Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/EolckPGxWlj9FrKpCg0l2AAdGcI.roa
File: EolckPGxWlj9FrKpCg0l2AAdGcI.roa (raw, json)
Hash identifier: +GinS6JXqzY5VYm2SHB+nUBMiBvdyctR07G3wawAT9k=
Subject key identifier: 12:89:5C:90:F1:B1:5A:58:FD:16:B2:A9:0A:0D:25:D8:00:1D:19:C2
Certificate issuer: /CN=6506096695f7e6610b19b08e1d7fd9c4d914a4f0
Certificate serial: 0A8C06E3
Authority key identifier: 65:06:09:66:95:F7:E6:61:0B:19:B0:8E:1D:7F:D9:C4:D9:14:A4:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZQYJZpX35mELGbCOHX_ZxNkUpPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/EolckPGxWlj9FrKpCg0l2AAdGcI.roa
Signing time: Sat 01 Jan 2022 07:57:38 +0000
ROA not before: Sat 01 Jan 2022 07:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205614
IP address blocks: 185.171.44.0/22 maxlen: 24
2a0d:1f80::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176948963 (0xa8c06e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6506096695f7e6610b19b08e1d7fd9c4d914a4f0
Validity
Not Before: Jan 1 07:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12895c90f1b15a58fd16b2a90a0d25d8001d19c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:b3:ba:6b:90:d7:ff:e3:4f:97:7d:54:0c:
35:f9:ee:18:c7:23:16:a0:f3:18:cb:11:54:be:80:
57:d2:af:25:7d:72:14:b7:c9:59:e0:22:0b:26:15:
fc:36:df:eb:ab:15:30:0a:f7:6d:32:65:b9:36:9d:
b7:15:18:db:2b:56:45:33:71:ca:c5:da:95:c8:0e:
64:ac:9d:c4:68:ee:06:13:42:1d:07:cb:8e:a9:b7:
97:cb:aa:98:a3:5c:b5:30:c8:bf:b8:b7:3f:93:65:
96:50:0b:b5:28:29:4d:e1:39:0d:5f:5d:6f:95:01:
11:48:78:f0:50:9d:7c:ef:db:65:0d:55:62:75:54:
89:40:ea:cb:f7:05:ba:01:0a:4b:6d:5b:7e:56:16:
c8:83:17:48:8c:74:cb:dc:bf:87:cb:46:ee:0a:8f:
4d:24:3d:41:83:2d:d5:9a:2c:9a:93:c5:cb:a0:c3:
ae:dd:66:5f:d8:a4:cd:24:4c:6a:ed:3b:94:86:df:
e6:3a:af:01:e6:dd:ec:e7:69:cf:bc:bc:4a:55:04:
1d:fb:34:82:eb:72:43:8e:58:f4:b7:4b:33:6c:54:
58:fb:b6:84:36:9c:3f:73:22:95:cb:7c:77:c5:4e:
0e:d5:cc:7e:ca:05:ef:73:32:78:f1:03:1e:56:61:
c2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:89:5C:90:F1:B1:5A:58:FD:16:B2:A9:0A:0D:25:D8:00:1D:19:C2
X509v3 Authority Key Identifier:
keyid:65:06:09:66:95:F7:E6:61:0B:19:B0:8E:1D:7F:D9:C4:D9:14:A4:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZQYJZpX35mELGbCOHX_ZxNkUpPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/EolckPGxWlj9FrKpCg0l2AAdGcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/ZQYJZpX35mELGbCOHX_ZxNkUpPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.44.0/22
IPv6:
2a0d:1f80::/32
Signature Algorithm: sha256WithRSAEncryption
