Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/q8MkRSuqiTnZZ5L3H7poGmIw3Hc.roa
File: q8MkRSuqiTnZZ5L3H7poGmIw3Hc.roa (raw, json)
Hash identifier: EWSBNuN9YkaX3keum10BCXL28osfFJu/ycOME62JcpU=
Subject key identifier: AB:C3:24:45:2B:AA:89:39:D9:67:92:F7:1F:BA:68:1A:62:30:DC:77
Certificate issuer: /CN=0c1e6d5e72daf4108cf60bd47e936df1a1e97226
Certificate serial: 0119603E
Authority key identifier: 0C:1E:6D:5E:72:DA:F4:10:8C:F6:0B:D4:7E:93:6D:F1:A1:E9:72:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DB5tXnLa9BCM9gvUfpNt8aHpciY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/q8MkRSuqiTnZZ5L3H7poGmIw3Hc.roa
Signing time: Sun 20 Feb 2022 07:06:27 +0000
ROA not before: Sun 20 Feb 2022 07:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206211
IP address blocks: 185.247.240.0/24 maxlen: 24
185.247.243.0/24 maxlen: 24
2a0d:d180::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18440254 (0x119603e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c1e6d5e72daf4108cf60bd47e936df1a1e97226
Validity
Not Before: Feb 20 07:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abc324452baa8939d96792f71fba681a6230dc77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fa:62:81:66:b7:83:24:67:f7:aa:4a:a3:09:
51:22:11:31:61:ba:0f:8d:6c:75:08:83:45:2a:66:
56:8f:4f:31:8e:37:41:87:a8:f7:3f:48:bb:11:b4:
be:d6:30:5c:a5:f2:e7:2a:b8:f3:67:b8:64:e9:7d:
e8:6e:20:e9:19:7f:ed:1a:8f:e3:9f:46:51:0c:1e:
42:87:a7:7e:43:b6:4b:b7:2a:2a:c8:54:0e:82:eb:
00:31:c7:b4:30:4f:ea:7f:92:8e:43:d1:d2:0b:82:
27:ca:58:c6:b6:8a:bb:47:73:db:ab:92:e7:0d:d1:
6f:57:5d:f9:07:ab:5c:04:a9:83:d0:1e:49:33:ee:
e6:fb:f7:de:f7:ae:8c:31:25:ca:af:64:0e:c2:0c:
98:eb:f0:5a:ec:87:2f:3e:8e:eb:ac:25:2f:92:ad:
79:bf:52:bc:ce:aa:0c:9b:c0:48:5d:12:d7:bb:da:
ac:f1:0d:e6:56:9f:74:a7:4e:4d:e8:96:6f:03:a5:
84:03:46:f7:5f:0b:96:f1:5d:0f:96:06:22:47:02:
92:bf:5e:dc:92:49:bc:67:c5:23:c5:ce:13:57:f0:
2a:b1:d2:a1:f1:e5:1e:ff:0e:a2:2a:c7:ef:f0:97:
2a:04:a4:91:26:bb:99:ee:d0:e5:2f:e7:4c:2c:46:
76:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C3:24:45:2B:AA:89:39:D9:67:92:F7:1F:BA:68:1A:62:30:DC:77
X509v3 Authority Key Identifier:
keyid:0C:1E:6D:5E:72:DA:F4:10:8C:F6:0B:D4:7E:93:6D:F1:A1:E9:72:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DB5tXnLa9BCM9gvUfpNt8aHpciY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/q8MkRSuqiTnZZ5L3H7poGmIw3Hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/DB5tXnLa9BCM9gvUfpNt8aHpciY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.240.0/24
185.247.243.0/24
IPv6:
2a0d:d180::/29
Signature Algorithm: sha256WithRSAEncryption
