Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/aWnRQ3J5ObBCKFU1aB4onYR5gq8.roa
File: aWnRQ3J5ObBCKFU1aB4onYR5gq8.roa (raw, json)
Hash identifier: pEJwzpO0+lJT7Ww2cdphIzMP7xN1oH30ipgIpAX1p5c=
Subject key identifier: 69:69:D1:43:72:79:39:B0:42:28:55:35:68:1E:28:9D:84:79:82:AF
Certificate issuer: /CN=2b003e583bdb2511ff57ab7a32fce741334b343b
Certificate serial: 18F4515E
Authority key identifier: 2B:00:3E:58:3B:DB:25:11:FF:57:AB:7A:32:FC:E7:41:33:4B:34:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwA-WDvbJRH_V6t6MvznQTNLNDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/aWnRQ3J5ObBCKFU1aB4onYR5gq8.roa
Signing time: Sat 01 Jan 2022 11:00:34 +0000
ROA not before: Sat 01 Jan 2022 11:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51349
IP address blocks: 195.43.86.0/23 maxlen: 23
185.83.4.0/24 maxlen: 24
185.83.4.0/22 maxlen: 22
2a00:c3a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418664798 (0x18f4515e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b003e583bdb2511ff57ab7a32fce741334b343b
Validity
Not Before: Jan 1 11:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6969d143727939b042285535681e289d847982af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:13:dc:25:89:02:e4:3e:53:12:06:f6:86:ab:
2b:e2:a4:bd:70:24:dd:02:b3:08:53:89:5d:65:03:
90:3c:06:97:33:db:96:11:10:bd:34:01:b2:c7:c0:
c0:6e:6a:a5:2d:b5:3d:b8:cd:bc:2b:0a:7e:c9:72:
e8:82:1b:da:0c:17:9d:df:9a:34:75:39:3d:e7:28:
ef:ef:cc:e2:77:47:95:9e:7b:38:4c:4f:18:c6:f9:
83:41:fc:02:fd:0e:09:29:8d:f5:5e:8f:81:c7:84:
43:53:03:be:61:85:8d:49:d9:89:13:4e:5d:b7:3c:
7b:4a:ab:b0:33:8d:7a:01:05:58:ce:20:62:7d:2a:
9a:5a:7c:40:c9:8c:ba:4f:ec:20:75:26:e7:20:5a:
6c:a2:07:11:e7:6a:e9:1f:a0:48:56:b8:c9:cf:ca:
35:ac:bf:d7:b5:91:67:98:b9:c9:43:e0:3e:3e:ee:
a4:b4:2a:f7:50:14:58:ca:42:84:cc:f6:e1:84:f1:
e5:59:51:4a:f4:b4:7c:e1:4a:2b:57:4d:70:12:81:
cb:97:c5:97:6e:29:45:f0:5e:74:40:94:2d:01:22:
d3:c6:61:13:d4:f4:38:05:0e:3c:90:88:ed:1d:a5:
99:66:75:ee:d5:23:6e:34:82:37:58:f1:5b:50:b3:
76:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:69:D1:43:72:79:39:B0:42:28:55:35:68:1E:28:9D:84:79:82:AF
X509v3 Authority Key Identifier:
keyid:2B:00:3E:58:3B:DB:25:11:FF:57:AB:7A:32:FC:E7:41:33:4B:34:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwA-WDvbJRH_V6t6MvznQTNLNDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/aWnRQ3J5ObBCKFU1aB4onYR5gq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/KwA-WDvbJRH_V6t6MvznQTNLNDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.4.0/22
195.43.86.0/23
IPv6:
2a00:c3a0::/32
Signature Algorithm: sha256WithRSAEncryption
