Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/5506de-0b1a-47ee-99d1-a520d434654a/1/PvebfgDVo3ptxNhTQdf2Hv9HrcM.roa
File: PvebfgDVo3ptxNhTQdf2Hv9HrcM.roa (raw, json)
Hash identifier: zwQwvdoRxp5JCE/65wKDpNzdKV3/NgOsMDc3DlrduQo=
Subject key identifier: 3E:F7:9B:7E:00:D5:A3:7A:6D:C4:D8:53:41:D7:F6:1E:FF:47:AD:C3
Certificate issuer: /CN=b65918f25d56000f881da98de323d91a064e0087
Certificate serial: 0FE5FCC2
Authority key identifier: B6:59:18:F2:5D:56:00:0F:88:1D:A9:8D:E3:23:D9:1A:06:4E:00:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tlkY8l1WAA-IHamN4yPZGgZOAIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/5506de-0b1a-47ee-99d1-a520d434654a/1/PvebfgDVo3ptxNhTQdf2Hv9HrcM.roa
Signing time: Sat 01 Jan 2022 12:00:41 +0000
ROA not before: Sat 01 Jan 2022 12:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207125
IP address blocks: 185.165.117.0/24 maxlen: 24
185.165.116.0/23 maxlen: 23
185.165.118.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266730690 (0xfe5fcc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b65918f25d56000f881da98de323d91a064e0087
Validity
Not Before: Jan 1 12:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ef79b7e00d5a37a6dc4d85341d7f61eff47adc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ed:df:f5:5a:34:3e:b1:89:53:2f:f8:fc:2c:
dc:3f:35:4c:37:34:08:12:14:e6:02:ca:ba:0e:89:
c3:b0:8f:37:6d:81:a1:c3:d8:3c:7d:22:c3:5a:f2:
e2:86:b7:78:75:e2:6a:ef:39:49:03:89:6c:0e:72:
50:0b:8c:42:22:1e:86:0c:31:95:07:c3:4c:81:c7:
79:d3:76:d9:fd:91:64:7a:35:9e:d8:ef:07:f5:41:
7f:4c:1f:72:82:be:dd:0e:db:23:83:62:e1:a3:45:
83:b0:87:a8:fe:48:3d:29:5e:5e:7a:33:42:2c:7d:
f9:f0:73:5a:e3:f2:ed:d4:78:23:0c:0a:89:d4:33:
63:13:4e:3b:cd:07:0b:8b:1e:70:30:a5:09:b4:5f:
32:cb:db:b9:fd:99:32:00:7f:c5:1d:1b:00:3f:5c:
15:1e:e3:44:a0:ae:fd:12:95:a0:0f:2e:a6:3f:fd:
58:40:aa:3c:4c:7f:6f:04:76:b6:45:51:51:2c:80:
e0:aa:5a:9d:1a:aa:56:32:98:d6:9f:38:0d:4b:49:
0d:6b:4b:08:fd:52:2c:b3:4e:d9:36:90:56:f2:44:
cb:3a:dc:1e:9f:73:9e:70:ab:33:15:a2:66:2e:03:
82:51:22:bc:0f:ea:28:e9:c3:30:54:d9:3d:c0:5f:
18:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F7:9B:7E:00:D5:A3:7A:6D:C4:D8:53:41:D7:F6:1E:FF:47:AD:C3
X509v3 Authority Key Identifier:
keyid:B6:59:18:F2:5D:56:00:0F:88:1D:A9:8D:E3:23:D9:1A:06:4E:00:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tlkY8l1WAA-IHamN4yPZGgZOAIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5506de-0b1a-47ee-99d1-a520d434654a/1/PvebfgDVo3ptxNhTQdf2Hv9HrcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5506de-0b1a-47ee-99d1-a520d434654a/1/tlkY8l1WAA-IHamN4yPZGgZOAIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.116.0/22
