Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/BAc4oFoTTkmcFcJOAbkKr0ea-vw.roa
File: BAc4oFoTTkmcFcJOAbkKr0ea-vw.roa (raw, json)
Hash identifier: YPIbVciKJZ42AXDOw47vN3lUJdSt0mUPGBkGEp821Do=
Subject key identifier: 04:07:38:A0:5A:13:4E:49:9C:15:C2:4E:01:B9:0A:AF:47:9A:FA:FC
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0C197011
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/BAc4oFoTTkmcFcJOAbkKr0ea-vw.roa
Signing time: Tue 17 May 2022 07:30:16 +0000
ROA not before: Tue 17 May 2022 07:30:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 185.240.132.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202993681 (0xc197011)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: May 17 07:30:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=040738a05a134e499c15c24e01b90aaf479afafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fa:45:27:84:42:8b:3c:b3:26:54:a5:3f:ae:
66:de:ff:08:10:2c:ed:d3:d0:72:60:c3:ad:f0:84:
e9:c3:71:53:d8:b7:01:a3:95:9a:89:c1:3f:ac:e0:
bc:39:ac:b0:ce:e4:10:ab:d1:1e:c4:69:88:5e:99:
c8:d7:26:43:cd:b0:03:7d:33:d8:8e:a4:25:43:c2:
b3:ac:3e:2c:b7:d9:2f:bb:95:c5:b3:49:44:e4:a5:
50:7f:5b:f5:5a:94:e1:f7:62:f9:0d:a6:cf:7b:85:
35:a2:b2:76:40:f2:da:31:67:9f:73:41:6d:2f:74:
95:e6:1d:7c:49:71:24:7d:be:44:99:5c:90:9c:0e:
d6:da:cb:15:4f:d8:97:e4:fa:75:fd:ae:4b:ba:4a:
f8:a7:0f:72:2d:c0:74:4b:9f:3f:aa:72:80:23:06:
b0:fd:45:c1:b5:f1:97:30:10:30:7d:fe:cd:6b:f7:
b2:7d:7e:f2:56:e4:f5:99:16:d4:1c:81:aa:ab:77:
f2:98:e1:cb:0f:75:cf:79:80:86:3c:59:9c:bd:8a:
33:13:99:5b:2f:86:a9:60:57:b2:c5:95:3c:10:77:
84:1c:b0:f5:06:ed:6d:bb:3a:5b:e8:ba:06:b1:93:
ab:0f:c0:47:b8:a4:a3:c9:e2:95:1c:88:cf:5c:d2:
a0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:07:38:A0:5A:13:4E:49:9C:15:C2:4E:01:B9:0A:AF:47:9A:FA:FC
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/BAc4oFoTTkmcFcJOAbkKr0ea-vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.132.0/23
Signature Algorithm: sha256WithRSAEncryption
e0:84:44:a0:8a:24:02:f0:b0:f1:2b:9e:2e:26:2b:15:02:03:
32:c4:24:51:a1:12:cd:f3:8a:7e:20:f9:68:e0:d4:3f:45:a4:
49:c0:b8:e5:fe:e1:79:96:ba:39:04:9e:b5:8a:b0:80:66:22:
de:15:6c:51:a5:85:a1:4c:ff:62:b1:e8:e8:a7:c0:0f:01:8e:
6e:05:ba:3f:63:fb:fc:7b:03:92:a9:40:2b:6c:00:02:11:36:
cf:70:6a:e5:69:23:43:b6:92:87:1b:22:f5:28:e3:6f:34:8a:
ba:c2:6e:27:34:7f:79:ea:19:59:01:be:a9:70:08:1f:68:1e:
82:66:52:1f:47:c0:c9:fe:25:2e:3c:90:3b:5e:74:a8:1b:b6:
c5:13:09:61:55:61:12:e5:a4:67:99:e9:f6:02:57:bf:75:7f:
84:61:42:6b:20:00:15:9a:1a:e2:d7:60:1f:15:2c:f3:ca:11:
f5:46:0e:72:34:9b:70:80:50:fe:a8:7b:de:c1:a8:d8:33:80:
19:6c:aa:c5:c2:de:6d:9a:2a:15:8b:43:42:02:47:3a:48:d9:
2b:1a:14:93:84:0e:76:ab:04:51:1f:2b:39:48:b4:fa:8b:d5:
e8:98:a9:ef:ad:8a:33:7b:84:f8:2a:d5:f0:08:0e:5c:30:d8:
41:72:e7:a7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDBlwETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWJmMzAyMDFmMTJhMDQwZDM4NmQyYjRlZWQ0NDg0NjIzZTRkMTFiMB4XDTIyMDUx
NzA3MzAxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDQwNzM4YTA1YTEz
NGU0OTljMTVjMjRlMDFiOTBhYWY0NzlhZmFmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMj6RSeEQos8syZUpT+uZt7/CBAs7dPQcmDDrfCE6cNxU9i3
AaOVmonBP6zgvDmssM7kEKvRHsRpiF6ZyNcmQ82wA30z2I6kJUPCs6w+LLfZL7uV
xbNJROSlUH9b9VqU4fdi+Q2mz3uFNaKydkDy2jFnn3NBbS90leYdfElxJH2+RJlc
kJwO1trLFU/Yl+T6df2uS7pK+KcPci3AdEufP6pygCMGsP1FwbXxlzAQMH3+zWv3
sn1+8lbk9ZkW1ByBqqt38pjhyw91z3mAhjxZnL2KMxOZWy+GqWBXssWVPBB3hByw
9Qbtbbs6W+i6BrGTqw/AR7iko8nilRyIz1zSoFcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQEBzigWhNOSZwVwk4BuQqvR5r6/DAfBgNVHSMEGDAWgBT+vzAgHxKgQNOG
0rTu1EhGI+TRGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yOHdJQjhTb0VEVGh0SzA3dFJJUmlQazBScy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8x
L0JBYzRvRm9UVGttY0ZjSk9BYmtLcjBlYS12dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
ZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8xL19yOHdJQjhTb0VE
VGh0SzA3dFJJUmlQazBScy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnwhDANBgkqhkiG9w0BAQsFAAOC
AQEA4IREoIokAvCw8SueLiYrFQIDMsQkUaESzfOKfiD5aODUP0WkScC45f7heZa6
OQSetYqwgGYi3hVsUaWFoUz/YrHo6KfADwGObgW6P2P7/HsDkqlAK2wAAhE2z3Bq
5WkjQ7aShxsi9SjjbzSKusJuJzR/eeoZWQG+qXAIH2gegmZSH0fAyf4lLjyQO150
qBu2xRMJYVVhEuWkZ5np9gJXv3V/hGFCayAAFZoa4tdgHxUs88oR9UYOcjSbcIBQ
/qh73sGo2DOAGWyqxcLebZoqFYtDQgJHOkjZKxoUk4QOdqsEUR8rOUi0+ovV6Jip
762KM3uE+CrV8AgOXDDYQXLnpw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org