Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/E9VDIyvET0AgpgFjVXFqgxGxv-g.roa
File: E9VDIyvET0AgpgFjVXFqgxGxv-g.roa (raw, json)
Hash identifier: Cw3n704DvE/m3WUoPCPXKXOTUKyhBnt2DtrZePh+hsM=
Subject key identifier: 13:D5:43:23:2B:C4:4F:40:20:A6:01:63:55:71:6A:83:11:B1:BF:E8
Certificate issuer: /CN=e634616edbd60154fa3dac77ea90dbd7c68a132d
Certificate serial: 042CBA65
Authority key identifier: E6:34:61:6E:DB:D6:01:54:FA:3D:AC:77:EA:90:DB:D7:C6:8A:13:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5jRhbtvWAVT6Pax36pDb18aKEy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/E9VDIyvET0AgpgFjVXFqgxGxv-g.roa
Signing time: Sat 01 Jan 2022 04:03:16 +0000
ROA not before: Sat 01 Jan 2022 04:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.191.0/24 maxlen: 24
2001:7f8:105::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70040165 (0x42cba65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e634616edbd60154fa3dac77ea90dbd7c68a132d
Validity
Not Before: Jan 1 04:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13d543232bc44f4020a6016355716a8311b1bfe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d7:7e:d8:6c:6d:92:f8:f0:fd:27:b6:1d:41:
c8:74:47:4a:b9:19:1f:28:24:da:9d:1e:b0:cd:e9:
85:36:05:67:18:a9:c6:23:d5:56:2d:86:de:11:e0:
03:b7:9c:56:48:12:85:68:d2:82:e5:6b:e7:e0:92:
d7:d3:4a:02:20:59:73:34:74:de:ed:3e:b2:3c:34:
01:24:df:49:63:bb:15:2f:85:26:65:13:63:4f:2f:
a8:23:6d:23:7f:5c:cb:16:25:7a:c6:c9:b9:b2:11:
3f:50:82:83:6b:77:1c:88:00:76:8d:a4:c3:4b:9e:
42:e0:83:13:c1:53:eb:cd:5b:5e:a0:e7:bb:c1:86:
8e:5c:85:e6:92:ec:75:68:ef:06:f5:58:0b:39:ed:
e4:d7:88:4e:21:d6:61:79:d1:64:56:bc:ea:8c:68:
e2:94:5b:60:e6:d6:f0:1f:3d:ac:f9:f4:bd:55:44:
b1:34:1d:ee:4b:5f:f4:5a:a8:f2:39:13:f2:b1:79:
75:ad:81:9c:6e:4a:21:b4:57:b0:39:64:15:55:e4:
80:22:04:f6:9a:cb:63:d1:dd:21:c2:1b:98:7d:e6:
cf:6c:57:45:28:c5:10:71:2b:ab:9b:f2:d6:38:d2:
aa:e9:79:05:18:a8:8c:1e:c9:1d:dc:00:cf:6f:fe:
c8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D5:43:23:2B:C4:4F:40:20:A6:01:63:55:71:6A:83:11:B1:BF:E8
X509v3 Authority Key Identifier:
keyid:E6:34:61:6E:DB:D6:01:54:FA:3D:AC:77:EA:90:DB:D7:C6:8A:13:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5jRhbtvWAVT6Pax36pDb18aKEy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/E9VDIyvET0AgpgFjVXFqgxGxv-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/5jRhbtvWAVT6Pax36pDb18aKEy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.191.0/24
IPv6:
2001:7f8:105::/48
Signature Algorithm: sha256WithRSAEncryption
