Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/bWmU93nt0uLhWN1LT8N9_gASRaI.roa
File: bWmU93nt0uLhWN1LT8N9_gASRaI.roa (raw, json)
Hash identifier: DH+ZWgVS6hu2NxWZ2vfx0v28tsIBlrG4SSVlpnfd/7w=
Subject key identifier: 6D:69:94:F7:79:ED:D2:E2:E1:58:DD:4B:4F:C3:7D:FE:00:12:45:A2
Certificate issuer: /CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Certificate serial: 037773
Authority key identifier: 0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/bWmU93nt0uLhWN1LT8N9_gASRaI.roa
Signing time: Sun 17 Apr 2022 12:57:45 +0000
ROA not before: Sun 17 Apr 2022 12:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8849
IP address blocks: 88.210.36.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227187 (0x37773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Validity
Not Before: Apr 17 12:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d6994f779edd2e2e158dd4b4fc37dfe001245a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:09:7c:18:1a:c1:5b:80:58:99:54:25:44:30:
57:c9:c9:50:22:03:9c:c1:bb:65:2f:87:ed:81:c2:
69:06:0b:43:ed:43:1b:18:6d:e3:9d:56:a4:d8:a5:
f3:8f:31:84:d7:11:2b:e4:d2:ea:cc:36:0d:58:d1:
bc:99:db:0f:a8:96:5c:e5:17:60:9e:7c:a2:54:a4:
57:5e:7d:7c:1d:17:17:db:c4:8c:3f:c5:14:24:27:
e2:50:96:c7:f9:16:69:dc:f3:7d:6f:e8:b7:c5:95:
25:0d:e5:38:67:28:94:50:eb:2a:6a:be:d0:50:94:
03:b0:da:9b:eb:b3:70:6d:67:6f:d4:ca:4d:23:9a:
da:de:dd:16:4c:ef:e0:ad:94:ea:aa:42:bb:7e:30:
f2:a8:a4:55:a2:22:b7:b9:b6:70:bd:43:cd:68:ca:
a2:bd:12:f3:cf:69:41:fa:48:03:ce:0f:65:80:81:
cd:16:c1:16:2a:b1:31:a1:dd:15:0a:cf:a2:4d:f6:
e0:9c:2a:ea:cc:a0:cc:78:82:9c:01:ea:b8:a7:1a:
d1:97:8e:84:8f:af:d2:da:fc:20:a0:07:5c:ec:c9:
eb:44:b2:1b:83:c3:5b:fa:9c:35:79:6f:db:89:f9:
cc:02:fd:76:e7:e7:8b:09:cb:7c:c7:19:a7:39:f1:
c4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:69:94:F7:79:ED:D2:E2:E1:58:DD:4B:4F:C3:7D:FE:00:12:45:A2
X509v3 Authority Key Identifier:
keyid:0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/bWmU93nt0uLhWN1LT8N9_gASRaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/D-v7_W-TfFrjnj446KuDhBB0IaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.210.36.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:6a:0e:20:d6:b0:20:9d:13:0f:dc:d0:e2:5c:a8:c0:fd:87:
60:98:59:ba:0a:99:12:45:dc:93:08:1e:55:be:7d:b5:19:a1:
02:28:0a:76:c2:7d:32:4d:2b:02:69:37:9f:06:0d:dc:fc:a7:
48:d7:fe:98:fc:ed:22:8e:ab:39:2a:e2:5a:93:cb:9e:d4:ef:
55:3d:bc:9f:76:48:6c:29:e9:af:ec:ee:a5:a3:9b:cf:27:55:
50:97:5c:3d:a6:24:5c:86:41:34:e5:f1:b6:f3:ab:63:93:7f:
c4:f7:a5:e9:dc:7a:69:c5:38:61:87:e2:65:02:e5:96:e7:8a:
73:0e:ac:d2:bc:cb:29:be:43:e0:74:80:d1:a8:9f:48:00:64:
8f:48:15:01:b3:b6:e2:3b:74:77:47:f4:36:de:f7:54:6b:2b:
a0:df:ed:81:b5:f0:f1:19:23:21:da:d3:45:7d:06:b4:a9:4c:
3c:21:51:50:aa:05:f7:98:a5:c0:8d:4d:e3:cc:a6:5d:78:a4:
b4:06:7e:04:50:fc:9d:4c:ef:d1:b0:29:5f:ca:66:5c:22:42:
dd:e4:e1:32:60:1a:5f:eb:81:61:9f:52:3d:c7:45:c9:7e:fe:
71:a0:fa:94:c6:37:d2:e6:d2:fa:90:dd:42:c3:7f:6c:f9:d0:
85:13:9a:ba
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDA3dzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDBm
ZWJmYmZkNmY5MzdjNWFlMzllM2UzOGU4YWI4Mzg0MTA3NDIxYTYwHhcNMjIwNDE3
MTI1NzQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2ZDY5OTRmNzc5ZWRk
MmUyZTE1OGRkNGI0ZmMzN2RmZTAwMTI0NWEyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtwl8GBrBW4BYmVQlRDBXyclQIgOcwbtlL4ftgcJpBgtD7UMb
GG3jnVak2KXzjzGE1xEr5NLqzDYNWNG8mdsPqJZc5RdgnnyiVKRXXn18HRcX28SM
P8UUJCfiUJbH+RZp3PN9b+i3xZUlDeU4ZyiUUOsqar7QUJQDsNqb67NwbWdv1MpN
I5ra3t0WTO/grZTqqkK7fjDyqKRVoiK3ubZwvUPNaMqivRLzz2lB+kgDzg9lgIHN
FsEWKrExod0VCs+iTfbgnCrqzKDMeIKcAeq4pxrRl46Ej6/S2vwgoAdc7MnrRLIb
g8Nb+pw1eW/bifnMAv125+eLCct8xxmnOfHESwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFG1plPd57dLi4VjdS0/Dff4AEkWiMB8GA1UdIwQYMBaAFA/r+/1vk3xa454+
OOirg4QQdCGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
RC12N19XLVRmRnJqbmo0NDZLdURoQkIwSWFZLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iZS82N2Q4MzQtMjYxMi00NzM5LTlmNGItN2Q3MDM3NGQ3NmQyLzEv
YldtVTkzbnQwdUxoV04xTFQ4TjlfZ0FTUmFJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82
N2Q4MzQtMjYxMi00NzM5LTlmNGItN2Q3MDM3NGQ3NmQyLzEvRC12N19XLVRmRnJq
bmo0NDZLdURoQkIwSWFZLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWNIkMA0GCSqGSIb3DQEBCwUAA4IB
AQDAag4g1rAgnRMP3NDiXKjA/YdgmFm6CpkSRdyTCB5Vvn21GaECKAp2wn0yTSsC
aTefBg3c/KdI1/6Y/O0ijqs5KuJak8ue1O9VPbyfdkhsKemv7O6lo5vPJ1VQl1w9
piRchkE05fG286tjk3/E96Xp3HppxThhh+JlAuWW54pzDqzSvMspvkPgdIDRqJ9I
AGSPSBUBs7biO3R3R/Q23vdUayug3+2BtfDxGSMh2tNFfQa0qUw8IVFQqgX3mKXA
jU3jzKZdeKS0Bn4EUPydTO/RsClfymZcIkLd5OEyYBpf64Fhn1I9x0XJfv5xoPqU
xjfS5tL6kN1Cw39s+dCFE5q6
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-ams.rpki-client.org