Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/1-15wj_zZqiCW55g5V9bCL4LnnVg.roa
File: 1-15wj_zZqiCW55g5V9bCL4LnnVg.roa (raw, json)
Hash identifier: pk2WmgPJBhFDHZ72YmCi4hvJhpiLyeTLQH+mCl6Hk/s=
Subject key identifier: FB:5E:70:8F:FC:D9:AA:20:96:E7:98:39:57:D6:C2:2F:82:E7:9D:58
Certificate issuer: /CN=d05a85c45bf53c3d88a76695aafebbd4aa77bbc1
Certificate serial: 15E653C1
Authority key identifier: D0:5A:85:C4:5B:F5:3C:3D:88:A7:66:95:AA:FE:BB:D4:AA:77:BB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FqFxFv1PD2Ip2aVqv671Kp3u8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/1-15wj_zZqiCW55g5V9bCL4LnnVg.roa
Signing time: Sat 01 Jan 2022 09:57:57 +0000
ROA not before: Sat 01 Jan 2022 09:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41906
IP address blocks: 185.88.118.0/23 maxlen: 23
185.88.116.0/23 maxlen: 23
185.88.116.0/22 maxlen: 22
2a05:ca40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367416257 (0x15e653c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d05a85c45bf53c3d88a76695aafebbd4aa77bbc1
Validity
Not Before: Jan 1 09:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb5e708ffcd9aa2096e7983957d6c22f82e79d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3d:8c:29:ab:19:09:59:c6:dd:0f:60:b0:77:
ee:25:a3:0d:63:fd:ea:e2:f2:b0:fb:99:33:77:ce:
37:e9:ff:3c:c9:c6:89:57:8d:96:50:bc:c4:54:a5:
79:c3:ac:4c:2b:f5:bc:e7:4b:cf:d4:9e:c3:a9:62:
28:9b:56:3d:38:8e:95:4a:af:a4:de:34:3c:df:cf:
88:d8:6e:4c:ed:a4:e7:2c:02:ac:f8:4c:c9:af:80:
e0:33:91:cb:28:1e:bf:2e:02:d0:b2:c7:18:2e:5b:
46:c1:49:c2:5d:98:88:69:ad:db:76:5e:de:82:1b:
91:b0:c0:79:00:f7:51:49:c9:d0:ba:b2:8f:33:4e:
63:5f:2d:ab:e2:16:5d:80:46:6b:ea:19:7b:34:41:
10:bf:9e:b6:e4:56:d4:be:68:c4:e9:ac:6a:a2:6a:
61:ba:6f:78:5a:62:a1:6b:ef:d0:29:5d:5d:16:c5:
ca:69:6f:cf:4c:3f:91:de:17:11:85:23:86:f7:37:
e7:78:e3:cc:f5:aa:56:37:e5:64:37:e7:58:86:5d:
f5:1b:63:7a:5d:28:74:f5:95:65:69:ea:98:0f:d8:
6a:eb:df:47:da:27:9e:42:1e:e6:24:38:c3:4a:30:
ae:ae:34:ba:fa:ef:0a:62:dc:b6:e8:cc:7f:39:72:
4e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:5E:70:8F:FC:D9:AA:20:96:E7:98:39:57:D6:C2:2F:82:E7:9D:58
X509v3 Authority Key Identifier:
keyid:D0:5A:85:C4:5B:F5:3C:3D:88:A7:66:95:AA:FE:BB:D4:AA:77:BB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FqFxFv1PD2Ip2aVqv671Kp3u8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/1-15wj_zZqiCW55g5V9bCL4LnnVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/0FqFxFv1PD2Ip2aVqv671Kp3u8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.116.0/22
IPv6:
2a05:ca40::/29
Signature Algorithm: sha256WithRSAEncryption
