Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/eFiugVFWx9PFLyqKYky2unGgDVU.roa
File: eFiugVFWx9PFLyqKYky2unGgDVU.roa (raw, json)
Hash identifier: KX4xSwEDjeaCuAicd/xdy2wMDf5Gp92kEmP8Tr+VSl8=
Subject key identifier: 78:58:AE:81:51:56:C7:D3:C5:2F:2A:8A:62:4C:B6:BA:71:A0:0D:55
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01839DD4C1729F2F17A56256C2CFDE493CAA
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/eFiugVFWx9PFLyqKYky2unGgDVU.roa
Signing time: Mon 03 Oct 2022 12:31:49 +0000
ROA not before: Mon 03 Oct 2022 12:31:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 85.254.137.0/24 maxlen: 24
85.254.140.0/24 maxlen: 24
85.254.84.0/23 maxlen: 23
85.254.103.0/24 maxlen: 24
85.254.124.0/23 maxlen: 23
85.254.30.0/24 maxlen: 24
85.254.29.0/24 maxlen: 24
85.254.40.0/24 maxlen: 24
85.254.47.0/24 maxlen: 24
85.254.51.0/24 maxlen: 24
85.254.59.0/24 maxlen: 24
85.254.4.0/24 maxlen: 24
85.254.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:d4:c1:72:9f:2f:17:a5:62:56:c2:cf:de:49:3c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Oct 3 12:31:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7858ae815156c7d3c52f2a8a624cb6ba71a00d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:62:e1:e5:ba:91:3c:de:30:8a:16:5e:ab:32:
48:aa:3f:1c:b5:83:f5:a6:12:29:1e:cf:7e:09:ea:
3b:9c:32:03:2c:5d:10:14:cf:48:2d:22:bc:b0:60:
45:ec:3c:b2:cf:e7:a9:b3:72:06:bd:96:c5:72:a1:
71:2d:a3:9d:4e:bf:41:00:0d:be:bb:2a:23:a4:8a:
dc:7a:b5:43:ac:0e:e4:00:1e:0f:af:e2:e6:c4:99:
59:1d:2f:a5:66:9c:50:f8:f5:6c:1d:34:d0:0e:81:
af:82:98:4e:af:fb:44:b5:d3:99:02:aa:ce:0a:30:
97:25:04:7a:b3:8f:37:9d:cb:ab:be:ff:1b:3c:53:
61:c1:2a:01:ad:ef:6a:20:7a:2e:d8:74:82:6a:f9:
0e:9a:77:d9:63:fe:0c:c4:42:47:5a:b6:6e:77:2b:
25:08:0d:e3:88:22:81:7e:ef:79:97:f0:e3:2c:4b:
20:6e:04:f3:36:4f:01:70:98:9b:bb:a0:e2:e0:77:
78:bf:4a:b2:d1:ac:97:8e:d8:f4:64:2b:88:79:8f:
7a:15:08:c8:f1:6f:cc:75:d5:df:62:dd:39:6e:80:
89:ef:80:85:fe:9f:d5:8b:50:c1:3e:c4:d2:2e:ae:
d5:52:70:28:bb:0b:d8:1e:56:e7:06:90:c0:e2:5e:
ba:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:58:AE:81:51:56:C7:D3:C5:2F:2A:8A:62:4C:B6:BA:71:A0:0D:55
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/eFiugVFWx9PFLyqKYky2unGgDVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.4.0/24
85.254.7.0/24
85.254.29.0-85.254.30.255
85.254.40.0/24
85.254.47.0/24
85.254.51.0/24
85.254.59.0/24
85.254.84.0/23
85.254.103.0/24
85.254.124.0/23
85.254.137.0/24
