Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FznM4DTQ02tHIJkuuIBJBNM9R7I.roa
File: FznM4DTQ02tHIJkuuIBJBNM9R7I.roa (raw, json)
Hash identifier: CqjeFwMQaFuVdFX8CJ2zFaBYmx8QrEifSsdbnRb3Vc4=
Subject key identifier: 17:39:CC:E0:34:D0:D3:6B:47:20:99:2E:B8:80:49:04:D3:3D:47:B2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 087910F5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FznM4DTQ02tHIJkuuIBJBNM9R7I.roa
Signing time: Wed 29 Jun 2022 16:04:02 +0000
ROA not before: Wed 29 Jun 2022 16:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.206.250.0/24 maxlen: 24
185.194.29.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142151925 (0x87910f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 29 16:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1739cce034d0d36b4720992eb8804904d33d47b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:98:70:fe:1a:a3:d6:6a:01:6e:49:cc:30:39:
1d:df:96:54:b3:5a:7c:84:d3:72:85:02:be:f5:be:
b9:14:57:e5:05:a2:fa:61:29:97:3f:f6:d7:60:7a:
f4:ce:79:bf:32:fa:93:9e:84:3f:5d:7c:c2:a6:b2:
53:a5:09:d9:0e:17:ac:e4:9d:8f:39:b3:97:6d:60:
6f:b3:6c:a2:24:a8:9f:82:04:16:d2:de:e1:f5:75:
43:34:98:44:60:96:a5:55:ab:4b:cb:9f:d0:90:1c:
de:9d:99:2c:be:74:46:ca:f0:6c:c8:c4:38:71:c5:
e9:f5:43:0f:21:45:ae:a4:4f:6e:c0:e7:a7:29:71:
70:49:2e:18:30:38:8b:df:2c:8b:f2:63:5b:0c:89:
8a:1a:d4:ba:ec:5f:39:52:57:af:3c:94:ed:85:df:
c0:66:4a:9e:fc:fa:0d:78:3a:87:d2:09:e6:fc:28:
e6:d3:59:17:c7:b8:88:d2:3e:d6:8d:b3:bf:b7:c4:
9a:59:24:8b:97:11:4e:8b:ca:11:76:20:0f:91:2f:
a0:ba:ff:fb:44:51:2a:db:b2:be:a6:c6:c9:44:3a:
6d:fb:03:2e:62:17:bf:00:09:34:51:3c:65:35:73:
82:9c:c0:e1:ae:c2:7a:65:25:26:80:c6:16:b6:c1:
aa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:39:CC:E0:34:D0:D3:6B:47:20:99:2E:B8:80:49:04:D3:3D:47:B2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FznM4DTQ02tHIJkuuIBJBNM9R7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.29.0/24
185.206.250.0/24
185.223.155.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:fe:0c:5c:17:5d:de:08:84:d0:f8:9f:00:3e:3e:ef:46:ef:
4a:21:4b:0f:74:ae:67:ca:9a:f8:dd:da:c0:6a:39:5f:15:d8:
b6:ce:58:87:0f:aa:61:38:b6:c6:8e:db:8f:65:5d:8e:ef:bc:
83:10:4f:86:91:23:d8:ee:9e:76:9e:22:c5:a0:73:80:d3:b0:
a1:ca:9e:e8:ce:dd:35:cc:19:07:67:18:4d:0a:c4:91:03:98:
fe:a4:c6:0e:3e:25:51:52:3b:48:bf:54:3d:9e:37:27:f6:a5:
3c:e4:e2:b2:b4:fa:4e:24:dd:17:6d:b1:8a:21:3e:29:cd:60:
ed:50:e8:24:bd:be:ae:08:65:e8:38:44:bb:e7:7f:86:33:8f:
74:f9:53:a8:c6:ab:a2:82:16:33:31:6b:62:e1:64:09:29:77:
29:c7:69:ab:84:99:e0:cf:cb:48:4b:9b:f3:64:af:66:8e:dc:
78:47:75:f3:8b:ee:95:08:f5:44:81:cf:96:24:de:7d:3a:1f:
31:c1:47:ed:c6:d2:0e:74:3e:a6:62:ff:f1:f7:41:3a:15:a2:
bf:03:a9:04:e0:1f:f0:5f:2a:c1:b3:e4:74:6c:67:94:25:14:
c4:38:02:5f:49:f4:d1:5b:49:ff:9e:fc:b8:e2:01:38:03:7e:
61:bd:5f:89
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIECHkQ9TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDYy
OTE2MDQwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTczOWNjZTAzNGQw
ZDM2YjQ3MjA5OTJlYjg4MDQ5MDRkMzNkNDdiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALmYcP4ao9ZqAW5JzDA5Hd+WVLNafITTcoUCvvW+uRRX5QWi
+mEplz/212B69M55vzL6k56EP118wqayU6UJ2Q4XrOSdjzmzl21gb7NsoiSon4IE
FtLe4fV1QzSYRGCWpVWrS8uf0JAc3p2ZLL50RsrwbMjEOHHF6fVDDyFFrqRPbsDn
pylxcEkuGDA4i98si/JjWwyJihrUuuxfOVJXrzyU7YXfwGZKnvz6DXg6h9IJ5vwo
5tNZF8e4iNI+1o2zv7fEmlkki5cRTovKEXYgD5EvoLr/+0RRKtuyvqbGyUQ6bfsD
LmIXvwAJNFE8ZTVzgpzA4a7CemUlJoDGFrbBqvcCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQXOczgNNDTa0cgmS64gEkE0z1HsjAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L0Z6bk00RFRRMDJ0SElKa3V1SUJKQk5NOVI3SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEALnCHQMEALnO+gMEALnfmzANBgkq
hkiG9w0BAQsFAAOCAQEAnv4MXBdd3giE0PifAD4+70bvSiFLD3SuZ8qa+N3awGo5
XxXYts5Yhw+qYTi2xo7bj2Vdju+8gxBPhpEj2O6edp4ixaBzgNOwocqe6M7dNcwZ
B2cYTQrEkQOY/qTGDj4lUVI7SL9UPZ43J/alPOTisrT6TiTdF22xiiE+Kc1g7VDo
JL2+rghl6DhEu+d/hjOPdPlTqMarooIWMzFrYuFkCSl3Kcdpq4SZ4M/LSEub82Sv
Zo7ceEd184vulQj1RIHPliTefTofMcFH7cbSDnQ+pmL/8fdBOhWivwOpBOAf8F8q
wbPkdGxnlCUUxDgCX0n00VtJ/578uOIBOAN+Yb1fiQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org