Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/b9-toZczPXS22Lnb6NC2h_kSv4E.roa
File: b9-toZczPXS22Lnb6NC2h_kSv4E.roa (raw, json)
Hash identifier: hVtcqcpyNxq1udBk2g8K600YJWTXti4oKgrNVUyFIsg=
Subject key identifier: 6F:DF:AD:A1:97:33:3D:74:B6:D8:B9:DB:E8:D0:B6:87:F9:12:BF:81
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A8663F8
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/b9-toZczPXS22Lnb6NC2h_kSv4E.roa
Signing time: Sat 01 Jan 2022 16:07:15 +0000
ROA not before: Sat 01 Jan 2022 16:07:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64464
IP address blocks: 185.72.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176579576 (0xa8663f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fdfada197333d74b6d8b9dbe8d0b687f912bf81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:45:fc:64:33:93:86:33:a5:47:cc:c6:22:
b6:cf:8d:c5:8d:52:56:3a:ab:cd:1b:47:9f:0a:d6:
8d:0b:9b:31:eb:fc:17:85:c0:44:33:cb:30:d0:b5:
28:31:f0:15:93:d9:32:72:3d:67:55:ff:79:e3:77:
66:9a:f2:f9:81:cc:bc:3f:aa:c9:0b:df:2b:ba:07:
40:c3:33:6f:68:95:d7:f6:e2:da:08:94:f9:8b:2b:
d5:77:90:39:4a:2e:6e:d5:cc:62:64:ed:11:f9:10:
2f:21:f9:ee:83:89:05:34:6c:22:07:cb:ba:6c:05:
37:15:d7:c6:a1:6a:69:5c:0a:b1:36:4a:91:f8:7b:
ce:52:42:0d:d8:b0:48:b6:aa:54:cb:25:58:79:0c:
b1:68:be:c8:fc:dc:a0:8e:06:ad:98:db:b7:28:7a:
e5:b8:93:ff:bc:2d:ea:65:14:e1:89:d1:e4:ed:f0:
cb:a7:a5:a0:76:44:90:d4:21:91:03:fa:b7:7d:48:
45:d0:25:a9:76:78:5a:a9:d8:9f:ef:60:a4:50:46:
c3:af:eb:57:b0:59:52:8e:1e:71:8b:2c:af:bc:f5:
6e:b4:ab:3d:ec:c3:fa:1e:40:96:4d:32:a6:cd:87:
c2:a7:80:99:07:c9:77:8e:1d:61:72:81:db:b9:ce:
e0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DF:AD:A1:97:33:3D:74:B6:D8:B9:DB:E8:D0:B6:87:F9:12:BF:81
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/b9-toZczPXS22Lnb6NC2h_kSv4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.59.0/24
Signature Algorithm: sha256WithRSAEncryption
72:82:53:39:8d:50:94:e7:47:da:d2:19:75:f1:67:9a:e2:1b:
ce:a8:df:81:ed:0f:9a:8b:55:63:c9:97:5b:64:58:fa:51:dc:
5b:8a:ae:e6:5f:ad:75:ff:0b:ed:8a:8a:6f:90:b1:78:6f:ff:
4f:32:f3:96:36:55:00:1e:c1:d3:67:4e:bb:51:19:e5:2a:53:
c4:0c:05:78:6b:76:05:ae:7f:a3:65:80:62:e5:e7:23:65:f0:
a0:bf:1f:f0:60:c2:7b:85:97:45:e4:7a:e5:90:76:89:3e:43:
0e:c6:7b:6e:59:f5:4a:99:d9:33:e1:a8:ef:2f:d9:85:3b:eb:
16:11:71:fc:d5:d2:ca:55:61:21:0e:3b:80:2c:9d:02:f0:2d:
81:fc:9c:1c:ff:5a:eb:aa:65:d8:6c:a9:55:2c:d9:bd:f9:c3:
b1:77:14:d0:12:62:88:cd:f9:e7:2f:01:04:aa:9b:dd:7d:f0:
19:97:dd:63:bc:e2:43:fb:8e:65:73:c3:48:19:ce:5b:14:69:
f0:2e:bf:d6:69:a3:53:11:f8:9c:ee:01:d5:02:1a:25:e0:73:
5d:50:37:3f:ad:0a:6f:e9:78:5c:53:d9:a5:8b:cc:9a:73:1f:
04:8a:12:d1:ea:9f:4e:ff:5c:c5:1b:c4:41:3c:4b:32:b6:0e:
b7:54:cc:d8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECoZj+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWJmMzAyMDFmMTJhMDQwZDM4NmQyYjRlZWQ0NDg0NjIzZTRkMTFiMB4XDTIyMDEw
MTE2MDcxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmZkZmFkYTE5NzMz
M2Q3NGI2ZDhiOWRiZThkMGI2ODdmOTEyYmY4MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL4yRfxkM5OGM6VHzMYits+NxY1SVjqrzRtHnwrWjQubMev8
F4XARDPLMNC1KDHwFZPZMnI9Z1X/eeN3Zpry+YHMvD+qyQvfK7oHQMMzb2iV1/bi
2giU+Ysr1XeQOUoubtXMYmTtEfkQLyH57oOJBTRsIgfLumwFNxXXxqFqaVwKsTZK
kfh7zlJCDdiwSLaqVMslWHkMsWi+yPzcoI4GrZjbtyh65biT/7wt6mUU4YnR5O3w
y6eloHZEkNQhkQP6t31IRdAlqXZ4WqnYn+9gpFBGw6/rV7BZUo4ecYssr7z1brSr
PezD+h5Alk0yps2HwqeAmQfJd44dYXKB27nO4CECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRv362hlzM9dLbYudvo0LaH+RK/gTAfBgNVHSMEGDAWgBT+vzAgHxKgQNOG
0rTu1EhGI+TRGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yOHdJQjhTb0VEVGh0SzA3dFJJUmlQazBScy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8x
L2I5LXRvWmN6UFhTMjJMbmI2TkMyaF9rU3Y0RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
ZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8xL19yOHdJQjhTb0VE
VGh0SzA3dFJJUmlQazBScy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlIOzANBgkqhkiG9w0BAQsFAAOC
AQEAcoJTOY1QlOdH2tIZdfFnmuIbzqjfge0PmotVY8mXW2RY+lHcW4qu5l+tdf8L
7YqKb5CxeG//TzLzljZVAB7B02dOu1EZ5SpTxAwFeGt2Ba5/o2WAYuXnI2XwoL8f
8GDCe4WXReR65ZB2iT5DDsZ7bln1SpnZM+Go7y/ZhTvrFhFx/NXSylVhIQ47gCyd
AvAtgfycHP9a66pl2GypVSzZvfnDsXcU0BJiiM355y8BBKqb3X3wGZfdY7ziQ/uO
ZXPDSBnOWxRp8C6/1mmjUxH4nO4B1QIaJeBzXVA3P60Kb+l4XFPZpYvMmnMfBIoS
0eqfTv9cxRvEQTxLMrYOt1TM2A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org