Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/oqdRbkHlmhe9Bbe1RIS195wbWms.roa
File: oqdRbkHlmhe9Bbe1RIS195wbWms.roa (raw, json)
Hash identifier: RWg1pyGyiOsmEv9gNfLaiwEJ/mYOKfQ/hhNqJSLy4Co=
Subject key identifier: A2:A7:51:6E:41:E5:9A:17:BD:05:B7:B5:44:84:B5:F7:9C:1B:5A:6B
Certificate issuer: /CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Certificate serial: 01827C6A62F1511FD320AC26CFAF5752C684
Authority key identifier: 8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/oqdRbkHlmhe9Bbe1RIS195wbWms.roa
Signing time: Mon 08 Aug 2022 07:45:23 +0000
ROA not before: Mon 08 Aug 2022 07:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209936
IP address blocks: 185.242.164.0/23 maxlen: 23
185.242.164.0/22 maxlen: 23
2a0c:e780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:6a:62:f1:51:1f:d3:20:ac:26:cf:af:57:52:c6:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Validity
Not Before: Aug 8 07:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2a7516e41e59a17bd05b7b54484b5f79c1b5a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4e:d4:03:78:03:14:82:10:b0:5b:ed:04:32:
a9:70:43:c1:96:5e:53:6d:33:f8:2e:4d:c7:73:03:
c9:d9:ea:03:39:9b:e2:dd:6b:1b:1e:7d:d6:56:d2:
18:1e:6a:1a:5a:6f:fe:a8:13:9e:19:6c:1c:47:3b:
21:2c:8d:3e:a9:e3:30:c7:29:94:2d:e2:e8:d2:2d:
53:ef:08:b6:8e:3d:cb:e1:80:be:2f:53:e6:38:f1:
67:85:39:17:f0:5b:dc:09:31:26:8d:c8:85:44:4f:
d8:6a:b2:a1:bd:ff:78:e4:6f:b3:f6:16:82:2a:13:
9c:60:1d:e9:ac:65:43:5e:93:f7:71:1a:32:22:11:
c8:33:92:68:57:62:55:5e:d9:f6:1a:43:b9:ca:24:
a5:5f:6d:f8:80:f0:f5:d5:ec:66:15:33:fe:64:63:
5b:19:7b:b4:7c:04:ae:a2:6e:83:0f:0e:6c:b8:51:
13:dd:73:e5:d2:de:72:57:1f:71:e7:ba:46:d1:3a:
dd:61:03:0d:29:99:ca:8d:37:d1:c8:7f:7f:42:b5:
3b:da:12:50:2f:4d:dd:b2:74:9e:16:c9:2d:3e:aa:
bf:65:86:15:03:23:01:e3:a2:a8:43:d6:31:8d:89:
3f:04:01:a2:6d:5c:91:12:73:16:4f:16:07:62:1e:
8a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A7:51:6E:41:E5:9A:17:BD:05:B7:B5:44:84:B5:F7:9C:1B:5A:6B
X509v3 Authority Key Identifier:
keyid:8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/oqdRbkHlmhe9Bbe1RIS195wbWms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.164.0/22
IPv6:
2a0c:e780::/29
Signature Algorithm: sha256WithRSAEncryption
7b:2e:ea:7b:a4:a5:e9:83:e2:03:95:50:4e:15:72:a8:39:55:
bf:ff:02:08:3f:64:27:61:3b:85:53:2e:ed:0c:3a:35:50:8e:
e5:52:0b:79:dd:78:52:6e:a3:3d:bc:67:9d:9a:3a:98:02:a9:
05:ac:a6:3a:50:df:ee:c6:46:1e:4e:03:af:c3:3c:16:f6:f4:
eb:90:f3:79:df:3c:86:bd:67:75:cb:4d:9c:ab:73:80:c8:0f:
4e:9b:b2:35:24:65:70:32:b1:20:53:0f:ba:95:2d:39:d6:f4:
c7:e0:c6:ca:4a:b8:fe:d7:1c:98:7a:9e:25:ea:22:c6:99:3b:
88:52:cd:0f:65:cb:b7:50:0d:e5:f2:62:09:78:cd:79:2b:c2:
78:49:23:a1:92:7a:8d:21:52:df:92:b0:d1:06:c4:1f:c3:f4:
88:b1:33:64:5d:84:17:e1:69:55:94:48:c7:80:ad:c1:dc:34:
b4:07:81:6c:4b:aa:ea:25:b0:9f:05:f0:70:77:70:f6:ed:5a:
b7:d1:dc:2c:c5:de:03:99:45:a8:47:59:5f:41:39:24:05:97:
c4:3f:36:f3:d7:ff:70:71:cf:d7:3c:10:80:f9:f7:ca:09:39:
40:8a:4b:07:ea:ab:55:63:07:ab:56:cb:07:da:74:09:df:c5:
01:0a:90:94
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYJ8amLxUR/TIKwmz69XUsaEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhY2RkZDVjMzBkNTgwZWIwZmVlY2EyYTE2Y2Y1YzVhOGIy
NTY4ZmQwHhcNMjIwODA4MDc0NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmE3NTE2ZTQxZTU5YTE3YmQwNWI3YjU0NDg0YjVmNzljMWI1YTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi07UA3gDFIIQsFvtBDKpcEPBll5T
bTP4Lk3HcwPJ2eoDOZvi3WsbHn3WVtIYHmoaWm/+qBOeGWwcRzshLI0+qeMwxymU
LeLo0i1T7wi2jj3L4YC+L1PmOPFnhTkX8FvcCTEmjciFRE/YarKhvf945G+z9haC
KhOcYB3prGVDXpP3cRoyIhHIM5JoV2JVXtn2GkO5yiSlX234gPD11exmFTP+ZGNb
GXu0fASuom6DDw5suFET3XPl0t5yVx9x57pG0TrdYQMNKZnKjTfRyH9/QrU72hJQ
L03dsnSeFsktPqq/ZYYVAyMB46KoQ9YxjYk/BAGibVyREnMWTxYHYh6KFwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFKKnUW5B5ZoXvQW3tUSEtfecG1prMB8GA1UdIwQY
MBaAFIrN3Vww1YDrD+7KKhbPXFqLJWj9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yNWFjYTctN2UyOC00ODdjLTg2ZDIt
MTdiMWM3Mzc5MzAwLzEvb3FkUmJrSGxtaGU5QmJlMVJJUzE5NXdiV21zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yNWFjYTctN2UyOC00ODdjLTg2ZDItMTdiMWM3Mzc5MzAw
LzEvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCufKkMA0E
AgACMAcDBQMqDOeAMA0GCSqGSIb3DQEBCwUAA4IBAQB7Lup7pKXpg+IDlVBOFXKo
OVW//wIIP2QnYTuFUy7tDDo1UI7lUgt53XhSbqM9vGedmjqYAqkFrKY6UN/uxkYe
TgOvwzwW9vTrkPN53zyGvWd1y02cq3OAyA9Om7I1JGVwMrEgUw+6lS051vTH4MbK
Srj+1xyYep4l6iLGmTuIUs0PZcu3UA3l8mIJeM15K8J4SSOhknqNIVLfkrDRBsQf
w/SIsTNkXYQX4WlVlEjHgK3B3DS0B4FsS6rqJbCfBfBwd3D27Vq30dwsxd4DmUWo
R1lfQTkkBZfEPzbz1/9wcc/XPBCA+ffKCTlAiksH6qtVYwerVssH2nQJ38UBCpCU
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-ams.rpki-client.org