Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/mmhd98XmjXCOJKJJ3FvNrV_6VQI.roa
File: mmhd98XmjXCOJKJJ3FvNrV_6VQI.roa (raw, json)
Hash identifier: 3slm1nmBu5KhVHmiKs6T0N7sueYdBEwPgRvT4G30OEU=
Subject key identifier: 9A:68:5D:F7:C5:E6:8D:70:8E:24:A2:49:DC:5B:CD:AD:5F:FA:55:02
Certificate issuer: /CN=0b8d1bb72791c878550d1b9d8fef564ac3919368
Certificate serial: 0AF73D87
Authority key identifier: 0B:8D:1B:B7:27:91:C8:78:55:0D:1B:9D:8F:EF:56:4A:C3:91:93:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C40btyeRyHhVDRudj-9WSsORk2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/mmhd98XmjXCOJKJJ3FvNrV_6VQI.roa
Signing time: Sat 01 Jan 2022 16:10:50 +0000
ROA not before: Sat 01 Jan 2022 16:10:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205588
IP address blocks: 185.213.10.0/24 maxlen: 24
185.213.11.0/24 maxlen: 24
185.213.8.0/24 maxlen: 24
185.213.9.0/24 maxlen: 24
2a0d:d580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183975303 (0xaf73d87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b8d1bb72791c878550d1b9d8fef564ac3919368
Validity
Not Before: Jan 1 16:10:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a685df7c5e68d708e24a249dc5bcdad5ffa5502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:81:1e:ff:65:b1:77:23:19:24:15:6a:7c:
43:82:c3:27:56:1e:e5:6a:44:fe:7a:02:46:25:14:
48:eb:67:96:7f:50:69:db:d5:41:9b:67:3f:a2:70:
f6:57:8f:06:03:07:a9:c0:2e:ef:54:74:bc:9c:a9:
f2:69:ad:59:6e:44:7f:90:33:40:fd:33:ba:1a:bb:
de:f4:ef:93:4e:98:5e:cd:62:7a:73:5b:7c:90:1b:
8b:49:68:89:68:80:f1:69:9b:b0:67:6b:4a:a5:a3:
ea:88:9f:61:15:9c:60:0f:50:8f:0a:cc:6c:e1:e1:
6d:44:67:47:38:76:4e:bf:74:0a:7f:49:29:aa:0f:
db:0a:43:c8:57:e9:f1:5f:bc:8a:3a:88:f4:9c:a0:
96:2d:3b:fb:6b:46:e6:9e:bc:78:bf:78:58:b5:cd:
ad:2a:7c:2c:36:ae:4a:aa:70:1f:a2:57:a3:8a:80:
90:1a:42:8e:a9:d6:0e:2b:35:dc:59:35:77:3e:c5:
7f:d9:47:dd:e8:07:8e:03:1c:4b:c7:2d:15:57:89:
30:fe:fb:5b:1a:e0:2a:6e:24:c8:0b:c4:db:31:bf:
ef:09:27:52:3a:45:a7:9d:66:ff:2e:58:b7:6c:74:
7e:f0:97:d7:2d:0b:94:da:12:64:38:a0:b2:13:72:
14:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:68:5D:F7:C5:E6:8D:70:8E:24:A2:49:DC:5B:CD:AD:5F:FA:55:02
X509v3 Authority Key Identifier:
keyid:0B:8D:1B:B7:27:91:C8:78:55:0D:1B:9D:8F:EF:56:4A:C3:91:93:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C40btyeRyHhVDRudj-9WSsORk2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/mmhd98XmjXCOJKJJ3FvNrV_6VQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/C40btyeRyHhVDRudj-9WSsORk2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.8.0/22
IPv6:
2a0d:d580::/32
