Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/q8B1mq0ikMDDAS2lc0reSkEEGZQ.roa
File: q8B1mq0ikMDDAS2lc0reSkEEGZQ.roa (raw, json)
Hash identifier: z0px6Rq4isA7LkErFdDIk38M6MFKkYQWya2bAXYb7ZU=
Subject key identifier: AB:C0:75:9A:AD:22:90:C0:C3:01:2D:A5:73:4A:DE:4A:41:04:19:94
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 8FD68D
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/q8B1mq0ikMDDAS2lc0reSkEEGZQ.roa
Signing time: Fri 08 Apr 2022 09:56:16 +0000
ROA not before: Fri 08 Apr 2022 09:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50352
IP address blocks: 185.94.82.0/24 maxlen: 24
185.94.80.0/23 maxlen: 23
193.42.157.0/24 maxlen: 24
2a05:bf81::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9426573 (0x8fd68d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Apr 8 09:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abc0759aad2290c0c3012da5734ade4a41041994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d2:fa:18:8a:7a:c9:a7:7c:5a:c6:36:e6:c6:
62:e3:91:b3:27:8c:32:a3:7d:c2:60:c1:59:c4:f3:
4a:2e:63:21:16:08:90:80:3f:45:59:46:bd:bf:28:
e8:2d:c9:e6:2b:f2:0f:49:1d:fb:85:3e:ac:44:03:
0d:06:ad:c2:30:45:19:94:42:13:45:0e:0c:09:bc:
1f:5c:d1:62:98:8b:88:64:e0:3f:08:6a:9d:8f:96:
c3:ad:98:2f:e1:0d:19:95:59:eb:bb:4d:0a:95:21:
67:33:9e:0d:79:df:ea:a0:0f:92:a9:a4:fb:2c:c1:
3d:d8:c2:b4:77:14:e0:d2:1c:50:a4:32:5e:e0:6f:
74:3b:16:06:2c:c8:64:86:16:5a:bc:06:a2:32:f5:
23:bb:fe:aa:ac:49:09:db:83:02:93:8a:a5:21:87:
85:b0:ce:5c:ad:6c:e7:99:5b:ca:52:e4:52:81:08:
82:d3:d1:86:55:b7:37:3b:ae:fc:a8:60:c6:4c:1c:
31:ca:c0:61:9c:d1:dd:f9:ac:48:3e:2b:e8:28:65:
17:94:34:d9:b2:3a:73:06:de:c4:b3:f0:42:e1:aa:
a4:ef:4e:8d:f4:64:1b:8f:00:d7:c7:a6:6c:90:f8:
44:04:91:7e:cf:5c:6f:c4:85:42:73:e9:39:67:5f:
98:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C0:75:9A:AD:22:90:C0:C3:01:2D:A5:73:4A:DE:4A:41:04:19:94
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/q8B1mq0ikMDDAS2lc0reSkEEGZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.80.0-185.94.82.255
193.42.157.0/24
IPv6:
2a05:bf81::/32
Signature Algorithm: sha256WithRSAEncryption
16:a3:29:e4:ef:81:71:e4:af:12:8e:20:94:f0:2c:a0:f5:29:
bc:4b:89:50:d3:b4:19:99:79:60:10:96:b5:58:e2:03:08:44:
33:51:da:65:a8:1f:3f:3b:be:7e:2d:6e:7b:54:60:c9:70:70:
09:0e:c9:cb:0d:e4:58:8d:86:15:db:6c:db:e7:4f:d4:cb:75:
