Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/BShCtluM3euJZ-V9dxJypce_2m0.roa
File: BShCtluM3euJZ-V9dxJypce_2m0.roa (raw, json)
Hash identifier: iLCFlMd2ADo3dNuyj7O2qRs8X2x/Y9cdLdmoEA/UxNk=
Subject key identifier: 05:28:42:B6:5B:8C:DD:EB:89:67:E5:7D:77:12:72:A5:C7:BF:DA:6D
Certificate issuer: /CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Certificate serial: 0ADAA2E8
Authority key identifier: 4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/BShCtluM3euJZ-V9dxJypce_2m0.roa
Signing time: Sat 01 Jan 2022 16:04:46 +0000
ROA not before: Sat 01 Jan 2022 16:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44863
IP address blocks: 185.93.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182100712 (0xadaa2e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Validity
Not Before: Jan 1 16:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=052842b65b8cddeb8967e57d771272a5c7bfda6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5c:27:ea:a3:8c:89:33:b4:87:01:ed:fc:18:
b9:5d:4a:78:ba:dc:23:b3:a3:91:27:4d:83:4e:83:
a4:cb:b9:b2:34:56:63:0c:08:3e:3c:12:f5:ce:ac:
90:3c:58:cc:77:46:a8:07:eb:82:3e:96:43:a7:72:
11:9e:fc:52:14:24:a6:f7:ef:7f:c7:6d:2f:76:df:
d0:51:e4:e6:18:d5:3c:3c:89:c1:64:e5:47:5c:58:
2c:59:c6:6a:28:8a:cd:2a:19:6b:0c:c9:df:06:d2:
76:13:7f:38:5f:e9:bc:15:99:65:fd:af:7b:1a:86:
a1:18:a2:54:fd:e5:f5:c4:f6:ce:f1:3d:70:68:77:
c1:41:de:d0:bd:98:e8:b4:72:72:fa:7a:1b:c0:3a:
0c:a7:ed:ad:aa:0c:0d:e8:4c:a3:02:9f:c1:cf:97:
d2:59:23:55:1e:c5:b5:9b:66:ac:5a:92:2b:9e:95:
b5:bc:a2:95:49:8f:f7:4f:37:6e:6f:08:b9:f7:30:
12:a1:ce:c2:aa:f2:b0:de:21:09:3e:43:b3:03:e8:
1d:dd:80:e1:87:43:a2:00:85:a4:2b:4f:92:d7:ea:
6b:e4:8a:05:5c:d1:8a:d5:1a:ed:d1:43:41:ea:e0:
6b:cf:66:a6:56:11:be:b8:27:f4:c8:49:bd:b0:e3:
3e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:28:42:B6:5B:8C:DD:EB:89:67:E5:7D:77:12:72:A5:C7:BF:DA:6D
X509v3 Authority Key Identifier:
keyid:4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/BShCtluM3euJZ-V9dxJypce_2m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.185.0/24
Signature Algorithm: sha256WithRSAEncryption
17:7f:1c:b1:98:54:eb:9c:ed:e3:96:c6:91:c9:1b:36:ab:af:
5c:21:df:8c:b3:f9:74:b4:01:82:6d:99:3d:71:00:65:4f:fc:
2c:1b:df:42:a7:74:22:18:f3:a0:03:47:14:3e:9c:7c:fe:22:
03:67:82:1c:f8:d4:83:14:c0:e6:50:3e:bd:6c:cb:1b:23:64:
7b:04:92:ac:0b:05:f9:c6:56:2d:35:c5:15:34:cf:3e:2b:ce:
07:fd:e0:7e:9d:f4:6c:11:17:15:b5:6f:cf:b2:7b:59:0c:65:
ab:05:d3:b7:97:22:0d:44:8d:21:e6:fe:7f:f5:39:ad:29:40:
52:a0:ce:10:48:7e:32:79:c5:0b:55:9a:fc:e8:69:35:82:d2:
a3:a9:6f:96:c8:2a:6c:c6:6e:c9:71:b0:e5:51:b9:0b:81:9b:
d5:8e:9b:9b:38:1c:5e:96:0c:b2:d5:a5:74:be:c8:40:b9:e0:
a3:f7:b4:3a:7e:b0:fb:eb:e1:7c:8b:3e:1b:be:4b:b3:1d:77:
cf:a1:36:33:d4:f5:a6:a4:68:94:3f:52:b9:90:3d:9f:d1:1b:
52:dc:ea:ce:f5:e8:97:bb:96:45:7c:0f:1b:20:24:ff:28:84:
98:88:75:53:f6:2b:b2:01:b8:ff:d1:b1:9b:e2:bc:53:2e:0f:
8d:4d:e1:85
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECtqi6DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZjlhYzZmZTIwMzFhZGRlMDM2NjgyNDBlM2M1ZDkxZWM2NzExZTFlMB4XDTIyMDEw
MTE2MDQ0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDUyODQyYjY1Yjhj
ZGRlYjg5NjdlNTdkNzcxMjcyYTVjN2JmZGE2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMdcJ+qjjIkztIcB7fwYuV1KeLrcI7OjkSdNg06DpMu5sjRW
YwwIPjwS9c6skDxYzHdGqAfrgj6WQ6dyEZ78UhQkpvfvf8dtL3bf0FHk5hjVPDyJ
wWTlR1xYLFnGaiiKzSoZawzJ3wbSdhN/OF/pvBWZZf2vexqGoRiiVP3l9cT2zvE9
cGh3wUHe0L2Y6LRycvp6G8A6DKftraoMDehMowKfwc+X0lkjVR7FtZtmrFqSK56V
tbyilUmP9083bm8IufcwEqHOwqrysN4hCT5DswPoHd2A4YdDogCFpCtPktfqa+SK
BVzRitUa7dFDQerga89mplYRvrgn9MhJvbDjPocCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQFKEK2W4zd64ln5X13EnKlx7/abTAfBgNVHSMEGDAWgBRPmsb+IDGt3gNm
gkDjxdkexnEeHjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q1ckdfaUF4cmQ0RFpvSkE0OFhaSHNaeEhoNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvODQ3ZmZhLTlmMzgtNDYxMC05OGU3LTUyOGE2M2JlNGM4Ny8x
L0JTaEN0bHVNM2V1SlotVjlkeEp5cGNlXzJtMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
ODQ3ZmZhLTlmMzgtNDYxMC05OGU3LTUyOGE2M2JlNGM4Ny8xL1Q1ckdfaUF4cmQ0
RFpvSkE0OFhaSHNaeEhoNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlduTANBgkqhkiG9w0BAQsFAAOC
AQEAF38csZhU65zt45bGkckbNquvXCHfjLP5dLQBgm2ZPXEAZU/8LBvfQqd0Ihjz
oANHFD6cfP4iA2eCHPjUgxTA5lA+vWzLGyNkewSSrAsF+cZWLTXFFTTPPivOB/3g
fp30bBEXFbVvz7J7WQxlqwXTt5ciDUSNIeb+f/U5rSlAUqDOEEh+MnnFC1Wa/Ohp
NYLSo6lvlsgqbMZuyXGw5VG5C4Gb1Y6bmzgcXpYMstWldL7IQLngo/e0On6w++vh
fIs+G75Lsx13z6E2M9T1pqRolD9SuZA9n9EbUtzqzvXol7uWRXwPGyAk/yiEmIh1
U/YrsgG4/9Gxm+K8Uy4PjU3hhQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:42 2024 by rpki-client on console-fra.rpki-client.org