Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/_1_I4BKB7utDYisjtFqKxObtkNk.roa
File: _1_I4BKB7utDYisjtFqKxObtkNk.roa (raw, json)
Hash identifier: wVunMv0SyBKPRPNa1WRNqYZR/Q/hbltUny97hCpDvDc=
Subject key identifier: FF:5F:C8:E0:12:81:EE:EB:43:62:2B:23:B4:5A:8A:C4:E6:ED:90:D9
Certificate issuer: /CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Certificate serial: 087AE0E7
Authority key identifier: 1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/_1_I4BKB7utDYisjtFqKxObtkNk.roa
Signing time: Sat 01 Jan 2022 07:04:19 +0000
ROA not before: Sat 01 Jan 2022 07:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204512
IP address blocks: 185.118.108.0/24 maxlen: 24
2a0e:9000::/32 maxlen: 32
2a0e:9000:1::/48 maxlen: 48
2a0e:9000:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142270695 (0x87ae0e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Validity
Not Before: Jan 1 07:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff5fc8e01281eeeb43622b23b45a8ac4e6ed90d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:34:5e:89:fa:7d:79:9f:b7:e2:83:4b:f3:75:
7e:b0:f4:b2:e1:40:80:32:0b:46:9e:92:12:cd:07:
f7:81:89:52:52:da:0d:05:61:24:1a:28:52:8c:ee:
d7:ac:b4:69:a2:ca:14:15:0e:3d:a6:a2:a2:14:fb:
75:86:9a:fe:07:fc:cf:c7:e5:9b:23:bd:1a:74:7f:
a6:39:56:27:0c:5a:2f:a1:e6:b2:00:c2:ce:53:9e:
d3:a3:d3:ab:06:05:9b:c3:e0:c5:89:dc:a5:8e:1f:
28:72:a9:fa:45:f8:a4:da:28:64:fb:8f:d5:87:ee:
c1:86:1f:a6:d8:81:a5:79:47:bf:af:b7:b2:72:d0:
ad:e7:41:61:56:ea:64:a4:18:95:a4:fc:dd:31:2b:
f2:b4:a3:ce:01:78:4c:d6:76:cc:0e:77:26:2b:f6:
83:e6:2a:24:d2:37:fa:be:47:45:08:c5:f3:ee:38:
b6:93:fe:29:e3:09:11:0f:15:1e:a2:c5:a6:3c:52:
ac:94:7d:17:11:60:30:9d:91:4d:bd:b1:dd:43:bd:
59:11:e2:6f:a7:28:5b:17:29:1c:da:84:bd:7a:ec:
2a:53:b6:31:7b:9b:a2:ae:42:f3:f5:26:18:74:cb:
5d:0c:08:0c:48:23:f9:31:4d:ff:70:af:fc:cc:7a:
10:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:5F:C8:E0:12:81:EE:EB:43:62:2B:23:B4:5A:8A:C4:E6:ED:90:D9
X509v3 Authority Key Identifier:
keyid:1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/_1_I4BKB7utDYisjtFqKxObtkNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/HQhx_C6ZiS6hEVowITjh0ypiGCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.108.0/24
IPv6:
2a0e:9000::/32
Signature Algorithm: sha256WithRSAEncryption
0c:46:2b:17:f7:35:69:a8:87:fd:28:5c:ff:6b:16:1b:78:ef:
63:fa:0b:84:2e:46:e9:1c:43:33:de:8b:53:e6:4f:99:34:81:
