Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EeOuiHiZULoFpFSXsdFb7rVAe3k.roa
File: EeOuiHiZULoFpFSXsdFb7rVAe3k.roa (raw, json)
Hash identifier: G+52Z2oYpCqvcLxGjKLM3XdTI6eCu9MaOlHftkhM66E=
Subject key identifier: 11:E3:AE:88:78:99:50:BA:05:A4:54:97:B1:D1:5B:EE:B5:40:7B:79
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1BD9EA96
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EeOuiHiZULoFpFSXsdFb7rVAe3k.roa
Signing time: Sat 01 Jan 2022 11:56:50 +0000
ROA not before: Sat 01 Jan 2022 11:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60860
IP address blocks: 185.30.200.0/23 maxlen: 23
185.30.202.0/24 maxlen: 24
89.185.0.0/24 maxlen: 24
93.185.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467266198 (0x1bd9ea96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 11:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11e3ae88789950ba05a45497b1d15beeb5407b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ec:99:d8:11:fa:45:49:6e:4f:72:24:e4:90:
02:de:fe:68:a4:55:37:e6:bc:51:17:6b:c3:6a:bd:
b1:82:c2:6f:92:80:6f:17:a6:ff:4a:2c:48:db:52:
4c:45:e5:2d:9a:e2:93:7a:59:1d:be:66:e7:ca:c7:
c6:87:5e:0f:04:5f:6e:e1:6e:57:37:60:5d:af:17:
bc:c3:a1:19:32:fe:87:56:a4:82:37:17:5c:ed:28:
9c:4c:d8:75:af:a1:76:1d:6c:b0:51:d0:e6:c5:28:
0b:92:21:e8:66:15:73:e0:73:ae:79:d7:c3:c8:bb:
02:e7:e6:db:2b:36:10:fb:50:e1:da:89:77:13:36:
35:23:2f:96:b3:e7:dd:76:52:97:c7:3e:69:ee:74:
99:56:9d:af:b8:6b:f7:34:c9:6b:9a:2a:ee:18:f7:
cd:77:5b:69:f2:2c:ce:a8:f5:68:5c:ec:9f:7b:0b:
fb:d1:80:17:b8:94:2d:b2:05:4d:09:08:81:5a:d6:
aa:04:b2:42:7c:8a:96:db:9b:d0:a7:24:29:ce:4c:
10:00:dd:f0:a1:a7:0f:12:47:9b:36:02:fa:b0:08:
92:5b:8b:4b:96:9b:27:2a:6d:84:81:8c:9b:57:9c:
89:8f:cc:37:17:b9:26:2b:9b:31:b8:68:50:21:c6:
3f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E3:AE:88:78:99:50:BA:05:A4:54:97:B1:D1:5B:EE:B5:40:7B:79
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EeOuiHiZULoFpFSXsdFb7rVAe3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/24
93.185.214.0/24
185.30.200.0-185.30.202.255
Signature Algorithm: sha256WithRSAEncryption
9c:e1:d4:77:77:b0:e4:40:49:6d:13:f6:1d:d9:e7:7c:b8:07:
8e:87:57:2a:f1:02:75:65:0b:3b:9a:c1:18:64:e9:11:d1:82:
0b:50:35:7c:bc:42:1f:76:08:ff:91:f4:04:d9:f1:5f:e6:8c:
4d:82:fa:45:89:69:60:d6:cd:64:82:dd:5f:a7:4a:66:2b:f4:
ec:ae:2f:e3:a3:5f:29:19:aa:89:c8:ca:1c:27:3e:0a:3f:fa:
c3:7b:47:ed:99:48:c8:5d:1c:3c:ea:b9:be:ee:fa:7f:41:ac:
82:62:7a:98:5a:8f:01:c2:ff:ef:c2:08:ba:25:e2:04:0f:b6:
b7:8e:36:30:78:f5:6b:2f:8b:8f:8d:f6:5f:e3:83:b1:33:db:
c8:f2:c7:e7:23:43:24:49:a1:6b:51:c3:06:69:93:5a:db:85:
e5:68:06:57:69:f0:10:fe:b4:83:92:4c:60:90:e2:c6:40:ee:
a9:e8:3b:f9:fc:73:f3:0d:54:49:1e:f1:0d:e9:6d:6a:ae:5f:
e3:08:1c:b9:95:22:b3:b4:ec:34:c2:32:e6:64:3f:eb:25:a3:
42:b0:96:b4:68:04:6a:67:dc:da:37:b2:01:9a:67:bf:62:ae:
e3:d7:a3:5b:51:e4:8b:5a:5c:2f:e0:bc:80:d8:33:16:88:5f:
31:36:e5:34
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEG9nqljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODJjZjgwOWMwZTNlOGU1NTUyZjlkMGRkMmUyN2UwZGQyZDhkYWJlMB4XDTIyMDEw
MTExNTY1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTFlM2FlODg3ODk5
NTBiYTA1YTQ1NDk3YjFkMTViZWViNTQwN2I3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKXsmdgR+kVJbk9yJOSQAt7+aKRVN+a8URdrw2q9sYLCb5KA
bxem/0osSNtSTEXlLZrik3pZHb5m58rHxodeDwRfbuFuVzdgXa8XvMOhGTL+h1ak
gjcXXO0onEzYda+hdh1ssFHQ5sUoC5Ih6GYVc+BzrnnXw8i7Aufm2ys2EPtQ4dqJ
dxM2NSMvlrPn3XZSl8c+ae50mVadr7hr9zTJa5oq7hj3zXdbafIszqj1aFzsn3sL
+9GAF7iULbIFTQkIgVrWqgSyQnyKltub0KckKc5MEADd8KGnDxJHmzYC+rAIkluL
S5abJypthIGMm1eciY/MNxe5JiubMbhoUCHGP+sCAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBQR466IeJlQugWkVJex0VvutUB7eTAfBgNVHSMEGDAWgBSYLPgJwOPo5VUv
nQ3S4n4N0tjavjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21DejRDY0RqNk9WVkw1ME4wdUotRGRMWTJyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8x
L0VlT3VpSGlaVUxvRnBGU1hzZEZiN3JWQWUzay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
NjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8xL21DejRDY0RqNk9W
Vkw1ME4wdUotRGRMWTJyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGgMEAFm5AAMEAF251jAMAwQDuR7IAwQA
uR7KMA0GCSqGSIb3DQEBCwUAA4IBAQCc4dR3d7DkQEltE/Yd2ed8uAeOh1cq8QJ1
ZQs7msEYZOkR0YILUDV8vEIfdgj/kfQE2fFf5oxNgvpFiWlg1s1kgt1fp0pmK/Ts
ri/jo18pGaqJyMocJz4KP/rDe0ftmUjIXRw86rm+7vp/QayCYnqYWo8Bwv/vwgi6
JeIED7a3jjYwePVrL4uPjfZf44OxM9vI8sfnI0MkSaFrUcMGaZNa24XlaAZXafAQ
/rSDkkxgkOLGQO6p6Dv5/HPzDVRJHvEN6W1qrl/jCBy5lSKztOw0wjLmZD/rJaNC
sJa0aARqZ9zaN7IBmme/Yq7j16NbUeSLWlwv4LyA2DMWiF8xNuU0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org