Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/bm_Rt9bUUBu3luwebTRg3Ge2EhI.roa
File: bm_Rt9bUUBu3luwebTRg3Ge2EhI.roa (raw, json)
Hash identifier: nYE7SPBILMII4xqZmIlvs2a+R0Yeuv+HuUJxVkpr3a4=
Subject key identifier: 6E:6F:D1:B7:D6:D4:50:1B:B7:96:EC:1E:6D:34:60:DC:67:B6:12:12
Certificate issuer: /CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Certificate serial: 01839704A90EEA794E4DAF93805549B41F07
Authority key identifier: EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/bm_Rt9bUUBu3luwebTRg3Ge2EhI.roa
Signing time: Sun 02 Oct 2022 04:46:48 +0000
ROA not before: Sun 02 Oct 2022 04:46:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 85.117.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:97:04:a9:0e:ea:79:4e:4d:af:93:80:55:49:b4:1f:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Validity
Not Before: Oct 2 04:46:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e6fd1b7d6d4501bb796ec1e6d3460dc67b61212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:74:97:f2:3e:cc:79:e7:5f:c2:e2:f5:fc:a1:
ec:38:1e:7c:1c:96:61:1c:69:f3:f8:19:6e:32:c4:
6c:64:a1:e2:5f:96:72:94:cd:ef:cb:07:c2:7e:51:
89:17:c6:d9:05:e5:04:5f:cf:bd:20:d8:3f:c2:d4:
45:a9:f9:fa:14:97:06:87:e1:c4:e7:10:d8:2a:22:
03:72:41:cd:58:6c:23:21:67:1f:3a:7e:9b:dc:84:
91:bb:73:1f:70:1c:f7:09:bb:cd:3a:0b:28:42:0c:
68:cf:3f:1c:e8:46:c4:90:c8:85:a2:a3:ab:1d:4f:
48:5b:42:d5:22:7b:5a:3a:1e:eb:c9:96:d9:2a:07:
8b:70:6f:42:85:35:ac:01:dd:3b:62:5f:46:7f:62:
4a:0b:3e:60:a7:28:2f:03:a5:6d:bc:38:5d:62:86:
c4:64:fd:53:1d:65:30:8a:51:85:ff:3f:31:2d:c9:
90:e4:03:4b:2f:96:fe:43:f5:14:39:21:df:03:d6:
45:73:1d:64:1d:05:b6:85:61:f7:5d:c7:3a:c3:7a:
05:fd:d9:18:9a:81:2f:74:04:03:43:76:e7:c4:7f:
1c:20:c5:32:d2:ca:31:55:f1:2a:5c:3a:97:2c:5d:
f9:4f:e6:c4:58:c9:e5:7e:72:27:13:70:20:9e:cf:
19:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:6F:D1:B7:D6:D4:50:1B:B7:96:EC:1E:6D:34:60:DC:67:B6:12:12
X509v3 Authority Key Identifier:
keyid:EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/bm_Rt9bUUBu3luwebTRg3Ge2EhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/7_2zPuX9Ui-vCiR-BXm78e785LE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:49:81:87:8d:9a:34:ab:ea:06:ca:6c:36:3e:b4:a2:91:b8:
56:ca:78:9d:4d:78:c1:b3:85:74:4d:16:35:2a:cd:87:ec:4c:
ca:27:c7:b0:4d:41:a1:c0:88:5c:d4:74:25:51:ec:16:c2:e8:
0c:e9:82:51:a3:74:6c:02:7b:5b:2d:ac:5b:a9:d5:8b:f1:25:
4d:4f:c8:d1:40:e5:f8:d5:ad:b3:74:16:31:0b:d5:e5:ac:bb:
11:6c:42:04:7d:f5:a9:eb:83:82:43:31:53:52:50:8d:8a:16:
34:c5:02:1f:63:62:b6:78:af:e4:21:89:c0:d2:56:f6:02:0e:
30:5d:1a:14:29:60:14:58:e5:80:e6:34:8e:fc:ca:46:c5:c5:
ab:5c:eb:10:4c:a5:72:17:bb:12:32:fe:f0:4c:ab:a1:47:20:
62:6b:6a:ee:f4:01:0f:e6:da:65:ad:cf:2e:3c:7a:aa:b3:fe:
eb:bb:04:69:05:97:6d:e8:d5:ac:9a:9d:53:d9:26:30:d5:ff:
4b:a1:2f:ab:5d:3f:5b:c1:13:06:33:6d:75:3c:32:22:36:a3:
e9:c1:36:fe:60:3c:2c:f2:43:27:eb:25:43:6b:f0:08:b8:d9:
50:82:73:40:e0:08:a5:9a:85:d4:1d:57:2d:40:0a:ee:36:d0:
63:71:aa:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOXBKkO6nlOTa+TgFVJtB8HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmZmRiMzNlZTVmZDUyMmZhZjBhMjQ3ZTA1NzliYmYxZWVm
Y2U0YjEwHhcNMjIxMDAyMDQ0NjQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTZmZDFiN2Q2ZDQ1MDFiYjc5NmVjMWU2ZDM0NjBkYzY3YjYxMjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XSX8j7MeedfwuL1/KHsOB58HJZh
HGnz+BluMsRsZKHiX5ZylM3vywfCflGJF8bZBeUEX8+9INg/wtRFqfn6FJcGh+HE
5xDYKiIDckHNWGwjIWcfOn6b3ISRu3MfcBz3CbvNOgsoQgxozz8c6EbEkMiFoqOr
HU9IW0LVIntaOh7ryZbZKgeLcG9ChTWsAd07Yl9Gf2JKCz5gpygvA6VtvDhdYobE
ZP1THWUwilGF/z8xLcmQ5ANLL5b+Q/UUOSHfA9ZFcx1kHQW2hWH3Xcc6w3oF/dkY
moEvdAQDQ3bnxH8cIMUy0soxVfEqXDqXLF35T+bEWMnlfnInE3Agns8ZCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG5v0bfW1FAbt5bsHm00YNxnthISMB8GA1UdIwQY
MBaAFO/9sz7l/VIvrwokfgV5u/Hu/OSxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN18yelB1WDlVaS12Q2lSLUJYbTc4ZTc4NUxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZDI0YTUtZWFjZC00NmU0LWIxZGIt
YWQ3M2FiZDAwNDUyLzEvYm1fUnQ5YlVVQnUzbHV3ZWJUUmczR2UyRWhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZDI0YTUtZWFjZC00NmU0LWIxZGItYWQ3M2FiZDAwNDUy
LzEvN18yelB1WDlVaS12Q2lSLUJYbTc4ZTc4NUxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXXvMA0G
CSqGSIb3DQEBCwUAA4IBAQCiSYGHjZo0q+oGymw2PrSikbhWynidTXjBs4V0TRY1
Ks2H7EzKJ8ewTUGhwIhc1HQlUewWwugM6YJRo3RsAntbLaxbqdWL8SVNT8jRQOX4
1a2zdBYxC9XlrLsRbEIEffWp64OCQzFTUlCNihY0xQIfY2K2eK/kIYnA0lb2Ag4w
XRoUKWAUWOWA5jSO/MpGxcWrXOsQTKVyF7sSMv7wTKuhRyBia2ru9AEP5tplrc8u
PHqqs/7ruwRpBZdt6NWsmp1T2SYw1f9LoS+rXT9bwRMGM211PDIiNqPpwTb+YDws
8kMn6yVDa/AIuNlQgnNA4AilmoXUHVctQAruNtBjcapd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:04 2024 by rpki-client on console-ams.rpki-client.org