Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/5rmCtKqa25K1U_gClCQ31FwTBAg.roa
File: 5rmCtKqa25K1U_gClCQ31FwTBAg.roa (raw, json)
Hash identifier: +LLzkoOFO3sfTcYJPiNVMUxRsVarhCJX4QDukxITCAc=
Subject key identifier: E6:B9:82:B4:AA:9A:DB:92:B5:53:F8:02:94:24:37:D4:5C:13:04:08
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 39F7B4BD
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/5rmCtKqa25K1U_gClCQ31FwTBAg.roa
Signing time: Sat 01 Jan 2022 14:00:33 +0000
ROA not before: Sat 01 Jan 2022 14:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43153
IP address blocks: 85.219.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 972534973 (0x39f7b4bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6b982b4aa9adb92b553f802942437d45c130408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:29:56:22:2b:ae:65:50:06:f3:70:29:f8:99:
f5:07:cf:d8:a2:d6:3c:39:c0:36:a7:9a:a0:ab:11:
99:fe:7f:1c:91:76:15:4e:84:ee:28:0e:23:d3:85:
e7:ed:60:cc:52:2a:17:38:d4:84:27:2d:bf:51:79:
f9:e1:1a:76:6e:69:b8:42:16:b2:14:9d:b3:aa:54:
80:6f:49:95:06:f4:35:e5:81:6f:14:2b:81:58:ec:
4f:b8:a4:43:14:92:cb:45:85:47:3a:4b:dd:44:5e:
5d:25:e6:2b:28:5d:b0:f4:95:c5:12:5e:9a:cc:32:
3f:8c:ca:2d:0a:1e:d2:45:a8:0a:cc:e6:8e:31:bc:
5f:4b:31:da:c2:96:0e:88:78:24:7f:ed:5f:5f:eb:
96:fd:3d:b3:24:e9:01:8f:3e:ed:40:48:f2:ca:3c:
74:cf:66:4a:0f:92:08:01:ea:f3:6c:b9:65:14:4a:
28:51:73:f2:09:f2:e0:7e:79:2a:3e:54:01:e0:14:
fb:11:c8:f7:b3:fe:a1:a9:84:19:d4:76:11:33:0a:
ce:85:7f:1e:4f:56:56:d6:d0:72:3d:1e:7e:c4:c9:
95:db:2a:dc:ba:b7:96:ec:ec:8e:ee:9e:c9:e8:e1:
d2:dc:e8:5e:ba:3b:68:64:a3:4e:b8:85:c4:d1:d8:
8d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B9:82:B4:AA:9A:DB:92:B5:53:F8:02:94:24:37:D4:5C:13:04:08
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/5rmCtKqa25K1U_gClCQ31FwTBAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.219.208.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:20:86:7a:75:80:94:09:1e:ba:59:ed:5f:90:b3:d1:e5:7a:
96:74:f4:54:2f:3a:87:a7:a8:12:91:e5:1c:aa:23:fb:29:76:
ac:17:17:04:2e:07:66:b4:a0:d8:16:c1:de:8d:32:2f:c7:5e:
8c:ed:04:9c:70:26:e9:c2:91:b5:3d:fe:07:e7:9e:97:41:cc:
3f:b7:07:0d:bd:2a:c8:4c:a7:7f:2c:a1:fa:b4:69:11:38:b0:
6d:90:0d:5f:49:45:8e:87:7a:bc:ba:d9:2e:c8:43:09:71:ec:
93:b8:55:c1:0a:dd:dc:12:04:a6:93:23:09:7b:2e:25:59:d2:
37:d8:9d:9a:7b:c5:2a:46:f0:7d:48:9b:69:18:45:2f:88:eb:
8c:da:f7:71:28:21:19:84:0e:ae:28:12:02:07:d4:da:0e:bc:
02:61:79:f9:53:8e:f9:d0:23:78:4e:0e:bc:ca:b3:21:8c:59:
e9:1a:61:00:75:e7:68:be:a5:11:8d:6c:71:a7:96:7c:82:36:
a7:e3:71:b6:8a:0c:c2:39:99:e4:cc:82:83:2e:8a:44:88:3e:
3d:99:ec:e1:31:2d:6f:da:90:9a:31:d9:56:47:da:88:da:9a:
cc:26:c9:08:42:23:9d:ca:e9:83:49:3a:46:53:f8:2b:e4:16:
28:93:a2:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOfe0vTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YWNhNjNkZjI0OGI3YWRmM2RkZDA3ZThjMmQzZWVkZDAyY2VmOTMzMB4XDTIyMDEw
MTE0MDAzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTZiOTgyYjRhYTlh
ZGI5MmI1NTNmODAyOTQyNDM3ZDQ1YzEzMDQwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKspViIrrmVQBvNwKfiZ9QfP2KLWPDnANqeaoKsRmf5/HJF2
FU6E7igOI9OF5+1gzFIqFzjUhCctv1F5+eEadm5puEIWshSds6pUgG9JlQb0NeWB
bxQrgVjsT7ikQxSSy0WFRzpL3UReXSXmKyhdsPSVxRJemswyP4zKLQoe0kWoCszm
jjG8X0sx2sKWDoh4JH/tX1/rlv09syTpAY8+7UBI8so8dM9mSg+SCAHq82y5ZRRK
KFFz8gny4H55Kj5UAeAU+xHI97P+oamEGdR2ETMKzoV/Hk9WVtbQcj0efsTJldsq
3Lq3luzsju6eyejh0tzoXro7aGSjTriFxNHYjZcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTmuYK0qprbkrVT+AKUJDfUXBMECDAfBgNVHSMEGDAWgBQaymPfJIt63z3d
B+jC0+7dAs75MzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dzcGozeVNMZXQ4OTNRZm93dFB1M1FMTy1UTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvMWY2NDU4LWRjNzUtNGFkZC1hZTcyLTkxZTMxODRiYjBhYi8x
LzVybUN0S3FhMjVLMVVfZ0NsQ1EzMUZ3VEJBZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
MWY2NDU4LWRjNzUtNGFkZC1hZTcyLTkxZTMxODRiYjBhYi8xL0dzcGozeVNMZXQ4
OTNRZm93dFB1M1FMTy1UTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVXb0DANBgkqhkiG9w0BAQsFAAOC
AQEAWyCGenWAlAkeulntX5Cz0eV6lnT0VC86h6eoEpHlHKoj+yl2rBcXBC4HZrSg
2BbB3o0yL8dejO0EnHAm6cKRtT3+B+eel0HMP7cHDb0qyEynfyyh+rRpETiwbZAN
X0lFjod6vLrZLshDCXHsk7hVwQrd3BIEppMjCXsuJVnSN9idmnvFKkbwfUibaRhF
L4jrjNr3cSghGYQOrigSAgfU2g68AmF5+VOO+dAjeE4OvMqzIYxZ6RphAHXnaL6l
EY1scaeWfII2p+NxtooMwjmZ5MyCgy6KRIg+PZns4TEtb9qQmjHZVkfaiNqazCbJ
CEIjncrpg0k6RlP4K+QWKJOimQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-fra.rpki-client.org