Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/VaH_z6AmSX65Ng9GT37Zk5weNg4.roa
File: VaH_z6AmSX65Ng9GT37Zk5weNg4.roa (raw, json)
Hash identifier: SAouep9YCh1XKd4lHvGqpuyeIDYAa5lCco1ZOof3Z9w=
Subject key identifier: 55:A1:FF:CF:A0:26:49:7E:B9:36:0F:46:4F:7E:D9:93:9C:1E:36:0E
Certificate issuer: /CN=8dce4df68044985a177b3032f00fc6fe224ad8b3
Certificate serial: 06CEC663
Authority key identifier: 8D:CE:4D:F6:80:44:98:5A:17:7B:30:32:F0:0F:C6:FE:22:4A:D8:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jc5N9oBEmFoXezAy8A_G_iJK2LM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/VaH_z6AmSX65Ng9GT37Zk5weNg4.roa
Signing time: Sat 01 Jan 2022 13:57:34 +0000
ROA not before: Sat 01 Jan 2022 13:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212696
IP address blocks: 185.195.128.0/22 maxlen: 22
2a0a:5ac0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114214499 (0x6cec663)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dce4df68044985a177b3032f00fc6fe224ad8b3
Validity
Not Before: Jan 1 13:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55a1ffcfa026497eb9360f464f7ed9939c1e360e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:95:68:50:a6:c0:bb:68:66:5c:42:0d:0f:79:
6a:22:18:7f:f9:f2:2f:ae:4c:28:fd:d3:64:f4:6d:
da:f9:67:7b:57:cf:f0:fd:ed:17:4d:10:f9:1d:6c:
90:8c:ba:f0:04:ae:9a:57:65:db:7b:a5:ce:4b:85:
1b:60:49:ce:eb:59:8d:f5:b8:95:76:83:02:93:d3:
cf:2d:fc:85:b2:5f:51:78:ee:7c:b6:86:32:66:6e:
71:e6:3f:f3:1d:05:23:a0:8f:97:94:8e:a2:27:7a:
db:3e:61:f1:79:b0:97:ad:be:4d:3d:95:eb:73:eb:
57:cf:52:92:08:63:02:56:54:99:46:5f:45:5d:99:
43:fa:32:c4:21:6a:bf:e6:3d:02:41:fd:8c:07:59:
81:53:a6:67:d9:3e:14:f8:73:89:e5:71:db:8b:2e:
fd:35:15:6e:26:15:21:af:60:3a:40:3d:48:5a:e8:
07:9d:b4:d6:db:53:21:12:56:bb:93:18:af:5a:d9:
3d:fb:57:47:ff:ea:c5:60:4e:a4:64:23:f9:ed:ff:
33:87:f0:9e:b8:16:44:43:af:d1:d1:00:d6:57:25:
18:28:f2:2a:b1:15:38:54:29:18:9d:35:a0:55:a8:
13:e4:c3:4b:51:e0:54:25:77:fd:24:21:35:74:1c:
9e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A1:FF:CF:A0:26:49:7E:B9:36:0F:46:4F:7E:D9:93:9C:1E:36:0E
X509v3 Authority Key Identifier:
keyid:8D:CE:4D:F6:80:44:98:5A:17:7B:30:32:F0:0F:C6:FE:22:4A:D8:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jc5N9oBEmFoXezAy8A_G_iJK2LM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/VaH_z6AmSX65Ng9GT37Zk5weNg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/jc5N9oBEmFoXezAy8A_G_iJK2LM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.128.0/22
IPv6:
2a0a:5ac0::/32
Signature Algorithm: sha256WithRSAEncryption
