Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/709OsI24Il6Cw-uPSu1MWABSC08.roa
File: 709OsI24Il6Cw-uPSu1MWABSC08.roa (raw, json)
Hash identifier: k0upqYfXckD/RWzjkh8gbVKILvW6D3nOsPBD9PkKMUU=
Subject key identifier: EF:4F:4E:B0:8D:B8:22:5E:82:C3:EB:8F:4A:ED:4C:58:00:52:0B:4F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01856ECA2FF0F1D3F166C8BC4F3FE945E4AA
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/709OsI24Il6Cw-uPSu1MWABSC08.roa
Signing time: Sun 01 Jan 2023 19:23:42 +0000
ROA not before: Sun 01 Jan 2023 19:23:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25098
IP address blocks: 185.36.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ca:2f:f0:f1:d3:f1:66:c8:bc:4f:3f:e9:45:e4:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 19:23:42 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef4f4eb08db8225e82c3eb8f4aed4c5800520b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:39:90:bb:58:f6:0c:e6:1e:77:21:6f:7f:17:
59:86:44:39:52:c2:87:ee:fc:50:61:f6:f9:01:81:
4f:09:f2:69:63:88:ba:70:68:ab:e8:80:72:eb:13:
7f:bc:44:f9:d6:e9:58:48:4f:af:38:e1:06:f6:81:
6e:62:9b:e5:80:58:d1:17:d0:be:5a:11:75:46:e0:
71:79:7c:8d:99:4e:2a:5c:e0:de:20:90:ac:ec:01:
e0:e6:f6:3f:ae:1e:db:95:a1:8d:9e:1f:54:25:ed:
12:8b:ab:c8:13:d6:e3:87:fc:d9:20:a8:43:cb:85:
f9:7c:40:ef:b1:7d:18:37:d4:fd:1c:fd:33:6b:70:
5b:e0:3d:4d:bc:ee:ea:4c:9f:87:92:93:d6:b2:77:
4c:68:90:05:ca:f8:7f:0d:d4:a3:cd:e3:07:13:41:
6f:cd:29:5b:c1:58:23:25:ee:fa:e8:b7:c7:89:9a:
54:b3:7f:5c:ac:d3:89:db:2a:d8:65:30:f1:8e:fb:
54:e0:ad:06:87:1a:79:ba:90:99:35:51:43:3d:0c:
fc:a2:21:54:a2:88:e5:7a:df:89:fb:29:72:46:3b:
36:39:1b:ec:f5:8e:df:78:75:28:f3:cd:4a:01:a9:
ab:7b:1d:0f:1b:a9:16:44:42:be:1a:6a:93:16:51:
47:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4F:4E:B0:8D:B8:22:5E:82:C3:EB:8F:4A:ED:4C:58:00:52:0B:4F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/709OsI24Il6Cw-uPSu1MWABSC08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.205.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:07:61:50:fa:b0:83:e0:c0:d2:5c:b1:5f:c0:9f:1b:7a:29:
34:b8:64:29:fb:8d:f7:de:3e:90:8f:cf:78:99:7a:a3:bb:ed:
52:52:a0:12:19:da:5d:c9:f0:ed:6a:f7:08:04:96:8c:a4:f4:
dd:f9:c8:97:ae:f2:a2:f7:dc:16:fc:20:09:bd:23:03:f4:43:
97:b0:bb:57:cf:d6:6f:73:d9:87:bf:75:36:7e:78:2a:a5:37:
0b:1f:f3:d2:23:6c:f0:2f:a3:79:f3:bd:6a:3a:c8:bc:67:df:
4c:2a:15:a1:97:f4:c1:95:4c:df:20:52:df:05:43:2e:a6:be:
69:a9:09:e8:3b:92:e6:d6:6e:2e:50:2f:87:d2:36:89:ac:19:
49:03:ed:36:0a:36:51:3c:aa:33:46:e6:ff:85:3a:fe:3e:13:
48:ef:02:ea:eb:c1:a4:c8:9f:48:44:8f:78:42:15:c7:09:46:
4d:1b:6d:ff:b2:6d:5a:1f:16:97:fd:41:27:62:3b:e0:26:22:
d5:d8:59:3e:1c:ca:58:43:e9:e1:3f:32:7d:cf:75:a3:12:a2:
b4:3a:f4:3b:1d:63:d2:0f:bf:d6:67:af:02:f0:48:a0:c8:c0:
16:5e:9b:b1:aa:2a:ae:33:1c:da:32:5b:6c:5c:e5:27:4d:b1:
32:0c:e1:e8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuyi/w8dPxZsi8Tz/pReSqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMTAxMTkyMzQyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjRmNGViMDhkYjgyMjVlODJjM2ViOGY0YWVkNGM1ODAwNTIwYjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjmQu1j2DOYedyFvfxdZhkQ5UsKH
7vxQYfb5AYFPCfJpY4i6cGir6IBy6xN/vET51ulYSE+vOOEG9oFuYpvlgFjRF9C+
WhF1RuBxeXyNmU4qXODeIJCs7AHg5vY/rh7blaGNnh9UJe0Si6vIE9bjh/zZIKhD
y4X5fEDvsX0YN9T9HP0za3Bb4D1NvO7qTJ+HkpPWsndMaJAFyvh/DdSjzeMHE0Fv
zSlbwVgjJe766LfHiZpUs39crNOJ2yrYZTDxjvtU4K0Ghxp5upCZNVFDPQz8oiFU
oojlet+J+ylyRjs2ORvs9Y7feHUo881KAamrex0PG6kWREK+GmqTFlFHOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO9PTrCNuCJegsPrj0rtTFgAUgtPMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvNzA5T3NJMjRJbDZDdy11UFN1MU1XQUJTQzA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSTNMA0G
CSqGSIb3DQEBCwUAA4IBAQBeB2FQ+rCD4MDSXLFfwJ8beik0uGQp+4333j6Qj894
mXqju+1SUqASGdpdyfDtavcIBJaMpPTd+ciXrvKi99wW/CAJvSMD9EOXsLtXz9Zv
c9mHv3U2fngqpTcLH/PSI2zwL6N5871qOsi8Z99MKhWhl/TBlUzfIFLfBUMupr5p
qQnoO5Lm1m4uUC+H0jaJrBlJA+02CjZRPKozRub/hTr+PhNI7wLq68GkyJ9IRI94
QhXHCUZNG23/sm1aHxaX/UEnYjvgJiLV2Fk+HMpYQ+nhPzJ9z3WjEqK0OvQ7HWPS
D7/WZ68C8EigyMAWXpuxqiquMxzaMltsXOUnTbEyDOHo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org