85.254.140.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:86:16:75:10:23:b7:8c:fe:e3:47:29:13:62:92:6b:e7:61:
6e:7a:c2:06:7b:97:95:f0:23:67:55:75:89:3e:5b:27:99:89:
11:a7:b3:40:d3:fb:75:04:a6:a1:cd:23:39:c1:81:29:69:5a:
cf:12:88:58:91:1f:da:f9:2e:0e:eb:f0:a3:b7:7b:87:92:a1:
e8:29:ac:a7:50:e7:91:bf:39:7d:d8:cc:c6:d2:bc:ed:db:3d:
a7:cf:05:31:58:9c:ca:52:77:97:43:1b:22:80:b2:f6:1f:2f:
68:f3:a4:18:1e:98:4f:95:e7:be:c1:2d:a3:42:d0:cd:56:4d:
a9:ec:3f:fb:3e:f9:dc:19:ff:64:5f:19:3d:8e:9d:05:5a:99:
d6:9f:24:c5:d4:91:0c:43:07:40:33:89:36:e3:df:2d:d3:d1:
9e:7f:d5:c2:32:dc:00:b4:d5:d3:fd:36:e8:30:5c:ba:ef:d6:
20:4d:5f:43:7d:8e:53:94:ab:a0:9e:e9:67:a5:f5:14:19:f5:
15:1b:e1:01:30:cd:2d:6d:0f:eb:ff:f0:69:bb:3f:fd:12:30:
51:43:25:f9:29:29:88:bd:75:54:83:97:eb:af:80:c3:99:98:
22:55:95:8a:61:84:7e:2c:e3:e6:c3:18:2d:f3:d8:46:2b:76:
1d:eb:14:e5
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgISAYOd1MFyny8XpWJWws/eSTyqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm
YzQxZWMwHhcNMjIxMDAzMTIzMTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODU4YWU4MTUxNTZjN2QzYzUyZjJhOGE2MjRjYjZiYTcxYTAwZDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgGLh5bqRPN4wihZeqzJIqj8ctYP1
phIpHs9+Ceo7nDIDLF0QFM9ILSK8sGBF7Dyyz+eps3IGvZbFcqFxLaOdTr9BAA2+
uyojpIrcerVDrA7kAB4Pr+LmxJlZHS+lZpxQ+PVsHTTQDoGvgphOr/tEtdOZAqrO
CjCXJQR6s483ncurvv8bPFNhwSoBre9qIHou2HSCavkOmnfZY/4MxEJHWrZudysl
CA3jiCKBfu95l/DjLEsgbgTzNk8BcJibu6Di4Hd4v0qy0ayXjtj0ZCuIeY96FQjI
8W/MddXfYt05boCJ74CF/p/Vi1DBPsTSLq7VUnAouwvYHlbnBpDA4l66PQIDAQAB
o4ICUzCCAk8wHQYDVR0OBBYEFHhYroFRVsfTxS8qimJMtrpxoA1VMB8GA1UdIwQY
MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt
NTU1NGQ2ZTE2ODZmLzEvZUZpdWdWRld4OVBGTHlxS1lreTJ1bkdnRFZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm
LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDBWBAIAATBQAwQAVf4EAwQA
Vf4HMAwDBABV/h0DBABV/h4DBABV/igDBABV/i8DBABV/jMDBABV/jsDBAFV/lQD
BABV/mcDBAFV/nwDBABV/okDBABV/owwDQYJKoZIhvcNAQELBQADggEBAKWGFnUQ
I7eM/uNHKRNikmvnYW56wgZ7l5XwI2dVdYk+WyeZiRGns0DT+3UEpqHNIznBgSlp
Ws8SiFiRH9r5Lg7r8KO3e4eSoegprKdQ55G/OX3YzMbSvO3bPafPBTFYnMpSd5dD
GyKAsvYfL2jzpBgemE+V577BLaNC0M1WTansP/s++dwZ/2RfGT2OnQVamdafJMXU
kQxDB0AziTbj3y3T0Z5/1cIy3AC01dP9NugwXLrv1iBNX0N9jlOUq6Ce6Wel9RQZ
9RUb4QEwzS1tD+v/8Gm7P/0SMFFDJfkpKYi9dVSDl+uvgMOZmCJVlYphhH4s4+bD
GC3z2EYrdh3rFOU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:46 2023 by rpki-client on console-fra.rpki-client.org