e0:7e:af:ed:29:26:dd:af:45:76:c2:a1:8b:d9:11:ac:da:4b:
36:0c:8d:42:7b:6f:79:5c:c6:dd:82:67:f4:67:94:a4:db:a5:
ad:6f:94:8d:98:f2:8a:cc:50:d6:6d:ed:04:83:e6:81:6c:2d:
f5:b8:93:c0:c4:b5:27:cb:a9:5f:a7:7e:8e:19:1b:ed:be:67:
0e:55:45:7b:e8:35:45:0c:aa:de:4c:27:b0:a4:72:51:f6:ea:
6a:bd:84:1d:49:4d:06:fd:ea:4d:41:0b:45:67:af:53:0e:aa:
e9:07:43:66:11:ea:dc:4d:5a:50:a7:e8:62:cd:2f:fd:5f:c3:
be:c8:2a:5a:e5:79:93:d2:b3:46:b3:ff:1d:5d:c0:8d:a0:e7:
9c:cf:37:52:b4:8c:8c:b1:20:93:6f:60:8f:3f:b1:44:a0:e9:
0d:a8:bd:aa:4e:35:7d:6f:cf:06:7a:ed:ba:ca:c5:f1:94:d9:
c5:0f:01:fc:21:fc:b6:6e:01:3f:09:27:0a:01:f3:b1:c5:1d:
4d:84:78:30:90:80:24:0b:62:a8:e2:e7:ea:4a:13:e2:d8:b5:
81:57:5d:80
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECHrg5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDA4NzFmYzJlOTk4OTJlYTExMTVhMzAyMTM4ZTFkMzJhNjIxODJjMB4XDTIyMDEw
MTA3MDQxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmY1ZmM4ZTAxMjgx
ZWVlYjQzNjIyYjIzYjQ1YThhYzRlNmVkOTBkOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANg0Xon6fXmft+KDS/N1frD0suFAgDILRp6SEs0H94GJUlLa
DQVhJBooUozu16y0aaLKFBUOPaaiohT7dYaa/gf8z8flmyO9GnR/pjlWJwxaL6Hm
sgDCzlOe06PTqwYFm8PgxYncpY4fKHKp+kX4pNooZPuP1YfuwYYfptiBpXlHv6+3
snLQredBYVbqZKQYlaT83TEr8rSjzgF4TNZ2zA53Jiv2g+YqJNI3+r5HRQjF8+44
tpP+KeMJEQ8VHqLFpjxSrJR9FxFgMJ2RTb2x3UO9WRHib6coWxcpHNqEvXrsKlO2
MXuboq5C8/UmGHTLXQwIDEgj+TFN/3Cv/Mx6EH0CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBT/X8jgEoHu60NiKyO0WorE5u2Q2TAfBgNVHSMEGDAWgBQdCHH8LpmJLqER
WjAhOOHTKmIYLDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hRaHhfQzZaaVM2aEVWb3dJVGpoMHlwaUdDdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjcvMjA1Mjc1LTJjZWQtNGE0ZS1iOTAwLTRmM2U1YjJlMGM1Ni8x
L18xX0k0QktCN3V0RFlpc2p0RnFLeE9idGtOay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcv
MjA1Mjc1LTJjZWQtNGE0ZS1iOTAwLTRmM2U1YjJlMGM1Ni8xL0hRaHhfQzZaaVM2
aEVWb3dJVGpoMHlwaUdDdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALl2bDANBAIAAjAHAwUAKg6QADAN
BgkqhkiG9w0BAQsFAAOCAQEADEYrF/c1aaiH/Shc/2sWG3jvY/oLhC5G6RxDM96L
U+ZPmTSB4H6v7Skm3a9FdsKhi9kRrNpLNgyNQntveVzG3YJn9GeUpNulrW+UjZjy
isxQ1m3tBIPmgWwt9biTwMS1J8upX6d+jhkb7b5nDlVFe+g1RQyq3kwnsKRyUfbq
ar2EHUlNBv3qTUELRWevUw6q6QdDZhHq3E1aUKfoYs0v/V/DvsgqWuV5k9KzRrP/
HV3AjaDnnM83UrSMjLEgk29gjz+xRKDpDai9qk41fW/PBnrtusrF8ZTZxQ8B/CH8
tm4BPwknCgHzscUdTYR4MJCAJAtiqOLn6koT4ti1gVddgA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:08 2024 by rpki-client on console-ams.rpki-client.org