Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/4umDYjaTCH6i1gHgE1nEiztaU2U.roa
File: 4umDYjaTCH6i1gHgE1nEiztaU2U.roa (raw, json)
Hash identifier: dQpugeHNrdthjOGoqSci7TuU9aPnHZemJENOIpPqMqY=
Subject key identifier: E2:E9:83:62:36:93:08:7E:A2:D6:01:E0:13:59:C4:8B:3B:5A:53:65
Certificate issuer: /CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Certificate serial: 53DCE0
Authority key identifier: E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/4umDYjaTCH6i1gHgE1nEiztaU2U.roa
Signing time: Wed 16 Mar 2022 13:41:34 +0000
ROA not before: Wed 16 Mar 2022 13:41:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56694
IP address blocks: 185.108.223.0/24 maxlen: 24
185.108.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5496032 (0x53dce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Validity
Not Before: Mar 16 13:41:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2e983623693087ea2d601e01359c48b3b5a5365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e6:3b:5b:65:21:be:be:94:1d:62:59:6e:dc:
cd:ed:b2:06:e3:ee:47:38:24:4e:22:60:f4:71:1f:
b8:cf:f1:ba:1b:81:74:6b:d8:64:2d:5e:99:d5:01:
16:3c:df:77:cc:b9:fd:78:15:9d:f5:bc:ab:1c:07:
72:9a:31:98:29:3d:f4:51:ef:d4:c1:1f:10:fa:79:
3a:54:a1:3b:9d:80:8e:26:05:d5:d0:9a:f0:0d:26:
10:f0:13:54:da:a2:74:57:d4:ea:c1:59:2e:da:2d:
f4:94:4d:d8:4d:60:5c:b6:78:47:71:0c:a6:69:78:
f0:3c:1b:1c:83:47:ba:a4:34:19:ca:03:1a:fe:71:
f4:2c:29:f6:59:f3:e8:ed:ad:ea:e8:8a:60:c2:65:
4c:7e:fb:7e:19:1f:15:5e:0c:e7:81:c6:cd:62:9e:
8f:f4:1e:b1:cc:25:da:2b:8c:61:eb:de:b5:aa:8f:
84:26:fc:5d:16:b9:66:b3:03:41:08:b9:ce:99:05:
e6:4f:8c:22:72:a1:7e:6d:05:33:e5:5e:e9:f3:11:
4f:71:96:f2:8d:db:db:a4:56:6e:bc:67:5f:af:93:
27:69:25:c2:40:50:cd:75:ae:8e:62:93:82:7a:8f:
78:03:e2:c9:a6:25:67:ae:61:59:1d:2c:9a:77:27:
56:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E9:83:62:36:93:08:7E:A2:D6:01:E0:13:59:C4:8B:3B:5A:53:65
X509v3 Authority Key Identifier:
keyid:E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/4umDYjaTCH6i1gHgE1nEiztaU2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/5J2_PERGjlJBHUhhhWvwvceQY-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.222.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:a8:f6:69:15:a9:8b:d5:63:bc:97:3d:53:a4:0b:69:b8:3b:
b9:45:cd:73:6f:b0:4e:5e:11:7a:7a:91:1e:33:f0:de:04:77:
c7:8b:f3:04:61:fa:c7:59:e3:56:3c:96:49:36:31:ed:c8:17:
35:05:cd:c0:cf:29:de:f7:74:80:40:91:4a:77:64:05:67:66:
fb:ed:0e:40:8c:4d:69:5c:b2:c4:15:ff:3c:58:09:47:94:d9:
97:fe:cb:bf:f8:6b:aa:78:f6:e1:10:2b:d3:08:6e:ae:49:1e:
fa:ce:d7:52:ad:cc:49:cb:7b:95:d9:fa:29:de:45:55:00:53:
28:98:16:7d:03:82:3a:a1:c2:27:c2:dc:84:7f:cb:fe:4d:54:
64:78:ba:1e:87:82:92:96:be:37:85:31:08:b2:94:31:67:b5:
e5:9e:fa:81:b8:a1:42:14:90:16:33:65:32:86:9b:32:79:bb:
a2:89:76:a4:08:e8:61:83:6d:d3:1f:7a:96:a9:dd:92:2c:a6:
81:fa:77:27:b1:5a:a8:21:0d:98:65:e4:50:37:16:ea:15:6d:
19:43:8e:f6:c2:ee:9e:cc:e2:b4:ff:fa:1b:cb:09:23:e1:79:
81:66:97:fd:4e:a1:f9:52:e9:b8:bf:d8:4b:1b:52:60:6e:af:
83:a9:a3:2c
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDU9zgMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGU0
OWRiZjNjNDQ0NjhlNTI0MTFkNDg2MTg1NmJmMGJkYzc5MDYzZTQwHhcNMjIwMzE2
MTM0MTM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlMmU5ODM2MjM2OTMw
ODdlYTJkNjAxZTAxMzU5YzQ4YjNiNWE1MzY1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAweY7W2Uhvr6UHWJZbtzN7bIG4+5HOCROImD0cR+4z/G6G4F0
a9hkLV6Z1QEWPN93zLn9eBWd9byrHAdymjGYKT30Ue/UwR8Q+nk6VKE7nYCOJgXV
0JrwDSYQ8BNU2qJ0V9TqwVku2i30lE3YTWBctnhHcQymaXjwPBscg0e6pDQZygMa
/nH0LCn2WfPo7a3q6IpgwmVMfvt+GR8VXgzngcbNYp6P9B6xzCXaK4xh6961qo+E
JvxdFrlmswNBCLnOmQXmT4wicqF+bQUz5V7p8xFPcZbyjdvbpFZuvGdfr5MnaSXC
QFDNda6OYpOCeo94A+LJpiVnrmFZHSyadydW4wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFOLpg2I2kwh+otYB4BNZxIs7WlNlMB8GA1UdIwQYMBaAFOSdvzxERo5SQR1I
YYVr8L3HkGPkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NUoyX1BFUkdqbEpCSFVoaGhXdnd2Y2VRWS1RLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wYS82ZTQ1N2UtMzY2ZC00NDBiLWFmMmMtNWNhZGJkY2YyMjE1LzEv
NHVtRFlqYVRDSDZpMWdIZ0UxbkVpenRhVTJVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS82
ZTQ1N2UtMzY2ZC00NDBiLWFmMmMtNWNhZGJkY2YyMjE1LzEvNUoyX1BFUkdqbEpC
SFVoaGhXdnd2Y2VRWS1RLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuWzeMA0GCSqGSIb3DQEBCwUAA4IB
AQB9qPZpFamL1WO8lz1TpAtpuDu5Rc1zb7BOXhF6epEeM/DeBHfHi/MEYfrHWeNW
PJZJNjHtyBc1Bc3Azyne93SAQJFKd2QFZ2b77Q5AjE1pXLLEFf88WAlHlNmX/su/
+GuqePbhECvTCG6uSR76ztdSrcxJy3uV2fop3kVVAFMomBZ9A4I6ocInwtyEf8v+
TVRkeLoeh4KSlr43hTEIspQxZ7XlnvqBuKFCFJAWM2UyhpsyebuiiXakCOhhg23T
H3qWqd2SLKaB+ncnsVqoIQ2YZeRQNxbqFW0ZQ472wu6ezOK0//obywkj4XmBZpf9
TqH5Uum4v9hLG1Jgbq+DqaMs
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:12 2024 by rpki-client on console-ams.rpki-client.org