Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/7_MDw4XKp9E5OqmBQKmhiVczId8.roa
File: 7_MDw4XKp9E5OqmBQKmhiVczId8.roa (raw, json)
Hash identifier: L5hAiEjbsmVoUW0TbfTPYLt+di05EJkvFMgrPWA6dKk=
Subject key identifier: EF:F3:03:C3:85:CA:A7:D1:39:3A:A9:81:40:A9:A1:89:57:33:21:DF
Certificate issuer: /CN=d05a85c45bf53c3d88a76695aafebbd4aa77bbc1
Certificate serial: 15E60CD4
Authority key identifier: D0:5A:85:C4:5B:F5:3C:3D:88:A7:66:95:AA:FE:BB:D4:AA:77:BB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FqFxFv1PD2Ip2aVqv671Kp3u8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/7_MDw4XKp9E5OqmBQKmhiVczId8.roa
Signing time: Sat 01 Jan 2022 09:57:57 +0000
ROA not before: Sat 01 Jan 2022 09:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41071
IP address blocks: 185.88.116.0/23 maxlen: 23
185.88.116.0/22 maxlen: 22
185.88.118.0/23 maxlen: 23
2a05:ca40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367398100 (0x15e60cd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d05a85c45bf53c3d88a76695aafebbd4aa77bbc1
Validity
Not Before: Jan 1 09:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eff303c385caa7d1393aa98140a9a189573321df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:64:ec:02:b1:63:75:7e:c8:c8:6c:25:7f:65:
00:af:0b:87:54:4a:e1:aa:c3:e6:1c:7b:93:a6:c6:
00:ef:9c:43:88:64:41:fb:13:64:03:5f:3d:28:df:
3c:17:24:64:11:ce:f1:9c:b9:27:b0:a2:d0:ed:35:
41:01:e4:64:fc:4f:5c:0e:55:20:ae:2f:78:20:81:
13:9b:2f:2d:7a:bf:37:53:e7:25:a6:11:36:5e:c9:
80:76:95:5a:f9:f5:6c:b6:fa:12:13:c3:fc:d1:7e:
63:85:fb:eb:60:71:84:30:c6:05:45:89:3c:d5:4e:
3b:38:ed:17:a7:54:e5:53:2e:73:00:7c:37:9b:7b:
71:d2:0b:a4:00:f0:00:12:b0:8c:b1:b1:42:55:dd:
20:28:60:2a:ca:03:57:9a:6e:f7:02:97:1e:40:57:
59:b7:59:57:f6:02:1b:4a:52:49:eb:f0:09:05:d8:
08:cd:b8:31:b1:82:44:d4:c8:bf:06:40:fc:2c:c1:
5f:c8:21:84:78:94:73:0d:62:70:1e:d3:66:ed:9b:
5e:a6:e0:8f:52:5a:ee:b7:b6:31:0b:8b:25:9e:dd:
62:01:fd:67:4c:fa:0c:3a:1b:93:e6:8a:c1:9b:b6:
3b:24:6a:ab:7a:e7:af:96:82:cd:93:2f:25:b1:06:
22:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F3:03:C3:85:CA:A7:D1:39:3A:A9:81:40:A9:A1:89:57:33:21:DF
X509v3 Authority Key Identifier:
keyid:D0:5A:85:C4:5B:F5:3C:3D:88:A7:66:95:AA:FE:BB:D4:AA:77:BB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FqFxFv1PD2Ip2aVqv671Kp3u8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/7_MDw4XKp9E5OqmBQKmhiVczId8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/0FqFxFv1PD2Ip2aVqv671Kp3u8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.116.0/22
IPv6:
2a05:ca40::/29
Signature Algorithm: sha256WithRSAEncryption