f3:6b:fb:6e:6c:be:29:02:5d:d7:b3:92:2e:1d:ed:56:5f:32:
96:eb:c1:ce:2e:00:64:9f:67:1b:0f:90:96:92:12:c3:87:19:
04:3e:08:4d:64:4b:27:b7:b9:3e:c3:b9:c3:9f:70:f9:51:7f:
aa:ca:1d:80:3a:eb:4b:5e:3a:85:23:99:36:a1:e2:ea:d5:ba:
13:91:e5:b2:07:a5:ef:88:e2:8f:bb:41:81:c7:13:83:2f:57:
78:94:a6:6c:7d:3e:ff:ad:8e:9e:d1:7c:28:91:02:26:ab:15:
64:48:0f:1d:01:ec:22:2e:08:47:da:00:f9:23:35:ac:fb:32:
22:04:d7:b1:bf:b4:d5:9d:17:95:df:0e:56:50:d6:1f:d4:73:
e2:ec:b8:af:50:6a:da:8c:3c:68:b5:82:87:d4:50:61:0f:d6:
ee:ab:33:04:1a:04:1d:cd:7f:9b:d1:84:a8:4c:f2:a1:b5:90:
d1:4d:40:42
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIEAI/WjTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ODUzMTBmNTAzMTM3YWU4YjM1ZDRmMzI5ZjQ2ZjA2OWRkNzAzODE1MB4XDTIyMDQw
ODA5NTYxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWJjMDc1OWFhZDIy
OTBjMGMzMDEyZGE1NzM0YWRlNGE0MTA0MTk5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/S+hiKesmnfFrGNubGYuORsyeMMqN9wmDBWcTzSi5jIRYI
kIA/RVlGvb8o6C3J5ivyD0kd+4U+rEQDDQatwjBFGZRCE0UODAm8H1zRYpiLiGTg
PwhqnY+Ww62YL+ENGZVZ67tNCpUhZzOeDXnf6qAPkqmk+yzBPdjCtHcU4NIcUKQy
XuBvdDsWBizIZIYWWrwGojL1I7v+qqxJCduDApOKpSGHhbDOXK1s55lbylLkUoEI
gtPRhlW3Nzuu/KhgxkwcMcrAYZzR3fmsSD4r6ChlF5Q02bI6cwbexLPwQuGqpO9O
jfRkG48A18embJD4RASRfs9cb8SFQnPpOWdfmCECAwEAAaOCAiYwggIiMB0GA1Ud
DgQWBBSrwHWarSKQwMMBLaVzSt5KQQQZlDAfBgNVHSMEGDAWgBSoUxD1AxN66LNd
TzKfRvBp3XA4FTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FGTVE5UU1UZXVpelhVOHluMGJ3YWQxd09CVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvYjQyOTQ5LWVlMGEtNDEyMy04N2JmLTMwMTg5YTVhNGViYS8x
L3E4QjFtcTBpa01EREFTMmxjMHJlU2tFRUdaUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
YjQyOTQ5LWVlMGEtNDEyMy04N2JmLTMwMTg5YTVhNGViYS8xL3FGTVE5UU1UZXVp
elhVOHluMGJ3YWQxd09CVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA8
BggrBgEFBQcBBwEB/wQtMCswGgQCAAEwFDAMAwQEuV5QAwQAuV5SAwQAwSqdMA0E
AgACMAcDBQAqBb+BMA0GCSqGSIb3DQEBCwUAA4IBAQAWoynk74Fx5K8SjiCU8Cyg
9Sm8S4lQ07QZmXlgEJa1WOIDCEQzUdplqB8/O75+LW57VGDJcHAJDsnLDeRYjYYV
22zb50/Uy3Xza/tubL4pAl3Xs5IuHe1WXzKW68HOLgBkn2cbD5CWkhLDhxkEPghN
ZEsnt7k+w7nDn3D5UX+qyh2AOutLXjqFI5k2oeLq1boTkeWyB6XviOKPu0GBxxOD
L1d4lKZsfT7/rY6e0XwokQImqxVkSA8dAewiLghH2gD5IzWs+zIiBNexv7TVnReV
3w5WUNYf1HPi7LivUGrajDxotYKH1FBhD9buqzMEGgQdzX+b0YSoTPKhtZDRTUBC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:03 2024 by rpki-client on console-ams.rpki-client.org