Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/x07bGOVGCnb-DFOdwnaRKcWHRcg.roa
File: x07bGOVGCnb-DFOdwnaRKcWHRcg.roa (raw, json)
Hash identifier: FzjokZFlA5Sc7v7Ab0J9SicAuExRtGvKjj/rO5g41Lg=
Subject key identifier: C7:4E:DB:18:E5:46:0A:76:FE:0C:53:9D:C2:76:91:29:C5:87:45:C8
Certificate issuer: /CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Certificate serial: 16DA227A
Authority key identifier: F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/x07bGOVGCnb-DFOdwnaRKcWHRcg.roa
Signing time: Sat 01 Jan 2022 07:56:55 +0000
ROA not before: Sat 01 Jan 2022 07:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61053
IP address blocks: 185.169.140.0/22 maxlen: 22
94.176.188.0/24 maxlen: 24
94.176.189.0/24 maxlen: 24
185.172.159.0/24 maxlen: 24
185.172.158.0/24 maxlen: 24
185.172.157.0/24 maxlen: 24
185.172.156.0/24 maxlen: 24
93.115.11.0/24 maxlen: 24
185.80.128.0/22 maxlen: 22
185.34.52.0/22 maxlen: 22
185.111.180.0/24 maxlen: 24
91.225.104.0/22 maxlen: 22
185.111.183.0/24 maxlen: 24
185.111.182.0/24 maxlen: 24
185.111.181.0/24 maxlen: 24
91.211.244.0/22 maxlen: 22
2a05:7cc4::/32 maxlen: 32
2a05:7cc0::/32 maxlen: 32
2a05:7cc3::/32 maxlen: 32
2a05:7cc5::/32 maxlen: 32
2a05:7cc2::/32 maxlen: 32
2a05:7cc6::/32 maxlen: 32
2a05:7cc7::/32 maxlen: 32
2a05:7cc1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383394426 (0x16da227a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Validity
Not Before: Jan 1 07:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c74edb18e5460a76fe0c539dc2769129c58745c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:61:d0:f0:27:ce:60:73:db:82:8a:62:12:fa:
af:e4:a5:f4:4b:21:74:7f:f3:2a:17:ea:92:05:2e:
9f:73:67:a1:82:55:b2:73:4f:ea:6b:ac:dd:d2:d7:
ba:50:7f:13:19:c5:04:a7:c0:74:9b:7b:9e:85:b7:
ed:1e:35:1e:ef:21:1b:03:15:53:f4:68:cf:2e:8f:
5d:0d:de:2c:ce:9f:45:91:1a:e9:6a:2f:cc:2f:31:
53:eb:b1:7d:ca:ce:8f:d8:74:45:28:ba:96:bc:5d:
78:25:7f:42:39:c8:84:f0:bd:68:93:12:18:a7:7b:
c6:de:db:de:a9:72:d7:f3:b3:0d:da:6e:57:d9:2d:
d7:ec:46:82:4d:69:f2:8b:f0:ff:24:87:af:c6:d3:
01:23:63:07:3f:9c:83:8d:55:c5:00:0a:ff:12:a9:
74:85:4c:aa:d5:d3:fa:21:5e:6e:67:90:b3:c7:80:
05:74:ca:1f:a2:1e:06:88:20:1f:9f:41:28:48:17:
9e:2b:80:1c:f9:9a:91:82:2f:19:81:f3:bb:a4:4d:
45:fc:9f:04:f9:8b:4e:f2:03:38:45:f2:61:b8:ef:
72:e9:04:e1:75:19:6f:57:ed:5d:2f:e7:07:da:cd:
4e:cc:77:01:5f:70:d4:1a:ba:bc:af:6b:9f:ab:f2:
22:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4E:DB:18:E5:46:0A:76:FE:0C:53:9D:C2:76:91:29:C5:87:45:C8
X509v3 Authority Key Identifier:
keyid:F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/x07bGOVGCnb-DFOdwnaRKcWHRcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/8lap7bLZreIE2CMTzOmLZiOp2Kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.244.0/22
91.225.104.0/22
93.115.11.0/24
