Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/81eaf6-66cf-4b21-8ffb-08bdcd533b61/1/i428-u5bl5GRwEMZrHZwRZLgvX4.roa
File: i428-u5bl5GRwEMZrHZwRZLgvX4.roa (raw, json)
Hash identifier: sg0tom24/1ieyQDsXmRQKxzeIfJ4pB2zL2Kbk/6Qof8=
Subject key identifier: 8B:8D:BC:FA:EE:5B:97:91:91:C0:43:19:AC:76:70:45:92:E0:BD:7E
Certificate issuer: /CN=8ead45e317257e170a2030e79b0f5f74406a7842
Certificate serial: 02C523C7
Authority key identifier: 8E:AD:45:E3:17:25:7E:17:0A:20:30:E7:9B:0F:5F:74:40:6A:78:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jq1F4xclfhcKIDDnmw9fdEBqeEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/81eaf6-66cf-4b21-8ffb-08bdcd533b61/1/i428-u5bl5GRwEMZrHZwRZLgvX4.roa
Signing time: Sat 01 Jan 2022 07:56:23 +0000
ROA not before: Sat 01 Jan 2022 07:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 92.119.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46474183 (0x2c523c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ead45e317257e170a2030e79b0f5f74406a7842
Validity
Not Before: Jan 1 07:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b8dbcfaee5b979191c04319ac76704592e0bd7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:40:24:c5:4a:25:02:33:34:94:1a:25:ed:9a:
2d:f3:95:32:cf:a8:7a:46:2d:e7:bc:46:28:f1:ba:
e6:d7:05:06:ec:f6:24:54:61:3e:d2:23:04:dd:37:
df:e6:a5:93:6e:eb:1f:ef:60:08:b6:bd:70:cd:74:
f3:bd:08:f0:72:1c:d1:8c:30:07:ae:f1:b5:ee:9a:
ea:21:f3:49:20:2a:78:a0:a7:5a:89:4d:b7:f5:81:
a3:dc:de:81:89:ea:87:96:99:c5:af:62:b0:e2:21:
ad:dc:be:17:e6:49:38:25:95:fd:74:5a:b0:44:34:
1b:53:f3:ea:21:cf:81:8a:d6:3a:04:e1:6d:12:c3:
17:17:48:e0:8a:27:9b:5a:ae:29:08:7a:53:b8:aa:
fa:e8:a1:0b:24:8d:54:cd:d0:67:38:7a:c5:74:1a:
c2:b1:95:11:23:69:87:82:96:31:54:b7:21:01:6e:
00:99:5d:e7:15:9f:d9:32:e1:c7:c4:85:36:b6:ae:
98:ea:4a:af:2b:dc:c7:22:45:3f:bf:27:d8:8c:b0:
2d:7b:66:5b:39:63:38:68:bc:9c:b2:5c:6f:6e:0e:
78:fa:7f:b6:94:9f:8a:69:ba:cd:c9:9d:0d:ea:8a:
8e:12:f7:89:16:df:f1:e9:cf:2f:91:60:bb:79:f9:
fb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8D:BC:FA:EE:5B:97:91:91:C0:43:19:AC:76:70:45:92:E0:BD:7E
X509v3 Authority Key Identifier:
keyid:8E:AD:45:E3:17:25:7E:17:0A:20:30:E7:9B:0F:5F:74:40:6A:78:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jq1F4xclfhcKIDDnmw9fdEBqeEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/81eaf6-66cf-4b21-8ffb-08bdcd533b61/1/i428-u5bl5GRwEMZrHZwRZLgvX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/81eaf6-66cf-4b21-8ffb-08bdcd533b61/1/jq1F4xclfhcKIDDnmw9fdEBqeEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.244.0/24
