Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/qy_syQtIqtFttx5l7JkMR57516k.roa
File: qy_syQtIqtFttx5l7JkMR57516k.roa (raw, json)
Hash identifier: 8UBp88nQsXmt8tW5p7/Yk7QzhVPTYllJpekeCuqXJog=
Subject key identifier: AB:2F:EC:C9:0B:48:AA:D1:6D:B7:1E:65:EC:99:0C:47:9E:F9:D7:A9
Certificate issuer: /CN=0e91de17437a0025fd1ede10f710f17a3080b3ab
Certificate serial: 0183D65064A8130EB9DFA66BB14B978DDAC6
Authority key identifier: 0E:91:DE:17:43:7A:00:25:FD:1E:DE:10:F7:10:F1:7A:30:80:B3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/qy_syQtIqtFttx5l7JkMR57516k.roa
Signing time: Fri 14 Oct 2022 11:45:36 +0000
ROA not before: Fri 14 Oct 2022 11:45:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.233.132.0/24 maxlen: 24
185.233.135.0/24 maxlen: 24
185.233.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d6:50:64:a8:13:0e:b9:df:a6:6b:b1:4b:97:8d:da:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e91de17437a0025fd1ede10f710f17a3080b3ab
Validity
Not Before: Oct 14 11:45:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab2fecc90b48aad16db71e65ec990c479ef9d7a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:77:4b:bf:30:76:7f:d2:42:34:36:7c:9a:95:
b9:1e:e9:9b:ea:0f:72:97:5b:18:c0:30:47:f9:bb:
a8:8b:55:c6:b0:59:b3:2a:96:8d:ef:f7:6f:a5:3d:
d9:ab:89:41:77:23:a0:73:81:3e:93:57:1a:97:1b:
66:3c:4e:22:49:44:58:a1:6b:36:18:4c:87:eb:0a:
ad:5e:da:d2:3f:e2:1a:50:64:c0:c0:ba:29:fe:8c:
ce:7d:f2:60:3d:50:d1:58:59:bf:ec:9a:2a:9c:18:
a0:d6:34:31:09:26:6a:35:06:1c:cb:4b:e9:d6:97:
a2:62:d7:87:08:b0:8f:3d:78:85:f8:12:55:ef:17:
eb:65:61:4c:dd:19:67:ce:d1:64:80:a8:19:8f:c0:
60:75:97:0c:03:05:99:ca:2d:88:e0:65:f8:67:75:
a1:02:e9:b5:fc:17:48:b9:84:fe:f6:57:86:b5:ef:
73:25:7e:e4:cb:6b:b9:8b:c2:f2:0e:d5:03:aa:25:
dd:cf:1c:79:34:c1:c2:e4:d4:d5:37:58:ff:52:32:
b3:8e:29:db:ea:93:7c:fa:61:25:70:46:1d:66:ed:
96:b7:87:68:5c:21:32:73:7f:d5:6a:10:99:0d:fc:
4f:61:ca:dd:1a:b0:b6:04:40:67:72:c2:e7:b6:b5:
32:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2F:EC:C9:0B:48:AA:D1:6D:B7:1E:65:EC:99:0C:47:9E:F9:D7:A9
X509v3 Authority Key Identifier:
keyid:0E:91:DE:17:43:7A:00:25:FD:1E:DE:10:F7:10:F1:7A:30:80:B3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/qy_syQtIqtFttx5l7JkMR57516k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.132.0/24
185.233.134.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:80:d2:ba:9d:92:80:eb:a5:e2:fd:70:89:11:cd:26:98:b8:
59:5c:2c:68:28:fd:79:5b:72:b1:73:06:a3:cd:10:a1:b7:ce:
7a:68:28:60:62:3c:d3:f8:81:46:02:ed:b1:04:ff:c8:b1:98:
0f:8f:42:ef:6c:e2:8a:cf:d5:a5:5b:86:91:21:19:1b:7e:9a:
a8:63:0c:96:2a:f1:5c:8d:67:08:df:8e:0c:4f:a7:c5:39:ed:
97:f6:30:7d:50:67:92:6a:9b:71:79:ab:17:5f:34:3c:94:44:
21:4a:f0:d7:02:a1:f3:8a:e5:87:d1:73:47:00:07:4c:00:71:
0c:51:33:da:ce:76:d5:17:9b:4d:c5:bd:7a:3e:ab:f7:94:3f:
01:bf:2a:98:f6:59:53:2d:19:8a:a1:58:4b:85:98:9f:fe:60:
8b:be:f7:57:dd:1b:c1:19:77:0f:4a:26:e6:b9:e1:07:b0:00:
a7:22:7e:c8:5b:98:86:16:81:b6:cf:05:3e:f0:61:b5:81:16:
dd:9d:b8:fa:6f:3f:cf:d5:1e:5a:ac:22:fd:66:cb:8c:33:41:
78:12:c5:89:7f:10:ce:89:a6:d0:49:a7:c9:04:e7:6f:db:6a:
7e:1c:b0:82:1e:8d:e7:2c:3a:39:99:60:21:5e:74:c7:76:f7:
b2:0a:a7:b0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYPWUGSoEw6536ZrsUuXjdrGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlOTFkZTE3NDM3YTAwMjVmZDFlZGUxMGY3MTBmMTdhMzA4
MGIzYWIwHhcNMjIxMDE0MTE0NTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjJmZWNjOTBiNDhhYWQxNmRiNzFlNjVlYzk5MGM0NzllZjlkN2E5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03dLvzB2f9JCNDZ8mpW5Humb6g9y
l1sYwDBH+buoi1XGsFmzKpaN7/dvpT3Zq4lBdyOgc4E+k1calxtmPE4iSURYoWs2
GEyH6wqtXtrSP+IaUGTAwLop/ozOffJgPVDRWFm/7JoqnBig1jQxCSZqNQYcy0vp
1peiYteHCLCPPXiF+BJV7xfrZWFM3RlnztFkgKgZj8BgdZcMAwWZyi2I4GX4Z3Wh
Aum1/BdIuYT+9leGte9zJX7ky2u5i8LyDtUDqiXdzxx5NMHC5NTVN1j/UjKzjinb
6pN8+mElcEYdZu2Wt4doXCEyc3/VahCZDfxPYcrdGrC2BEBncsLntrUyZQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKsv7MkLSKrRbbceZeyZDEee+depMB8GA1UdIwQY
MBaAFA6R3hdDegAl/R7eEPcQ8XowgLOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHBIZUYwTjZBQ1g5SHQ0UTl4RHhlakNBczZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9iYWVmNTctYzQ4NC00NTIzLWIxNGUt
ODhlYmJmOTk3ODBiLzEvcXlfc3lRdElxdEZ0dHg1bDdKa01SNTc1MTZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9iYWVmNTctYzQ4NC00NTIzLWIxNGUtODhlYmJmOTk3ODBi
LzEvRHBIZUYwTjZBQ1g5SHQ0UTl4RHhlakNBczZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuemEAwQB
uemGMA0GCSqGSIb3DQEBCwUAA4IBAQAugNK6nZKA66Xi/XCJEc0mmLhZXCxoKP15
W3KxcwajzRCht856aChgYjzT+IFGAu2xBP/IsZgPj0LvbOKKz9WlW4aRIRkbfpqo
YwyWKvFcjWcI344MT6fFOe2X9jB9UGeSaptxeasXXzQ8lEQhSvDXAqHziuWH0XNH
AAdMAHEMUTPaznbVF5tNxb16Pqv3lD8BvyqY9llTLRmKoVhLhZif/mCLvvdX3RvB
GXcPSibmueEHsACnIn7IW5iGFoG2zwU+8GG1gRbdnbj6bz/P1R5arCL9ZsuMM0F4
EsWJfxDOiabQSafJBOdv22p+HLCCHo3nLDo5mWAhXnTHdveyCqew
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:24 2024 by rpki-client on console-fra.rpki-client.org