Signature Algorithm: sha256WithRSAEncryption
55:44:c9:c3:74:3e:93:5f:08:9a:e0:bd:52:37:89:e8:06:25:
6c:f1:7a:6d:b1:d2:80:ac:86:ca:9f:e1:41:cd:89:cf:95:bd:
9c:00:83:aa:dc:fc:53:4a:8d:aa:bc:64:51:9f:d4:3d:e7:ec:
10:77:cf:6c:c0:03:82:86:09:bf:17:a2:d4:4c:12:7c:5e:38:
5f:46:b4:2b:d1:c6:5c:c7:af:07:5f:a9:9d:ab:d4:97:5c:f1:
c9:64:c2:54:3b:7c:e4:a3:49:8c:4f:08:ba:87:f5:08:c9:4d:
57:38:a7:10:38:39:f2:4e:a1:01:b9:eb:6e:a5:43:37:4a:37:
52:d2:f1:c3:cf:b7:f6:c6:0d:cd:6a:56:15:45:83:97:0f:4d:
9d:a4:1f:68:86:e9:b9:7a:1d:10:8a:63:59:c4:74:e4:9a:ea:
37:5d:a1:f3:77:c1:93:46:c3:e2:42:13:60:aa:8a:dc:91:f3:
b5:ab:4f:ab:ab:00:43:dd:a4:33:22:18:6b:02:ed:94:d3:c4:
70:f7:a4:99:6f:60:cb:23:04:e6:ca:cb:67:9a:4d:fb:f3:f9:
46:99:39:f2:45:74:45:23:a9:9b:63:17:e7:2d:c7:76:cd:b0:
31:26:4c:05:00:82:a6:e7:7d:2b:9e:f0:d0:f0:b1:60:a7:bc:
df:58:6c:ee
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECvc9hzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YjhkMWJiNzI3OTFjODc4NTUwZDFiOWQ4ZmVmNTY0YWMzOTE5MzY4MB4XDTIyMDEw
MTE2MTA1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWE2ODVkZjdjNWU2
OGQ3MDhlMjRhMjQ5ZGM1YmNkYWQ1ZmZhNTUwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMppgR7/ZbF3IxkkFWp8Q4LDJ1Ye5WpE/noCRiUUSOtnln9Q
advVQZtnP6Jw9lePBgMHqcAu71R0vJyp8mmtWW5Ef5AzQP0zuhq73vTvk06YXs1i
enNbfJAbi0loiWiA8WmbsGdrSqWj6oifYRWcYA9QjwrMbOHhbURnRzh2Tr90Cn9J
KaoP2wpDyFfp8V+8ijqI9Jygli07+2tG5p68eL94WLXNrSp8LDauSqpwH6JXo4qA
kBpCjqnWDis13Fk1dz7Ff9lH3egHjgMcS8ctFVeJMP77WxrgKm4kyAvE2zG/7wkn
UjpFp51m/y5Yt2x0fvCX1y0LlNoSZDigshNyFDMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSaaF33xeaNcI4kokncW82tX/pVAjAfBgNVHSMEGDAWgBQLjRu3J5HIeFUN
G52P71ZKw5GTaDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0M0MGJ0eWVSeUhoVkRSdWRqLTlXU3NPUmsyZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvMDM2N2QwLWZhODUtNDU0Ni1iODRjLTAyNzhjNWRjMTQ5MS8x
L21taGQ5OFhtalhDT0pLSkozRnZOclZfNlZRSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
MDM2N2QwLWZhODUtNDU0Ni1iODRjLTAyNzhjNWRjMTQ5MS8xL0M0MGJ0eWVSeUho
VkRSdWRqLTlXU3NPUmsyZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnVCDANBAIAAjAHAwUAKg3VgDAN
BgkqhkiG9w0BAQsFAAOCAQEAVUTJw3Q+k18ImuC9UjeJ6AYlbPF6bbHSgKyGyp/h
Qc2Jz5W9nACDqtz8U0qNqrxkUZ/UPefsEHfPbMADgoYJvxei1EwSfF44X0a0K9HG
XMevB1+pnavUl1zxyWTCVDt85KNJjE8Iuof1CMlNVzinEDg58k6hAbnrbqVDN0o3
UtLxw8+39sYNzWpWFUWDlw9NnaQfaIbpuXodEIpjWcR05JrqN12h83fBk0bD4kIT
YKqK3JHztatPq6sAQ92kMyIYawLtlNPEcPekmW9gyyME5srLZ5pN+/P5Rpk58kV0
RSOpm2MX5y3Hds2wMSZMBQCCpud9K57w0PCxYKe831hs7g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:30 2023 by rpki-client on console-fra.rpki-client.org