Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/w_obmX8UARYPFrceXXZXYKm4cdk.roa
File: w_obmX8UARYPFrceXXZXYKm4cdk.roa (raw, json)
Hash identifier: wA70RJrLNHUUsQJfSZfRZynC4sefXWrwe/pNzJkcU4U=
Subject key identifier: C3:FA:1B:99:7F:14:01:16:0F:16:B7:1E:5D:76:57:60:A9:B8:71:D9
Certificate issuer: /CN=b8c15fe1e19cb81cb3469fcaa5c6023a6c5c45a3
Certificate serial: 02A8699E
Authority key identifier: B8:C1:5F:E1:E1:9C:B8:1C:B3:46:9F:CA:A5:C6:02:3A:6C:5C:45:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMFf4eGcuByzRp_KpcYCOmxcRaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/w_obmX8UARYPFrceXXZXYKm4cdk.roa
Signing time: Sat 01 Jan 2022 15:59:34 +0000
ROA not before: Sat 01 Jan 2022 15:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42162
IP address blocks: 85.31.152.0/21 maxlen: 21
185.70.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44591518 (0x2a8699e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c15fe1e19cb81cb3469fcaa5c6023a6c5c45a3
Validity
Not Before: Jan 1 15:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3fa1b997f1401160f16b71e5d765760a9b871d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:75:07:a4:8e:76:fd:c2:6d:4a:ea:7e:53:e8:
25:27:93:af:02:39:4c:0c:fe:f8:c3:66:5d:a4:ad:
36:e8:98:dc:ca:75:24:1e:86:39:08:cd:d7:45:c2:
56:6b:ce:12:18:6d:0c:bc:a5:00:d7:f7:18:50:37:
10:12:be:9f:58:60:70:09:a4:27:bc:f1:f5:c3:6d:
9f:ea:d7:86:e7:ae:6b:04:be:67:9b:64:f1:b8:7d:
e4:4d:8f:66:87:3b:84:37:f1:62:87:a2:36:13:03:
7a:82:5d:a4:c0:a9:27:cf:54:61:54:1b:07:27:c7:
b3:d1:ef:77:b1:53:48:64:c1:a5:0b:6b:0b:a3:a5:
6d:cb:9d:7d:ca:33:35:f5:3a:87:88:6a:1b:ad:20:
ad:a7:f5:f7:2a:78:d1:8a:b6:f0:5e:dc:49:b1:ff:
87:a8:fa:76:47:8a:f2:38:3c:27:ff:e9:df:31:b2:
01:61:7f:79:df:01:45:05:fa:ff:16:5e:c1:1b:16:
40:76:50:e5:26:4c:95:3c:21:5e:4b:d7:5a:2a:14:
aa:5d:7b:3f:8d:50:9f:bb:2d:7c:9a:f4:3f:4c:63:
35:fd:46:92:1f:1c:37:37:3d:80:63:59:d3:56:46:
49:33:f0:ec:ca:96:31:df:9b:74:4f:dd:fe:35:5c:
3f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:FA:1B:99:7F:14:01:16:0F:16:B7:1E:5D:76:57:60:A9:B8:71:D9
X509v3 Authority Key Identifier:
keyid:B8:C1:5F:E1:E1:9C:B8:1C:B3:46:9F:CA:A5:C6:02:3A:6C:5C:45:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMFf4eGcuByzRp_KpcYCOmxcRaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/w_obmX8UARYPFrceXXZXYKm4cdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/uMFf4eGcuByzRp_KpcYCOmxcRaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.152.0/21
185.70.80.0/22
Signature Algorithm: sha256WithRSAEncryption
