Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/yzKZDOgORR-SiAPwA2LzgPUwgWE.roa
File: yzKZDOgORR-SiAPwA2LzgPUwgWE.roa (raw, json)
Hash identifier: LZjjBPDt+TYHRP6rCyN4NDDRJ1r4iQnklx65Izk1gwo=
Subject key identifier: CB:32:99:0C:E8:0E:45:1F:92:88:03:F0:03:62:F3:80:F5:30:81:61
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0B08E198
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/yzKZDOgORR-SiAPwA2LzgPUwgWE.roa
Signing time: Thu 07 Apr 2022 16:38:57 +0000
ROA not before: Thu 07 Apr 2022 16:38:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 85.239.48.0/22 maxlen: 22
85.239.56.0/22 maxlen: 24
85.239.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185131416 (0xb08e198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Apr 7 16:38:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb32990ce80e451f928803f00362f380f5308161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ab:51:a7:fe:0e:b7:62:25:9d:a9:86:9b:2f:
ae:a6:f1:a2:be:f2:72:b3:2b:b8:5a:bd:92:c9:5a:
45:c2:48:00:54:19:67:5e:a8:2c:53:0b:51:94:72:
e3:3c:21:18:2c:aa:ae:0a:be:90:ba:9f:23:ba:2b:
09:be:39:f1:be:69:9a:41:65:9e:84:e4:db:cd:8f:
6e:28:6c:c3:f9:2b:f3:55:45:29:85:04:9c:e3:eb:
4c:11:6e:3f:8b:46:85:7d:27:3d:d6:00:e0:d5:a6:
ea:4f:cb:05:94:5c:7a:91:5c:60:00:c2:4e:61:19:
db:74:ad:e1:f1:a5:c8:54:9e:21:45:b3:c4:f7:e5:
68:66:a5:31:d3:81:93:32:35:1d:06:6e:8f:59:b1:
6c:8d:ce:c6:80:d3:e8:d9:93:5c:fd:f8:6c:81:df:
23:55:f9:24:bc:19:27:39:95:2e:7e:c3:bc:2c:25:
18:22:20:96:fb:b3:b8:e7:e8:4a:06:94:7e:6d:a7:
76:33:e1:0d:2c:ce:6a:ca:e4:0a:00:c9:e8:24:af:
1d:56:fb:5e:a9:2d:22:c5:8d:35:82:06:78:9e:e2:
be:21:44:99:69:1c:8d:e9:96:b6:67:3a:96:54:c2:
b4:06:90:7b:c9:79:06:21:ee:c7:f3:9c:f5:03:8b:
27:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:32:99:0C:E8:0E:45:1F:92:88:03:F0:03:62:F3:80:F5:30:81:61
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/yzKZDOgORR-SiAPwA2LzgPUwgWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.48.0-85.239.59.255
Signature Algorithm: sha256WithRSAEncryption
3a:81:6b:1f:86:73:8d:7a:8c:b6:85:5a:ae:3b:22:00:39:fd:
cd:e5:ea:3d:96:37:78:94:2e:17:93:89:e1:fb:5a:d6:6c:81:
55:4a:95:68:2b:31:14:ca:c9:55:bc:8d:bf:f5:59:cb:36:0d:
e5:a3:c5:be:36:f5:c6:ec:12:db:cc:5f:11:c0:51:53:36:60:
68:3d:91:12:03:a7:a4:cc:17:00:49:62:b8:65:e3:c4:e6:77:
e0:ad:3d:06:db:ab:e1:c3:d5:4e:49:56:9f:8d:0a:c0:8b:74:
09:a2:ae:5f:f7:a0:5b:df:c3:2a:3a:d9:7e:5e:1f:74:7c:24:
ca:8a:da:a7:1f:f3:33:1a:b4:0c:e5:cb:fa:6b:ea:d6:ed:cc:
93:0b:07:79:15:cf:74:9f:35:08:42:d6:82:52:9f:dd:d7:9b:
ce:fc:19:03:ec:6b:0c:a2:8c:8a:e0:e9:f6:de:1c:f2:d6:7c:
d7:7c:cc:98:2f:d4:d2:22:7c:7a:9c:38:ea:16:97:81:06:6c:
5a:db:af:20:ef:18:9d:79:6e:d2:2d:bc:b3:f7:ac:4e:4a:0a:
46:87:3f:08:cf:a7:39:56:79:54:90:12:e4:51:ac:28:31:4b:
e2:9e:b9:92:71:36:ae:7b:b0:ce:1b:d4:88:0e:77:cd:c0:96:
c9:bc:e4:05
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIECwjhmDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjdlYzk0MjNiZjkwYzgxZDIyZDk0ODQxYzEwMzU3YTU0MjYwMzc5MB4XDTIyMDQw
NzE2Mzg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2IzMjk5MGNlODBl
NDUxZjkyODgwM2YwMDM2MmYzODBmNTMwODE2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOmrUaf+DrdiJZ2phpsvrqbxor7ycrMruFq9kslaRcJIAFQZ
Z16oLFMLUZRy4zwhGCyqrgq+kLqfI7orCb458b5pmkFlnoTk282Pbihsw/kr81VF
KYUEnOPrTBFuP4tGhX0nPdYA4NWm6k/LBZRcepFcYADCTmEZ23St4fGlyFSeIUWz
xPflaGalMdOBkzI1HQZuj1mxbI3OxoDT6NmTXP34bIHfI1X5JLwZJzmVLn7DvCwl
GCIglvuzuOfoSgaUfm2ndjPhDSzOasrkCgDJ6CSvHVb7XqktIsWNNYIGeJ7iviFE
mWkcjemWtmc6llTCtAaQe8l5BiHux/Oc9QOLJ38CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTLMpkM6A5FH5KIA/ADYvOA9TCBYTAfBgNVHSMEGDAWgBQ7fslCO/kMgdIt
lIQcEDV6VCYDeTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08zN0pRanY1RElIU0xaU0VIQkExZWxRbUEzay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvOGVhNDdmLWVmZjMtNDYyNy05NGVkLTFkMTBmM2M3MGJiNC8x
L3l6S1pET2dPUlItU2lBUHdBMkx6Z1BVd2dXRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
OGVhNDdmLWVmZjMtNDYyNy05NGVkLTFkMTBmM2M3MGJiNC8xL08zN0pRanY1RElI
U0xaU0VIQkExZWxRbUEzay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQEVe8wAwQCVe84MA0GCSqGSIb3
DQEBCwUAA4IBAQA6gWsfhnONeoy2hVquOyIAOf3N5eo9ljd4lC4Xk4nh+1rWbIFV
SpVoKzEUyslVvI2/9VnLNg3lo8W+NvXG7BLbzF8RwFFTNmBoPZESA6ekzBcASWK4
ZePE5nfgrT0G26vhw9VOSVafjQrAi3QJoq5f96Bb38MqOtl+Xh90fCTKitqnH/Mz
GrQM5cv6a+rW7cyTCwd5Fc90nzUIQtaCUp/d15vO/BkD7GsMooyK4On23hzy1nzX
fMyYL9TSInx6nDjqFpeBBmxa268g7xideW7SLbyz96xOSgpGhz8Iz6c5VnlUkBLk
UawoMUvinrmScTaue7DOG9SIDnfNwJbJvOQF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org