Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/0YpIHQkmQEqgM56TNI5BhSV-JVk.roa
File: 0YpIHQkmQEqgM56TNI5BhSV-JVk.roa (raw, json)
Hash identifier: K7smuDT55Am7PuPL4QAtYJEFCue9Vi20VlLN6++tTT8=
Subject key identifier: D1:8A:48:1D:09:26:40:4A:A0:33:9E:93:34:8E:41:85:25:7E:25:59
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 0182F8A50360BB715E12EA810835B26B29DC
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/0YpIHQkmQEqgM56TNI5BhSV-JVk.roa
Signing time: Thu 01 Sep 2022 10:42:20 +0000
ROA not before: Thu 01 Sep 2022 10:42:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60304
IP address blocks: 185.33.35.0/24 maxlen: 24
185.33.34.0/24 maxlen: 24
185.33.33.0/24 maxlen: 24
185.33.32.0/24 maxlen: 24
2a04:5901:7::/48 maxlen: 48
2a04:5901:c::/48 maxlen: 48
2a04:5901:1d::/48 maxlen: 48
2a04:5901:2::/48 maxlen: 48
2a04:5901:22::/48 maxlen: 48
2a04:5901:13::/48 maxlen: 48
2a04:5901:18::/48 maxlen: 48
2a04:5901:9::/48 maxlen: 48
2a04:5901:e::/48 maxlen: 48
2a04:5900::/32 maxlen: 32
2a04:5901:1f::/48 maxlen: 48
2a04:5901:4::/48 maxlen: 48
2a04:5901:24::/48 maxlen: 48
2a04:5901:15::/48 maxlen: 48
2a04:5901:1a::/48 maxlen: 48
2a04:5901:b::/48 maxlen: 48
2a04:5901:10::/48 maxlen: 48
2a04:5901:1::/48 maxlen: 48
2a04:5901:21::/48 maxlen: 48
2a04:5901:6::/48 maxlen: 48
2a04:5901:17::/48 maxlen: 48
2a04:5901:1c::/48 maxlen: 48
2a04:5901:d::/48 maxlen: 48
2a04:5901:12::/48 maxlen: 48
2a04:5901:3::/48 maxlen: 48
2a04:5901:23::/48 maxlen: 48
2a04:5901:8::/48 maxlen: 48
2a04:5900::/29 maxlen: 29
2a04:5901:19::/48 maxlen: 48
2a04:5901:1e::/48 maxlen: 48
2a04:5901:f::/48 maxlen: 48
2a04:5901:14::/48 maxlen: 48
2a04:5901:5::/48 maxlen: 48
2a04:5901:25::/48 maxlen: 48
2a04:5901:a::/48 maxlen: 48
2a04:5901:1b::/48 maxlen: 48
2a04:5901::/32 maxlen: 32
2a04:5901:20::/48 maxlen: 48
2a04:5901:11::/48 maxlen: 48
2a04:5901:16::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:a5:03:60:bb:71:5e:12:ea:81:08:35:b2:6b:29:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Sep 1 10:42:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d18a481d0926404aa0339e93348e4185257e2559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:55:2e:24:f9:76:2e:c6:d2:24:71:80:86:5c:
44:cc:70:48:50:42:18:30:0f:9b:0d:90:6a:68:1b:
57:55:c3:7d:f6:93:e9:9a:44:bf:fd:0e:bd:ab:ef:
78:1d:84:e1:11:a6:b9:10:80:68:e5:66:a3:91:e9:
e3:0b:2c:0e:28:ed:c9:b4:3e:26:63:17:53:b0:e2:
b2:ab:58:bd:0b:27:30:98:6a:60:78:a2:73:0c:5f:
84:7e:99:f3:9a:60:08:1b:ea:7e:59:94:2d:c1:fb:
5c:67:74:18:68:4f:18:27:a7:95:35:69:cb:1d:5d:
b1:11:e2:e3:37:94:0d:a0:20:86:0b:62:76:0b:f7:
07:ac:69:f0:eb:62:96:12:3c:35:03:99:94:c1:26:
21:2b:dd:99:78:2e:bc:3b:1c:8d:4c:02:3e:eb:98:
cf:79:0c:e2:51:ba:96:b4:c7:0a:d8:f3:87:28:c3:
97:ad:6d:bd:7f:a0:26:bb:3a:95:84:3c:81:04:17:
a5:69:cf:47:b5:88:f8:43:cd:13:a4:c3:b8:e8:5a:
