Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/yOPf6_1PnEMFTOB0eQEpAQXKtCw.roa
File: yOPf6_1PnEMFTOB0eQEpAQXKtCw.roa (raw, json)
Hash identifier: JxllIFkcVKwHf/Hxk7aYxwZDUkHjQE5P9Q7d0AHso9A=
Subject key identifier: C8:E3:DF:EB:FD:4F:9C:43:05:4C:E0:74:79:01:29:01:05:CA:B4:2C
Certificate issuer: /CN=613d23f2121327d917d708d8fe153382455959a8
Certificate serial: 02E0B6FB
Authority key identifier: 61:3D:23:F2:12:13:27:D9:17:D7:08:D8:FE:15:33:82:45:59:59:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YT0j8hITJ9kX1wjY_hUzgkVZWag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/yOPf6_1PnEMFTOB0eQEpAQXKtCw.roa
Signing time: Sat 01 Jan 2022 04:04:05 +0000
ROA not before: Sat 01 Jan 2022 04:04:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34173
IP address blocks: 185.209.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48281339 (0x2e0b6fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=613d23f2121327d917d708d8fe153382455959a8
Validity
Not Before: Jan 1 04:04:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8e3dfebfd4f9c43054ce0747901290105cab42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a5:3f:b3:24:3d:b4:c6:ee:c4:fa:2d:07:83:
51:fa:92:b0:38:96:64:8b:a8:d2:71:68:b2:48:cb:
1c:bb:15:92:cc:48:64:7e:4c:a1:de:ca:d4:ef:dd:
53:fb:c4:01:67:06:06:13:4e:2c:e4:50:6a:a5:18:
f7:29:56:87:17:1e:cc:5a:41:f6:04:f4:7d:a7:97:
6b:58:da:4f:1c:d2:51:28:2e:d0:c1:7d:08:41:90:
cc:d7:ee:51:38:5c:27:95:a0:7d:77:a3:74:ae:fd:
a2:20:16:d5:d2:c0:fb:00:e7:9b:7b:96:d7:c6:84:
3f:20:1c:61:eb:15:19:7e:dd:18:6c:4d:a3:f2:22:
7d:0e:5e:5c:1f:fc:5f:ce:26:b0:0c:90:40:ac:d2:
8e:20:19:5a:19:fc:7c:5b:b2:bd:57:8d:23:08:84:
08:fc:87:35:19:11:1f:ee:a3:42:20:cc:4f:1d:0b:
ef:b0:1f:b6:a5:cd:33:9b:ef:96:42:f1:11:b6:10:
5d:36:0b:e6:97:66:6b:f9:38:c3:f9:f5:77:75:25:
84:fd:64:c8:69:bb:ff:cf:be:fc:aa:06:c8:89:23:
71:4d:8f:9e:6f:ef:a9:54:dd:a9:5a:58:ae:8e:f4:
e3:54:88:6e:5b:4c:ed:eb:54:7d:04:db:7c:5d:b2:
d4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E3:DF:EB:FD:4F:9C:43:05:4C:E0:74:79:01:29:01:05:CA:B4:2C
X509v3 Authority Key Identifier:
keyid:61:3D:23:F2:12:13:27:D9:17:D7:08:D8:FE:15:33:82:45:59:59:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YT0j8hITJ9kX1wjY_hUzgkVZWag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/yOPf6_1PnEMFTOB0eQEpAQXKtCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/YT0j8hITJ9kX1wjY_hUzgkVZWag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.208.0/24
Signature Algorithm: sha256WithRSAEncryption