75:23:0e:1a:a1:bb:f8:af:f1:ea:2a:8e:f7:97:2c:04:d1:e3:
2b:bc:07:d8:4c:44:99:18:18:9e:13:13:02:1e:4d:3e:33:ac:
eb:0a:ee:1e:a4:de:d3:ec:6b:a2:4e:2b:71:8c:6c:82:a8:dd:
36:ea:4e:03:50:0a:b5:22:d6:be:ab:a4:11:ce:52:47:4a:bd:
0a:18:df:09:eb:70:fb:24:7b:95:76:f2:60:08:f8:60:ab:ee:
ae:bb:5b:10:94:c0:d7:04:aa:63:18:94:67:cc:c5:11:ee:11:
87:f8:f1:51:1e:b6:93:8d:4f:d6:3d:73:28:43:e3:7d:7f:4e:
27:87:15:98:83:56:61:45:36:f7:65:9b:d8:c6:d7:f6:bf:f9:
a9:a6:2b:81:a6:49:da:30:a0:73:a7:c1:8a:74:cf:32:a9:56:
de:8e:f6:71:6a:e3:d0:11:22:9d:97:2c:f8:95:b7:25:81:73:
15:fe:b7:8b:00:45:c3:36:07:99:19:a6:2e:ca:28:9e:48:a0:
36:72:55:fb:31:ef:ba:2f:f9:9e:91:fc:f5:8e:8c:6f:39:84:
d9:88:f0:da:bf:3d:c3:f7:1d:24:8d:d3:2e:b3:21:10:8c:5f:
27:a4:a4:82:74:b9:4a:4b:d5:81:69:47:69:fa:ff:fa:22:2a:
cd:08:48:4f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBCy6ZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NjM0NjE2ZWRiZDYwMTU0ZmEzZGFjNzdlYTkwZGJkN2M2OGExMzJkMB4XDTIyMDEw
MTA0MDMxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTNkNTQzMjMyYmM0
NGY0MDIwYTYwMTYzNTU3MTZhODMxMWIxYmZlODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANjXfthsbZL48P0nth1ByHRHSrkZHygk2p0esM3phTYFZxip
xiPVVi2G3hHgA7ecVkgShWjSguVr5+CS19NKAiBZczR03u0+sjw0ASTfSWO7FS+F
JmUTY08vqCNtI39cyxYlesbJubIRP1CCg2t3HIgAdo2kw0ueQuCDE8FT681bXqDn
u8GGjlyF5pLsdWjvBvVYCznt5NeITiHWYXnRZFa86oxo4pRbYObW8B89rPn0vVVE
sTQd7ktf9Fqo8jkT8rF5da2BnG5KIbRXsDlkFVXkgCIE9prLY9HdIcIbmH3mz2xX
RSjFEHErq5vy1jjSqul5BRiojB7JHdwAz2/+yCkCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQT1UMjK8RPQCCmAWNVcWqDEbG/6DAfBgNVHSMEGDAWgBTmNGFu29YBVPo9
rHfqkNvXxooTLTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVqUmhidHZXQVZUNlBheDM2cERiMThhS0V5MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDIvZjI5MjY4LTJjNmEtNGU5ZC1hYTJkLWQ5OTIzMWU0NjQ1Ny8x
L0U5VkRJeXZFVDBBZ3BnRmpWWEZxZ3hHeHYtZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDIv
ZjI5MjY4LTJjNmEtNGU5ZC1hYTJkLWQ5OTIzMWU0NjQ1Ny8xLzVqUmhidHZXQVZU
NlBheDM2cERiMThhS0V5MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALkBvzAPBAIAAjAJAwcAIAEH+AEF
MA0GCSqGSIb3DQEBCwUAA4IBAQB1Iw4aobv4r/HqKo73lywE0eMrvAfYTESZGBie
ExMCHk0+M6zrCu4epN7T7GuiTitxjGyCqN026k4DUAq1Ita+q6QRzlJHSr0KGN8J
63D7JHuVdvJgCPhgq+6uu1sQlMDXBKpjGJRnzMUR7hGH+PFRHraTjU/WPXMoQ+N9
f04nhxWYg1ZhRTb3ZZvYxtf2v/mppiuBpknaMKBzp8GKdM8yqVbejvZxauPQESKd
lyz4lbclgXMV/reLAEXDNgeZGaYuyiieSKA2clX7Me+6L/mekfz1joxvOYTZiPDa
vz3D9x0kjdMusyEQjF8npKSCdLlKS9WBaUdp+v/6IirNCEhP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:01 2024 by rpki-client on console-ams.rpki-client.org