Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/V5DqUGaYnz1t7NeIkAlDcEc92jE.roa
File: V5DqUGaYnz1t7NeIkAlDcEc92jE.roa (raw, json)
Hash identifier: VZ4wjq7TCa+wubi1rTw62G6m7PTRYUlM50IIFS/eQfI=
Subject key identifier: 57:90:EA:50:66:98:9F:3D:6D:EC:D7:88:90:09:43:70:47:3D:DA:31
Certificate issuer: /CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Certificate serial: 02F8A8E0
Authority key identifier: 70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/V5DqUGaYnz1t7NeIkAlDcEc92jE.roa
Signing time: Sat 01 Jan 2022 07:53:23 +0000
ROA not before: Sat 01 Jan 2022 07:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205981
IP address blocks: 185.194.108.0/22 maxlen: 22
185.248.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49850592 (0x2f8a8e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Validity
Not Before: Jan 1 07:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5790ea5066989f3d6decd78890094370473dda31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5d:a0:d9:86:f6:6a:2d:90:3a:27:50:12:25:
9c:1e:57:63:66:67:ba:c7:cc:71:1a:05:18:40:4d:
15:81:24:1d:43:09:59:af:ee:25:19:54:26:8b:e1:
a5:86:e2:f8:54:4b:59:fa:d4:f2:a4:d8:c4:ba:bd:
6d:61:79:0d:88:33:ea:ee:ea:b5:4d:e0:31:b3:d3:
12:cd:d4:36:86:39:9d:27:4d:a8:78:4d:8c:c7:67:
44:ca:16:db:cf:b3:9d:b8:d8:1d:13:c4:65:90:a4:
57:6b:54:26:4e:54:cb:22:9d:0e:9c:ab:a0:61:97:
86:4f:c9:f5:63:42:f1:ad:d8:32:47:73:c9:84:1a:
3e:0c:7e:25:b6:98:eb:85:25:d7:b4:be:ff:dd:95:
80:4d:0a:7c:03:73:61:1e:63:c7:d5:f4:70:e1:71:
91:b4:35:e8:f6:50:33:01:b9:e8:f7:d5:bb:f3:ba:
35:2f:e4:24:f9:c7:38:72:ab:ad:50:6b:fb:7e:88:
43:f2:35:2e:8b:62:86:de:0e:93:a2:29:49:9b:2a:
57:7a:b3:fc:74:35:37:ff:91:15:e8:c9:e1:23:11:
72:b1:c9:6d:cd:af:c6:df:2b:8e:b3:62:e1:fe:dc:
5c:68:bb:e2:b2:ad:15:0b:a9:ab:70:96:ec:b2:0a:
c5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:90:EA:50:66:98:9F:3D:6D:EC:D7:88:90:09:43:70:47:3D:DA:31
X509v3 Authority Key Identifier:
keyid:70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/V5DqUGaYnz1t7NeIkAlDcEc92jE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.108.0/22
185.248.124.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:ed:96:91:13:5d:36:a4:b6:a4:f1:25:94:fb:80:58:97:e9:
82:97:b6:6e:5d:0d:35:6e:46:a6:d0:04:23:c0:4f:97:84:16:
10:71:fb:c7:fe:9c:bb:88:f2:12:b6:ef:6f:67:9c:eb:b7:f0:
d3:4c:42:8d:9e:5e:8d:5d:0a:50:27:13:01:64:ad:5d:00:f0:
9e:87:7f:24:f6:22:07:7f:f0:30:08:8b:5f:3e:a7:b8:d6:f8:
b4:41:b5:cd:c0:68:ee:6a:9d:84:e4:d5:62:0e:51:46:de:cd:
46:29:0c:91:ce:aa:3a:85:2f:cb:fb:c4:39:e3:f7:7f:a3:9c:
7c:07:1e:a6:24:f7:74:ca:3d:7d:37:29:d8:73:a6:75:59:6a:
89:c1:ad:aa:10:d6:4b:ea:ed:b4:e4:b4:28:98:4c:6f:2b:e7:
53:c7:31:6e:52:e7:0c:6b:5a:80:dd:3c:4d:18:a0:54:9d:d2:
73:08:88:42:e1:7e:e7:a1:91:02:02:56:00:b8:d9:ba:fb:16:
f6:5a:f1:fc:be:f5:6c:d3:93:75:48:78:ae:2a:de:bb:a8:b9:
d2:e1:61:94:4f:97:ea:ac:ab:4e:38:de:72:7f:63:52:3b:82:
77:d1:df:03:3b:2a:41:78:0e:14:76:bb:56:6c:05:bb:5a:67:
f7:60:29:97
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAvio4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDk0YTQyNTU5NWU5MjNjNGI1M2I5YzAwMGFhOGYxOWFkOTIzZjIwMB4XDTIyMDEw
MTA3NTMyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTc5MGVhNTA2Njk4
OWYzZDZkZWNkNzg4OTAwOTQzNzA0NzNkZGEzMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAONdoNmG9motkDonUBIlnB5XY2ZnusfMcRoFGEBNFYEkHUMJ
Wa/uJRlUJovhpYbi+FRLWfrU8qTYxLq9bWF5DYgz6u7qtU3gMbPTEs3UNoY5nSdN
qHhNjMdnRMoW28+znbjYHRPEZZCkV2tUJk5UyyKdDpyroGGXhk/J9WNC8a3YMkdz
yYQaPgx+JbaY64Ul17S+/92VgE0KfANzYR5jx9X0cOFxkbQ16PZQMwG56PfVu/O6
NS/kJPnHOHKrrVBr+36IQ/I1Lotiht4Ok6IpSZsqV3qz/HQ1N/+RFejJ4SMRcrHJ
bc2vxt8rjrNi4f7cXGi74rKtFQupq3CW7LIKxVECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRXkOpQZpifPW3s14iQCUNwRz3aMTAfBgNVHSMEGDAWgBRwlKQlWV6SPEtT
ucAAqo8ZrZI/IDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NKU2tKVmxla2p4TFU3bkFBS3FQR2EyU1B5QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmEvOTYzMTcwLTU4YmUtNDZiYi1hNWRlLTc3NzM3M2U2MDU1ZS8x
L1Y1RHFVR2FZbnoxdDdOZUlrQWxEY0VjOTJqRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmEv
OTYzMTcwLTU4YmUtNDZiYi1hNWRlLTc3NzM3M2U2MDU1ZS8xL2NKU2tKVmxla2p4
TFU3bkFBS3FQR2EyU1B5QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArnCbAMEArn4fDANBgkqhkiG9w0B
AQsFAAOCAQEAKu2WkRNdNqS2pPEllPuAWJfpgpe2bl0NNW5GptAEI8BPl4QWEHH7
x/6cu4jyErbvb2ec67fw00xCjZ5ejV0KUCcTAWStXQDwnod/JPYiB3/wMAiLXz6n
uNb4tEG1zcBo7mqdhOTVYg5RRt7NRikMkc6qOoUvy/vEOeP3f6OcfAcepiT3dMo9
fTcp2HOmdVlqicGtqhDWS+rttOS0KJhMbyvnU8cxblLnDGtagN08TRigVJ3ScwiI
QuF+56GRAgJWALjZuvsW9lrx/L71bNOTdUh4rireu6i50uFhlE+X6qyrTjjecn9j
UjuCd9HfAzsqQXgOFHa7VmwFu1pn92Aplw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:16 2024 by rpki-client on console-ams.rpki-client.org