10:23:c8:e6:06:c4:05:be:e0:25:d5:ea:19:d2:4a:1a:fc:d6:
1b:4e:fc:d1:db:cd:b1:f4:0d:be:fc:2b:06:9b:c8:4c:83:14:
08:a0:55:ef:d6:57:b4:93:cd:71:a8:8f:44:e5:63:67:7e:c5:
e9:d9:f1:e8:80:21:86:da:d6:f4:2e:10:ac:a8:28:a9:dc:39:
44:3e:e7:de:4d:b9:55:1e:54:48:00:58:81:40:42:ff:93:c8:
f2:30:81:39:04:d4:b7:76:95:ec:b2:57:a4:39:79:62:e5:8a:
e0:e0:c6:7d:0e:b7:20:0c:64:8e:56:2d:97:ca:9c:65:cf:dd:
a3:c4:7e:ed:40:20:d6:9f:b8:ce:7d:a8:fd:1c:a4:9a:d2:72:
e5:3b:48:e1:44:3d:19:55:2b:34:e2:a3:c2:df:6e:7b:e0:6a:
b1:93:4c:f4:05:7d:47:9f:9a:fa:7f:4b:ad:71:70:44:37:0b:
35:e8:0d:07:aa:f8:34:f0:6b:d1:5c:dc:d8:31:54:67:51:6c:
d1:d0:e0:e4:44:c5:60:e6:6a:1e:9d:a2:20:ee:1d:4a:4d:f5:
d3:6f:56:43:56:ae:b2:3c:c2:33:33:0e:52:0f:f5:a5:ee:57:
68:1c:ab:ff:9b:c1:16:46:6c:90:ca:2b:c6:e7:f4:8b:68:07:
31:74:32:8c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAuC2+zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MTNkMjNmMjEyMTMyN2Q5MTdkNzA4ZDhmZTE1MzM4MjQ1NTk1OWE4MB4XDTIyMDEw
MTA0MDQwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzhlM2RmZWJmZDRm
OWM0MzA1NGNlMDc0NzkwMTI5MDEwNWNhYjQyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOilP7MkPbTG7sT6LQeDUfqSsDiWZIuo0nFoskjLHLsVksxI
ZH5Mod7K1O/dU/vEAWcGBhNOLORQaqUY9ylWhxcezFpB9gT0faeXa1jaTxzSUSgu
0MF9CEGQzNfuUThcJ5WgfXejdK79oiAW1dLA+wDnm3uW18aEPyAcYesVGX7dGGxN
o/IifQ5eXB/8X84msAyQQKzSjiAZWhn8fFuyvVeNIwiECPyHNRkRH+6jQiDMTx0L
77AftqXNM5vvlkLxEbYQXTYL5pdma/k4w/n1d3UlhP1kyGm7/8++/KoGyIkjcU2P
nm/vqVTdqVpYro7041SIbltM7etUfQTbfF2y1IUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTI49/r/U+cQwVM4HR5ASkBBcq0LDAfBgNVHSMEGDAWgBRhPSPyEhMn2RfX
CNj+FTOCRVlZqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lUMGo4aElUSjlrWDF3allfaFV6Z2tWWldhZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvZmNlNmJlLTA4OTYtNDQ4Ny1hYTM0LTdhNjA1YmE0MGMxZS8x
L3lPUGY2XzFQbkVNRlRPQjBlUUVwQVFYS3RDdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
ZmNlNmJlLTA4OTYtNDQ4Ny1hYTM0LTdhNjA1YmE0MGMxZS8xL1lUMGo4aElUSjlr
WDF3allfaFV6Z2tWWldhZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnR0DANBgkqhkiG9w0BAQsFAAOC
AQEAECPI5gbEBb7gJdXqGdJKGvzWG0780dvNsfQNvvwrBpvITIMUCKBV79ZXtJPN
caiPROVjZ37F6dnx6IAhhtrW9C4QrKgoqdw5RD7n3k25VR5USABYgUBC/5PI8jCB
OQTUt3aV7LJXpDl5YuWK4ODGfQ63IAxkjlYtl8qcZc/do8R+7UAg1p+4zn2o/Ryk
mtJy5TtI4UQ9GVUrNOKjwt9ue+BqsZNM9AV9R5+a+n9LrXFwRDcLNegNB6r4NPBr
0Vzc2DFUZ1Fs0dDg5ETFYOZqHp2iIO4dSk31029WQ1ausjzCMzMOUg/1pe5XaByr
/5vBFkZskMorxuf0i2gHMXQyjA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:32 2024 by rpki-client on console-fra.rpki-client.org