Signature Algorithm: sha256WithRSAEncryption
84:34:54:cd:8f:1a:43:81:97:a1:88:e8:17:b2:09:c5:30:2c:
7d:25:0e:71:55:59:60:ff:89:b0:a7:3b:11:3c:38:b2:aa:f1:
f2:05:02:a2:f0:67:3d:fb:06:b7:b9:69:8a:20:d7:70:ea:d8:
c2:00:3c:88:86:9b:6e:5e:0c:64:94:be:67:c0:40:dd:95:62:
6e:06:cb:e3:6c:1f:5f:78:f7:bd:ed:d1:ca:f7:5f:97:33:92:
50:bb:90:48:e3:72:49:34:f3:53:73:3b:6e:4d:5a:7e:83:6b:
9c:0c:86:28:a1:04:bc:60:ff:d5:e2:91:b5:f8:33:7a:e5:6f:
a7:b4:7f:03:e9:67:b3:42:cc:11:ca:04:c6:8f:77:c2:90:18:
9e:a8:c5:18:50:7f:32:2a:54:96:7d:22:ef:a0:67:e5:b5:ba:
66:ec:0f:97:60:5c:09:9a:1f:88:92:c4:ae:7f:dc:bd:a6:8b:
71:d8:71:e9:d1:8d:dc:84:fa:fd:e3:6f:bd:37:00:b7:3d:3c:
25:da:95:f1:bb:69:69:57:c6:37:18:91:ce:d1:6d:17:58:a2:
0a:4e:a8:d2:65:f3:56:41:39:3b:22:0b:39:62:90:bd:3e:72:
c8:18:dc:30:c0:f6:52:16:be:74:6f:61:e0:95:24:f1:c6:f7:
34:c8:b7:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAsUjxzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZWFkNDVlMzE3MjU3ZTE3MGEyMDMwZTc5YjBmNWY3NDQwNmE3ODQyMB4XDTIyMDEw
MTA3NTYyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGI4ZGJjZmFlZTVi
OTc5MTkxYzA0MzE5YWM3NjcwNDU5MmUwYmQ3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALRAJMVKJQIzNJQaJe2aLfOVMs+oekYt57xGKPG65tcFBuz2
JFRhPtIjBN033+alk27rH+9gCLa9cM10870I8HIc0YwwB67xte6a6iHzSSAqeKCn
WolNt/WBo9zegYnqh5aZxa9isOIhrdy+F+ZJOCWV/XRasEQ0G1Pz6iHPgYrWOgTh
bRLDFxdI4Ionm1quKQh6U7iq+uihCySNVM3QZzh6xXQawrGVESNph4KWMVS3IQFu
AJld5xWf2TLhx8SFNraumOpKryvcxyJFP78n2IywLXtmWzljOGi8nLJcb24OePp/
tpSfimm6zcmdDeqKjhL3iRbf8enPL5Fgu3n5+2MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSLjbz67luXkZHAQxmsdnBFkuC9fjAfBgNVHSMEGDAWgBSOrUXjFyV+Fwog
MOebD190QGp4QjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pxMUY0eGNsZmhjS0lERG5tdzlmZEVCcWVFSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGEvODFlYWY2LTY2Y2YtNGIyMS04ZmZiLTA4YmRjZDUzM2I2MS8x
L2k0MjgtdTVibDVHUndFTVpySFp3UlpMZ3ZYNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGEv
ODFlYWY2LTY2Y2YtNGIyMS04ZmZiLTA4YmRjZDUzM2I2MS8xL2pxMUY0eGNsZmhj
S0lERG5tdzlmZEVCcWVFSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFx39DANBgkqhkiG9w0BAQsFAAOC
AQEAhDRUzY8aQ4GXoYjoF7IJxTAsfSUOcVVZYP+JsKc7ETw4sqrx8gUCovBnPfsG
t7lpiiDXcOrYwgA8iIabbl4MZJS+Z8BA3ZVibgbL42wfX3j3ve3RyvdflzOSULuQ
SONySTTzU3M7bk1afoNrnAyGKKEEvGD/1eKRtfgzeuVvp7R/A+lns0LMEcoExo93
wpAYnqjFGFB/MipUln0i76Bn5bW6ZuwPl2BcCZofiJLErn/cvaaLcdhx6dGN3IT6
/eNvvTcAtz08JdqV8btpaVfGNxiRztFtF1iiCk6o0mXzVkE5OyILOWKQvT5yyBjc
MMD2Uha+dG9h4JUk8cb3NMi3HQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:26 2024 by rpki-client on console-ams.rpki-client.org