Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/KHdGoZCkxlcnoFDDv7pE6NbiG8Y.roa
File: KHdGoZCkxlcnoFDDv7pE6NbiG8Y.roa (raw, json)
Hash identifier: eSPMZvRXUNVrEq1Bdu6yQubS1AfGTTd+irFDRSpZd+0=
Subject key identifier: 28:77:46:A1:90:A4:C6:57:27:A0:50:C3:BF:BA:44:E8:D6:E2:1B:C6
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1522361B
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/KHdGoZCkxlcnoFDDv7pE6NbiG8Y.roa
Signing time: Mon 23 May 2022 18:03:29 +0000
ROA not before: Mon 23 May 2022 18:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206654
IP address blocks: 194.180.238.0/24 maxlen: 24
194.213.10.0/24 maxlen: 24
2a0f:fa00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354563611 (0x1522361b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: May 23 18:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=287746a190a4c65727a050c3bfba44e8d6e21bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b1:45:35:09:b7:20:04:06:a1:6f:a1:a8:ab:
d4:ff:76:4b:f1:dd:11:b7:f7:d4:19:73:ad:6e:fa:
1e:71:44:ba:0e:4e:60:cd:07:3b:09:6e:13:b5:d6:
e9:46:09:0f:99:03:da:ef:1b:6e:77:6c:f0:77:7a:
94:b5:ad:ed:c1:7c:06:b6:46:1d:04:6a:05:55:f5:
bc:25:d8:b8:90:2c:e8:be:a1:14:ee:1f:b8:43:60:
fc:2b:5e:1f:58:3c:9c:fb:5a:0a:4c:07:e5:bf:8d:
85:41:97:fc:7b:96:4d:13:da:a7:f8:3c:4d:0c:4d:
ec:72:75:32:89:ee:9b:1e:62:db:55:43:0a:3a:89:
5f:88:0d:c8:53:8e:5d:c8:4a:90:34:fc:13:5e:06:
3f:cf:eb:11:c8:fa:7d:36:bc:ab:bf:18:3a:16:17:
af:98:eb:e9:47:a2:65:57:26:2b:90:fe:d2:ad:22:
c2:fe:75:b2:63:50:a7:2a:be:5f:4b:db:78:0a:ad:
b6:d8:1b:65:8d:e4:ce:5e:eb:51:b6:0e:2a:7b:12:
2b:fe:65:dd:da:19:a0:0b:63:95:ca:d6:f2:da:d2:
69:1d:3f:98:a9:c4:50:bb:4f:df:17:3c:9d:77:6f:
b5:af:51:8b:eb:03:9b:0d:ab:84:f7:c3:99:35:53:
ea:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:77:46:A1:90:A4:C6:57:27:A0:50:C3:BF:BA:44:E8:D6:E2:1B:C6
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/KHdGoZCkxlcnoFDDv7pE6NbiG8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.238.0/24
194.213.10.0/24
IPv6:
2a0f:fa00::/29
Signature Algorithm: sha256WithRSAEncryption
4a:4a:ae:4e:ab:26:b1:d1:2f:d8:68:8a:ce:b3:de:5a:05:24:
c1:5f:aa:cf:a2:08:be:75:f1:2b:b7:b5:8a:f0:06:f2:2f:4a:
0e:ac:ac:10:03:63:86:62:e6:01:7f:fd:ab:cb:c7:55:9d:32:
f0:38:ea:ca:07:fb:5a:71:37:3a:0f:7e:a1:ea:f1:b0:d6:c2:
a0:0c:66:86:c2:76:33:01:4b:99:4b:61:8f:19:ed:5b:ad:4d:
24:be:f3:9e:0d:6d:91:6e:27:d8:be:5d:0b:dc:e6:28:a1:49:
5b:80:d0:1e:6e:eb:fc:88:f9:a8:94:be:64:cf:94:d3:e0:28:
9e:a9:a1:8c:43:67:2a:9a:55:2f:7c:dd:99:ac:fc:dd:15:6b:
74:ff:5b:f5:d6:45:c8:d3:18:94:ab:e3:14:8f:85:03:83:7b:
37:04:cd:d8:7e:6c:a8:39:4c:5e:4f:6e:f9:c8:40:ad:c5:0c:
17:8f:df:70:aa:12:ff:62:f4:02:89:b2:b8:6f:9f:72:a2:e9:
87:86:b4:50:91:a1:01:84:67:34:19:82:2c:6c:f5:64:1b:54:
f7:1d:6d:0b:4a:dc:94:71:3c:27:8b:c1:a9:2e:c7:45:b0:96:
16:b8:68:ec:10:72:74:3d:d0:be:65:42:24:46:48:6f:57:0a:
e8:35:9a:9f
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEFSI2GzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmFiMzA2ODM4NTllYzdlMDIwNmZlOTI2NTM2M2U4ZTM5NzFhOWE4MB4XDTIyMDUy
MzE4MDMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjg3NzQ2YTE5MGE0
YzY1NzI3YTA1MGMzYmZiYTQ0ZThkNmUyMWJjNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIKxRTUJtyAEBqFvoair1P92S/HdEbf31BlzrW76HnFEug5O
YM0HOwluE7XW6UYJD5kD2u8bbnds8Hd6lLWt7cF8BrZGHQRqBVX1vCXYuJAs6L6h
FO4fuENg/CteH1g8nPtaCkwH5b+NhUGX/HuWTRPap/g8TQxN7HJ1Monumx5i21VD
CjqJX4gNyFOOXchKkDT8E14GP8/rEcj6fTa8q78YOhYXr5jr6UeiZVcmK5D+0q0i
wv51smNQpyq+X0vbeAqtttgbZY3kzl7rUbYOKnsSK/5l3doZoAtjlcrW8trSaR0/
mKnEULtP3xc8nXdvta9Ri+sDmw2rhPfDmTVT6qECAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQod0ahkKTGVyegUMO/ukTo1uIbxjAfBgNVHSMEGDAWgBSLqzBoOFnsfgIG
/pJlNj6OOXGpqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k2c3dhRGhaN0g0Q0J2NlNaVFktampseHFhZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8x
L0tIZEdvWkNreGxjbm9GRER2N3BFNk5iaUc4WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
ODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8xL2k2c3dhRGhaN0g0
Q0J2NlNaVFktampseHFhZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAMK07gMEAMLVCjANBAIAAjAHAwUD
Kg/6ADANBgkqhkiG9w0BAQsFAAOCAQEASkquTqsmsdEv2GiKzrPeWgUkwV+qz6II
vnXxK7e1ivAG8i9KDqysEANjhmLmAX/9q8vHVZ0y8Djqygf7WnE3Og9+oerxsNbC
oAxmhsJ2MwFLmUthjxntW61NJL7zng1tkW4n2L5dC9zmKKFJW4DQHm7r/Ij5qJS+
ZM+U0+AonqmhjENnKppVL3zdmaz83RVrdP9b9dZFyNMYlKvjFI+FA4N7NwTN2H5s
qDlMXk9u+chArcUMF4/fcKoS/2L0AomyuG+fcqLph4a0UJGhAYRnNBmCLGz1ZBtU
9x1tC0rclHE8J4vBqS7HRbCWFrho7BBydD3QvmVCJEZIb1cK6DWanw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org