Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jpAm3z43tMe28w8d8SyXYKxm-cI.roa
File: jpAm3z43tMe28w8d8SyXYKxm-cI.roa (raw, json)
Hash identifier: 0T3qCjMKqMprN2TcI4tFZtoMmBO+WSF8whXBjxbXmE8=
Subject key identifier: 8E:90:26:DF:3E:37:B4:C7:B6:F3:0F:1D:F1:2C:97:60:AC:66:F9:C2
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0320F39F
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jpAm3z43tMe28w8d8SyXYKxm-cI.roa
Signing time: Sat 01 Jan 2022 16:04:18 +0000
ROA not before: Sat 01 Jan 2022 16:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49664
IP address blocks: 185.117.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52491167 (0x320f39f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e9026df3e37b4c7b6f30f1df12c9760ac66f9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:17:7c:2c:d5:5d:a8:0d:81:56:12:1a:1f:ef:
c4:42:cc:b0:a7:43:8c:8f:35:37:cc:46:5e:7e:fe:
e5:bf:d7:1e:6b:d6:4b:14:17:a8:f7:9a:b2:83:4e:
3a:b0:8e:24:81:aa:c2:29:b0:e5:06:fa:bc:51:12:
5f:3c:5a:03:bb:4d:1e:a4:94:21:e7:04:fd:de:60:
45:b1:e1:a0:90:f3:11:b3:52:68:e7:8f:64:89:cb:
01:79:19:6b:93:98:bf:a6:a1:2c:3d:ee:59:0d:bc:
ed:64:36:7f:41:80:b7:ad:87:3a:c5:65:6a:3b:be:
a1:ee:44:c2:57:e5:ce:61:39:3e:bb:a5:a5:55:0a:
39:19:91:4a:59:12:09:14:74:8e:00:b0:c8:4b:e7:
22:d8:cc:3a:12:ae:20:5a:47:0b:35:08:9f:10:0a:
5a:bd:86:ba:55:5d:6b:75:bf:43:d0:e5:57:43:f6:
57:ad:c8:fb:82:d8:60:e1:4d:6d:9b:65:7e:08:54:
e0:e0:12:77:7a:97:a7:3c:34:4f:0c:d6:fe:88:7b:
e3:57:b0:f1:b5:a7:e2:1f:18:9a:82:15:0c:98:75:
f8:8a:a9:43:cf:bf:40:65:54:3d:55:a5:8c:05:40:
49:c5:07:26:7e:fe:ae:2e:3a:72:19:b6:18:db:96:
9a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:90:26:DF:3E:37:B4:C7:B6:F3:0F:1D:F1:2C:97:60:AC:66:F9:C2
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jpAm3z43tMe28w8d8SyXYKxm-cI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.116.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:71:c3:a2:e6:4b:72:f8:c2:27:0e:21:06:6e:53:43:4b:01:
85:ad:9a:4a:3e:59:ad:77:e5:51:d3:69:a3:9f:34:71:02:42:
d2:5b:86:12:6b:90:68:2d:89:3a:7b:91:59:db:27:4b:17:b2:
91:af:96:2a:9d:93:8b:48:0f:42:9a:1c:08:ef:85:22:d8:95:
11:c8:31:60:19:0f:81:3c:ee:b2:3f:ed:cb:69:c0:41:83:51:
d4:33:53:e7:f2:7a:25:cd:30:2f:84:c2:44:15:c0:2a:9a:e6:
f4:c1:5c:f1:b8:9f:60:35:f5:a5:90:e0:39:9e:b3:2c:15:26:
20:8e:18:9f:85:0f:22:f8:a8:5f:2f:9e:ef:05:59:b4:21:16:
62:a7:5f:d1:c3:81:fc:a6:15:2c:5a:75:f1:8b:15:6f:30:23:
16:ff:20:2a:39:af:0c:09:dc:f5:68:a6:6f:f2:dc:3a:ce:bb:
7b:0e:e1:ba:96:3a:50:49:d2:b2:c2:61:b1:87:3d:1b:3a:51:
4c:6a:96:2d:c2:af:83:97:a7:4a:bb:e9:42:b4:9d:2d:d0:7c:
c9:24:e8:68:98:f1:fc:d9:d0:3f:ef:cc:83:68:2f:7e:4a:1c:
63:73:c6:ae:e6:09:ed:46:5b:85:57:9f:20:f3:24:31:6f:66:
4d:14:e7:45
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAyDznzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEw
MTE2MDQxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGU5MDI2ZGYzZTM3
YjRjN2I2ZjMwZjFkZjEyYzk3NjBhYzY2ZjljMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKEXfCzVXagNgVYSGh/vxELMsKdDjI81N8xGXn7+5b/XHmvW
SxQXqPeasoNOOrCOJIGqwimw5Qb6vFESXzxaA7tNHqSUIecE/d5gRbHhoJDzEbNS
aOePZInLAXkZa5OYv6ahLD3uWQ287WQ2f0GAt62HOsVlaju+oe5EwlflzmE5Prul
pVUKORmRSlkSCRR0jgCwyEvnItjMOhKuIFpHCzUInxAKWr2GulVda3W/Q9DlV0P2
V63I+4LYYOFNbZtlfghU4OASd3qXpzw0TwzW/oh741ew8bWn4h8YmoIVDJh1+Iqp
Q8+/QGVUPVWljAVAScUHJn7+ri46chm2GNuWmlkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSOkCbfPje0x7bzDx3xLJdgrGb5wjAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L2pwQW0zejQzdE1lMjh3OGQ4U3lYWUt4bS1jSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALl1dDANBgkqhkiG9w0BAQsFAAOC
AQEApnHDouZLcvjCJw4hBm5TQ0sBha2aSj5ZrXflUdNpo580cQJC0luGEmuQaC2J
OnuRWdsnSxeyka+WKp2Ti0gPQpocCO+FItiVEcgxYBkPgTzusj/ty2nAQYNR1DNT
5/J6Jc0wL4TCRBXAKprm9MFc8bifYDX1pZDgOZ6zLBUmII4Yn4UPIvioXy+e7wVZ
tCEWYqdf0cOB/KYVLFp18YsVbzAjFv8gKjmvDAnc9Wimb/LcOs67ew7hupY6UEnS
ssJhsYc9GzpRTGqWLcKvg5enSrvpQrSdLdB8ySToaJjx/NnQP+/Mg2gvfkocY3PG
ruYJ7UZbhVefIPMkMW9mTRTnRQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org