94.176.188.0/23
185.34.52.0/22
185.80.128.0/22
185.111.180.0/22
185.169.140.0/22
185.172.156.0/22
IPv6:
2a05:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
73:f5:f4:ae:d5:5f:39:ca:8a:16:36:88:b0:2a:ff:20:8c:0a:
30:ae:26:ee:45:bc:a7:08:43:66:47:8a:28:19:38:b6:d3:61:
27:32:1c:07:d0:1e:bc:b0:02:ef:7e:f1:99:30:4b:72:1a:91:
4b:cf:0a:1f:dc:be:8e:9c:08:3b:be:60:97:78:70:24:55:ef:
e4:6c:13:ee:42:88:4c:41:11:38:c4:99:05:de:de:79:21:7d:
5d:fa:f5:5c:ae:c6:7c:ff:ea:c5:58:b4:6a:17:78:03:14:c6:
e6:fb:35:f7:00:4f:d3:49:3d:34:08:1e:d8:63:f6:d7:d3:aa:
e7:90:cb:70:39:4e:66:6a:65:34:a8:a7:65:47:04:f1:e3:4b:
9a:85:e1:2e:67:24:d7:a3:98:1c:04:b8:e6:04:09:bb:fb:70:
5e:b5:82:25:e2:1c:c7:5f:cb:a9:60:4f:66:36:67:86:f2:f3:
03:29:39:e7:64:3f:89:20:95:82:77:03:01:1b:17:f5:34:51:
3f:e1:c2:4c:bc:54:1c:85:cf:e7:26:e1:a0:42:35:1e:1d:f8:
b2:50:b7:0c:59:d0:66:c5:b0:2b:ac:02:90:68:bd:5a:f6:5d:
67:d2:f1:82:11:e9:7c:74:62:1c:88:8c:fd:39:0e:fd:02:3e:
b1:1b:39:a6
-----BEGIN CERTIFICATE-----
MIIFLjCCBBagAwIBAgIEFtoiejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MjU2YTllZGIyZDlhZGUyMDRkODIzMTNjY2U5OGI2NjIzYTlkOGFjMB4XDTIyMDEw
MTA3NTY1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzc0ZWRiMThlNTQ2
MGE3NmZlMGM1MzlkYzI3NjkxMjljNTg3NDVjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKZh0PAnzmBz24KKYhL6r+Sl9EshdH/zKhfqkgUun3NnoYJV
snNP6mus3dLXulB/ExnFBKfAdJt7noW37R41Hu8hGwMVU/Rozy6PXQ3eLM6fRZEa
6WovzC8xU+uxfcrOj9h0RSi6lrxdeCV/QjnIhPC9aJMSGKd7xt7b3qly1/OzDdpu
V9kt1+xGgk1p8ovw/ySHr8bTASNjBz+cg41VxQAK/xKpdIVMqtXT+iFebmeQs8eA
BXTKH6IeBoggH59BKEgXniuAHPmakYIvGYHzu6RNRfyfBPmLTvIDOEXyYbjvcukE
4XUZb1ftXS/nB9rNTsx3AV9w1Bq6vK9rn6vyIncCAwEAAaOCAkgwggJEMB0GA1Ud
DgQWBBTHTtsY5UYKdv4MU53CdpEpxYdFyDAfBgNVHSMEGDAWgBTyVqntstmt4gTY
IxPM6YtmI6nYrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhsYXA3YkxacmVJRTJDTVR6T21MWmlPcDJLdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvMTI2YzllLTRmYTctNDlkNC05MjhjLTkxMDdjOTEyZDdkOC8x
L3gwN2JHT1ZHQ25iLURGT2R3bmFSS2NXSFJjZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
MTI2YzllLTRmYTctNDlkNC05MjhjLTkxMDdjOTEyZDdkOC8xLzhsYXA3YkxacmVJ
RTJDTVR6T21MWmlPcDJLdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBe
BggrBgEFBQcBBwEB/wRPME0wPAQCAAEwNgMEAlvT9AMEAlvhaAMEAF1zCwMEAV6w
vAMEArkiNAMEArlQgAMEArlvtAMEArmpjAMEArmsnDANBAIAAjAHAwUDKgV8wDAN
BgkqhkiG9w0BAQsFAAOCAQEAc/X0rtVfOcqKFjaIsCr/IIwKMK4m7kW8pwhDZkeK
KBk4ttNhJzIcB9AevLAC737xmTBLchqRS88KH9y+jpwIO75gl3hwJFXv5GwT7kKI
TEEROMSZBd7eeSF9Xfr1XK7GfP/qxVi0ahd4AxTG5vs19wBP00k9NAge2GP219Oq
55DLcDlOZmplNKinZUcE8eNLmoXhLmck16OYHAS45gQJu/twXrWCJeIcx1/LqWBP
ZjZnhvLzAyk552Q/iSCVgncDARsX9TRRP+HCTLxUHIXP5ybhoEI1Hh34slC3DFnQ
ZsWwK6wCkGi9WvZdZ9LxghHpfHRiHIiM/TkO/QI+sRs5pg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:00 2024 by rpki-client on console-ams.rpki-client.org