Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/1--Xtj2HCqfYGnpaZIKrDl37QWU.roa
File: 1--Xtj2HCqfYGnpaZIKrDl37QWU.roa (raw, json)
Hash identifier: ODpqZBYwkQZ6a1PgQ+lq9K6eelQtWTVqYqR1I8LmW/E=
Subject key identifier: D7:EF:97:B6:3D:87:0A:A7:D8:1A:7A:5A:64:82:AB:0E:5D:FB:41:65
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 02E6E462
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/1--Xtj2HCqfYGnpaZIKrDl37QWU.roa
Signing time: Sat 01 Jan 2022 10:04:33 +0000
ROA not before: Sat 01 Jan 2022 10:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 185.239.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48686178 (0x2e6e462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: Jan 1 10:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7ef97b63d870aa7d81a7a5a6482ab0e5dfb4165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:38:75:6d:69:03:5d:d5:cd:ba:8c:20:c5:d4:
8a:d0:35:1c:b7:32:c4:b3:b1:b2:c0:1f:1c:6f:9d:
48:0f:83:52:27:d6:ef:13:7f:e4:20:e4:2c:32:f2:
de:67:32:92:e5:78:c3:50:90:85:6c:15:e9:f0:b3:
56:7b:e5:fb:df:2a:14:90:a6:b5:cf:6e:0b:66:b8:
09:43:50:98:4d:5b:ed:ad:db:34:0b:ca:3d:b1:73:
bc:b0:b3:3f:f1:21:37:11:9e:fb:2a:a2:82:54:a3:
b3:ce:77:50:8c:af:45:69:c6:95:2d:6b:ac:fe:e5:
72:3f:af:7e:4b:3c:48:05:5e:b3:b8:0a:f1:59:e6:
cc:19:21:5e:a3:08:08:44:11:d8:ae:0d:86:5e:7d:
0a:16:7f:76:ea:5a:2d:e5:98:f5:47:93:fa:bc:70:
de:35:c3:74:94:59:1e:a3:dd:44:c8:b0:59:7b:bd:
23:e5:31:fb:b1:12:0a:c2:05:39:a4:68:b8:c5:6a:
72:ab:4f:9f:2e:64:8d:54:5a:75:d8:46:4c:08:34:
f5:7d:8d:1a:a2:35:3a:87:49:02:e1:a6:10:e5:e6:
6e:cc:c0:f6:f0:82:1f:36:96:f5:41:4c:d9:d1:d9:
86:25:0a:73:a6:9b:1b:93:d9:0f:d5:98:ea:99:df:
2f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:EF:97:B6:3D:87:0A:A7:D8:1A:7A:5A:64:82:AB:0E:5D:FB:41:65
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/1--Xtj2HCqfYGnpaZIKrDl37QWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.140.0/22
Signature Algorithm: sha256WithRSAEncryption
89:27:05:8e:d9:d4:d3:88:86:79:a3:0a:0d:4c:2b:97:41:f9:
97:84:20:3f:94:51:db:d3:85:da:a1:2b:47:3a:f5:f1:5d:c0:
95:60:4f:7d:e4:42:0f:c1:ba:78:1d:09:2e:18:3a:ef:d7:e9:
49:19:dc:80:47:07:3e:ef:73:be:5e:15:c0:2f:3b:6f:29:54:
52:1f:62:bd:4f:db:78:b4:59:14:70:f3:5f:8d:ef:80:cd:60:
db:cc:33:07:61:f2:bc:b4:d8:e3:ef:0e:e1:ab:27:75:d0:c2:
01:2f:b3:43:59:c9:b1:96:56:bf:be:d1:50:32:8a:e6:85:e5:
58:ef:5d:4a:67:bb:1d:7b:64:22:1e:4c:04:2d:73:da:bf:8e:
a3:c2:d2:11:b9:51:e3:b4:05:2e:5a:2b:66:2a:d3:24:62:df:
73:74:1b:6a:6f:e0:dd:66:3e:bc:c1:c4:92:49:a6:38:6c:4b:
79:1f:1a:c3:be:ca:63:eb:c2:1d:96:d3:30:b2:cd:a3:98:fa:
9f:3c:f7:a0:89:06:68:d5:03:73:3e:6d:da:bd:27:3a:75:e8:
5f:8c:e8:2e:e8:c9:16:56:ee:bb:18:b4:90:e6:36:dd:04:24:
7d:aa:ac:18:a6:ab:f1:48:72:6c:92:72:e9:8b:fe:36:80:b2:
25:27:c7:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAubkYjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MWVlY2Q3MWMxOTNlNGFjMzBlZDAzZDBiOWYwNWRhMTAxYzYwM2QyMB4XDTIyMDEw
MTEwMDQzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDdlZjk3YjYzZDg3
MGFhN2Q4MWE3YTVhNjQ4MmFiMGU1ZGZiNDE2NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMc4dW1pA13VzbqMIMXUitA1HLcyxLOxssAfHG+dSA+DUifW
7xN/5CDkLDLy3mcykuV4w1CQhWwV6fCzVnvl+98qFJCmtc9uC2a4CUNQmE1b7a3b
NAvKPbFzvLCzP/EhNxGe+yqiglSjs853UIyvRWnGlS1rrP7lcj+vfks8SAVes7gK
8VnmzBkhXqMICEQR2K4Nhl59ChZ/dupaLeWY9UeT+rxw3jXDdJRZHqPdRMiwWXu9
I+Ux+7ESCsIFOaRouMVqcqtPny5kjVRaddhGTAg09X2NGqI1OodJAuGmEOXmbszA
9vCCHzaW9UFM2dHZhiUKc6abG5PZD9WY6pnfL4kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTX75e2PYcKp9gaelpkgqsOXftBZTAfBgNVHSMEGDAWgBQR7s1xwZPkrDDt
A9C58F2hAcYD0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VlN05jY0dUNUt3dzdRUFF1ZkJkb1FIR0E5SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvNGZkOTVhLTUxNTctNGExYi1iODY4LTEzODk5NWM5OWI5Ny8x
LzEtLVh0ajJIQ3FmWUducGFaSUtyRGwzN1FXVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
NGZkOTVhLTUxNTctNGExYi1iODY4LTEzODk5NWM5OWI5Ny8xL0VlN05jY0dUNUt3
dzdRUFF1ZkJkb1FIR0E5SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnvjDANBgkqhkiG9w0BAQsFAAOC
AQEAiScFjtnU04iGeaMKDUwrl0H5l4QgP5RR29OF2qErRzr18V3AlWBPfeRCD8G6
eB0JLhg679fpSRncgEcHPu9zvl4VwC87bylUUh9ivU/beLRZFHDzX43vgM1g28wz
B2HyvLTY4+8O4asnddDCAS+zQ1nJsZZWv77RUDKK5oXlWO9dSme7HXtkIh5MBC1z
2r+Oo8LSEblR47QFLlorZirTJGLfc3Qbam/g3WY+vMHEkkmmOGxLeR8aw77KY+vC
HZbTMLLNo5j6nzz3oIkGaNUDcz5t2r0nOnXoX4zoLujJFlbuuxi0kOY23QQkfaqs
GKar8UhybJJy6Yv+NoCyJSfHLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:57 2024 by rpki-client on console-ams.rpki-client.org