Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/9XEVF5ACFqyfttMvWj04jRSyhNs.roa
File: 9XEVF5ACFqyfttMvWj04jRSyhNs.roa (raw, json)
Hash identifier: d8dZTQvUAqu+ETMMXTvkUTRyYA0YCQZFBGzDYvcTXik=
Subject key identifier: F5:71:15:17:90:02:16:AC:9F:B6:D3:2F:5A:3D:38:8D:14:B2:84:DB
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0184E1CEFE6160F46A1A96178A1DAC695EF7
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/9XEVF5ACFqyfttMvWj04jRSyhNs.roa
Signing time: Mon 05 Dec 2022 10:22:29 +0000
ROA not before: Mon 05 Dec 2022 10:22:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22649
IP address blocks: 185.141.204.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:ce:fe:61:60:f4:6a:1a:96:17:8a:1d:ac:69:5e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Dec 5 10:22:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5711517900216ac9fb6d32f5a3d388d14b284db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:61:9b:6d:d6:46:35:e1:9f:b1:ef:0e:ac:7e:
de:0e:2d:d1:94:50:76:92:db:f8:19:c6:81:9c:8d:
f7:67:ea:7a:b0:a0:33:8a:25:fe:d2:ac:40:55:72:
55:06:7e:04:67:d3:8d:d4:d8:70:78:9f:62:93:75:
d8:20:fe:bf:61:91:0e:74:57:bc:50:0f:00:cc:e5:
22:75:ce:42:67:31:a3:09:d8:ce:ec:2d:e8:57:c4:
3c:e0:f4:63:6f:eb:06:5e:b9:07:0f:76:b6:a9:4a:
14:74:09:2f:02:7e:82:ff:7b:2c:34:f7:6f:23:73:
ef:db:2e:a7:56:0d:d6:16:03:78:32:08:fd:1b:cd:
28:ac:ab:af:f9:16:a6:56:90:7d:97:ca:ba:40:26:
23:7c:71:0c:64:86:38:a8:f8:c4:ff:02:b3:92:f8:
9f:bc:79:71:34:c5:38:20:27:46:c0:4b:36:c6:cf:
fe:31:6e:d3:be:da:40:62:1e:3f:ee:c8:48:0f:e2:
58:8c:a7:92:d7:77:fe:d3:52:2f:71:55:70:00:8f:
c5:92:6a:20:1a:04:58:78:61:41:73:a0:73:d0:c5:
eb:76:92:f6:d2:b9:40:8a:5f:d0:a5:1e:ec:13:af:
82:b4:cd:58:0d:b9:84:fc:2a:e9:26:ab:74:b1:55:
10:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:71:15:17:90:02:16:AC:9F:B6:D3:2F:5A:3D:38:8D:14:B2:84:DB
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/9XEVF5ACFqyfttMvWj04jRSyhNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.204.0/24
Signature Algorithm: sha256WithRSAEncryption
69:28:71:4e:2c:ef:a0:e7:7f:e8:e4:64:1b:eb:4d:9e:eb:07:
30:0c:f9:4c:c2:17:7f:80:ef:99:22:da:3a:b5:8b:1d:11:fd:
77:2d:d3:79:64:27:62:61:08:3f:47:38:ec:d8:0a:98:f9:1a:
c7:95:2b:1e:0f:3f:57:43:04:57:04:85:32:c8:27:f5:46:a5:
00:10:0e:9b:2d:7b:0d:56:5e:9f:5a:34:0a:11:ca:cd:61:dd:
3f:c0:11:dc:83:bc:70:4c:d8:35:c2:cc:95:b7:5d:f4:84:a7:
cf:13:f4:db:f5:34:ed:ec:3e:b8:72:d5:94:45:4c:3a:a4:95:
05:38:cc:5e:a4:d7:22:62:58:4e:ee:e3:97:15:83:66:2a:00:
4c:ba:ca:c7:95:d1:7a:a3:1b:99:8b:1a:b7:ff:89:e4:a5:f5:
b4:00:b1:6b:5f:2e:c5:82:c4:0a:20:2d:f5:d9:8e:48:8b:cf:
df:f7:16:c7:ae:a8:37:24:dc:98:f0:0d:5e:e3:d4:19:12:6a:
9c:a8:d0:00:d8:8b:ab:44:53:45:c4:a0:8b:ac:7e:05:94:86:
a6:8b:be:4e:56:5a:8e:9f:20:56:5d:15:d0:38:22:c5:f1:5d:
4c:50:a6:a4:8f:c8:a7:11:70:3a:f2:e0:b4:68:1a:d0:9a:08:
bd:e9:16:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYThzv5hYPRqGpYXih2saV73MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjIxMjA1MTAyMjI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTcxMTUxNzkwMDIxNmFjOWZiNmQzMmY1YTNkMzg4ZDE0YjI4NGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWGbbdZGNeGfse8OrH7eDi3RlFB2
ktv4GcaBnI33Z+p6sKAziiX+0qxAVXJVBn4EZ9ON1NhweJ9ik3XYIP6/YZEOdFe8
UA8AzOUidc5CZzGjCdjO7C3oV8Q84PRjb+sGXrkHD3a2qUoUdAkvAn6C/3ssNPdv
I3Pv2y6nVg3WFgN4Mgj9G80orKuv+RamVpB9l8q6QCYjfHEMZIY4qPjE/wKzkvif
vHlxNMU4ICdGwEs2xs/+MW7TvtpAYh4/7shID+JYjKeS13f+01IvcVVwAI/Fkmog
GgRYeGFBc6Bz0MXrdpL20rlAil/QpR7sE6+CtM1YDbmE/CrpJqt0sVUQKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPVxFReQAhasn7bTL1o9OI0UsoTbMB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvOVhFVkY1QUNGcXlmdHRNdldqMDRqUlN5aE5zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuY3MMA0G
CSqGSIb3DQEBCwUAA4IBAQBpKHFOLO+g53/o5GQb602e6wcwDPlMwhd/gO+ZIto6
tYsdEf13LdN5ZCdiYQg/Rzjs2AqY+RrHlSseDz9XQwRXBIUyyCf1RqUAEA6bLXsN
Vl6fWjQKEcrNYd0/wBHcg7xwTNg1wsyVt130hKfPE/Tb9TTt7D64ctWURUw6pJUF
OMxepNciYlhO7uOXFYNmKgBMusrHldF6oxuZixq3/4nkpfW0ALFrXy7FgsQKIC31
2Y5Ii8/f9xbHrqg3JNyY8A1e49QZEmqcqNAA2IurRFNFxKCLrH4FlIami75OVlqO
nyBWXRXQOCLF8V1MUKakj8inEXA68uC0aBrQmgi96Rah
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:32 2024 by rpki-client on console-ams.rpki-client.org