Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ntQh3RIyktSuZk57d8LA9MRN38E.roa
File: ntQh3RIyktSuZk57d8LA9MRN38E.roa (raw, json)
Hash identifier: IL3Qhb/u/2bZlwgPeX9BXbKIFGrgz4k7Ysy54f1O+00=
Subject key identifier: 9E:D4:21:DD:12:32:92:D4:AE:66:4E:7B:77:C2:C0:F4:C4:4D:DF:C1
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0AF66E75
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ntQh3RIyktSuZk57d8LA9MRN38E.roa
Signing time: Mon 18 Apr 2022 13:19:06 +0000
ROA not before: Mon 18 Apr 2022 13:19:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 85.133.234.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183922293 (0xaf66e75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Apr 18 13:19:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ed421dd123292d4ae664e7b77c2c0f4c44ddfc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b6:3a:5b:e3:cb:4c:a4:6f:73:c6:9f:60:7e:
c5:aa:ce:85:0a:61:52:7f:37:a4:d4:6a:ec:81:b7:
b3:42:e2:10:20:3e:28:40:d5:4f:3a:25:09:9b:7d:
9b:04:28:db:36:46:08:6e:37:a9:aa:42:1e:52:44:
9f:b8:c9:61:5f:07:77:54:da:d9:6b:58:59:16:97:
b0:d6:27:3d:45:44:e0:b9:9e:7f:1b:e5:93:7c:8c:
99:d6:12:c4:57:31:64:5b:28:47:95:14:ab:14:4e:
72:d4:86:88:2b:81:d1:87:55:9d:9e:64:5d:83:83:
ec:83:fe:96:e3:8e:f7:fd:73:a0:1c:e6:16:e1:27:
e7:db:45:0a:ea:db:a9:eb:f5:dd:fe:1a:3e:55:04:
bb:34:82:e8:d0:81:2e:b5:ef:a8:4a:a0:f4:0e:b0:
24:d0:5f:32:2b:91:ad:ed:b5:9f:e3:8a:1b:e1:c6:
56:2a:70:48:43:40:f4:62:03:61:9b:4a:27:73:01:
32:8e:5d:11:d4:f9:56:99:b2:38:c3:1b:07:67:cf:
ee:9b:9b:3d:10:1e:73:99:73:3b:e5:94:34:e1:7c:
2f:02:3d:26:b8:8d:77:71:4f:a9:e0:f5:2c:7d:2b:
ca:f2:20:ac:14:d6:6d:53:c7:67:a6:73:3e:c1:9b:
15:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D4:21:DD:12:32:92:D4:AE:66:4E:7B:77:C2:C0:F4:C4:4D:DF:C1
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ntQh3RIyktSuZk57d8LA9MRN38E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.137.0/24
85.133.234.0/24
Signature Algorithm: sha256WithRSAEncryption
06:44:88:a2:cb:c6:63:86:06:d6:6e:f9:b2:88:f6:8a:53:65:
dc:1e:8f:11:ee:d6:fc:12:f9:bd:67:f0:e7:53:ed:79:2e:2b:
fe:0e:40:93:39:af:6b:9a:92:2e:43:5e:96:3d:9d:b5:52:78:
8f:4d:4e:f3:f1:6f:5a:73:14:6f:94:92:ad:b5:18:94:01:2d:
a2:aa:27:dd:97:96:ea:a5:2d:ed:14:9b:77:87:47:74:aa:cb:
b0:63:a5:ee:cb:c8:81:54:83:9e:ac:e7:e2:fd:2f:f4:1f:3e:
38:00:12:a0:79:a3:95:dc:5a:b9:1f:10:e0:3d:35:ab:97:a3:
36:ce:54:52:ef:0a:94:8a:43:5a:9b:8a:48:d8:22:70:b1:50:
09:0c:58:69:d6:59:b3:b1:66:b4:78:a8:02:d3:1e:ad:34:51:
24:cd:42:78:4b:d6:7a:d0:db:25:82:6e:43:fd:b9:18:e1:a6:
41:bc:00:7c:35:f7:70:82:fc:ba:e2:f8:21:10:93:de:8b:55:
17:81:6a:f4:29:e1:11:23:cc:28:fe:e7:e6:dd:05:e3:6c:24:
c8:75:87:f5:8f:eb:a3:95:71:d7:f7:24:f9:30:00:9f:1f:dc:
1d:02:07:3b:c9:b1:14:07:42:11:5e:e9:45:93:8a:df:9e:57:
5a:33:1f:1e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECvZudTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDVlMzk2NThhM2VmNmYxM2NhMjFjYzExYTRlMzNlYmNkOTQ2NzAyMB4XDTIyMDQx
ODEzMTkwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWVkNDIxZGQxMjMy
OTJkNGFlNjY0ZTdiNzdjMmMwZjRjNDRkZGZjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJS2Olvjy0ykb3PGn2B+xarOhQphUn83pNRq7IG3s0LiECA+
KEDVTzolCZt9mwQo2zZGCG43qapCHlJEn7jJYV8Hd1Ta2WtYWRaXsNYnPUVE4Lme
fxvlk3yMmdYSxFcxZFsoR5UUqxROctSGiCuB0YdVnZ5kXYOD7IP+luOO9/1zoBzm
FuEn59tFCurbqev13f4aPlUEuzSC6NCBLrXvqEqg9A6wJNBfMiuRre21n+OKG+HG
VipwSENA9GIDYZtKJ3MBMo5dEdT5VpmyOMMbB2fP7pubPRAec5lzO+WUNOF8LwI9
JriNd3FPqeD1LH0ryvIgrBTWbVPHZ6ZzPsGbFakCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSe1CHdEjKS1K5mTnt3wsD0xE3fwTAfBgNVHSMEGDAWgBTNXjllij728Tyi
HMEaTjPrzZRnAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pWNDVaWW8tOXZFOG9oekJHazR6NjgyVVp3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvZWY1MzZjLTAzZDMtNGFjNS1iMTI1LTVkMWZhNjZjMzYzYi8x
L250UWgzUkl5a3RTdVprNTdkOExBOU1STjM4RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
ZWY1MzZjLTAzZDMtNGFjNS1iMTI1LTVkMWZhNjZjMzYzYi8xL3pWNDVaWW8tOXZF
OG9oekJHazR6NjgyVVp3SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFWFiQMEAFWF6jANBgkqhkiG9w0B
AQsFAAOCAQEABkSIosvGY4YG1m75soj2ilNl3B6PEe7W/BL5vWfw51PteS4r/g5A
kzmva5qSLkNelj2dtVJ4j01O8/FvWnMUb5SSrbUYlAEtoqon3ZeW6qUt7RSbd4dH
dKrLsGOl7svIgVSDnqzn4v0v9B8+OAASoHmjldxauR8Q4D01q5ejNs5UUu8KlIpD
WpuKSNgicLFQCQxYadZZs7FmtHioAtMerTRRJM1CeEvWetDbJYJuQ/25GOGmQbwA
fDX3cIL8uuL4IRCT3otVF4Fq9CnhESPMKP7n5t0F42wkyHWH9Y/ro5Vx1/ck+TAA
nx/cHQIHO8mxFAdCEV7pRZOK355XWjMfHg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org