Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/6RKlohOq-1FIZgrTVnJTeGQT6e4.roa
File: 6RKlohOq-1FIZgrTVnJTeGQT6e4.roa (raw, json)
Hash identifier: DYaspZA8hFKdnycigI3DJn7tMK/UIE8jEHVu6LtSpHw=
Subject key identifier: E9:12:A5:A2:13:AA:FB:51:48:66:0A:D3:56:72:53:78:64:13:E9:EE
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 0D9B6284
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/6RKlohOq-1FIZgrTVnJTeGQT6e4.roa
Signing time: Sat 01 Jan 2022 04:53:39 +0000
ROA not before: Sat 01 Jan 2022 04:53:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205572
IP address blocks: 185.213.84.0/22 maxlen: 22
2a0b:8540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228287108 (0xd9b6284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Jan 1 04:53:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e912a5a213aafb5148660ad3567253786413e9ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:44:dd:5d:2a:c2:0f:af:2d:81:3d:41:b9:4c:
89:01:d1:93:a6:bf:8b:df:79:82:28:49:bb:f7:7f:
76:37:00:68:2f:e9:34:3a:b7:c0:63:e1:9c:08:85:
5e:4a:4e:90:6c:88:80:08:df:f7:65:db:f5:2a:23:
0c:a5:dd:96:ae:26:da:18:9a:99:5e:cf:a6:f3:20:
5f:89:d0:43:6b:36:39:9c:cb:25:a6:38:da:e5:45:
cf:ab:87:5b:10:1f:27:04:ef:4e:14:56:2c:ba:26:
65:b6:92:6f:08:1e:3f:d9:51:d1:f5:82:5d:79:2c:
90:02:23:8f:e5:6c:1e:15:d5:64:b9:3f:24:c7:53:
0d:46:39:f3:05:f3:4d:e3:e1:5a:c4:5b:9c:46:aa:
ce:74:46:d9:e6:e6:53:df:fb:03:3d:3a:da:c3:b0:
f3:94:fe:4f:c7:d8:e3:87:f5:ff:5c:39:4e:cd:a8:
c5:95:93:92:9f:64:c5:dc:5f:82:3b:84:cf:61:22:
c8:5a:28:35:f1:76:6b:73:bf:b6:8b:e8:e9:36:f9:
16:24:1d:87:c7:0d:fb:23:0f:cd:c3:3f:b0:e3:47:
39:24:95:7e:ce:36:1a:34:3e:58:b6:13:b2:31:05:
1e:31:cc:4a:e8:c5:03:19:e3:c9:06:bf:f4:c5:78:
4a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:12:A5:A2:13:AA:FB:51:48:66:0A:D3:56:72:53:78:64:13:E9:EE
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/6RKlohOq-1FIZgrTVnJTeGQT6e4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.84.0/22
IPv6:
2a0b:8540::/29
Signature Algorithm: sha256WithRSAEncryption
30:17:e2:21:8a:ca:3b:a1:4e:43:4b:44:bd:35:d7:36:2c:1e:
99:d9:61:9f:02:ba:8c:43:48:f6:47:a2:4e:09:a2:e6:c2:1b:
cc:fe:13:a4:37:20:a3:ec:2c:44:b7:c3:c1:75:f1:ac:59:b8:
e5:8f:1b:f1:1a:36:33:16:ca:9a:5e:48:c8:a0:30:f8:4b:d1:
c8:6d:43:f8:06:60:42:28:76:3d:7f:60:d1:60:3e:86:e4:9d:
c6:60:99:1e:e0:a1:95:83:ef:e0:e4:1b:29:5c:62:0d:0c:4a:
6f:4e:b9:48:c8:88:e6:3e:46:9f:3c:a7:19:41:b9:45:cb:59:
06:4c:c2:df:7a:af:c8:06:26:08:fe:12:3f:64:62:3b:90:c5:
60:e9:b8:db:f0:6e:f3:69:07:02:97:1c:da:9a:1f:a0:f2:36:
08:e9:97:d1:f5:8b:5c:d5:6b:3b:73:5f:cc:dc:bc:fe:1e:08:
6d:50:84:32:58:1e:b5:71:12:b1:f8:f7:b5:af:1f:c9:c4:49:
73:92:f7:3d:a6:41:c2:fb:49:ae:4c:7b:71:f6:2f:94:c0:44:
38:d5:6e:ac:cf:c9:18:45:84:86:29:8f:63:b9:24:1a:a7:37:
fe:65:fe:49:a7:7f:ce:0c:0b:f3:80:25:78:35:b7:4d:b4:dc:
d1:4f:02:1d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEDZtihDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NWFkYTkwMWQ0MDhiZjdmNWI5NDM1OTIxZTQ4MDBhOGY4MmRiZGFiMB4XDTIyMDEw
MTA0NTMzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTkxMmE1YTIxM2Fh
ZmI1MTQ4NjYwYWQzNTY3MjUzNzg2NDEzZTllZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVE3V0qwg+vLYE9QblMiQHRk6a/i995gihJu/d/djcAaC/p
NDq3wGPhnAiFXkpOkGyIgAjf92Xb9SojDKXdlq4m2hiamV7PpvMgX4nQQ2s2OZzL
JaY42uVFz6uHWxAfJwTvThRWLLomZbaSbwgeP9lR0fWCXXkskAIjj+VsHhXVZLk/
JMdTDUY58wXzTePhWsRbnEaqznRG2ebmU9/7Az062sOw85T+T8fY44f1/1w5Ts2o
xZWTkp9kxdxfgjuEz2EiyFooNfF2a3O/tovo6Tb5FiQdh8cN+yMPzcM/sONHOSSV
fs42GjQ+WLYTsjEFHjHMSujFAxnjyQa/9MV4SuUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTpEqWiE6r7UUhmCtNWclN4ZBPp7jAfBgNVHSMEGDAWgBT1rakB1Ai/f1uU
NZIeSACo+C29qzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlhMnBBZFFJdjM5YmxEV1NIa2dBcVBndHZhcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2UvYWZhNmQ2LTUwZjktNDFkNC1iN2NmLWEzMzY0OWUzZTJjNS8x
LzZSS2xvaE9xLTFGSVpnclRWbkpUZUdRVDZlNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Uv
YWZhNmQ2LTUwZjktNDFkNC1iN2NmLWEzMzY0OWUzZTJjNS8xLzlhMnBBZFFJdjM5
YmxEV1NIa2dBcVBndHZhcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnVVDANBAIAAjAHAwUDKguFQDAN
BgkqhkiG9w0BAQsFAAOCAQEAMBfiIYrKO6FOQ0tEvTXXNiwemdlhnwK6jENI9kei
Tgmi5sIbzP4TpDcgo+wsRLfDwXXxrFm45Y8b8Ro2MxbKml5IyKAw+EvRyG1D+AZg
Qih2PX9g0WA+huSdxmCZHuChlYPv4OQbKVxiDQxKb065SMiI5j5GnzynGUG5RctZ
BkzC33qvyAYmCP4SP2RiO5DFYOm42/Bu82kHApcc2pofoPI2COmX0fWLXNVrO3Nf
zNy8/h4IbVCEMlgetXESsfj3ta8fycRJc5L3PaZBwvtJrkx7cfYvlMBEONVurM/J
GEWEhimPY7kkGqc3/mX+Sad/zgwL84AleDW3TbTc0U8CHQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:32 2024 by rpki-client on console-ams.rpki-client.org