4b:d4:5b:8e:54:f9:f6:83:00:41:9f:0b:c2:82:56:2f:bb:ef:
32:a0:d1:80:17:6d:7d:9f:64:89:70:9b:59:38:9f:d3:c9:8b:
bb:ca:72:4a:3a:15:2b:aa:81:02:e7:c5:dd:60:11:4d:0b:da:
cf:0d:a1:80:98:ee:24:15:df:90:4d:07:44:33:04:02:e0:6e:
7b:59:47:ce:95:c1:5e:50:53:6c:58:a0:e1:f5:91:b7:3d:ce:
93:34:52:85:24:0c:bf:ce:46:6a:37:c3:25:fb:44:78:65:b2:
fe:6e:e8:bf:e2:02:fc:0c:62:5e:66:77:90:08:de:ef:d5:07:
17:37:b1:71:ed:3f:ba:de:b4:c2:d0:3b:34:74:22:a3:83:18:
dc:a1:4a:5f:9a:a4:e4:2a:65:90:e4:56:9c:5c:ca:67:12:b0:
23:b6:43:a0:37:1d:0d:d2:72:c8:f5:d4:80:ab:c1:81:88:64:
1e:da:b3:44:0a:58:c7:06:6a:6a:fb:d5:7f:4a:81:df:57:53:
1c:58:f9:86:bc:c8:23:80:d1:00:0c:81:d2:4d:4c:d9:fd:29:
74:78:5a:e4:ef:f2:f8:1f:e4:cc:24:c5:03:09:d0:1e:a9:09:
73:32:71:7e:b9:18:f5:ad:9f:60:f4:6f:25:77:0a:34:20:11:
67:02:dd:e6
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEGPRRXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YjAwM2U1ODNiZGIyNTExZmY1N2FiN2EzMmZjZTc0MTMzNGIzNDNiMB4XDTIyMDEw
MTExMDAzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjk2OWQxNDM3Mjc5
MzliMDQyMjg1NTM1NjgxZTI4OWQ4NDc5ODJhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANcT3CWJAuQ+UxIG9oarK+KkvXAk3QKzCFOJXWUDkDwGlzPb
lhEQvTQBssfAwG5qpS21PbjNvCsKfsly6IIb2gwXnd+aNHU5Peco7+/M4ndHlZ57
OExPGMb5g0H8Av0OCSmN9V6PgceEQ1MDvmGFjUnZiRNOXbc8e0qrsDONegEFWM4g
Yn0qmlp8QMmMuk/sIHUm5yBabKIHEedq6R+gSFa4yc/KNay/17WRZ5i5yUPgPj7u
pLQq91AUWMpChMz24YTx5VlRSvS0fOFKK1dNcBKBy5fFl24pRfBedECULQEi08Zh
E9T0OAUOPJCI7R2lmWZ17tUjbjSCN1jxW1CzdiUCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBRpadFDcnk5sEIoVTVoHiidhHmCrzAfBgNVHSMEGDAWgBQrAD5YO9slEf9X
q3oy/OdBM0s0OzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0t3QS1XRHZiSlJIX1Y2dDZNdnpuUVROTE5Ecy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWQvMTk0ZjIyLTg2ODktNGZkYi05YzQxLTA1OGJiZjlkNWUyNy8x
L2FXblJRM0o1T2JCQ0tGVTFhQjRvbllSNWdxOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWQv
MTk0ZjIyLTg2ODktNGZkYi05YzQxLTA1OGJiZjlkNWUyNy8xL0t3QS1XRHZiSlJI
X1Y2dDZNdnpuUVROTE5Ecy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEArlTBAMEAcMrVjANBAIAAjAHAwUA
KgDDoDANBgkqhkiG9w0BAQsFAAOCAQEAS9RbjlT59oMAQZ8LwoJWL7vvMqDRgBdt
fZ9kiXCbWTif08mLu8pySjoVK6qBAufF3WARTQvazw2hgJjuJBXfkE0HRDMEAuBu
e1lHzpXBXlBTbFig4fWRtz3OkzRShSQMv85GajfDJftEeGWy/m7ov+IC/AxiXmZ3
kAje79UHFzexce0/ut60wtA7NHQio4MY3KFKX5qk5CplkORWnFzKZxKwI7ZDoDcd
DdJyyPXUgKvBgYhkHtqzRApYxwZqavvVf0qB31dTHFj5hrzII4DRAAyB0k1M2f0p
dHha5O/y+B/kzCTFAwnQHqkJczJxfrkY9a2fYPRvJXcKNCARZwLd5g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:33 2024 by rpki-client on console-fra.rpki-client.org