Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/msY1H8ZOv2WcDyu9ILtIf6N1cdQ.roa
File: msY1H8ZOv2WcDyu9ILtIf6N1cdQ.roa (raw, json)
Hash identifier: +v1wan8hq2f8DzylcZfzCF6jVqbtaVvrOIn8sg3xvDE=
Subject key identifier: 9A:C6:35:1F:C6:4E:BF:65:9C:0F:2B:BD:20:BB:48:7F:A3:75:71:D4
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 060104
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/msY1H8ZOv2WcDyu9ILtIf6N1cdQ.roa
Signing time: Thu 26 May 2022 17:13:14 +0000
ROA not before: Thu 26 May 2022 17:13:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35638
IP address blocks: 84.239.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393476 (0x60104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: May 26 17:13:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ac6351fc64ebf659c0f2bbd20bb487fa37571d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:32:ee:53:89:40:ed:68:25:da:d8:21:76:4d:
a3:15:42:1e:1e:cd:4a:13:03:53:7f:b7:a3:bd:b4:
40:aa:43:a8:9a:1d:4c:39:eb:aa:3a:b8:4c:3b:e6:
e6:8e:85:78:62:21:79:95:81:34:f4:7c:12:c3:c5:
7a:ba:f3:2a:e4:df:85:a8:a9:0c:44:f2:18:cc:74:
a4:31:be:d5:b9:01:d8:90:db:90:7d:5a:90:a8:cf:
96:11:59:b9:96:d4:79:93:aa:92:e3:4c:b9:a3:34:
22:54:d6:79:bd:54:e8:20:a2:4f:eb:e7:90:83:1c:
ca:7a:9b:6a:47:38:d6:82:48:40:96:08:ab:55:1e:
24:3c:13:f4:09:25:e6:b3:1b:bd:f4:ee:40:17:a2:
70:5b:d7:49:76:31:82:d3:ef:38:1b:6e:4e:8a:35:
13:85:81:cb:80:d8:35:af:8d:e6:34:af:d4:1d:30:
32:1d:69:42:fb:83:b1:8b:37:52:34:6a:db:7e:67:
68:89:14:72:25:19:3f:9a:c8:43:3e:b2:c4:15:f1:
13:1d:6b:ef:6d:31:e6:50:85:66:50:99:06:af:08:
d8:40:4b:e4:bb:11:b7:2f:ba:1b:dc:76:16:15:38:
1f:ec:8c:67:09:71:23:3e:24:b9:cf:ed:79:03:3a:
b3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C6:35:1F:C6:4E:BF:65:9C:0F:2B:BD:20:BB:48:7F:A3:75:71:D4
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/msY1H8ZOv2WcDyu9ILtIf6N1cdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.21.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ff:51:53:38:c7:f1:2d:46:45:fb:ea:3f:66:f5:bc:35:9b:
07:3a:91:1e:3f:ad:0d:7d:dc:bf:b0:c3:f1:29:e1:7b:27:d8:
0b:5e:70:e6:aa:5d:1c:e6:c8:62:67:00:32:4b:88:1b:51:51:
09:18:46:3e:9e:27:61:42:06:c6:07:8f:11:4e:67:98:e1:51:
b2:5f:00:32:f5:41:0d:5f:4b:70:2d:47:bd:90:c8:34:e2:ce:
76:d3:b0:c9:79:27:7d:30:bf:d7:26:77:aa:ab:23:e6:b5:5c:
ec:3a:3a:a0:9e:fe:9a:9c:a6:8d:69:3f:64:6f:44:67:c6:d8:
60:b7:bd:9b:13:b4:7c:15:06:fe:43:57:ae:ac:03:c5:ba:a8:
46:a1:31:31:42:75:86:91:0e:ba:d4:2e:e0:8b:24:b9:21:23:
1e:10:cf:7c:29:df:66:27:aa:d7:cf:4d:3e:40:c1:0e:86:6d:
2a:09:83:80:ee:56:d7:cf:14:c1:f7:6a:5e:0a:c6:48:e0:09:
75:22:e8:4e:1c:5e:f7:5b:87:c6:84:57:f5:da:2f:41:0d:3c:
98:95:46:96:ca:ec:a0:3e:0c:9f:27:87:de:d9:5e:66:ae:6c:
15:6b:81:17:9b:d9:78:89:56:fe:39:b0:2f:62:cf:9f:46:ff:
3b:20:fe:38
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDBgEEMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQx
MWRlYTUzNDY3YjZjNzE0M2ViMjNkMjg0NTY5YTgxODNiMmU4MmYwHhcNMjIwNTI2
MTcxMzE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5YWM2MzUxZmM2NGVi
ZjY1OWMwZjJiYmQyMGJiNDg3ZmEzNzU3MWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwjLuU4lA7Wgl2tghdk2jFUIeHs1KEwNTf7ejvbRAqkOomh1M
OeuqOrhMO+bmjoV4YiF5lYE09HwSw8V6uvMq5N+FqKkMRPIYzHSkMb7VuQHYkNuQ
fVqQqM+WEVm5ltR5k6qS40y5ozQiVNZ5vVToIKJP6+eQgxzKeptqRzjWgkhAlgir
VR4kPBP0CSXmsxu99O5AF6JwW9dJdjGC0+84G25OijUThYHLgNg1r43mNK/UHTAy
HWlC+4OxizdSNGrbfmdoiRRyJRk/mshDPrLEFfETHWvvbTHmUIVmUJkGrwjYQEvk
uxG3L7ob3HYWFTgf7IxnCXEjPiS5z+15AzqzaQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJrGNR/GTr9lnA8rvSC7SH+jdXHUMB8GA1UdIwQYMBaAFEEd6lNGe2xxQ+sj
0oRWmoGDsugvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
UVIzcVUwWjdiSEZENnlQU2hGYWFnWU95NkM4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lMS9lYWNjZTUtZTRkZC00ZDlmLThlYzEtNDcxMjBiOTA2OWI3LzEv
bXNZMUg4Wk92MldjRHl1OUlMdElmNk4xY2RRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9l
YWNjZTUtZTRkZC00ZDlmLThlYzEtNDcxMjBiOTA2OWI3LzEvUVIzcVUwWjdiSEZE
NnlQU2hGYWFnWU95NkM4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVO8VMA0GCSqGSIb3DQEBCwUAA4IB
AQA8/1FTOMfxLUZF++o/ZvW8NZsHOpEeP60Nfdy/sMPxKeF7J9gLXnDmql0c5shi
ZwAyS4gbUVEJGEY+nidhQgbGB48RTmeY4VGyXwAy9UENX0twLUe9kMg04s5207DJ
eSd9ML/XJneqqyPmtVzsOjqgnv6anKaNaT9kb0Rnxthgt72bE7R8FQb+Q1eurAPF
uqhGoTExQnWGkQ661C7giyS5ISMeEM98Kd9mJ6rXz00+QMEOhm0qCYOA7lbXzxTB
92peCsZI4Al1IuhOHF73W4fGhFf12i9BDTyYlUaWyuygPgyfJ4fe2V5mrmwVa4EX
m9l4iVb+ObAvYs+fRv87IP44
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:54 2024 by rpki-client on console-ams.rpki-client.org