Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/pr9ORdjmm9WFKYPFXyXoWfPov4Q.roa
File: pr9ORdjmm9WFKYPFXyXoWfPov4Q.roa (raw, json)
Hash identifier: 6z8InkwzMkiTs06gjALZs+cfdupwRSJEQYkWiuv92D8=
Subject key identifier: A6:BF:4E:45:D8:E6:9B:D5:85:29:83:C5:5F:25:E8:59:F3:E8:BF:84
Certificate issuer: /CN=26bddae04dbcb1f82f55b078307ba4b084b994bb
Certificate serial: 0F9299DD
Authority key identifier: 26:BD:DA:E0:4D:BC:B1:F8:2F:55:B0:78:30:7B:A4:B0:84:B9:94:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jr3a4E28sfgvVbB4MHuksIS5lLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/pr9ORdjmm9WFKYPFXyXoWfPov4Q.roa
Signing time: Sat 01 Jan 2022 10:03:29 +0000
ROA not before: Sat 01 Jan 2022 10:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208554
IP address blocks: 185.137.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261265885 (0xf9299dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26bddae04dbcb1f82f55b078307ba4b084b994bb
Validity
Not Before: Jan 1 10:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6bf4e45d8e69bd5852983c55f25e859f3e8bf84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:31:e7:2a:91:9a:2d:18:e4:cc:82:e4:21:
3a:d6:1c:64:49:10:95:37:9b:89:c2:35:59:60:71:
9e:40:47:30:3a:3b:57:a0:6d:d3:9e:54:cc:ee:0c:
86:3d:0a:af:41:f9:fe:2f:b9:59:09:c3:5a:01:13:
6d:6a:d8:1f:51:e8:9b:5e:d5:5b:c7:46:6b:12:a7:
59:c2:b8:c0:26:b2:70:2d:db:5e:39:52:ee:31:14:
a3:d4:33:4b:0e:5a:17:8f:73:63:23:0f:7f:2b:17:
68:52:b6:b0:1e:3e:ab:6c:33:5e:6a:e5:b6:0f:7f:
ea:5d:1f:ef:25:01:14:c0:ee:a3:e4:b5:00:b3:82:
fe:78:cb:4d:19:ce:cb:35:d5:dd:af:53:2b:7e:c8:
1e:63:6a:37:dc:55:81:48:9a:44:8a:3d:3c:4d:75:
22:49:f5:e7:bd:c0:6b:d8:21:4d:78:79:d8:42:49:
a5:5b:75:8b:9d:09:83:d6:28:37:4e:8b:34:ec:59:
db:a4:06:a2:5e:eb:b5:9f:4a:df:df:d5:c4:84:54:
cb:b5:f9:50:92:99:5c:ca:b4:5b:c0:da:b5:2a:76:
e4:54:15:6d:50:15:b9:2f:1b:e8:38:56:5d:51:9d:
87:16:8c:a7:79:5e:92:65:cb:70:f8:51:29:5d:9b:
0c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BF:4E:45:D8:E6:9B:D5:85:29:83:C5:5F:25:E8:59:F3:E8:BF:84
X509v3 Authority Key Identifier:
keyid:26:BD:DA:E0:4D:BC:B1:F8:2F:55:B0:78:30:7B:A4:B0:84:B9:94:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jr3a4E28sfgvVbB4MHuksIS5lLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/pr9ORdjmm9WFKYPFXyXoWfPov4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/Jr3a4E28sfgvVbB4MHuksIS5lLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.111.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:72:7d:c1:c2:6c:6c:ba:bc:25:c3:4f:b7:21:60:75:65:b5:
a4:08:2a:fd:c5:05:9f:f0:dc:ff:99:4c:46:ce:07:c5:cd:cd:
78:70:35:1d:98:dc:cf:2a:3d:27:1c:84:2d:e4:3c:e1:82:87:
da:8a:18:24:16:a7:57:77:fd:1f:71:94:8a:7e:c9:2d:4a:69:
57:66:e1:95:2c:9c:12:a5:44:00:3e:c4:ca:77:67:bc:93:c7:
99:20:7e:84:df:30:97:68:eb:21:42:98:e2:43:23:23:fd:90:
f8:82:29:ae:6a:36:f8:79:98:f2:f6:62:50:54:df:27:78:8a:
2f:8d:56:a7:24:a3:fc:d3:00:d3:78:d5:fb:2c:9b:d0:68:07:
3b:b0:59:b4:6b:a1:21:be:de:15:ef:cb:42:17:b3:a1:a3:ed:
19:6d:8e:88:d7:06:d2:b0:b5:8c:5e:3d:98:6c:ee:88:47:e7:
10:36:bf:81:b9:37:32:f9:e3:4c:5a:b1:ef:42:83:4f:68:a2:
cd:d8:d1:3a:05:eb:50:33:1e:4f:8f:a4:66:64:b5:0c:55:4a:
85:d3:59:bb:86:a8:be:b0:00:99:b8:ee:e1:2a:f2:b9:26:31:
b6:90:1e:d2:98:5d:56:e1:54:7f:75:4b:7b:1e:82:88:17:45:
12:db:bb:46
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED5KZ3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NmJkZGFlMDRkYmNiMWY4MmY1NWIwNzgzMDdiYTRiMDg0Yjk5NGJiMB4XDTIyMDEw
MTEwMDMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTZiZjRlNDVkOGU2
OWJkNTg1Mjk4M2M1NWYyNWU4NTlmM2U4YmY4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKAhMecqkZotGOTMguQhOtYcZEkQlTebicI1WWBxnkBHMDo7
V6Bt055UzO4Mhj0Kr0H5/i+5WQnDWgETbWrYH1Hom17VW8dGaxKnWcK4wCaycC3b
XjlS7jEUo9QzSw5aF49zYyMPfysXaFK2sB4+q2wzXmrltg9/6l0f7yUBFMDuo+S1
ALOC/njLTRnOyzXV3a9TK37IHmNqN9xVgUiaRIo9PE11Ikn1573Aa9ghTXh52EJJ
pVt1i50Jg9YoN06LNOxZ26QGol7rtZ9K39/VxIRUy7X5UJKZXMq0W8DatSp25FQV
bVAVuS8b6DhWXVGdhxaMp3lekmXLcPhRKV2bDH0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSmv05F2Oab1YUpg8VfJehZ8+i/hDAfBgNVHSMEGDAWgBQmvdrgTbyx+C9V
sHgwe6SwhLmUuzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pyM2E0RTI4c2ZndlZiQjRNSHVrc0lTNWxMcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDYvZmViM2JhLWVlOTAtNGYwMy05ZTAwLWY2MTc5YTkxMGIxNS8x
L3ByOU9SZGptbTlXRktZUEZYeVhvV2ZQb3Y0US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDYv
ZmViM2JhLWVlOTAtNGYwMy05ZTAwLWY2MTc5YTkxMGIxNS8xL0pyM2E0RTI4c2Zn
dlZiQjRNSHVrc0lTNWxMcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmJbzANBgkqhkiG9w0BAQsFAAOC
AQEAT3J9wcJsbLq8JcNPtyFgdWW1pAgq/cUFn/Dc/5lMRs4Hxc3NeHA1HZjczyo9
JxyELeQ84YKH2ooYJBanV3f9H3GUin7JLUppV2bhlSycEqVEAD7EyndnvJPHmSB+
hN8wl2jrIUKY4kMjI/2Q+IIprmo2+HmY8vZiUFTfJ3iKL41WpySj/NMA03jV+yyb
0GgHO7BZtGuhIb7eFe/LQhezoaPtGW2OiNcG0rC1jF49mGzuiEfnEDa/gbk3Mvnj
TFqx70KDT2iizdjROgXrUDMeT4+kZmS1DFVKhdNZu4aovrAAmbju4SryuSYxtpAe
0phdVuFUf3VLex6CiBdFEtu7Rg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:45 2024 by rpki-client on console-ams.rpki-client.org