c2:31:b9:4f:d0:0e:e8:ab:e2:3c:db:0c:cf:c9:cb:
10:63:25:7a:dc:5a:0e:3c:28:ad:c2:53:02:fc:d2:
98:ec:98:f4:73:5f:7a:25:41:bc:c0:06:07:c4:b8:
2a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:8A:48:1D:09:26:40:4A:A0:33:9E:93:34:8E:41:85:25:7E:25:59
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/0YpIHQkmQEqgM56TNI5BhSV-JVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.32.0/22
IPv6:
2a04:5900::/29
Signature Algorithm: sha256WithRSAEncryption
29:eb:52:5d:9d:40:c7:c8:86:57:c0:5e:ad:76:f3:ee:08:cc:
fc:37:0b:11:ab:a5:ca:98:37:c0:74:98:e5:c3:9a:74:c9:54:
e9:3c:eb:b2:82:db:b1:f2:46:4f:6d:7b:7c:0a:f0:ac:70:47:
0c:79:6e:5a:63:fa:58:c6:7f:57:f1:1e:59:61:b0:c4:df:0f:
c7:31:21:ac:e5:b5:2c:68:ab:87:8b:33:8c:70:d9:95:a1:ae:
1a:a4:29:6f:14:4e:34:f2:d2:15:20:4a:a5:5f:5a:9a:64:84:
59:ea:10:40:50:94:27:2f:cf:3f:2f:ff:2e:5d:55:c0:63:bc:
1d:49:fb:17:37:56:03:56:77:00:1f:32:fb:c6:38:ed:4d:1f:
61:73:06:ed:13:41:ef:79:25:51:f4:e7:77:b2:61:8e:2a:90:
32:cd:6c:ff:d3:9d:85:40:59:3d:f9:d3:84:26:7d:49:c1:a4:
c1:85:b1:d6:d1:e6:06:4b:6b:4f:b8:3d:b0:85:9b:5c:93:7b:
ca:37:e9:9a:33:ce:08:01:d1:c9:16:0c:64:6c:ed:ad:71:b5:
94:c2:4a:b6:87:04:2e:32:f5:29:6d:b3:59:dc:de:2e:89:d5:
72:b1:7f:19:b7:26:27:16:a4:8b:31:f5:fe:a2:3d:7b:13:af:
5c:ca:27:2c
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYL4pQNgu3FeEuqBCDWyayncMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjFjNTQzODQ0YzQxN2Y2MWFkNzkzOTI0NGQzYjc1OWMy
YTQzZWQwHhcNMjIwOTAxMTA0MjIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMThhNDgxZDA5MjY0MDRhYTAzMzllOTMzNDhlNDE4NTI1N2UyNTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlUuJPl2LsbSJHGAhlxEzHBIUEIY
MA+bDZBqaBtXVcN99pPpmkS//Q69q+94HYThEaa5EIBo5WajkenjCywOKO3JtD4m
YxdTsOKyq1i9CycwmGpgeKJzDF+EfpnzmmAIG+p+WZQtwftcZ3QYaE8YJ6eVNWnL
HV2xEeLjN5QNoCCGC2J2C/cHrGnw62KWEjw1A5mUwSYhK92ZeC68OxyNTAI+65jP
eQziUbqWtMcK2POHKMOXrW29f6AmuzqVhDyBBBelac9HtYj4Q80TpMO46FrCMblP
0A7oq+I82wzPycsQYyV63FoOPCitwlMC/NKY7Jj0c196JUG8wAYHxLgqyQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNGKSB0JJkBKoDOekzSOQYUlfiVZMB8GA1UdIwQY
MBaAFB8hxUOETEF/Ya15OSRNO3WcKkPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2Qt
YjhjNDg1M2U0MmJjLzEvMFlwSUhRa21RRXFnTTU2VE5JNUJoU1YtSlZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2QtYjhjNDg1M2U0MmJj
LzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuSEgMA0E
AgACMAcDBQMqBFkAMA0GCSqGSIb3DQEBCwUAA4IBAQAp61JdnUDHyIZXwF6tdvPu
CMz8NwsRq6XKmDfAdJjlw5p0yVTpPOuygtux8kZPbXt8CvCscEcMeW5aY/pYxn9X
8R5ZYbDE3w/HMSGs5bUsaKuHizOMcNmVoa4apClvFE408tIVIEqlX1qaZIRZ6hBA
UJQnL88/L/8uXVXAY7wdSfsXN1YDVncAHzL7xjjtTR9hcwbtE0HveSVR9Od3smGO
KpAyzWz/052FQFk9+dOEJn1JwaTBhbHW0eYGS2tPuD2whZtck3vKN+maM84IAdHJ
FgxkbO2tcbWUwkq2hwQuMvUpbbNZ3N4uidVysX8ZtyYnFqSLMfX+oj17E69cyics
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org