Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/h9K6y2rB3a3qDb8mfCpijp3klns.roa
File: h9K6y2rB3a3qDb8mfCpijp3klns.roa (raw, json)
Hash identifier: 4lfDNBGIFDxXOFMTjOkvNk4v/+xtOiyoH/CIQOA4G/I=
Subject key identifier: 87:D2:BA:CB:6A:C1:DD:AD:EA:0D:BF:26:7C:2A:62:8E:9D:E4:96:7B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07F46D5B
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/h9K6y2rB3a3qDb8mfCpijp3klns.roa
Signing time: Fri 13 May 2022 12:56:41 +0000
ROA not before: Fri 13 May 2022 12:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 185.194.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133459291 (0x7f46d5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 13 12:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87d2bacb6ac1ddadea0dbf267c2a628e9de4967b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6f:b0:2b:c6:26:7d:80:70:2b:8a:28:db:be:
ef:b8:99:51:25:50:da:25:60:f6:73:22:0c:e1:a6:
40:72:9c:9b:f7:40:9d:8a:94:94:4e:2b:8d:1c:c2:
df:1b:c3:54:dd:28:b2:ca:b6:ad:4f:f4:3f:cc:46:
fc:2f:e7:e9:1c:02:a0:fe:03:7d:39:6a:f3:66:75:
41:d5:7a:24:1f:8a:4a:dc:9b:c8:db:15:bc:a0:13:
f9:4d:6d:58:ea:55:f5:e0:43:d5:9c:61:eb:24:21:
ad:82:b0:ac:87:aa:11:c8:57:c9:c2:95:6f:ad:2e:
60:df:a0:bd:89:0b:53:33:f9:65:3b:fb:33:07:59:
25:19:69:6f:2a:50:e6:07:2c:8e:66:db:c7:a5:d6:
ba:19:e1:90:86:4e:28:00:d7:f0:80:cb:c9:b3:20:
da:d0:cf:85:58:e1:bf:aa:b0:95:3f:63:9c:42:23:
5d:24:19:0d:03:93:ba:55:bc:10:4c:58:2a:d6:c6:
99:95:c2:39:8a:54:d8:71:53:c3:c3:38:ba:16:72:
c6:77:29:66:81:9c:a8:cf:03:f0:60:41:40:af:e3:
2e:19:aa:7f:16:0a:6a:f4:81:a1:a8:69:a3:85:a3:
b7:df:27:e9:d0:6b:8e:fa:f3:7a:fc:4e:76:37:45:
5f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D2:BA:CB:6A:C1:DD:AD:EA:0D:BF:26:7C:2A:62:8E:9D:E4:96:7B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/h9K6y2rB3a3qDb8mfCpijp3klns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.31.0/24
Signature Algorithm: sha256WithRSAEncryption
02:ed:27:33:f5:01:d5:8b:c8:9f:40:65:41:93:59:b9:9c:35:
8a:8c:92:08:3d:84:e0:db:20:9c:51:ee:01:12:a9:9d:f2:31:
30:b8:0e:84:83:dc:9f:94:aa:49:80:3b:a0:f3:a3:dc:49:6e:
02:db:47:06:7f:9d:d2:63:63:e9:9c:de:ff:a1:f7:e3:dc:56:
b9:e6:fe:d0:59:e8:64:b0:ad:1b:45:be:20:8b:e5:49:45:88:
54:df:e2:6f:9d:2f:c5:8f:74:69:49:8f:6c:53:e8:46:2d:7f:
b2:ac:92:00:0c:1d:37:a6:55:04:7a:a3:88:3d:cb:64:d5:72:
17:e0:fe:5d:ee:42:1e:e6:a1:d9:e7:3d:0c:06:b8:0e:b2:65:
46:1b:6e:b6:6b:60:b5:04:a0:12:79:1f:92:55:ce:06:51:7c:
0a:3a:b1:cb:0f:51:76:88:94:19:4d:80:5a:27:71:eb:d6:ab:
bc:20:4d:f4:b7:85:7d:0f:8d:35:60:a7:a4:e3:79:e8:01:4b:
b0:52:db:a4:92:37:c0:fd:54:93:4f:c3:4b:8d:2a:64:dc:e1:
ad:33:0a:d6:4a:c1:10:12:d9:6e:d6:5f:b8:6a:5a:3b:bd:3c:
7d:d9:ee:55:ec:ea:99:d7:b5:d4:d5:1f:a4:05:03:94:69:08:
ff:46:38:0e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/RtWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDUx
MzEyNTY0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdkMmJhY2I2YWMx
ZGRhZGVhMGRiZjI2N2MyYTYyOGU5ZGU0OTY3YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMlvsCvGJn2AcCuKKNu+77iZUSVQ2iVg9nMiDOGmQHKcm/dA
nYqUlE4rjRzC3xvDVN0ossq2rU/0P8xG/C/n6RwCoP4DfTlq82Z1QdV6JB+KStyb
yNsVvKAT+U1tWOpV9eBD1Zxh6yQhrYKwrIeqEchXycKVb60uYN+gvYkLUzP5ZTv7
MwdZJRlpbypQ5gcsjmbbx6XWuhnhkIZOKADX8IDLybMg2tDPhVjhv6qwlT9jnEIj
XSQZDQOTulW8EExYKtbGmZXCOYpU2HFTw8M4uhZyxncpZoGcqM8D8GBBQK/jLhmq
fxYKavSBoahpo4Wjt98n6dBrjvrzevxOdjdFX20CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSH0rrLasHdreoNvyZ8KmKOneSWezAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L2g5SzZ5MnJCM2EzcURiOG1mQ3BpanAza2xucy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnCHzANBgkqhkiG9w0BAQsFAAOC
AQEAAu0nM/UB1YvIn0BlQZNZuZw1ioySCD2E4NsgnFHuARKpnfIxMLgOhIPcn5Sq
SYA7oPOj3EluAttHBn+d0mNj6Zze/6H349xWueb+0FnoZLCtG0W+IIvlSUWIVN/i
b50vxY90aUmPbFPoRi1/sqySAAwdN6ZVBHqjiD3LZNVyF+D+Xe5CHuah2ec9DAa4
DrJlRhtutmtgtQSgEnkfklXOBlF8Cjqxyw9RdoiUGU2AWidx69arvCBN9LeFfQ+N
NWCnpON56AFLsFLbpJI3wP1Uk0/DS40qZNzhrTMK1krBEBLZbtZfuGpaO708fdnu
Vezqmde11NUfpAUDlGkI/0Y4Dg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org