Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/l9lCmH8VVi7Hzh3rPAwI2UO6gqM.roa
File: l9lCmH8VVi7Hzh3rPAwI2UO6gqM.roa (raw, json)
Hash identifier: FX+7otKAp8fQ1SW2betbVC/uC8Ut9np+92VFrcdXW6w=
Subject key identifier: 97:D9:42:98:7F:15:56:2E:C7:CE:1D:EB:3C:0C:08:D9:43:BA:82:A3
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 178F6790
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/l9lCmH8VVi7Hzh3rPAwI2UO6gqM.roa
Signing time: Sat 01 Jan 2022 04:53:51 +0000
ROA not before: Sat 01 Jan 2022 04:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4785
IP address blocks: 85.209.252.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395274128 (0x178f6790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97d942987f15562ec7ce1deb3c0c08d943ba82a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:78:1f:85:1b:29:ab:b1:d1:c7:8d:79:3e:c4:
a1:1f:a3:49:5b:ac:c5:ca:7b:d5:55:1f:48:1f:28:
4f:46:0f:d1:7f:f4:d3:b4:29:d6:84:b8:61:d4:ec:
75:2d:3a:1f:65:fb:e8:1a:75:1f:03:43:66:89:68:
fe:78:38:37:1e:27:be:ae:33:9a:bb:ae:b0:ee:c2:
53:ab:6c:a7:00:81:6e:50:18:27:24:c8:7f:3b:75:
9e:5c:a9:90:ee:23:c8:2e:9c:f6:2b:5b:b2:2e:7a:
3f:a0:8f:d2:41:fd:39:ce:25:c1:a1:34:34:29:23:
ec:d6:c0:e7:7a:c6:fd:a4:87:92:80:65:ef:85:f0:
ff:0b:e6:a6:37:11:29:d3:0b:ba:d7:a3:2a:58:ee:
75:a0:40:d2:8e:96:30:b5:10:46:f4:cc:66:7e:ff:
a0:5b:5e:32:3a:9c:59:39:36:37:37:02:5b:fc:41:
84:b8:5b:dd:ec:c6:9a:c8:6d:4b:6e:d8:8f:0a:9a:
8f:3e:2a:43:6f:25:15:55:89:52:ee:07:20:ff:8f:
be:bf:82:c9:d7:f0:23:4d:80:d3:e7:73:db:19:33:
12:a8:75:52:10:c3:74:f8:ba:b9:87:61:55:69:7b:
74:78:05:d5:c5:f0:96:c5:c1:68:c0:cc:0c:bc:ab:
d7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D9:42:98:7F:15:56:2E:C7:CE:1D:EB:3C:0C:08:D9:43:BA:82:A3
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/l9lCmH8VVi7Hzh3rPAwI2UO6gqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.252.0/24
Signature Algorithm: sha256WithRSAEncryption
04:6c:e4:5e:2c:c0:44:74:eb:b5:ee:79:27:f5:6e:58:c1:ba:
b0:bc:01:37:31:8a:43:6b:12:42:ce:df:21:ec:bc:fa:c1:90:
5f:31:5b:4f:60:4f:51:9c:c3:ec:f7:e1:ac:b8:48:0c:27:5f:
75:c6:17:03:8f:f8:a8:9d:dc:14:34:e6:78:3c:70:8f:b2:51:
ab:2c:37:3c:30:78:d1:90:98:3c:15:a1:a8:ce:3b:b3:1c:24:
6a:df:f5:81:40:52:06:9b:4f:25:f5:cf:bd:c7:9e:d5:30:9c:
da:92:8e:19:b1:40:30:f4:75:dc:f8:57:f4:1b:e1:47:13:bb:
d9:6c:52:1e:7e:00:18:84:59:84:bb:2c:74:99:40:d9:90:dd:
99:0e:24:a9:da:dd:9a:5e:2e:e7:b0:93:ed:53:d8:af:6e:3a:
0f:67:64:be:bf:eb:70:0a:23:60:52:f1:5c:33:92:60:39:d8:
c0:b4:ff:05:1c:26:f0:fc:ed:78:20:64:0d:a2:6a:c6:23:03:
84:ab:55:b0:dc:a4:4f:c8:fe:d8:6b:ff:30:fe:f4:91:e2:7f:
d6:47:6e:40:86:39:bc:7d:ec:c8:22:84:a7:cd:0c:0e:72:91:
9a:7d:59:08:31:2c:56:38:7e:a2:af:03:b8:93:d6:cd:04:ad:
fa:f4:e5:19
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF49nkDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTM1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTdkOTQyOTg3ZjE1
NTYyZWM3Y2UxZGViM2MwYzA4ZDk0M2JhODJhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALN4H4UbKaux0ceNeT7EoR+jSVusxcp71VUfSB8oT0YP0X/0
07Qp1oS4YdTsdS06H2X76Bp1HwNDZolo/ng4Nx4nvq4zmruusO7CU6tspwCBblAY
JyTIfzt1nlypkO4jyC6c9itbsi56P6CP0kH9Oc4lwaE0NCkj7NbA53rG/aSHkoBl
74Xw/wvmpjcRKdMLutejKljudaBA0o6WMLUQRvTMZn7/oFteMjqcWTk2NzcCW/xB
hLhb3ezGmshtS27Yjwqajz4qQ28lFVWJUu4HIP+Pvr+CydfwI02A0+dz2xkzEqh1
UhDDdPi6uYdhVWl7dHgF1cXwlsXBaMDMDLyr1+0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSX2UKYfxVWLsfOHes8DAjZQ7qCozAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L2w5bENtSDhWVmk3SHpoM3JQQXdJMlVPNmdxTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXR/DANBgkqhkiG9w0BAQsFAAOC
AQEABGzkXizARHTrte55J/VuWMG6sLwBNzGKQ2sSQs7fIey8+sGQXzFbT2BPUZzD
7PfhrLhIDCdfdcYXA4/4qJ3cFDTmeDxwj7JRqyw3PDB40ZCYPBWhqM47sxwkat/1
gUBSBptPJfXPvcee1TCc2pKOGbFAMPR13PhX9BvhRxO72WxSHn4AGIRZhLssdJlA
2ZDdmQ4kqdrdml4u57CT7VPYr246D2dkvr/rcAojYFLxXDOSYDnYwLT/BRwm8Pzt
eCBkDaJqxiMDhKtVsNykT8j+2Gv/MP70keJ/1kduQIY5vH3syCKEp80MDnKRmn1Z
CDEsVjh+oq8DuJPWzQSt+vTlGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org