Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/cc5Ghwvxy0k2Nl9WKEDqiT-J__s.roa
File: cc5Ghwvxy0k2Nl9WKEDqiT-J__s.roa (raw, json)
Hash identifier: Awp0B2S/LnbBDnyBRzBrmp/cmKdouRrtUgD3JMt06VI=
Subject key identifier: 71:CE:46:87:0B:F1:CB:49:36:36:5F:56:28:40:EA:89:3F:89:FF:FB
Certificate issuer: /CN=9585c19915455835457413ef222a7d375b29901d
Certificate serial: 06649728
Authority key identifier: 95:85:C1:99:15:45:58:35:45:74:13:EF:22:2A:7D:37:5B:29:90:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYXBmRVFWDVFdBPvIip9N1spkB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/cc5Ghwvxy0k2Nl9WKEDqiT-J__s.roa
Signing time: Sat 01 Jan 2022 04:59:04 +0000
ROA not before: Sat 01 Jan 2022 04:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12798
IP address blocks: 185.82.48.0/24 maxlen: 24
185.82.51.0/24 maxlen: 24
185.82.50.0/24 maxlen: 24
212.22.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107255592 (0x6649728)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9585c19915455835457413ef222a7d375b29901d
Validity
Not Before: Jan 1 04:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71ce46870bf1cb4936365f562840ea893f89fffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:33:e7:fa:de:7c:38:0f:c8:d9:76:70:a4:5c:
8f:2d:81:2b:cf:16:02:49:51:5e:1b:b1:c8:49:31:
32:c5:b1:55:a5:49:52:8c:19:ad:69:f4:71:c7:25:
63:59:bf:45:23:00:c9:9b:18:6b:64:67:17:a9:6d:
78:47:83:d9:67:f9:20:7d:fc:fe:d8:56:ea:35:dc:
21:2b:7d:3c:dd:aa:01:d9:29:eb:f8:b9:ed:d7:53:
b9:33:3a:d6:2d:0a:fa:06:36:8c:79:cd:51:bb:ab:
27:f7:8f:41:58:a9:3c:42:39:cf:a0:cf:f0:dc:04:
22:85:41:98:eb:c1:9c:21:c2:86:b7:88:34:e1:1a:
3b:f3:cb:c7:6e:3f:2f:75:92:1d:87:c2:b4:a1:af:
37:93:d7:8a:5f:9e:24:0e:b4:79:6c:31:d7:fd:56:
8c:c2:a5:2e:2d:06:66:b5:f7:a9:28:e5:1b:f8:c5:
d3:cd:91:da:f1:e6:3a:d9:00:db:09:f4:fc:45:57:
94:fa:32:4f:80:8c:06:4b:a7:e1:f2:a5:0f:25:ac:
11:d7:95:a0:4d:09:be:f6:f5:02:0c:09:a2:60:db:
0a:f1:b5:b7:74:40:ec:4f:68:95:f8:2e:99:db:fb:
79:c9:b5:9c:65:81:d9:08:06:67:aa:81:2c:57:39:
ca:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CE:46:87:0B:F1:CB:49:36:36:5F:56:28:40:EA:89:3F:89:FF:FB
X509v3 Authority Key Identifier:
keyid:95:85:C1:99:15:45:58:35:45:74:13:EF:22:2A:7D:37:5B:29:90:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYXBmRVFWDVFdBPvIip9N1spkB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/cc5Ghwvxy0k2Nl9WKEDqiT-J__s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/lYXBmRVFWDVFdBPvIip9N1spkB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.48.0/24
185.82.50.0/23
212.22.224.0/19
