Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/6GyJjVw8k211sSF7UNWkV6reFko.roa
File: 6GyJjVw8k211sSF7UNWkV6reFko.roa (raw, json)
Hash identifier: dcgVXOnAG0WO6c0eoQVR/h0cI41Sc9TkigvMX2NfKMI=
Subject key identifier: E8:6C:89:8D:5C:3C:93:6D:75:B1:21:7B:50:D5:A4:57:AA:DE:16:4A
Certificate issuer: /CN=bfe9f12c96ba20683aff5c958bfad8e4c577f7fe
Certificate serial: 0B8C4B5E
Authority key identifier: BF:E9:F1:2C:96:BA:20:68:3A:FF:5C:95:8B:FA:D8:E4:C5:77:F7:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-nxLJa6IGg6_1yVi_rY5MV39_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/6GyJjVw8k211sSF7UNWkV6reFko.roa
Signing time: Sat 01 Jan 2022 12:01:01 +0000
ROA not before: Sat 01 Jan 2022 12:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139242
IP address blocks: 185.212.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193743710 (0xb8c4b5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe9f12c96ba20683aff5c958bfad8e4c577f7fe
Validity
Not Before: Jan 1 12:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e86c898d5c3c936d75b1217b50d5a457aade164a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:67:c0:a9:21:26:78:be:d3:87:ee:31:68:7f:
e6:5c:63:4e:ba:89:25:e4:7a:13:45:de:be:97:93:
76:4c:4c:01:d8:df:e3:ba:90:83:e2:38:7a:40:1f:
6a:6a:e8:92:37:86:a8:d3:85:f3:5e:a3:15:64:7f:
26:8e:f5:10:78:d0:cb:36:a9:fb:3c:19:c2:32:d2:
e2:5b:4b:24:07:a8:01:5e:0d:59:c9:e2:f6:8d:bb:
8f:bc:9f:9e:aa:54:9d:d3:cc:db:05:d3:e0:54:a4:
1f:8a:ac:ad:13:ea:a8:72:e0:ca:ce:18:86:cc:f6:
a3:f9:ca:f2:6e:f8:f7:05:06:b5:c6:7c:b9:d1:0a:
d2:5d:fe:4f:cc:b5:60:ac:80:32:1a:71:e0:1b:d1:
32:c4:78:e2:bc:1a:ad:b4:cc:ea:46:b9:60:bb:e4:
0a:ec:0a:86:3b:80:7a:69:e8:6a:16:89:e7:5e:49:
78:64:f5:4f:42:0a:43:78:0f:e1:31:a0:a2:61:f6:
b3:f1:d9:ce:c3:11:0d:d1:d0:46:ea:21:5b:7b:2f:
06:00:7b:b0:f6:3f:29:d4:70:6b:9b:3f:3e:af:e9:
14:5d:62:5f:34:f0:9f:5a:7a:7f:48:29:33:6d:b3:
e5:69:89:9a:1c:82:4b:9c:65:e7:46:9f:a8:28:f6:
1d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:6C:89:8D:5C:3C:93:6D:75:B1:21:7B:50:D5:A4:57:AA:DE:16:4A
X509v3 Authority Key Identifier:
keyid:BF:E9:F1:2C:96:BA:20:68:3A:FF:5C:95:8B:FA:D8:E4:C5:77:F7:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-nxLJa6IGg6_1yVi_rY5MV39_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/6GyJjVw8k211sSF7UNWkV6reFko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/v-nxLJa6IGg6_1yVi_rY5MV39_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.144.0/24
Signature Algorithm: sha256WithRSAEncryption