25:98:fd:43:7b:bf:e2:03:9f:f5:a5:89:66:6a:6e:65:7b:ee:
01:d0:28:f9:ba:77:f0:cd:05:51:11:59:b4:7b:d2:9e:c8:7b:
9f:d6:cf:a5:e4:d7:5a:94:f2:99:65:6b:c7:15:b3:f0:33:e4:
98:4d:14:df:06:e4:ee:c8:8b:d6:15:17:34:ba:08:2e:dc:22:
dc:63:bf:53:c6:59:2f:bd:ca:d5:1e:9c:21:95:4e:29:78:fd:
f3:2f:5a:5f:6f:4f:ad:28:5f:be:75:56:eb:76:11:6d:3f:2f:
d7:56:fb:39:b2:2c:1a:da:88:cf:7b:34:26:3b:ae:06:95:40:
a2:56:96:81:b9:7a:31:50:2d:04:98:21:bb:bb:fc:37:0f:e7:
1c:12:d3:aa:98:e9:7d:df:b9:21:09:0b:30:3a:09:6c:96:58:
82:dc:5c:5d:4a:d6:80:33:09:8c:5a:e6:8b:90:78:70:72:57:
3a:56:8c:2a:d4:8c:6f:11:d8:ba:02:7c:eb:28:b2:d2:07:40:
09:ee:db:ec:df:21:4d:73:10:ff:f3:ac:47:18:6f:88:cb:73:
ba:67:02:7f:a6:78:df:cf:fe:bc:09:d2:38:54:32:15:44:22:
84:f5:59:ba:d5:56:a5:c6:77:5e:08:56:00:f1:03:59:46:d5:
0a:f4:29:fe
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFeYM1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDVhODVjNDViZjUzYzNkODhhNzY2OTVhYWZlYmJkNGFhNzdiYmMxMB4XDTIyMDEw
MTA5NTc1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWZmMzAzYzM4NWNh
YTdkMTM5M2FhOTgxNDBhOWExODk1NzMzMjFkZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALdk7AKxY3V+yMhsJX9lAK8Lh1RK4arD5hx7k6bGAO+cQ4hk
QfsTZANfPSjfPBckZBHO8Zy5J7Ci0O01QQHkZPxPXA5VIK4veCCBE5svLXq/N1Pn
JaYRNl7JgHaVWvn1bLb6EhPD/NF+Y4X762BxhDDGBUWJPNVOOzjtF6dU5VMucwB8
N5t7cdILpADwABKwjLGxQlXdIChgKsoDV5pu9wKXHkBXWbdZV/YCG0pSSevwCQXY
CM24MbGCRNTIvwZA/CzBX8ghhHiUcw1icB7TZu2bXqbgj1Ja7re2MQuLJZ7dYgH9
Z0z6DDobk+aKwZu2OyRqq3rnr5aCzZMvJbEGIsECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTv8wPDhcqn0Tk6qYFAqaGJVzMh3zAfBgNVHSMEGDAWgBTQWoXEW/U8PYin
ZpWq/rvUqne7wTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBGcUZ4RnYxUEQySXAyYVZxdjY3MUtwM3U4RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvNTQ5NDc3LTRhODItNDJiYy04MzllLTRmOTg0MGRlZmExZi8x
LzdfTUR3NFhLcDlFNU9xbUJRS21oaVZjeklkOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
NTQ5NDc3LTRhODItNDJiYy04MzllLTRmOTg0MGRlZmExZi8xLzBGcUZ4RnYxUEQy
SXAyYVZxdjY3MUtwM3U4RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlYdDANBAIAAjAHAwUDKgXKQDAN
BgkqhkiG9w0BAQsFAAOCAQEAJZj9Q3u/4gOf9aWJZmpuZXvuAdAo+bp38M0FURFZ
tHvSnsh7n9bPpeTXWpTymWVrxxWz8DPkmE0U3wbk7siL1hUXNLoILtwi3GO/U8ZZ
L73K1R6cIZVOKXj98y9aX29PrShfvnVW63YRbT8v11b7ObIsGtqIz3s0JjuuBpVA
olaWgbl6MVAtBJghu7v8Nw/nHBLTqpjpfd+5IQkLMDoJbJZYgtxcXUrWgDMJjFrm
i5B4cHJXOlaMKtSMbxHYugJ86yiy0gdACe7b7N8hTXMQ//OsRxhviMtzumcCf6Z4
38/+vAnSOFQyFUQihPVZutVWpcZ3XghWAPEDWUbVCvQp/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:15 2024 by rpki-client on console-ams.rpki-client.org