79:52:d6:49:1e:36:fd:2b:cd:9d:a3:fb:fa:70:51:42:a4:10:
a0:81:21:66:2e:71:37:38:ac:81:22:fc:90:b9:25:c3:e9:80:
20:df:21:5d:cc:40:32:91:d7:b4:f7:f1:ff:60:c7:e3:5b:75:
22:96:c9:55:98:39:b8:63:1d:4d:0f:47:a3:33:a7:f5:a1:af:
03:68:93:ec:28:95:f6:2b:49:a4:25:2e:6b:90:85:4b:16:8e:
92:54:e0:a6:de:5e:7e:7e:f6:ad:97:88:54:0f:e3:26:90:a1:
66:b4:d2:dd:f2:47:75:38:88:85:0e:01:bd:b0:c6:c3:ea:ab:
28:4a:31:ca:1f:95:3f:ea:d9:cd:5c:51:07:7d:bc:8e:13:0a:
eb:2e:ba:cd:59:07:cb:71:0f:05:46:76:e3:67:c6:52:7b:e8:
cf:6e:49:0b:f6:45:a4:64:ae:ad:45:a8:d5:29:94:f6:64:27:
87:2d:92:f9:5c:e3:bc:73:d8:bb:8f:28:e3:19:6b:b3:5b:68:
48:32:db:55:95:85:5b:df:81:99:d6:7c:65:78:38:0d:be:d0:
c1:f5:00:bb:a7:6d:82:d2:d4:e2:81:93:63:21:81:6e:b6:58:
1e:bd:a5:8a:99:53:e4:aa:98:65:b7:7b:4f:bc:dc:69:3f:fe:
e9:34:1a:86
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEARlgPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YzFlNmQ1ZTcyZGFmNDEwOGNmNjBiZDQ3ZTkzNmRmMWExZTk3MjI2MB4XDTIyMDIy
MDA3MDYyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWJjMzI0NDUyYmFh
ODkzOWQ5Njc5MmY3MWZiYTY4MWE2MjMwZGM3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN/6YoFmt4MkZ/eqSqMJUSIRMWG6D41sdQiDRSpmVo9PMY43
QYeo9z9IuxG0vtYwXKXy5yq482e4ZOl96G4g6Rl/7RqP459GUQweQoenfkO2S7cq
KshUDoLrADHHtDBP6n+SjkPR0guCJ8pYxraKu0dz26uS5w3Rb1dd+QerXASpg9Ae
STPu5vv33veujDElyq9kDsIMmOvwWuyHLz6O66wlL5Kteb9SvM6qDJvASF0S17va
rPEN5lafdKdOTeiWbwOlhANG918LlvFdD5YGIkcCkr9e3JJJvGfFI8XOE1fwKrHS
ofHlHv8OoirH7/CXKgSkkSa7me7Q5S/nTCxGdikCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSrwyRFK6qJOdlnkvcfumgaYjDcdzAfBgNVHSMEGDAWgBQMHm1ectr0EIz2
C9R+k23xoelyJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RCNXRYbkxhOUJDTTlndlVmcE50OGFIcGNpWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGUvM2RjNzJlLTA4NjEtNDMxNi1hNGJlLWEyOTU4MTNmMWY4Mi8x
L3E4TWtSU3VxaVRuWlo1TDNIN3BvR21JdzNIYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGUv
M2RjNzJlLTA4NjEtNDMxNi1hNGJlLWEyOTU4MTNmMWY4Mi8xL0RCNXRYbkxhOUJD
TTlndlVmcE50OGFIcGNpWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEALn38AMEALn38zANBAIAAjAHAwUD
Kg3RgDANBgkqhkiG9w0BAQsFAAOCAQEAeVLWSR42/SvNnaP7+nBRQqQQoIEhZi5x
NzisgSL8kLklw+mAIN8hXcxAMpHXtPfx/2DH41t1IpbJVZg5uGMdTQ9HozOn9aGv
A2iT7CiV9itJpCUua5CFSxaOklTgpt5efn72rZeIVA/jJpChZrTS3fJHdTiIhQ4B
vbDGw+qrKEoxyh+VP+rZzVxRB328jhMK6y66zVkHy3EPBUZ242fGUnvoz25JC/ZF
pGSurUWo1SmU9mQnhy2S+VzjvHPYu48o4xlrs1toSDLbVZWFW9+BmdZ8ZXg4Db7Q
wfUAu6dtgtLU4oGTYyGBbrZYHr2liplT5KqYZbd7T7zcaT/+6TQahg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:33 2024 by rpki-client on console-fra.rpki-client.org