a9:7f:36:14:07:08:29:52:8c:93:c7:cf:cc:95:24:24:de:b8:
7d:05:a3:0f:52:ae:77:f1:03:7b:ab:fe:d2:b0:61:38:b5:92:
89:74:d7:74:71:a8:85:73:e9:9f:3c:30:d9:59:45:d8:a8:4d:
95:0f:df:7f:7c:28:bb:20:b6:de:a6:a7:ba:c0:26:8d:a5:94:
e3:cf:3b:35:58:ae:f5:ed:70:cb:3b:5f:8a:89:1f:7c:a4:fb:
fc:92:99:61:74:4e:0a:42:72:43:70:04:a5:ce:d1:59:b1:34:
25:f2:b3:ea:a0:49:31:b9:2a:4a:7d:07:43:d2:28:21:fc:37:
73:78:f5:37:41:1a:fe:3e:a2:f0:0f:4e:c4:a5:9f:91:0a:30:
38:8b:cd:4a:ee:df:de:99:e2:4b:35:8e:12:73:38:34:1f:4a:
0a:ed:46:38:da:91:e8:aa:ce:5e:2a:a7:2c:14:f9:9c:77:d0:
7a:16:0e:0f:f5:9f:b8:be:9e:5a:58:ea:08:f2:03:bb:6d:32:
bc:39:0b:29:e0:dd:85:b3:52:d8:1f:2b:cb:89:c5:f6:b2:f2:
39:2c:9f:76:29:c4:9b:8f:81:76:12:97:38:9e:8a:ea:74:07:
7c:81:3d:8d:6a:d6:50:26:12:b5:25:fc:14:09:8d:85:57:dc:
32:3a:73:f0
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIEFeZTwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDVhODVjNDViZjUzYzNkODhhNzY2OTVhYWZlYmJkNGFhNzdiYmMxMB4XDTIyMDEw
MTA5NTc1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmI1ZTcwOGZmY2Q5
YWEyMDk2ZTc5ODM5NTdkNmMyMmY4MmU3OWQ1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANw9jCmrGQlZxt0PYLB37iWjDWP96uLysPuZM3fON+n/PMnG
iVeNllC8xFSlecOsTCv1vOdLz9Sew6liKJtWPTiOlUqvpN40PN/PiNhuTO2k5ywC
rPhMya+A4DORyygevy4C0LLHGC5bRsFJwl2YiGmt23Ze3oIbkbDAeQD3UUnJ0Lqy
jzNOY18tq+IWXYBGa+oZezRBEL+etuRW1L5oxOmsaqJqYbpveFpioWvv0CldXRbF
ymlvz0w/kd4XEYUjhvc353jjzPWqVjflZDfnWIZd9Rtjel0odPWVZWnqmA/Yauvf
R9onnkIe5iQ4w0owrq40uvrvCmLctujMfzlyTmcCAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBT7XnCP/NmqIJbnmDlX1sIvguedWDAfBgNVHSMEGDAWgBTQWoXEW/U8PYin
ZpWq/rvUqne7wTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBGcUZ4RnYxUEQySXAyYVZxdjY3MUtwM3U4RS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvNTQ5NDc3LTRhODItNDJiYy04MzllLTRmOTg0MGRlZmExZi8x
LzEtMTV3al96WnFpQ1c1NWc1VjliQ0w0TG5uVmcucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc1
LzU0OTQ3Ny00YTgyLTQyYmMtODM5ZS00Zjk4NDBkZWZhMWYvMS8wRnFGeEZ2MVBE
MklwMmFWcXY2NzFLcDN1OEUuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
LgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAK5WHQwDQQCAAIwBwMFAyoFykAw
DQYJKoZIhvcNAQELBQADggEBAKl/NhQHCClSjJPHz8yVJCTeuH0Fow9SrnfxA3ur
/tKwYTi1kol013RxqIVz6Z88MNlZRdioTZUP3398KLsgtt6mp7rAJo2llOPPOzVY
rvXtcMs7X4qJH3yk+/ySmWF0TgpCckNwBKXO0VmxNCXys+qgSTG5Kkp9B0PSKCH8
N3N49TdBGv4+ovAPTsSln5EKMDiLzUru396Z4ks1jhJzODQfSgrtRjjakeiqzl4q
pywU+Zx30HoWDg/1n7i+nlpY6gjyA7ttMrw5Cyng3YWzUtgfK8uJxfay8jksn3Yp
xJuPgXYSlzieiup0B3yBPY1q1lAmErUl/BQJjYVX3DI6c/A=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:13 2024 by rpki-client on console-fra.rpki-client.org