Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/oQfA4bGW48NUmie0rBZF7LgRHS8.roa
File: oQfA4bGW48NUmie0rBZF7LgRHS8.roa (raw, json)
Hash identifier: 06+yxVY5a7B+geZvMeY645cqcGjs4fdGufSfP1oftF4=
Subject key identifier: A1:07:C0:E1:B1:96:E3:C3:54:9A:27:B4:AC:16:45:EC:B8:11:1D:2F
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 05268DE0
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/oQfA4bGW48NUmie0rBZF7LgRHS8.roa
Signing time: Sat 01 Jan 2022 14:05:50 +0000
ROA not before: Sat 01 Jan 2022 14:05:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28843
IP address blocks: 185.47.92.0/22 maxlen: 22
62.205.192.0/20 maxlen: 20
188.64.176.0/21 maxlen: 21
62.205.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86412768 (0x5268de0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 1 14:05:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a107c0e1b196e3c3549a27b4ac1645ecb8111d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:35:e9:30:38:72:5e:a8:3a:b3:4b:b9:73:57:
53:e1:8b:a3:c0:64:57:12:24:7b:df:7c:77:87:f2:
b4:08:d8:62:3c:d8:a9:ca:06:7c:39:19:58:5a:2f:
e3:11:36:d3:56:00:27:a7:da:d3:96:c3:12:9a:5e:
61:69:38:a2:ec:85:dc:e8:27:fc:e0:5c:d4:62:d9:
1e:3f:61:98:c9:fe:af:d1:54:81:26:50:82:0a:69:
49:65:fb:af:09:83:2e:16:27:15:54:a1:eb:d0:e6:
67:4a:c7:b5:45:ba:43:5b:a1:5b:33:d4:72:95:96:
7e:3b:34:5b:77:7a:cd:84:e5:f3:0c:24:cf:25:32:
4e:e4:4d:98:ab:87:fd:36:29:8b:5b:2f:e5:11:1d:
33:14:28:4a:92:8b:e5:ce:25:96:c1:77:1b:fd:a8:
59:4c:96:9c:04:b8:46:ad:1a:d6:7e:52:73:f7:22:
e0:b8:c4:26:2a:f1:b7:df:8f:26:26:82:f2:48:ed:
78:ca:b1:c9:42:80:3c:6c:7c:da:3b:d2:82:af:11:
ac:62:65:a2:e2:83:c3:25:a6:82:71:24:a7:68:f0:
8e:d5:93:8f:99:35:6c:63:55:f2:94:cb:18:3c:83:
a2:98:6f:4d:34:c5:3e:41:12:c6:58:df:7e:a0:f5:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:07:C0:E1:B1:96:E3:C3:54:9A:27:B4:AC:16:45:EC:B8:11:1D:2F
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/oQfA4bGW48NUmie0rBZF7LgRHS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.192.0/18
185.47.92.0/22
188.64.176.0/21
Signature Algorithm: sha256WithRSAEncryption
85:13:b0:f6:6e:7e:f8:ad:90:aa:ab:ae:18:7f:fa:f1:97:ef:
31:e0:09:33:d0:a5:cc:35:f3:97:65:b6:9e:3e:f3:95:53:59:
b4:90:42:75:9a:46:59:bb:56:8f:91:e8:6c:53:f9:b6:2b:48:
68:68:90:f3:17:29:a1:49:31:2e:1a:27:c1:b9:17:23:b3:d8:
6c:b6:59:40:c2:52:89:95:38:6a:62:43:b3:78:f0:f9:4f:c8:
bd:e2:51:9e:bb:49:03:a4:41:ad:24:ce:b9:a7:ff:74:bf:4d:
df:84:d6:bc:f1:00:42:0a:a8:9b:7c:75:cf:07:c3:3a:87:a1:
6e:3b:ab:6d:6c:fb:5b:a7:d4:4f:58:4f:0b:c3:b8:e8:d6:00:
33:9b:ce:7e:99:e4:6c:f4:78:01:a2:6a:a8:50:db:50:2a:d4:
a9:bf:df:6b:7d:62:37:3b:b9:61:03:17:61:8c:3b:0f:14:37:
52:e9:7a:f9:84:0c:91:02:18:98:aa:09:d1:1d:2b:31:d1:fc:
0e:d6:e8:bd:8d:6d:f9:6d:21:55:12:f9:3a:2a:80:a1:88:63:
88:00:47:c7:cf:5e:12:d9:12:00:ab:08:3b:4a:4e:a8:0f:35:
7d:92:81:b4:e4:fc:d5:2e:5d:a4:be:1b:75:a3:6d:4f:26:32:
22:1d:cc:9a
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBSaN4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ODViODNjODdjNGEzZDgzMTUwMjUzNzlmNzI5ODc1MjBiYjVkMDQ2MB4XDTIyMDEw
MTE0MDU1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTEwN2MwZTFiMTk2
ZTNjMzU0OWEyN2I0YWMxNjQ1ZWNiODExMWQyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANk16TA4cl6oOrNLuXNXU+GLo8BkVxIke998d4fytAjYYjzY
qcoGfDkZWFov4xE201YAJ6fa05bDEppeYWk4ouyF3Ogn/OBc1GLZHj9hmMn+r9FU
gSZQggppSWX7rwmDLhYnFVSh69DmZ0rHtUW6Q1uhWzPUcpWWfjs0W3d6zYTl8wwk
zyUyTuRNmKuH/TYpi1sv5REdMxQoSpKL5c4llsF3G/2oWUyWnAS4Rq0a1n5Sc/ci
4LjEJirxt9+PJiaC8kjteMqxyUKAPGx82jvSgq8RrGJlouKDwyWmgnEkp2jwjtWT
j5k1bGNV8pTLGDyDophvTTTFPkESxljffqD1xeMCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBShB8DhsZbjw1SaJ7SsFkXsuBEdLzAfBgNVHSMEGDAWgBToW4PIfEo9gxUC
U3n3KYdSC7XQRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZGdUR5SHhLUFlNVkFsTjU5eW1IVWd1MTBFWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvMzM5NGUzLTczNmUtNDg3OS1iOGRiLTg5YWFlYTM2Mjg1ZS8x
L29RZkE0YkdXNDhOVW1pZTByQlpGN0xnUkhTOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
MzM5NGUzLTczNmUtNDg3OS1iOGRiLTg5YWFlYTM2Mjg1ZS8xLzZGdUR5SHhLUFlN
VkFsTjU5eW1IVWd1MTBFWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEBj7NwAMEArkvXAMEA7xAsDANBgkq
hkiG9w0BAQsFAAOCAQEAhROw9m5++K2QqquuGH/68ZfvMeAJM9ClzDXzl2W2nj7z
lVNZtJBCdZpGWbtWj5HobFP5titIaGiQ8xcpoUkxLhonwbkXI7PYbLZZQMJSiZU4
amJDs3jw+U/IveJRnrtJA6RBrSTOuaf/dL9N34TWvPEAQgqom3x1zwfDOoehbjur
bWz7W6fUT1hPC8O46NYAM5vOfpnkbPR4AaJqqFDbUCrUqb/fa31iNzu5YQMXYYw7
DxQ3Uul6+YQMkQIYmKoJ0R0rMdH8DtbovY1t+W0hVRL5OiqAoYhjiABHx89eEtkS
AKsIO0pOqA81fZKBtOT81S5dpL4bdaNtTyYyIh3Mmg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:47 2023 by rpki-client on console-ams.rpki-client.org