa:06:b9:3a:1e:78:0b:85:8c:a0:20:52:b7:58:fa:b9:8d:37:
4c:7b:59:78:8a:58:14:2e:b6:dc:7e:32:4d:18:fa:a9:f5:7a:
b0:ff:a9:6f:13:c6:ac:f8:64:33:cf:12:5c:69:a6:d8:e0:e0:
9c:82:8d:f6:51:c8:23:91:31:5e:35:79:fc:b5:71:67:40:8b:
75:44:d9:c9:cd:67:a7:2a:5d:08:75:a6:8a:13:95:e6:5f:13:
38:fb:34:8d:02:ea:ce:9e:4c:86:7c:bf:d9:cc:d9:3c:9b:3f:
6f:25:c9:06:01:0e:77:46:cc:ba:95:d0:f5:4f:84:e4:66:73:
01:7d:9b:bf:ed:a6:68:3a:04:c8:be:c6:57:f3:c9:ba:3d:93:
e7:d3:8c:cd:b1:97:3d:75:fc:ad:9f:13:f6:d9:4c:c4:43:49:
75:8f:4a:01
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB5DYmzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MDUyMTEyOGNmNjM0YWE2YWZhN2VmNTJkNTMxZjNmY2Q1NTYyOGY5MB4XDTIyMDYw
MjA2MDEyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGJmODNkYjk3YWVh
OTNhY2E5ZGQ5YWVhNmU0ZDYyZWQzYmU0NWMxOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOxuvqkzjUdHEYYrTYVes3aCS/iU+0xBNQmwTPAr4OQLX8pk
iF/aCcklSDD4iUAzsnaYdQkmKh8kcqn/eJxtEzNbuo4b6DZ06NR2Mezv3O++cX+R
0hnWCS8s0XrbDzsIWFovXGqTD8ADdgzLDXg2OliZADdmrTAJ7lTjPV5BiPb2WdD1
U03zzMlbx4NQ80bxsAwB2Og5PMOeH24Jcp1694vXP11ayru1+l05jG7re5rpgZaw
gDLlc3cBa0i83K4Bhpxt+9sSNRD4vWgNTKaazVle7j2JwW1N5TqSVU5Pv4r4+XNE
vMp/NXCxU46MNK0wvKv219+JlrWQgR922RtGWX0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQL+D25euqTrKndmupuTWLtO+RcGTAfBgNVHSMEGDAWgBTwUhEoz2NKpq+n
71LVMfP81VYo+TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhGSVJLTTlqU3FhdnAtOVMxVEh6X05WV0tQay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvYjRiMTUwLWRiYjgtNDY1Zi04MTU1LWU0NDE5YjY0MjEyZS8x
L0NfZzl1WHJxazZ5cDNacnFiazFpN1R2a1hCay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
YjRiMTUwLWRiYjgtNDY1Zi04MTU1LWU0NDE5YjY0MjEyZS8xLzhGSVJLTTlqU3Fh
dnAtOVMxVEh6X05WV0tQay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnw/TANBgkqhkiG9w0BAQsFAAOC
AQEAP0n4veRnw/mzrMU/clvuTdWnJ7mQy0YOsPb1AabiLITXmzG2NizwvVjWa5To
u5eQZQn07agpHWNZUpYm6qsyZQGs4MK+9mJNYOoSRpOMawA8/KvR7rxBWAidqga5
Oh54C4WMoCBSt1j6uY03THtZeIpYFC623H4yTRj6qfV6sP+pbxPGrPhkM88SXGmm
2ODgnIKN9lHII5ExXjV5/LVxZ0CLdUTZyc1npypdCHWmihOV5l8TOPs0jQLqzp5M
hny/2czZPJs/byXJBgEOd0bMupXQ9U+E5GZzAX2bv+2maDoEyL7GV/PJuj2T59OM
zbGXPXX8rZ8T9tlMxENJdY9KAQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-ams.rpki-client.org