98:bb:64:8e:74:9c:11:71:4f:8a:41:81:3e:17:83:a9:7a:4c:
6b:85:41:c1:1d:b5:3c:d0:01:7b:79:ea:9c:d2:cd:55:f6:dc:
d8:09:55:00:9a:f3:1c:fc:04:16:03:6d:ea:78:12:ad:0a:d2:
83:c7:9f:0a:2a:9c:79:c2:1c:82:33:40:dd:ae:44:8d:69:84:
d2:c7:ce:9d:35:ab:7c:28:79:b9:39:34:dd:75:72:d8:4d:cc:
bc:27:0f:be:7b:26:e5:82:55:6b:23:9e:06:c5:06:f3:a5:f7:
a1:4e:f7:e8:8c:f7:ff:a6:11:b2:06:84:b6:81:58:48:a5:b5:
68:80:ad:61:7b:39:e3:7d:cf:13:28:b3:e5:40:17:1d:c6:5d:
d6:99:89:b1:a3:ae:f9:e3:a1:8e:5b:49:dd:6d:1b:44:fe:84:
37:2d:ee:07:fd:1b:6e:f3:79:68:e0:4c:11:4a:87:ee:95:73:
c9:b2:7c:94:46:68:b8:c9:45:4c:8d:be:17:73:54:00:ae:86:
28:f9:3a:1b:a0:c9:d7:1c:d7:c8:cd:32:3a:a4:4d:3c:67:8b:
f8:cb:7f:fd:9e:b9:bd:b1:95:9f:59:c8:1f:d0:cc:15:87:1f:
d3:8a:db:65:a3:87:6b:ae:ab:8b:b9:98:59:34:11:4d:4d:82:
a1:76:eb:6e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAqhpnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OGMxNWZlMWUxOWNiODFjYjM0NjlmY2FhNWM2MDIzYTZjNWM0NWEzMB4XDTIyMDEw
MTE1NTkzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzNmYTFiOTk3ZjE0
MDExNjBmMTZiNzFlNWQ3NjU3NjBhOWI4NzFkOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKl1B6SOdv3CbUrqflPoJSeTrwI5TAz++MNmXaStNuiY3Mp1
JB6GOQjN10XCVmvOEhhtDLylANf3GFA3EBK+n1hgcAmkJ7zx9cNtn+rXhueuawS+
Z5tk8bh95E2PZoc7hDfxYoeiNhMDeoJdpMCpJ89UYVQbByfHs9Hvd7FTSGTBpQtr
C6OlbcudfcozNfU6h4hqG60graf19yp40Yq28F7cSbH/h6j6dkeK8jg8J//p3zGy
AWF/ed8BRQX6/xZewRsWQHZQ5SZMlTwhXkvXWioUql17P41Qn7stfJr0P0xjNf1G
kh8cNzc9gGNZ01ZGSTPw7MqWMd+bdE/d/jVcP68CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTD+huZfxQBFg8Wtx5ddldgqbhx2TAfBgNVHSMEGDAWgBS4wV/h4Zy4HLNG
n8qlxgI6bFxFozAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VNRmY0ZUdjdUJ5elJwX0twY1lDT214Y1JhTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjUvNzQxOTJmLWU3ZjQtNDhjMC04NGM5LWYyNThjMTFjZTc3ZS8x
L3dfb2JtWDhVQVJZUEZyY2VYWFpYWUttNGNkay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUv
NzQxOTJmLWU3ZjQtNDhjMC04NGM5LWYyNThjMTFjZTc3ZS8xL3VNRmY0ZUdjdUJ5
elJwX0twY1lDT214Y1JhTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA1UfmAMEArlGUDANBgkqhkiG9w0B
AQsFAAOCAQEAmLtkjnScEXFPikGBPheDqXpMa4VBwR21PNABe3nqnNLNVfbc2AlV
AJrzHPwEFgNt6ngSrQrSg8efCiqcecIcgjNA3a5EjWmE0sfOnTWrfCh5uTk03XVy
2E3MvCcPvnsm5YJVayOeBsUG86X3oU736Iz3/6YRsgaEtoFYSKW1aICtYXs5433P
Eyiz5UAXHcZd1pmJsaOu+eOhjltJ3W0bRP6ENy3uB/0bbvN5aOBMEUqH7pVzybJ8
lEZouMlFTI2+F3NUAK6GKPk6G6DJ1xzXyM0yOqRNPGeL+Mt//Z65vbGVn1nIH9DM
FYcf04rbZaOHa66ri7mYWTQRTU2CoXbrbg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:48 2024 by rpki-client on console-ams.rpki-client.org