Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/HIi6sRLFTz7U4vyEepT9zoOKUCY.roa
File: HIi6sRLFTz7U4vyEepT9zoOKUCY.roa (raw, json)
Hash identifier: OSyvPeeeCFCyibvb/qJSx0LbiMmob+nA32M4f1T5qBY=
Subject key identifier: 1C:88:BA:B1:12:C5:4F:3E:D4:E2:FC:84:7A:94:FD:CE:83:8A:50:26
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0A27DC70
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/HIi6sRLFTz7U4vyEepT9zoOKUCY.roa
Signing time: Sat 01 Jan 2022 14:59:14 +0000
ROA not before: Sat 01 Jan 2022 14:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 85.239.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170384496 (0xa27dc70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Jan 1 14:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c88bab112c54f3ed4e2fc847a94fdce838a5026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1c:83:28:6e:22:00:76:b0:75:65:39:17:13:
1b:01:8d:78:e0:d6:ee:bf:ab:10:1e:cf:9c:40:bf:
57:5d:26:56:07:9e:3f:de:0f:68:c3:ae:19:1a:60:
8f:21:15:78:ca:63:d6:b6:53:3d:bf:3e:14:59:1e:
a6:68:c4:5b:ee:31:7a:88:d1:f0:77:87:0b:f6:73:
f7:64:e3:74:da:dd:28:b6:ba:c2:33:bf:3c:71:26:
61:7e:14:93:bb:65:e9:43:16:5e:87:70:df:0f:e2:
17:7e:73:2d:74:ec:f4:b7:54:43:1a:9e:61:99:57:
01:a4:20:99:b0:35:8f:f4:dd:b2:40:5c:80:87:99:
a6:d4:69:c5:d6:60:53:28:d0:27:25:90:ef:5e:5a:
71:c7:ed:32:60:f4:eb:02:a0:02:0a:3e:bd:83:4d:
d2:d8:f4:9e:96:2c:94:99:87:44:a1:ab:d7:10:c4:
22:31:9d:74:7d:b0:1d:98:aa:4c:24:49:4e:f0:be:
9e:2d:51:55:1d:32:e1:49:5f:22:43:27:c8:4f:6a:
b1:73:b8:82:ab:36:a5:4e:43:0d:16:99:cd:21:dd:
e3:18:54:68:6f:12:84:c3:ab:27:82:1b:e5:aa:81:
ef:cc:e4:11:17:d1:96:ef:87:6d:6f:45:c9:99:c6:
38:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:88:BA:B1:12:C5:4F:3E:D4:E2:FC:84:7A:94:FD:CE:83:8A:50:26
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/HIi6sRLFTz7U4vyEepT9zoOKUCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.44.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:0e:15:89:1d:35:22:34:4c:f1:d0:49:7c:30:a1:57:0e:b8:
e6:ce:2c:cf:80:02:f2:17:ec:90:23:8f:2d:34:e5:ec:15:91:
80:ee:5d:ff:66:34:f1:74:c5:ab:c7:4b:7e:cf:02:27:b3:a5:
ea:35:24:15:ff:45:9f:dc:1c:b1:41:8c:b0:d0:05:ac:58:ea:
0f:2d:5d:50:45:36:1a:2c:23:da:2f:91:84:47:34:8e:aa:d9:
66:81:ec:4c:05:87:3f:a7:d9:0d:22:67:13:7e:5d:db:19:ee:
5e:ee:9e:a3:ae:4f:97:9b:b1:65:4c:0a:9c:5b:ad:55:c9:21:
7c:f2:77:13:16:ec:7c:1a:6f:f1:83:6c:dd:cb:5c:33:37:ce:
74:fc:0b:07:70:e4:86:87:72:94:f2:c6:d0:c7:23:76:89:e7:
e0:1b:44:72:72:73:62:c4:69:23:09:e1:0a:12:ff:70:d9:f3:
0b:d3:35:92:11:55:75:cf:73:5a:56:a3:f2:22:3a:d5:08:87:
dc:b9:7b:50:a2:d2:09:fe:a3:cb:77:8f:cb:26:b6:37:8f:1b:
aa:ab:1d:48:3a:d4:92:bc:68:d4:17:fd:46:49:71:07:9a:bd:
63:a7:ca:9b:39:99:8e:ce:97:6a:54:f4:4c:d7:c9:62:f9:d4:
c3:e3:3c:77
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECifccDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjdlYzk0MjNiZjkwYzgxZDIyZDk0ODQxYzEwMzU3YTU0MjYwMzc5MB4XDTIyMDEw
MTE0NTkxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWM4OGJhYjExMmM1
NGYzZWQ0ZTJmYzg0N2E5NGZkY2U4MzhhNTAyNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKQcgyhuIgB2sHVlORcTGwGNeODW7r+rEB7PnEC/V10mVgee
P94PaMOuGRpgjyEVeMpj1rZTPb8+FFkepmjEW+4xeojR8HeHC/Zz92TjdNrdKLa6
wjO/PHEmYX4Uk7tl6UMWXodw3w/iF35zLXTs9LdUQxqeYZlXAaQgmbA1j/TdskBc
gIeZptRpxdZgUyjQJyWQ715accftMmD06wKgAgo+vYNN0tj0npYslJmHRKGr1xDE
IjGddH2wHZiqTCRJTvC+ni1RVR0y4UlfIkMnyE9qsXO4gqs2pU5DDRaZzSHd4xhU
aG8ShMOrJ4Ib5aqB78zkERfRlu+HbW9FyZnGODsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQciLqxEsVPPtTi/IR6lP3Og4pQJjAfBgNVHSMEGDAWgBQ7fslCO/kMgdIt
lIQcEDV6VCYDeTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08zN0pRanY1RElIU0xaU0VIQkExZWxRbUEzay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvOGVhNDdmLWVmZjMtNDYyNy05NGVkLTFkMTBmM2M3MGJiNC8x
L0hJaTZzUkxGVHo3VTR2eUVlcFQ5em9PS1VDWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
OGVhNDdmLWVmZjMtNDYyNy05NGVkLTFkMTBmM2M3MGJiNC8xL08zN0pRanY1RElI
U0xaU0VIQkExZWxRbUEzay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlXvLDANBgkqhkiG9w0BAQsFAAOC
AQEAbg4ViR01IjRM8dBJfDChVw645s4sz4AC8hfskCOPLTTl7BWRgO5d/2Y08XTF
q8dLfs8CJ7Ol6jUkFf9Fn9wcsUGMsNAFrFjqDy1dUEU2Giwj2i+RhEc0jqrZZoHs
TAWHP6fZDSJnE35d2xnuXu6eo65Pl5uxZUwKnFutVckhfPJ3ExbsfBpv8YNs3ctc
MzfOdPwLB3DkhodylPLG0Mcjdonn4BtEcnJzYsRpIwnhChL/cNnzC9M1khFVdc9z
Wlaj8iI61QiH3Ll7UKLSCf6jy3ePyya2N48bqqsdSDrUkrxo1Bf9RklxB5q9Y6fK
mzmZjs6XalT0TNfJYvnUw+M8dw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org