Signature Algorithm: sha256WithRSAEncryption
16:d0:b2:43:9e:39:31:18:ab:05:93:a5:5d:6a:bc:3b:d4:20:
e3:42:f6:95:8f:c7:45:9b:0a:9d:61:fa:63:24:13:5e:43:65:
c1:9d:a1:c9:35:bc:72:29:60:df:b3:9b:37:60:4f:b9:aa:fb:
b3:c6:76:3b:66:c6:c0:f7:bf:39:c4:6c:bb:88:de:24:79:d7:
8b:3d:99:f1:ad:7b:c2:5b:cd:65:8e:1e:05:1e:c0:6d:9d:f9:
99:01:45:a5:d0:29:8e:40:ce:a9:12:b4:4a:5b:ef:56:f0:9d:
b3:31:a0:b7:6b:fc:3c:de:fc:19:dd:7a:cb:ef:da:e5:76:18:
fa:f8:c5:9f:72:df:64:02:4f:20:bc:e4:48:67:3f:f3:06:0b:
99:02:22:cf:8e:f1:8b:b5:96:1c:76:45:fe:3a:60:9a:d6:a9:
e6:b0:18:0a:3f:f4:0f:ed:1d:8f:a5:e4:36:37:7d:9e:86:7e:
c0:68:c9:a4:48:12:23:00:78:cb:6c:5a:98:a4:01:19:ce:8a:
df:ac:4e:ca:57:c6:89:76:c2:3f:d8:d5:98:fb:19:1d:98:88:
b0:5b:35:09:b0:ea:c0:55:36:d8:2c:dd:d7:fa:d2:23:13:c5:
97:3f:b6:55:62:6e:7e:55:9a:5a:15:82:96:34:e5:6e:94:25:
1d:3a:5a:16
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED+X8wjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NjU5MThmMjVkNTYwMDBmODgxZGE5OGRlMzIzZDkxYTA2NGUwMDg3MB4XDTIyMDEw
MTEyMDA0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2VmNzliN2UwMGQ1
YTM3YTZkYzRkODUzNDFkN2Y2MWVmZjQ3YWRjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN7t3/VaND6xiVMv+Pws3D81TDc0CBIU5gLKug6Jw7CPN22B
ocPYPH0iw1ry4oa3eHXiau85SQOJbA5yUAuMQiIehgwxlQfDTIHHedN22f2RZHo1
ntjvB/VBf0wfcoK+3Q7bI4Ni4aNFg7CHqP5IPSleXnozQix9+fBzWuPy7dR4IwwK
idQzYxNOO80HC4secDClCbRfMsvbuf2ZMgB/xR0bAD9cFR7jRKCu/RKVoA8upj/9
WECqPEx/bwR2tkVRUSyA4KpanRqqVjKY1p84DUtJDWtLCP1SLLNO2TaQVvJEyzrc
Hp9znnCrMxWiZi4DglEivA/qKOnDMFTZPcBfGDkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ+95t+ANWjem3E2FNB1/Ye/0etwzAfBgNVHSMEGDAWgBS2WRjyXVYAD4gd
qY3jI9kaBk4AhzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Rsa1k4bDFXQUEtSUhhbU40eVBaR2daT0FJYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWQvNTUwNmRlLTBiMWEtNDdlZS05OWQxLWE1MjBkNDM0NjU0YS8x
L1B2ZWJmZ0RWbzNwdHhOaFRRZGYySHY5SHJjTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQv
NTUwNmRlLTBiMWEtNDdlZS05OWQxLWE1MjBkNDM0NjU0YS8xL3Rsa1k4bDFXQUEt
SUhhbU40eVBaR2daT0FJYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmldDANBgkqhkiG9w0BAQsFAAOC
AQEAFtCyQ545MRirBZOlXWq8O9Qg40L2lY/HRZsKnWH6YyQTXkNlwZ2hyTW8cilg
37ObN2BPuar7s8Z2O2bGwPe/OcRsu4jeJHnXiz2Z8a17wlvNZY4eBR7AbZ35mQFF
pdApjkDOqRK0SlvvVvCdszGgt2v8PN78Gd16y+/a5XYY+vjFn3LfZAJPILzkSGc/
8wYLmQIiz47xi7WWHHZF/jpgmtap5rAYCj/0D+0dj6XkNjd9noZ+wGjJpEgSIwB4
y2xamKQBGc6K36xOylfGiXbCP9jVmPsZHZiIsFs1CbDqwFU22Czd1/rSIxPFlz+2
VWJuflWaWhWCljTlbpQlHTpaFg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:44 2024 by rpki-client on console-fra.rpki-client.org