Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/C4BPpiDVpnpVk_KEL-4-TN65QM8.roa
File: C4BPpiDVpnpVk_KEL-4-TN65QM8.roa (raw, json)
Hash identifier: E9amGNqkFQ6kzsy62Nam1C0myH7KktUbdY9Zxc1bMQo=
Subject key identifier: 0B:80:4F:A6:20:D5:A6:7A:55:93:F2:84:2F:EE:3E:4C:DE:B9:40:CF
Certificate issuer: /CN=8e0840804c6680c41f21e8726f380b95e69e9447
Certificate serial: 018330960E09618866A3C5EA851C0A98DAC3
Authority key identifier: 8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/C4BPpiDVpnpVk_KEL-4-TN65QM8.roa
Signing time: Mon 12 Sep 2022 07:24:43 +0000
ROA not before: Mon 12 Sep 2022 07:24:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21430
IP address blocks: 85.209.124.0/23 maxlen: 23
85.209.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:30:96:0e:09:61:88:66:a3:c5:ea:85:1c:0a:98:da:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0840804c6680c41f21e8726f380b95e69e9447
Validity
Not Before: Sep 12 07:24:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b804fa620d5a67a5593f2842fee3e4cdeb940cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c2:ac:c6:a2:26:c9:04:f5:7c:2c:ab:42:3a:
9e:01:17:49:b7:a1:3b:d6:86:fe:7e:37:a2:22:3e:
1f:64:ab:55:1e:94:a5:4b:05:91:2b:7b:f4:a5:4f:
64:10:e9:e9:71:51:95:8e:3d:26:17:c1:66:41:e7:
de:34:c0:66:b1:f5:ef:94:96:b9:b8:48:9f:5c:44:
5d:ba:19:6a:40:bb:b5:b4:a6:f4:58:27:7a:61:cf:
62:49:ea:6a:90:3d:f6:4b:d4:19:99:11:b1:78:51:
a4:fd:8c:d7:1f:25:8c:cf:34:c6:fc:a1:57:82:d4:
87:59:61:79:b8:e2:c9:3a:10:55:9c:ad:db:8c:7d:
ef:39:30:18:7b:76:6e:44:f3:fa:01:68:80:4e:62:
24:17:bd:5e:7f:a8:b1:78:bf:09:06:e4:50:5d:af:
dd:d7:67:56:de:aa:d1:ff:f7:50:94:5d:a0:de:cd:
ba:23:fc:6f:5f:46:90:17:47:a4:cb:8b:61:2a:f9:
83:ea:29:d1:95:29:d4:af:b7:70:96:f5:03:29:09:
d3:b6:9c:9e:4d:db:8b:7d:ff:11:7d:4f:57:a1:90:
04:62:09:19:a5:d3:04:36:21:0f:ec:36:84:cc:23:
3e:18:3a:e2:93:56:50:0e:ab:55:90:68:1c:b5:5f:
43:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:80:4F:A6:20:D5:A6:7A:55:93:F2:84:2F:EE:3E:4C:DE:B9:40:CF
X509v3 Authority Key Identifier:
keyid:8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/C4BPpiDVpnpVk_KEL-4-TN65QM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.124.0-85.209.126.255
Signature Algorithm: sha256WithRSAEncryption
a4:a9:4a:0e:b2:3c:03:c0:d4:b1:9a:ab:3c:66:1d:36:c1:41:
34:64:7c:71:2e:fd:45:70:31:62:20:8c:b7:8b:dd:1f:70:72:
53:9f:ad:1a:f7:80:fa:f8:e4:46:47:c8:0a:22:c4:09:5a:22:
b7:ff:f0:e7:f9:45:14:f2:04:54:6d:33:61:62:f4:6b:3a:84:
9e:9d:d1:be:53:ec:11:d5:ff:d3:a8:8b:51:d5:50:d8:7a:16:
7e:af:6c:c3:df:b8:13:6a:49:e9:13:e3:4a:aa:ff:62:55:d8:
89:30:ea:9a:9e:b6:65:bb:e8:70:47:b5:f0:af:b5:d9:5b:cd:
62:20:19:4e:2c:6b:a9:3b:24:ac:89:b9:67:11:5c:00:41:e1:
dd:fb:4f:ac:11:6f:aa:40:4f:af:78:bd:19:f4:df:c3:82:d1:
43:fc:82:a8:b3:5b:d0:3f:f2:47:3e:39:fc:b2:78:7c:51:b1:
70:e1:7a:f2:8b:e6:d5:10:98:d9:45:53:ae:84:f6:27:99:a1:
8b:c6:6d:f7:38:83:07:a6:c8:97:c4:82:15:97:72:4c:64:21:
82:45:b4:39:1a:60:c4:cd:c3:0f:09:86:49:64:23:3b:81:5b:
81:9f:eb:a1:ad:04:66:4f:dc:b6:1f:61:22:8b:d4:50:10:2e:
d0:5e:ba:37
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYMwlg4JYYhmo8XqhRwKmNrDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMDg0MDgwNGM2NjgwYzQxZjIxZTg3MjZmMzgwYjk1ZTY5
ZTk0NDcwHhcNMjIwOTEyMDcyNDQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjgwNGZhNjIwZDVhNjdhNTU5M2YyODQyZmVlM2U0Y2RlYjk0MGNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcKsxqImyQT1fCyrQjqeARdJt6E7
1ob+fjeiIj4fZKtVHpSlSwWRK3v0pU9kEOnpcVGVjj0mF8FmQefeNMBmsfXvlJa5
uEifXERduhlqQLu1tKb0WCd6Yc9iSepqkD32S9QZmRGxeFGk/YzXHyWMzzTG/KFX
gtSHWWF5uOLJOhBVnK3bjH3vOTAYe3ZuRPP6AWiATmIkF71ef6ixeL8JBuRQXa/d
12dW3qrR//dQlF2g3s26I/xvX0aQF0eky4thKvmD6inRlSnUr7dwlvUDKQnTtpye
TduLff8RfU9XoZAEYgkZpdMENiEP7DaEzCM+GDrik1ZQDqtVkGgctV9DNQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFAuAT6Yg1aZ6VZPyhC/uPkzeuUDPMB8GA1UdIwQY
MBaAFI4IQIBMZoDEHyHocm84C5XmnpRHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYt
YzI3OTk3NTNjODUzLzEvQzRCUHBpRFZwbnBWa19LRUwtNC1UTjY1UU04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYtYzI3OTk3NTNjODUz
LzEvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAJV0XwD
BABV0X4wDQYJKoZIhvcNAQELBQADggEBAKSpSg6yPAPA1LGaqzxmHTbBQTRkfHEu
/UVwMWIgjLeL3R9wclOfrRr3gPr45EZHyAoixAlaIrf/8Of5RRTyBFRtM2Fi9Gs6
hJ6d0b5T7BHV/9Ooi1HVUNh6Fn6vbMPfuBNqSekT40qq/2JV2Ikw6pqetmW76HBH
tfCvtdlbzWIgGU4sa6k7JKyJuWcRXABB4d37T6wRb6pAT694vRn038OC0UP8gqiz
W9A/8kc+OfyyeHxRsXDhevKL5tUQmNlFU66E9ieZoYvGbfc4gwemyJfEghWXckxk
IYJFtDkaYMTNww8JhklkIzuBW4Gf66GtBGZP3LYfYSKL1FAQLtBeujc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:51 2025 by rpki-client