Signature Algorithm: sha256WithRSAEncryption
47:5b:3a:24:b7:2f:7a:9e:55:6d:f2:16:85:0b:3d:f6:46:ef:
87:16:2b:5f:36:a2:27:ce:c1:d7:66:c6:0e:7e:57:31:5f:ee:
5f:89:98:0d:8b:60:13:0e:ca:12:cc:14:05:cf:23:62:6a:74:
1a:c6:27:58:80:6c:8c:b5:ba:44:2a:c6:ed:1a:51:21:2b:48:
0f:01:a8:21:61:ff:8e:87:47:89:08:2d:09:a2:a8:0a:3f:35:
8b:99:c7:ec:5f:0c:0f:b0:9e:12:af:9b:f1:59:6f:97:28:f8:
f2:20:85:0d:0c:c0:66:fe:04:57:62:1b:f4:4f:9c:ea:b7:20:
fa:d7:2a:40:84:4f:0c:06:9a:30:83:1f:c5:05:01:9a:24:8c:
1c:5d:37:de:54:a7:73:7a:f4:9f:21:58:c1:b9:56:c5:bf:fc:
60:a9:4c:76:6b:be:6f:26:52:52:98:5a:95:8c:24:db:f7:10:
57:4f:53:bf:87:23:c8:f4:8b:c2:c0:a6:11:a7:2f:05:01:d0:
b6:db:cd:ef:e9:f6:44:a4:10:17:f7:ac:39:06:ed:3b:8c:c0:
12:dc:34:15:aa:a6:69:1b:62:35:c0:b6:54:b8:13:72:9b:63:
4f:9a:80:42:37:ec:9c:3c:02:1b:48:ed:b5:f9:6c:9b:72:58:
e0:5d:94:70
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBmSXKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NTg1YzE5OTE1NDU1ODM1NDU3NDEzZWYyMjJhN2QzNzViMjk5MDFkMB4XDTIyMDEw
MTA0NTkwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzFjZTQ2ODcwYmYx
Y2I0OTM2MzY1ZjU2Mjg0MGVhODkzZjg5ZmZmYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK8z5/refDgPyNl2cKRcjy2BK88WAklRXhuxyEkxMsWxVaVJ
UowZrWn0ccclY1m/RSMAyZsYa2RnF6lteEeD2Wf5IH38/thW6jXcISt9PN2qAdkp
6/i57ddTuTM61i0K+gY2jHnNUburJ/ePQVipPEI5z6DP8NwEIoVBmOvBnCHChreI
NOEaO/PLx24/L3WSHYfCtKGvN5PXil+eJA60eWwx1/1WjMKlLi0GZrX3qSjlG/jF
082R2vHmOtkA2wn0/EVXlPoyT4CMBkun4fKlDyWsEdeVoE0Jvvb1AgwJomDbCvG1
t3RA7E9olfgumdv7ecm1nGWB2QgGZ6qBLFc5yisCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRxzkaHC/HLSTY2X1YoQOqJP4n/+zAfBgNVHSMEGDAWgBSVhcGZFUVYNUV0
E+8iKn03WymQHTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xZWEJtUlZGV0RWRmRCUHZJaXA5TjFzcGtCMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvY2Y1NzU4LWFmZjctNGQ4OC1iN2RjLTc3MjkxOGZmZjU0NC8x
L2NjNUdod3Z4eTBrMk5sOVdLRURxaVQtSl9fcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
Y2Y1NzU4LWFmZjctNGQ4OC1iN2RjLTc3MjkxOGZmZjU0NC8xL2xZWEJtUlZGV0RW
RmRCUHZJaXA5TjFzcGtCMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEALlSMAMEAblSMgMEBdQW4DANBgkq
hkiG9w0BAQsFAAOCAQEAR1s6JLcvep5VbfIWhQs99kbvhxYrXzaiJ87B12bGDn5X
MV/uX4mYDYtgEw7KEswUBc8jYmp0GsYnWIBsjLW6RCrG7RpRIStIDwGoIWH/jodH
iQgtCaKoCj81i5nH7F8MD7CeEq+b8Vlvlyj48iCFDQzAZv4EV2Ib9E+c6rcg+tcq
QIRPDAaaMIMfxQUBmiSMHF033lSnc3r0nyFYwblWxb/8YKlMdmu+byZSUphalYwk
2/cQV09Tv4cjyPSLwsCmEacvBQHQttvN7+n2RKQQF/esOQbtO4zAEtw0FaqmaRti
NcC2VLgTcptjT5qAQjfsnDwCG0jttflsm3JY4F2UcA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:48 2023 by rpki-client on console-ams.rpki-client.org