Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/jfpQcOoIWT1S4QDCkd-r7IHKG2A.roa
File: jfpQcOoIWT1S4QDCkd-r7IHKG2A.roa (raw, json)
Hash identifier: O2xUTXgMhQfiFGOEyoAJqKpCi+GAZqxFkVXqc//hLo4=
Subject key identifier: 8D:FA:50:70:EA:08:59:3D:52:E1:00:C2:91:DF:AB:EC:81:CA:1B:60
Certificate issuer: /CN=88d7592f411900c067b5e7a219a345abfdbaa40f
Certificate serial: 14A9E1A0
Authority key identifier: 88:D7:59:2F:41:19:00:C0:67:B5:E7:A2:19:A3:45:AB:FD:BA:A4:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iNdZL0EZAMBnteeiGaNFq_26pA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/jfpQcOoIWT1S4QDCkd-r7IHKG2A.roa
Signing time: Sat 01 Jan 2022 15:03:09 +0000
ROA not before: Sat 01 Jan 2022 15:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62214
IP address blocks: 185.112.156.0/22 maxlen: 22
2a02:6080::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346677664 (0x14a9e1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88d7592f411900c067b5e7a219a345abfdbaa40f
Validity
Not Before: Jan 1 15:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dfa5070ea08593d52e100c291dfabec81ca1b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b0:00:5e:54:64:22:2f:26:ed:c7:31:0f:2e:
5b:b7:61:da:ae:a8:0c:63:50:56:1f:aa:3a:62:0f:
0d:01:9d:c0:66:d6:a6:02:2e:ed:43:95:f0:be:1a:
5b:83:8c:3f:ff:d9:b4:06:de:5f:6f:0f:36:e3:f1:
90:21:d7:7c:7e:cd:6b:c7:45:f4:bd:c2:1c:cd:c3:
57:40:b8:6e:07:a9:ad:4b:fe:ba:b1:3d:a7:cc:53:
3a:f6:f7:cb:fc:f4:3d:a6:6b:53:47:7b:5c:bd:a1:
34:fd:2a:14:99:4d:45:87:30:1d:d7:37:90:9e:c3:
19:58:ae:b6:ef:e1:78:8f:28:24:ce:31:07:81:0d:
14:55:5f:5b:3c:26:6f:66:52:6f:62:db:c5:4b:f6:
6c:b2:27:fa:53:bf:eb:cb:24:bb:4f:40:a9:e2:2f:
95:05:8c:ed:f8:6b:96:ee:44:17:f5:92:bd:47:62:
a1:ef:80:9b:58:a3:de:32:58:e5:23:3d:a5:6e:72:
32:4f:6a:0b:68:4b:88:51:58:b8:47:7b:32:89:45:
04:96:01:35:41:c1:10:78:4d:46:e4:96:8f:6c:ff:
3d:47:84:d5:52:a6:a6:c0:c5:90:00:d5:57:bb:c2:
1f:18:a1:25:1e:58:5a:ff:1c:c7:c9:57:25:a0:13:
ea:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FA:50:70:EA:08:59:3D:52:E1:00:C2:91:DF:AB:EC:81:CA:1B:60
X509v3 Authority Key Identifier:
keyid:88:D7:59:2F:41:19:00:C0:67:B5:E7:A2:19:A3:45:AB:FD:BA:A4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iNdZL0EZAMBnteeiGaNFq_26pA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/jfpQcOoIWT1S4QDCkd-r7IHKG2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/iNdZL0EZAMBnteeiGaNFq_26pA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.156.0/22
IPv6:
2a02:6080::/32
Signature Algorithm: sha256WithRSAEncryption
