Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/CDb3oihKvLaZ4jYH-GZjIaaxLWg.roa
File: CDb3oihKvLaZ4jYH-GZjIaaxLWg.roa (raw, json)
Hash identifier: RUC0WJ+t3tl+vMcbNrNG8N+4VwyOBslqFoAxu/ZMBWk=
Subject key identifier: 08:36:F7:A2:28:4A:BC:B6:99:E2:36:07:F8:66:63:21:A6:B1:2D:68
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 081400C5
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/CDb3oihKvLaZ4jYH-GZjIaaxLWg.roa
Signing time: Sat 01 Jan 2022 16:03:21 +0000
ROA not before: Sat 01 Jan 2022 16:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209280
IP address blocks: 185.227.81.0/24 maxlen: 24
2a0b:3c40:13::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135528645 (0x81400c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 16:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0836f7a2284abcb699e23607f8666321a6b12d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:50:9e:f7:13:c5:fa:61:b7:4b:4b:ab:4a:12:
b2:9b:20:06:8c:5c:d4:2a:17:2c:a8:ce:d0:bf:ee:
50:8e:3a:bc:88:b6:03:d7:ec:a6:48:b2:ae:a0:c8:
87:21:98:88:b7:d8:b4:95:e2:4f:f1:60:cf:77:0e:
8b:6e:91:f0:09:c1:23:f9:8f:9f:95:d1:c4:07:01:
a9:ee:56:a9:90:11:ae:52:7e:da:72:6c:c7:90:2f:
3c:7d:5a:d1:63:c2:d2:6f:4c:98:f8:25:7f:ae:8d:
af:e6:e6:6d:a7:0b:f8:34:63:47:6b:d1:ad:92:91:
91:1a:ca:b7:1b:a1:c7:87:79:ff:78:15:0c:10:d2:
dc:3c:e2:55:c7:91:7d:66:55:c3:47:28:29:38:7c:
19:8b:00:57:42:cb:78:05:e3:36:12:c7:fa:2f:05:
9d:f8:dd:05:b6:24:94:a2:b7:35:7d:94:a2:96:aa:
f3:d8:ae:a5:8a:90:16:28:82:68:e0:b4:f3:a4:85:
21:aa:db:4c:a6:e9:2b:15:34:c2:91:bd:cd:bb:0f:
31:68:57:9d:f7:5d:e0:06:3f:27:1d:95:97:6f:3b:
a8:3d:8a:d5:24:82:39:1f:ea:9c:aa:a5:a2:5f:c3:
ef:c0:70:6e:68:55:39:2b:dc:a1:0a:77:5d:d7:0c:
12:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:36:F7:A2:28:4A:BC:B6:99:E2:36:07:F8:66:63:21:A6:B1:2D:68
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/CDb3oihKvLaZ4jYH-GZjIaaxLWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.81.0/24
IPv6:
2a0b:3c40:13::/48
Signature Algorithm: sha256WithRSAEncryption
7d:3e:18:c2:53:88:39:07:47:12:f1:2c:5c:40:6f:75:1c:aa:
ad:6e:54:c9:4b:ed:ed:9d:c1:f3:2c:1b:f8:fc:af:c7:d4:9b:
f0:17:56:1e:46:31:ee:2f:5f:75:33:cd:67:03:73:18:c7:83:
99:42:24:5c:b7:c2:3c:fc:95:b0:db:3b:a4:45:37:48:7a:14:
62:63:3b:73:1f:9d:1b:63:22:18:4f:8d:31:41:33:c2:92:30:
73:94:f3:d0:cc:a2:db:e1:ec:93:07:85:33:ff:f6:09:10:4d:
89:e7:c0:50:f6:a4:6e:b8:f3:03:de:f1:f3:0e:66:7c:f0:d6:
9b:07:03:24:18:9e:f5:f0:91:3e:e7:fc:63:38:03:82:7a:f5:
25:b5:5a:86:a0:20:5f:45:6c:da:63:05:68:35:42:1e:0f:63:
e8:43:50:a2:6d:f9:31:10:95:b0:65:0c:4a:8e:30:7d:42:3b:
0b:84:ee:5e:94:15:20:d7:c0:83:0d:69:74:11:ee:9f:c2:7a:
5e:79:d3:79:36:43:03:d8:61:b4:4b:1a:35:ed:a2:eb:00:9d:
da:55:73:a3:cf:de:d3:ea:0c:86:ce:55:c1:28:de:71:37:fb:
71:5a:78:9f:b1:7a:2c:b6:84:18:4d:0e:bb:55:b4:41:ec:35:
41:26:da:98
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECBQAxTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NTU3Y2NkNDNhZmU4MTZlNDk1MzIyOGJmMTRhNzVkYzI5MDE0YjhkMB4XDTIyMDEw
MTE2MDMyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDgzNmY3YTIyODRh
YmNiNjk5ZTIzNjA3Zjg2NjYzMjFhNmIxMmQ2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKBQnvcTxfpht0tLq0oSspsgBoxc1CoXLKjO0L/uUI46vIi2
A9fspkiyrqDIhyGYiLfYtJXiT/Fgz3cOi26R8AnBI/mPn5XRxAcBqe5WqZARrlJ+
2nJsx5AvPH1a0WPC0m9MmPglf66Nr+bmbacL+DRjR2vRrZKRkRrKtxuhx4d5/3gV
DBDS3DziVceRfWZVw0coKTh8GYsAV0LLeAXjNhLH+i8FnfjdBbYklKK3NX2Uopaq
89iupYqQFiiCaOC086SFIarbTKbpKxU0wpG9zbsPMWhXnfdd4AY/Jx2Vl287qD2K
1SSCOR/qnKqlol/D78BwbmhVOSvcoQp3XdcMEisCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQINveiKEq8tpniNgf4ZmMhprEtaDAfBgNVHSMEGDAWgBS1V8zUOv6BbklT
IovxSnXcKQFLjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RWZk0xRHItZ1c1SlV5S0w4VXAxM0NrQlM0MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGIvMTkwODQzLTE4MDMtNDQ2Mi1hNzk1LTZiYzc1NTc4YjRjMy8x
L0NEYjNvaWhLdkxhWjRqWUgtR1pqSWFheExXZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGIv
MTkwODQzLTE4MDMtNDQ2Mi1hNzk1LTZiYzc1NTc4YjRjMy8xL3RWZk0xRHItZ1c1
SlV5S0w4VXAxM0NrQlM0MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALnjUTAPBAIAAjAJAwcAKgs8QAAT
MA0GCSqGSIb3DQEBCwUAA4IBAQB9PhjCU4g5B0cS8SxcQG91HKqtblTJS+3tncHz
LBv4/K/H1JvwF1YeRjHuL191M81nA3MYx4OZQiRct8I8/JWw2zukRTdIehRiYztz
H50bYyIYT40xQTPCkjBzlPPQzKLb4eyTB4Uz//YJEE2J58BQ9qRuuPMD3vHzDmZ8
8NabBwMkGJ718JE+5/xjOAOCevUltVqGoCBfRWzaYwVoNUIeD2PoQ1CibfkxEJWw
ZQxKjjB9QjsLhO5elBUg18CDDWl0Ee6fwnpeedN5NkMD2GG0Sxo17aLrAJ3aVXOj
z97T6gyGzlXBKN5xN/txWnifsXostoQYTQ67VbRB7DVBJtqY
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org