Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9vv5CVXEsFflpCTlZNi5jHao5xg.roa
File: 9vv5CVXEsFflpCTlZNi5jHao5xg.roa (raw, json)
Hash identifier: 1fFe1VUPrmy5jfJeK/PmnxdqbV51yO7g5641DxX2yvQ=
Subject key identifier: F6:FB:F9:09:55:C4:B0:57:E5:A4:24:E5:64:D8:B9:8C:76:A8:E7:18
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 042EF1D7
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9vv5CVXEsFflpCTlZNi5jHao5xg.roa
Signing time: Mon 04 Jul 2022 10:15:25 +0000
ROA not before: Mon 04 Jul 2022 10:15:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 88.209.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70185431 (0x42ef1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 4 10:15:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6fbf90955c4b057e5a424e564d8b98c76a8e718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:da:81:b9:27:de:e3:0c:ed:4c:8f:7e:c0:41:
fb:f1:f3:fc:b3:93:a8:0e:63:8e:72:2e:49:3a:2f:
e6:a3:6e:21:d0:52:ba:c2:ef:3f:13:1b:cc:94:5e:
53:c0:4b:75:1c:9d:84:1e:c4:c4:92:0c:46:34:62:
2a:df:63:f7:8f:ee:e5:e5:b8:96:e0:d9:de:cf:79:
8c:83:53:df:44:5e:df:aa:f9:23:d2:b4:0a:b2:08:
11:0b:15:a2:dc:d7:88:35:6e:23:aa:68:08:f6:4f:
52:92:32:97:e8:57:36:a6:bb:b0:b1:fd:66:8a:cc:
c2:af:f2:e1:c3:ba:46:4f:1b:da:a4:4f:ed:c5:7d:
2c:76:95:5e:28:ec:4b:99:2c:fe:c7:98:35:38:93:
dc:3f:ce:21:c6:0e:4c:1c:30:0b:43:57:48:2e:c2:
bd:48:62:17:bb:b8:2a:37:a4:6f:73:80:8a:3a:b6:
64:63:3a:89:29:fa:44:83:3b:74:00:26:1d:54:b3:
d5:e9:f0:74:1e:6a:39:b8:a8:ee:20:41:8d:d4:fc:
57:35:9b:97:bc:0b:84:c0:66:19:f7:af:c9:5a:f9:
0b:48:55:f7:c9:8a:72:c8:7f:f8:93:29:6e:05:0d:
5a:5e:9b:d9:4e:1d:cb:e2:e5:9a:bc:4e:f6:94:cb:
4a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FB:F9:09:55:C4:B0:57:E5:A4:24:E5:64:D8:B9:8C:76:A8:E7:18
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9vv5CVXEsFflpCTlZNi5jHao5xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.201.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:85:7e:b4:5b:12:02:52:9a:e2:59:83:51:82:11:26:66:97:
51:7f:67:2f:38:eb:1a:16:c9:d3:bd:91:93:97:99:7b:c1:f7:
d5:3b:77:0b:97:98:21:3d:1a:16:51:fd:af:09:c3:22:30:d7:
e6:50:b6:e4:58:54:7d:34:14:63:a2:7d:18:1f:c0:6a:82:66:
86:a2:e5:2e:a2:be:aa:a7:0e:47:f9:fb:b0:78:d5:f8:07:b5:
ca:9e:a0:0c:08:a1:25:ea:35:4a:1f:a5:02:40:33:a0:db:8a:
f9:98:d8:82:1f:21:3e:24:30:5c:1d:f0:7d:fe:ce:db:81:b1:
8c:b9:09:79:dc:15:24:41:6a:cc:7f:b2:02:5d:b5:85:a1:8e:
1e:24:c8:6c:af:70:b9:ef:f0:f5:1c:57:8f:8b:7a:80:a5:32:
7a:8d:cd:51:57:54:39:ee:79:6a:6a:44:ca:c7:24:73:b7:1e:
7a:e3:48:d1:89:c9:45:6c:05:12:c9:3a:e0:57:de:b8:6b:c6:
c8:5c:28:0b:ee:fb:66:0d:57:95:68:0a:b1:55:65:7b:cf:77:
a1:5d:aa:94:37:a5:3b:5b:34:2c:c2:3d:f4:b6:68:d8:3c:56:
64:2d:4d:72:87:22:00:9c:02:8d:0c:2f:53:f5:5e:db:cd:a1:
38:51:3b:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBC7x1zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZGFhYTBlMDgyMzYwMzYwYWNkYTM0NzY2NGViODMxNGViMTFkYTEwMB4XDTIyMDcw
NDEwMTUyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjZmYmY5MDk1NWM0
YjA1N2U1YTQyNGU1NjRkOGI5OGM3NmE4ZTcxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKDagbkn3uMM7UyPfsBB+/Hz/LOTqA5jjnIuSTov5qNuIdBS
usLvPxMbzJReU8BLdRydhB7ExJIMRjRiKt9j94/u5eW4luDZ3s95jINT30Re36r5
I9K0CrIIEQsVotzXiDVuI6poCPZPUpIyl+hXNqa7sLH9ZorMwq/y4cO6Rk8b2qRP
7cV9LHaVXijsS5ks/seYNTiT3D/OIcYOTBwwC0NXSC7CvUhiF7u4Kjekb3OAijq2
ZGM6iSn6RIM7dAAmHVSz1enwdB5qObio7iBBjdT8VzWbl7wLhMBmGfevyVr5C0hV
98mKcsh/+JMpbgUNWl6b2U4dy+LlmrxO9pTLSv8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT2+/kJVcSwV+WkJOVk2LmMdqjnGDAfBgNVHSMEGDAWgBTNqqDggjYDYKza
NHZk64MU6xHaEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3phcWc0SUkyQTJDczJqUjJaT3VERk9zUjJoQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGQvNTg5MTI3LTEwOTYtNGM5MS05NmNjLTdlNGQ2ZjZmNmU2Ni8x
Lzl2djVDVlhFc0ZmbHBDVGxaTmk1akhhbzV4Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGQv
NTg5MTI3LTEwOTYtNGM5MS05NmNjLTdlNGQ2ZjZmNmU2Ni8xL3phcWc0SUkyQTJD
czJqUjJaT3VERk9zUjJoQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFjRyTANBgkqhkiG9w0BAQsFAAOC
AQEAoIV+tFsSAlKa4lmDUYIRJmaXUX9nLzjrGhbJ072Rk5eZe8H31Tt3C5eYIT0a
FlH9rwnDIjDX5lC25FhUfTQUY6J9GB/AaoJmhqLlLqK+qqcOR/n7sHjV+Ae1yp6g
DAihJeo1Sh+lAkAzoNuK+ZjYgh8hPiQwXB3wff7O24GxjLkJedwVJEFqzH+yAl21
haGOHiTIbK9wue/w9RxXj4t6gKUyeo3NUVdUOe55ampEysckc7ceeuNI0YnJRWwF
Esk64FfeuGvGyFwoC+77Zg1XlWgKsVVle893oV2qlDelO1s0LMI99LZo2DxWZC1N
cociAJwCjQwvU/Ve282hOFE7qA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:51 2023 by rpki-client on console-ams.rpki-client.org