Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/G-ACkSHqgnEz3-d-QaA1E3fhI5E.roa
File: G-ACkSHqgnEz3-d-QaA1E3fhI5E.roa (raw, json)
Hash identifier: tu5M34lRygCAWvduzJRXccgyGzp00ztzvdgqB4hCEnM=
Subject key identifier: 1B:E0:02:91:21:EA:82:71:33:DF:E7:7E:41:A0:35:13:77:E1:23:91
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 0F496B6F
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/G-ACkSHqgnEz3-d-QaA1E3fhI5E.roa
Signing time: Sat 01 Jan 2022 12:58:27 +0000
ROA not before: Sat 01 Jan 2022 12:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49681
IP address blocks: 185.117.80.0/24 maxlen: 24
2a05:5e40:f00f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256469871 (0xf496b6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 1 12:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1be0029121ea827133dfe77e41a0351377e12391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7f:67:f1:e5:43:b6:39:6c:4e:b4:38:ae:da:
70:05:9c:66:59:03:ab:e0:e3:29:23:51:5c:fd:4a:
42:54:5f:02:da:1e:52:93:3a:de:62:83:06:f3:37:
55:5f:da:e1:60:e5:17:bf:c5:98:e6:ea:85:0c:4c:
2e:f2:5f:86:6e:28:78:5c:9e:0b:ae:9a:89:43:f9:
79:de:2f:90:3b:56:10:a0:bc:50:ce:f3:3d:7a:7c:
98:7d:7a:7a:fe:f9:a8:e3:60:09:4b:09:46:54:ae:
b8:63:5c:68:84:16:79:84:2d:b3:bf:70:97:67:f0:
01:4c:63:33:81:4c:db:77:f7:80:80:6c:7d:a5:66:
8d:96:5e:e1:c9:0e:92:08:15:bb:b4:61:77:5f:dc:
54:b9:61:e2:8d:3f:d8:53:95:03:0c:cd:78:7d:18:
87:b0:2b:2c:27:ca:12:90:10:5a:66:7a:7c:b7:df:
50:f8:28:5d:ac:f9:b2:40:23:29:71:19:7f:0e:72:
61:2d:45:a0:14:34:66:ee:f2:03:20:34:d0:37:c2:
82:1b:e6:50:9f:94:9b:3a:24:3c:b1:8b:7e:15:4c:
df:91:cf:27:ab:9c:b2:85:ed:d6:00:4a:51:3d:0a:
91:16:cc:17:bb:cb:06:e2:d1:e7:94:1a:44:d8:3e:
0d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E0:02:91:21:EA:82:71:33:DF:E7:7E:41:A0:35:13:77:E1:23:91
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/G-ACkSHqgnEz3-d-QaA1E3fhI5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.80.0/24
IPv6:
2a05:5e40:f00f::/48
Signature Algorithm: sha256WithRSAEncryption
1c:7b:52:96:2b:f0:76:43:19:ff:7b:a6:2a:df:73:b7:f7:36:
8f:15:7e:e9:35:de:06:40:7f:87:47:44:fa:ce:38:60:51:8d:
cc:e3:93:52:e0:a3:04:c6:ae:ec:1e:f4:a7:24:91:57:07:e3:
b1:8a:b6:28:d2:d0:3d:34:62:46:46:18:63:2e:f4:18:9f:a0:
34:ab:c4:32:64:fb:8f:ff:3f:f7:df:05:2f:b1:e9:ea:f0:a9:
0c:69:c3:4f:66:62:64:26:93:96:f1:11:b5:c1:16:1e:b8:be:
dd:9d:19:36:9b:1e:bf:7e:bc:a4:a3:67:fc:72:92:33:4c:f8:
89:93:66:40:76:82:f5:99:27:55:d4:19:87:87:e2:d3:6d:29:
57:14:22:54:c2:78:d2:44:43:b9:7d:f3:d5:99:67:a3:93:fe:
47:72:56:06:0f:97:01:35:97:cd:00:9e:10:ae:95:40:2b:e6:
5c:5f:0a:95:6b:d0:55:4a:58:c8:8e:34:f4:61:4a:14:07:9a:
a8:39:8a:b9:72:ae:d7:fd:9c:53:a2:3c:b1:9b:43:41:2e:12:
48:dc:15:e7:58:31:d6:c6:f4:6c:94:90:56:89:c7:f9:33:5c:
70:2b:d0:26:16:f3:45:6f:44:7a:9f:0a:7d:89:45:c0:02:49:
a4:1b:88:13
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIED0lrbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZmM1MGQwZDQyMDY3Yjc2YWIxYTJlOGU1MzNmZjg0OWI2NWQ1NmY1MB4XDTIyMDEw
MTEyNTgyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWJlMDAyOTEyMWVh
ODI3MTMzZGZlNzdlNDFhMDM1MTM3N2UxMjM5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKZ/Z/HlQ7Y5bE60OK7acAWcZlkDq+DjKSNRXP1KQlRfAtoe
UpM63mKDBvM3VV/a4WDlF7/FmObqhQxMLvJfhm4oeFyeC66aiUP5ed4vkDtWEKC8
UM7zPXp8mH16ev75qONgCUsJRlSuuGNcaIQWeYQts79wl2fwAUxjM4FM23f3gIBs
faVmjZZe4ckOkggVu7Rhd1/cVLlh4o0/2FOVAwzNeH0Yh7ArLCfKEpAQWmZ6fLff
UPgoXaz5skAjKXEZfw5yYS1FoBQ0Zu7yAyA00DfCghvmUJ+UmzokPLGLfhVM35HP
J6ucsoXt1gBKUT0KkRbMF7vLBuLR55QaRNg+DWECAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQb4AKRIeqCcTPf535BoDUTd+EjkTAfBgNVHSMEGDAWgBRvxQ0NQgZ7dqsa
Lo5TP/hJtl1W9TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2I4VU5EVUlHZTNhckdpNk9Vel80U2JaZFZ2VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGUvZjJiZDZjLTQ4NDMtNGVhZC1hYTA5LTNjMTZmZjg0MWFiMi8x
L0ctQUNrU0hxZ25FejMtZC1RYUExRTNmaEk1RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGUv
ZjJiZDZjLTQ4NDMtNGVhZC1hYTA5LTNjMTZmZjg0MWFiMi8xL2I4VU5EVUlHZTNh
ckdpNk9Vel80U2JaZFZ2VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALl1UDAPBAIAAjAJAwcAKgVeQPAP
MA0GCSqGSIb3DQEBCwUAA4IBAQAce1KWK/B2Qxn/e6Yq33O39zaPFX7pNd4GQH+H
R0T6zjhgUY3M45NS4KMExq7sHvSnJJFXB+OxirYo0tA9NGJGRhhjLvQYn6A0q8Qy
ZPuP/z/33wUvsenq8KkMacNPZmJkJpOW8RG1wRYeuL7dnRk2mx6/fryko2f8cpIz
TPiJk2ZAdoL1mSdV1BmHh+LTbSlXFCJUwnjSREO5ffPVmWejk/5HclYGD5cBNZfN
AJ4QrpVAK+ZcXwqVa9BVSljIjjT0YUoUB5qoOYq5cq7X/ZxTojyxm0NBLhJI3BXn
WDHWxvRslJBWicf5M1xwK9AmFvNFb0R6nwp9iUXAAkmkG4gT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org