65:e4:ef:45:80:9d:3a:ae:f5:79:37:14:dc:1c:35:74:38:b9:
f9:1d:ba:1b:49:f0:10:d8:72:9b:08:0e:a1:7c:42:e7:ef:0d:
0a:29:ee:ac:17:00:bb:32:78:43:38:7e:50:23:cd:71:ae:f9:
91:e7:6a:bc:6b:2c:20:ec:5a:09:41:8d:0a:2b:72:48:2a:8b:
fc:2f:b3:b3:e5:f3:08:81:74:1a:0d:b1:ae:5a:50:17:a6:dc:
11:5b:f1:aa:b5:ab:d5:7a:1d:06:21:a6:8d:a5:66:a4:57:7f:
7d:17:7e:e6:84:87:5a:a2:31:2b:25:b7:3d:60:70:e5:33:55:
17:b4:f6:21:60:32:da:04:73:6f:15:ff:c2:df:ba:3e:56:ba:
33:35:3e:d3:31:92:1d:94:1e:75:60:f9:81:98:9e:81:4b:15:
74:ca:6b:00:df:ac:a6:b1:15:c4:61:bf:97:8a:63:df:15:af:
75:39:43:c4:5c:a7:cc:7e:e6:48:8e:7b:9b:a8:a5:0d:aa:ce:
69:cd:f4:ed:30:38:6a:13:44:5b:17:ec:6c:d7:68:6e:94:fe:
59:fe:2e:f2:b5:a2:79:6c:50:a6:f3:21:2d:03:25:65:f3:b8:
ea:d6:48:b2:73:1a:bc:a1:76:28:8f:26:9d:dd:91:37:68:c6:
9c:33:c9:16
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC4xLXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZmU5ZjEyYzk2YmEyMDY4M2FmZjVjOTU4YmZhZDhlNGM1NzdmN2ZlMB4XDTIyMDEw
MTEyMDEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTg2Yzg5OGQ1YzNj
OTM2ZDc1YjEyMTdiNTBkNWE0NTdhYWRlMTY0YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKZnwKkhJni+04fuMWh/5lxjTrqJJeR6E0XevpeTdkxMAdjf
47qQg+I4ekAfamrokjeGqNOF816jFWR/Jo71EHjQyzap+zwZwjLS4ltLJAeoAV4N
Wcni9o27j7yfnqpUndPM2wXT4FSkH4qsrRPqqHLgys4Yhsz2o/nK8m749wUGtcZ8
udEK0l3+T8y1YKyAMhpx4BvRMsR44rwarbTM6ka5YLvkCuwKhjuAemnoahaJ515J
eGT1T0IKQ3gP4TGgomH2s/HZzsMRDdHQRuohW3svBgB7sPY/KdRwa5s/Pq/pFF1i
XzTwn1p6f0gpM22z5WmJmhyCS5xl50afqCj2HT0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTobImNXDyTbXWxIXtQ1aRXqt4WSjAfBgNVHSMEGDAWgBS/6fEslrogaDr/
XJWL+tjkxXf3/jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3YtbnhMSmE2SUdnNl8xeVZpX3JZNU1WMzlfNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvNGNlNTU4LTYzZDYtNDY5YS1iYjVkLWY3ODIwYzVlOTY2YS8x
LzZHeUpqVnc4azIxMXNTRjdVTldrVjZyZUZrby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
NGNlNTU4LTYzZDYtNDY5YS1iYjVkLWY3ODIwYzVlOTY2YS8xL3YtbnhMSmE2SUdn
Nl8xeVZpX3JZNU1WMzlfNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnUkDANBgkqhkiG9w0BAQsFAAOC
AQEAZeTvRYCdOq71eTcU3Bw1dDi5+R26G0nwENhymwgOoXxC5+8NCinurBcAuzJ4
Qzh+UCPNca75kedqvGssIOxaCUGNCitySCqL/C+zs+XzCIF0Gg2xrlpQF6bcEVvx
qrWr1XodBiGmjaVmpFd/fRd+5oSHWqIxKyW3PWBw5TNVF7T2IWAy2gRzbxX/wt+6
Pla6MzU+0zGSHZQedWD5gZiegUsVdMprAN+sprEVxGG/l4pj3xWvdTlDxFynzH7m
SI57m6ilDarOac307TA4ahNEWxfsbNdobpT+Wf4u8rWieWxQpvMhLQMlZfO46tZI
snMavKF2KI8mnd2RN2jGnDPJFg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:42 2024 by rpki-client on console-ams.rpki-client.org