Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xHllU5mDjZF8PgUWg0vNS9YuXcg.roa
File: xHllU5mDjZF8PgUWg0vNS9YuXcg.roa (raw, json)
Hash identifier: yl2udUX5Xua8QrKcKG8Ndfs8CT1kC9e4KfmjMDa4GNk=
Subject key identifier: C4:79:65:53:99:83:8D:91:7C:3E:05:16:83:4B:CD:4B:D6:2E:5D:C8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 066E43DB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xHllU5mDjZF8PgUWg0vNS9YuXcg.roa
Signing time: Fri 07 Jan 2022 10:51:36 +0000
ROA not before: Fri 07 Jan 2022 10:51:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212070
IP address blocks: 185.226.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107889627 (0x66e43db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 7 10:51:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c479655399838d917c3e0516834bcd4bd62e5dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:08:80:45:7a:9d:7e:9c:70:fa:30:b6:0e:0d:
e8:47:a5:e8:c1:47:aa:89:e2:f4:44:20:8f:94:f5:
25:cd:17:33:4d:63:76:c9:0f:1c:a0:c7:75:06:9f:
29:d3:13:ce:b4:f8:60:a0:e7:99:0a:db:55:71:1c:
6a:fc:cf:e0:45:88:7e:31:cd:97:09:35:f8:fd:e5:
19:ad:ab:86:ec:bd:9d:be:bf:dd:91:85:a6:14:d3:
04:37:0b:aa:e5:69:6c:b3:8d:f8:c9:9e:5a:39:91:
05:37:82:1c:f4:f4:fe:91:88:aa:df:dd:5a:af:71:
70:22:05:b6:ab:35:10:5a:7a:64:14:b5:35:88:5d:
fb:07:93:6a:fb:40:a7:fe:68:77:54:a8:c2:18:e3:
94:81:f3:b0:c4:88:7c:24:bb:2a:19:45:43:9c:7c:
6a:c1:de:94:d0:04:af:7d:c7:73:d2:4b:d3:92:be:
e3:c7:f6:eb:8d:54:e2:0b:61:6e:53:bd:57:03:93:
0e:04:76:ad:f0:93:a1:54:c7:d4:ba:bd:a6:a7:81:
c0:77:dc:e4:87:6a:b1:a9:a8:2d:c3:4d:48:55:e8:
44:41:eb:20:28:2f:76:1b:81:89:4c:c6:0d:f2:5e:
5b:c0:5d:3d:0f:f7:25:6f:4b:84:1c:fb:e7:fd:06:
42:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:79:65:53:99:83:8D:91:7C:3E:05:16:83:4B:CD:4B:D6:2E:5D:C8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xHllU5mDjZF8PgUWg0vNS9YuXcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.106.0/24
Signature Algorithm: sha256WithRSAEncryption
84:34:6f:90:f0:db:fc:6a:e3:bd:33:1d:b0:0e:4a:93:48:de:
f0:4c:56:54:ed:f7:93:e8:61:a1:77:ec:4e:c3:f8:09:c4:ec:
4f:24:70:c9:6c:ba:12:80:47:01:07:79:18:56:2e:da:1f:cc:
95:47:47:0c:c5:fe:90:6a:81:43:ca:6a:c4:f2:cb:9d:33:20:
a7:4a:c1:c9:d6:b6:23:1e:1d:a7:63:16:0e:b7:7d:92:d1:f6:
99:c3:24:a8:fb:9a:41:bd:4f:86:0c:33:08:2b:10:50:c9:8f:
1a:4c:99:1b:89:57:14:5a:3e:b1:77:ea:93:a9:78:d6:51:17:
4d:85:76:26:b9:21:e1:1b:d1:39:e8:9a:74:35:2c:85:15:d4:
17:dc:59:b9:69:82:06:97:20:59:17:d1:ef:df:0c:b1:f5:fc:
77:99:fa:7c:b1:91:31:a8:46:b0:f4:dc:0b:a6:e3:a8:81:dd:
14:88:12:03:71:c0:09:12:01:6c:b0:d6:4c:27:bf:37:1a:be:
ce:46:8c:8c:97:ca:63:d8:85:23:3b:b4:a5:39:4c:1f:39:e9:
2b:b9:d0:03:d5:8b:cf:4d:cf:58:3a:f2:42:70:3e:c7:7e:50:
c7:d3:67:22:85:3a:72:cd:2a:8d:74:2a:6c:60:93:75:5d:74:
14:d7:10:15
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBm5D2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDEw
NzEwNTEzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzQ3OTY1NTM5OTgz
OGQ5MTdjM2UwNTE2ODM0YmNkNGJkNjJlNWRjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMkIgEV6nX6ccPowtg4N6Eel6MFHqoni9EQgj5T1Jc0XM01j
dskPHKDHdQafKdMTzrT4YKDnmQrbVXEcavzP4EWIfjHNlwk1+P3lGa2rhuy9nb6/
3ZGFphTTBDcLquVpbLON+MmeWjmRBTeCHPT0/pGIqt/dWq9xcCIFtqs1EFp6ZBS1
NYhd+weTavtAp/5od1SowhjjlIHzsMSIfCS7KhlFQ5x8asHelNAEr33Hc9JL05K+
48f2641U4gthblO9VwOTDgR2rfCToVTH1Lq9pqeBwHfc5IdqsamoLcNNSFXoREHr
ICgvdhuBiUzGDfJeW8BdPQ/3JW9LhBz75/0GQkMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTEeWVTmYONkXw+BRaDS81L1i5dyDAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L3hIbGxVNW1EalpGOFBnVVdnMHZOUzlZdVhjZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALniajANBgkqhkiG9w0BAQsFAAOC
AQEAhDRvkPDb/GrjvTMdsA5Kk0je8ExWVO33k+hhoXfsTsP4CcTsTyRwyWy6EoBH
AQd5GFYu2h/MlUdHDMX+kGqBQ8pqxPLLnTMgp0rByda2Ix4dp2MWDrd9ktH2mcMk
qPuaQb1PhgwzCCsQUMmPGkyZG4lXFFo+sXfqk6l41lEXTYV2Jrkh4RvROeiadDUs
hRXUF9xZuWmCBpcgWRfR798MsfX8d5n6fLGRMahGsPTcC6bjqIHdFIgSA3HACRIB
bLDWTCe/Nxq+zkaMjJfKY9iFIzu0pTlMHznpK7nQA9WLz03PWDryQnA+x35Qx9Nn
IoU6cs0qjXQqbGCTdV10FNcQFQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:30 2024 by rpki-client on console-ams.rpki-client.org