7c:69:5d:20:ee:64:8f:56:74:24:ad:43:01:fc:de:81:3b:f9:
23:a9:95:1e:4f:a1:2a:59:87:17:0f:0e:41:20:f1:19:b9:29:
1f:33:77:11:1b:d4:a7:44:ef:04:86:4e:f0:10:35:19:3d:ae:
ba:ae:97:82:7a:da:77:e2:a9:63:04:ad:ab:29:68:fe:b3:53:
fb:90:e1:e7:19:55:e0:82:aa:ab:e0:9b:b4:5f:93:88:c1:d3:
9c:8d:d1:0e:e1:8a:c5:15:d5:0d:e3:25:36:23:04:a3:96:fe:
82:9c:cd:72:3d:17:3e:66:1c:91:4e:4f:3f:da:62:c0:08:2a:
a9:8e:f2:26:b1:d9:1b:3c:f0:ed:5d:19:8c:af:73:92:77:a8:
cd:bc:8a:fb:0a:2e:04:e8:15:0c:b3:d7:1b:06:4d:41:b8:ef:
ff:03:30:7d:56:05:89:37:af:44:2b:e1:47:36:f1:b0:fa:a0:
3a:43:c5:aa:00:9a:41:80:58:ca:2a:50:39:16:f9:76:d5:a8:
84:64:e0:ca:f7:fc:41:56:71:b4:85:31:da:82:fa:eb:ea:9c:
c0:77:4f:33:4c:cc:4a:b1:be:3f:ba:8f:49:55:5f:7e:ea:7f:
01:b3:b6:b9:9e:58:a3:65:9b:6d:4e:d9:81:8b:09:28:af:a5:
43:f8:1d:e6
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFKnhoDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OGQ3NTkyZjQxMTkwMGMwNjdiNWU3YTIxOWEzNDVhYmZkYmFhNDBmMB4XDTIyMDEw
MTE1MDMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGRmYTUwNzBlYTA4
NTkzZDUyZTEwMGMyOTFkZmFiZWM4MWNhMWI2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMuwAF5UZCIvJu3HMQ8uW7dh2q6oDGNQVh+qOmIPDQGdwGbW
pgIu7UOV8L4aW4OMP//ZtAbeX28PNuPxkCHXfH7Na8dF9L3CHM3DV0C4bgeprUv+
urE9p8xTOvb3y/z0PaZrU0d7XL2hNP0qFJlNRYcwHdc3kJ7DGViutu/heI8oJM4x
B4ENFFVfWzwmb2ZSb2LbxUv2bLIn+lO/68sku09AqeIvlQWM7fhrlu5EF/WSvUdi
oe+Am1ij3jJY5SM9pW5yMk9qC2hLiFFYuEd7MolFBJYBNUHBEHhNRuSWj2z/PUeE
1VKmpsDFkADVV7vCHxihJR5YWv8cx8lXJaAT6iMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSN+lBw6ghZPVLhAMKR36vsgcobYDAfBgNVHSMEGDAWgBSI11kvQRkAwGe1
56IZo0Wr/bqkDzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lOZFpMMEVaQU1CbnRlZWlHYU5GcV8yNnBBOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmYvODhiNWMzLTM0MWMtNGVhOS1hOTQ4LTZlOGU5ZDUyZGQ0OC8x
L2pmcFFjT29JV1QxUzRRRENrZC1yN0lIS0cyQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmYv
ODhiNWMzLTM0MWMtNGVhOS1hOTQ4LTZlOGU5ZDUyZGQ0OC8xL2lOZFpMMEVaQU1C
bnRlZWlHYU5GcV8yNnBBOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlwnDANBAIAAjAHAwUAKgJggDAN
BgkqhkiG9w0BAQsFAAOCAQEAfGldIO5kj1Z0JK1DAfzegTv5I6mVHk+hKlmHFw8O
QSDxGbkpHzN3ERvUp0TvBIZO8BA1GT2uuq6Xgnrad+KpYwStqylo/rNT+5Dh5xlV
4IKqq+CbtF+TiMHTnI3RDuGKxRXVDeMlNiMEo5b+gpzNcj0XPmYckU5PP9piwAgq
qY7yJrHZGzzw7V0ZjK9zkneozbyK+wouBOgVDLPXGwZNQbjv/wMwfVYFiTevRCvh
RzbxsPqgOkPFqgCaQYBYyipQORb5dtWohGTgyvf8QVZxtIUx2oL66+qcwHdPM0zM
SrG+P7qPSVVffup/AbO2uZ5Yo2WbbU7ZgYsJKK+lQ/gd5g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:50 2024 by rpki-client on console-ams.rpki-client.org