6a:eb:9e:81:02:15:03:38:e1:1b:25:68:c1:c1:b7:38:34:84:
c0:e2:50:d3:13:5d:57:88:8a:af:65:f6:2f:36:2b:99:d5:a8:
2a:13:6c:b3:19:03:1b:83:48:1c:a8:c8:b0:40:2b:dc:f0:9d:
74:5e:98:26:01:32:a5:31:05:7b:6f:53:bb:c9:98:98:13:45:
60:3c:27:ed:43:44:14:11:39:00:d9:df:95:97:a3:34:95:53:
98:cf:69:eb:45:0f:33:bd:41:23:40:36:39:09:05:9f:95:26:
71:25:99:f9:de:ad:e6:e1:1b:6c:a0:fc:39:bb:0c:e7:55:64:
bc:59:b3:8a:4c:fc:98:fe:84:63:b9:f3:ec:18:23:98:9d:b1:
47:49:a8:32:98:4e:4f:86:54:46:6d:6c:ba:3a:6e:85:11:97:
fe:71:f0:ad:c7:f7:89:c1:b9:d1:69:a3:af:19:70:fe:47:bb:
69:6e:f0:b9:cc:38:08:0f:14:ee:55:cb:e6:b7:b7:63:5f:97:
0b:60:0b:e3:e8:41:81:b6:37:6a:2f:df:19:e2:05:45:cf:a3:
71:53:eb:47:07:07:04:01:d5:7c:4b:1f:91:b2:82:01:3f:80:
62:b2:ef:d5:f8:5d:de:33:a7:ad:ee:ec:10:aa:a1:28:93:c5:
b1:fb:43:30
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBs7GYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZGNlNGRmNjgwNDQ5ODVhMTc3YjMwMzJmMDBmYzZmZTIyNGFkOGIzMB4XDTIyMDEw
MTEzNTczNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTVhMWZmY2ZhMDI2
NDk3ZWI5MzYwZjQ2NGY3ZWQ5OTM5YzFlMzYwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJuVaFCmwLtoZlxCDQ95aiIYf/nyL65MKP3TZPRt2vlne1fP
8P3tF00Q+R1skIy68ASumldl23ulzkuFG2BJzutZjfW4lXaDApPTzy38hbJfUXju
fLaGMmZuceY/8x0FI6CPl5SOoid62z5h8Xmwl62+TT2V63PrV89SkghjAlZUmUZf
RV2ZQ/oyxCFqv+Y9AkH9jAdZgVOmZ9k+FPhzieVx24su/TUVbiYVIa9gOkA9SFro
B5201ttTIRJWu5MYr1rZPftXR//qxWBOpGQj+e3/M4fwnrgWREOv0dEA1lclGCjy
KrEVOFQpGJ01oFWoE+TDS1HgVCV3/SQhNXQcnnkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRVof/PoCZJfrk2D0ZPftmTnB42DjAfBgNVHSMEGDAWgBSNzk32gESYWhd7
MDLwD8b+IkrYszAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pjNU45b0JFbUZvWGV6QXk4QV9HX2lKSzJMTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNWJkYTU0LWRiN2EtNDZkMy05Y2Y5LTE2YjFkMmVlODhhNi8x
L1ZhSF96NkFtU1g2NU5nOUdUMzdaazV3ZU5nNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NWJkYTU0LWRiN2EtNDZkMy05Y2Y5LTE2YjFkMmVlODhhNi8xL2pjNU45b0JFbUZv
WGV6QXk4QV9HX2lKSzJMTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnDgDANBAIAAjAHAwUAKgpawDAN
BgkqhkiG9w0BAQsFAAOCAQEAauuegQIVAzjhGyVowcG3ODSEwOJQ0xNdV4iKr2X2
LzYrmdWoKhNssxkDG4NIHKjIsEAr3PCddF6YJgEypTEFe29Tu8mYmBNFYDwn7UNE
FBE5ANnflZejNJVTmM9p60UPM71BI0A2OQkFn5UmcSWZ+d6t5uEbbKD8ObsM51Vk
vFmzikz8mP6EY7nz7BgjmJ2xR0moMphOT4ZURm1sujpuhRGX/nHwrcf3icG50Wmj
rxlw/ke7aW7wucw4CA8U7lXL5re3Y1+XC2AL4+hBgbY3ai/fGeIFRc+jcVPrRwcH
BAHVfEsfkbKCAT+AYrLv1fhd3jOnre7sEKqhKJPFsftDMA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:51 2024 by rpki-client on console-fra.rpki-client.org