Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/6EQjOo1q52ovf6Z4rftOibvBbpU.roa
File: 6EQjOo1q52ovf6Z4rftOibvBbpU.roa (raw, json)
Hash identifier: /goGtj+N2cdEO4ZEgLF3pJiuHuqgL92gW9SwZv4MGUM=
Subject key identifier: E8:44:23:3A:8D:6A:E7:6A:2F:7F:A6:78:AD:FB:4E:89:BB:C1:6E:95
Certificate issuer: /CN=8dce4df68044985a177b3032f00fc6fe224ad8b3
Certificate serial: 0182C5DD5FC5FE078464AC948D4A1779EDE0
Authority key identifier: 8D:CE:4D:F6:80:44:98:5A:17:7B:30:32:F0:0F:C6:FE:22:4A:D8:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jc5N9oBEmFoXezAy8A_G_iJK2LM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/6EQjOo1q52ovf6Z4rftOibvBbpU.roa
Signing time: Mon 22 Aug 2022 14:03:15 +0000
ROA not before: Mon 22 Aug 2022 14:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196865
IP address blocks: 185.195.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:dd:5f:c5:fe:07:84:64:ac:94:8d:4a:17:79:ed:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dce4df68044985a177b3032f00fc6fe224ad8b3
Validity
Not Before: Aug 22 14:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e844233a8d6ae76a2f7fa678adfb4e89bbc16e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a4:a5:ca:4c:c1:c7:c5:ea:9a:a3:fc:11:db:
28:20:27:1a:08:1b:21:6f:8c:a8:11:c4:4b:03:a2:
3a:fc:f1:ca:13:7f:89:ef:4d:8d:56:14:23:28:5f:
6a:25:e6:d5:e2:75:d8:be:39:bd:dc:82:4a:cd:8f:
70:54:b3:80:07:4f:10:7a:05:7d:e0:d5:be:3f:eb:
76:56:38:69:73:96:20:bd:e2:24:be:bd:07:73:28:
10:58:85:14:e3:ae:4f:fb:6a:31:b2:11:42:99:17:
8f:0d:d9:59:5a:8f:d7:d7:00:65:d3:04:65:bf:6a:
25:4b:5e:64:1c:4b:69:eb:29:00:ca:a5:fb:b9:b6:
d7:ca:18:23:e4:c1:22:82:61:0f:be:61:b2:85:82:
07:59:cf:b1:c5:16:da:c5:f9:c4:64:49:42:e2:9f:
25:71:90:7d:3d:2e:57:85:3d:cd:40:11:06:80:cc:
53:cc:2d:e0:15:78:90:f6:5a:88:1d:91:9a:4a:40:
a5:ed:0b:cd:f6:5e:e2:46:26:ff:e0:8e:26:3b:f4:
bc:17:e3:30:2e:cf:d8:54:11:cf:68:f2:9a:56:11:
28:17:02:36:58:1e:1c:bb:1a:bd:c5:1c:cd:41:ea:
5a:60:64:c7:9f:7f:9d:e0:0f:e0:82:df:c2:8e:71:
86:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:44:23:3A:8D:6A:E7:6A:2F:7F:A6:78:AD:FB:4E:89:BB:C1:6E:95
X509v3 Authority Key Identifier:
keyid:8D:CE:4D:F6:80:44:98:5A:17:7B:30:32:F0:0F:C6:FE:22:4A:D8:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jc5N9oBEmFoXezAy8A_G_iJK2LM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/6EQjOo1q52ovf6Z4rftOibvBbpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/jc5N9oBEmFoXezAy8A_G_iJK2LM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.128.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:ac:41:24:8c:f5:50:06:0a:3f:5a:d3:c0:18:ce:f3:78:ee:
0e:58:92:06:62:91:e4:61:a3:3f:eb:a0:fb:33:f6:01:96:bb:
1d:7d:c4:b0:d4:d0:c9:d8:82:5e:09:16:3c:f1:5c:c1:bb:14:
b8:81:fa:18:78:6b:76:14:f6:65:77:a1:2f:c5:5b:9e:d9:1d:
d6:ba:89:b7:86:cb:8c:1b:aa:8b:4a:92:a6:2d:41:6e:2c:35:
87:ad:3a:2a:46:0b:ed:fd:3b:d2:4d:20:a6:a0:ca:0a:ad:65:
f8:28:68:71:96:8d:1c:6f:3d:d4:4d:e4:69:1c:cc:60:52:8c:
48:2d:c8:26:00:de:d1:8b:b3:00:74:a4:70:a2:e4:80:84:bc:
12:b1:e9:ca:c9:bb:4f:14:8d:2e:36:1d:c6:08:b3:da:1d:2f:
58:ea:61:ef:1a:28:30:9e:67:59:66:c9:b6:6d:56:bb:7b:33:
36:df:28:63:66:d2:27:f3:cc:2c:55:30:33:b7:1c:f3:2c:d5:
51:73:37:99:4a:cc:3b:4e:fe:b1:e1:aa:93:24:8b:ee:69:a0:
aa:8a:8a:65:8c:28:14:43:e2:6e:5f:e6:24:15:d4:07:21:fe:
d2:1b:1c:e9:ab:c2:f4:48:8c:4f:24:0e:31:20:d1:fc:06:13:
70:c5:17:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLF3V/F/geEZKyUjUoXee3gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkY2U0ZGY2ODA0NDk4NWExNzdiMzAzMmYwMGZjNmZlMjI0
YWQ4YjMwHhcNMjIwODIyMTQwMzE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODQ0MjMzYThkNmFlNzZhMmY3ZmE2NzhhZGZiNGU4OWJiYzE2ZTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqSlykzBx8XqmqP8EdsoICcaCBsh
b4yoEcRLA6I6/PHKE3+J702NVhQjKF9qJebV4nXYvjm93IJKzY9wVLOAB08QegV9
4NW+P+t2Vjhpc5YgveIkvr0HcygQWIUU465P+2oxshFCmRePDdlZWo/X1wBl0wRl
v2olS15kHEtp6ykAyqX7ubbXyhgj5MEigmEPvmGyhYIHWc+xxRbaxfnEZElC4p8l
cZB9PS5XhT3NQBEGgMxTzC3gFXiQ9lqIHZGaSkCl7QvN9l7iRib/4I4mO/S8F+Mw
Ls/YVBHPaPKaVhEoFwI2WB4cuxq9xRzNQepaYGTHn3+d4A/ggt/CjnGGUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOhEIzqNaudqL3+meK37Tom7wW6VMB8GA1UdIwQY
MBaAFI3OTfaARJhaF3swMvAPxv4iStizMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamM1TjlvQkVtRm9YZXpBeThBX0dfaUpLMkxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS81YmRhNTQtZGI3YS00NmQzLTljZjkt
MTZiMWQyZWU4OGE2LzEvNkVRak9vMXE1Mm92ZjZaNHJmdE9pYnZCYnBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS81YmRhNTQtZGI3YS00NmQzLTljZjktMTZiMWQyZWU4OGE2
LzEvamM1TjlvQkVtRm9YZXpBeThBX0dfaUpLMkxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucOAMA0G
CSqGSIb3DQEBCwUAA4IBAQDCrEEkjPVQBgo/WtPAGM7zeO4OWJIGYpHkYaM/66D7
M/YBlrsdfcSw1NDJ2IJeCRY88VzBuxS4gfoYeGt2FPZld6EvxVue2R3Wuom3hsuM
G6qLSpKmLUFuLDWHrToqRgvt/TvSTSCmoMoKrWX4KGhxlo0cbz3UTeRpHMxgUoxI
LcgmAN7Ri7MAdKRwouSAhLwSsenKybtPFI0uNh3GCLPaHS9Y6mHvGigwnmdZZsm2
bVa7ezM23yhjZtIn88wsVTAztxzzLNVRczeZSsw7Tv6x4aqTJIvuaaCqiopljCgU
Q+JuX+YkFdQHIf7SGxzpq8L0SIxPJA4xINH8BhNwxRdj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:51 2024 by rpki-client on console-fra.rpki-client.org