ac:35:44:4f:e9:df:34:70:89:7b:54:9b:d3:82:49:c9:f1:b3:
55:d4:16:1f:7d:26:dd:43:e8:16:be:37:77:a7:20:6a:fb:b0:
ae:1b:cc:62:08:84:05:c6:35:b2:4c:ce:f9:7f:7c:35:17:0b:
51:a3:ac:f7:0e:f3:3b:ad:5e:d7:08:fb:d1:ea:63:6f:6e:1b:
f7:79:c2:1b:75:19:53:ce:fa:7e:3b:b4:64:7c:93:7e:cc:d9:
1b:50:25:38:f0:53:0f:cb:58:22:f9:eb:a7:28:a9:b6:88:69:
ff:f4:f3:e4:2e:e6:3a:ea:47:73:6f:b0:7b:45:79:23:e0:1d:
1b:3e:e3:fd:d0:bd:9d:09:32:d8:81:8a:54:1e:72:d2:ed:83:
9f:bb:9f:91:20:e6:6d:45:6d:2f:19:d3:9e:80:48:12:6a:9d:
ed:d2:a3:12:f2:20:94:4a:b8:40:21:bd:56:72:13:41:fb:41:
dc:32:19:49:8e:7c:48:ce:28:91:cd:1e:f5:ac:22:49:1b:8d:
d2:02:83:d9:01:cb:7e:6c:56:99:50:d1:41:fd:d8:a1:40:e8:
c2:1c:c9:16:e4:66:88:6b:1a:38:ca:4c:ab:2a:c2:b9:84:8a:
ec:da:73:c1:0e:3d:f4:87:65:91:50:9e:5b:cf:52:f8:04:d9:
54:ec:55:71
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECowG4zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NTA2MDk2Njk1ZjdlNjYxMGIxOWIwOGUxZDdmZDljNGQ5MTRhNGYwMB4XDTIyMDEw
MTA3NTczOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTI4OTVjOTBmMWIx
NWE1OGZkMTZiMmE5MGEwZDI1ZDgwMDFkMTljMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5as7prkNf/40+XfVQMNfnuGMcjFqDzGMsRVL6AV9KvJX1y
FLfJWeAiCyYV/Dbf66sVMAr3bTJluTadtxUY2ytWRTNxysXalcgOZKydxGjuBhNC
HQfLjqm3l8uqmKNctTDIv7i3P5NlllALtSgpTeE5DV9db5UBEUh48FCdfO/bZQ1V
YnVUiUDqy/cFugEKS21bflYWyIMXSIx0y9y/h8tG7gqPTSQ9QYMt1ZosmpPFy6DD
rt1mX9ikzSRMau07lIbf5jqvAebd7Odpz7y8SlUEHfs0gutyQ45Y9LdLM2xUWPu2
hDacP3Milct8d8VODtXMfsoF73MyePEDHlZhwhECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQSiVyQ8bFaWP0WsqkKDSXYAB0ZwjAfBgNVHSMEGDAWgBRlBglmlffmYQsZ
sI4df9nE2RSk8DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pRWUpacFgzNW1FTEdiQ09IWF9aeE5rVXBQQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvZjViYWE0LWY2NzAtNDM4NS1iYzM4LWE0MTUyNTU4ZDE4Yy8x
L0VvbGNrUEd4V2xqOUZyS3BDZzBsMkFBZEdjSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
ZjViYWE0LWY2NzAtNDM4NS1iYzM4LWE0MTUyNTU4ZDE4Yy8xL1pRWUpacFgzNW1F
TEdiQ09IWF9aeE5rVXBQQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmrLDANBAIAAjAHAwUAKg0fgDAN
BgkqhkiG9w0BAQsFAAOCAQEArDVET+nfNHCJe1Sb04JJyfGzVdQWH30m3UPoFr43
d6cgavuwrhvMYgiEBcY1skzO+X98NRcLUaOs9w7zO61e1wj70epjb24b93nCG3UZ
U876fju0ZHyTfszZG1AlOPBTD8tYIvnrpyiptohp//Tz5C7mOupHc2+we0V5I+Ad
Gz7j/dC9nQky2IGKVB5y0u2Dn7ufkSDmbUVtLxnTnoBIEmqd7dKjEvIglEq4QCG9
VnITQftB3DIZSY58SM4okc0e9awiSRuN0gKD2QHLfmxWmVDRQf3YoUDowhzJFuRm
iGsaOMpMqyrCuYSK7NpzwQ499IdlkVCeW89S+ATZVOxVcQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-ams.rpki-client.org