Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/1-4pbdL7HHJM0RrrdkAB7LKpmRhQ.roa
File: 1-4pbdL7HHJM0RrrdkAB7LKpmRhQ.roa (raw, json)
Hash identifier: npXkUmfaJbUnotgo/cBvq+PWUpdyAI1zcmZk+97ZFXI=
Subject key identifier: FB:8A:5B:74:BE:C7:1C:93:34:46:BA:DD:90:00:7B:2C:AA:66:46:14
Certificate issuer: /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Certificate serial: 37821EEC
Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/1-4pbdL7HHJM0RrrdkAB7LKpmRhQ.roa
Signing time: Sat 01 Jan 2022 13:56:49 +0000
ROA not before: Sat 01 Jan 2022 13:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15913
IP address blocks: 185.157.188.0/24 maxlen: 24
185.157.189.0/24 maxlen: 24
185.157.190.0/24 maxlen: 24
94.198.16.0/21 maxlen: 21
94.198.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931274476 (0x37821eec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Validity
Not Before: Jan 1 13:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb8a5b74bec71c933446badd90007b2caa664614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:95:08:5a:12:a1:d5:ab:66:07:14:ee:30:58:
89:c5:a9:d9:37:5c:24:47:6f:14:2b:d3:ab:00:af:
d7:88:11:c8:7a:df:f2:c7:56:77:86:2e:fa:87:b5:
92:b3:03:94:a2:93:74:c2:45:c1:97:3a:0d:1e:e7:
77:82:64:16:3e:e3:0d:fe:52:ab:b1:a1:aa:f1:06:
43:3b:40:ed:3b:07:a4:38:53:c0:80:8e:ef:fe:0e:
d0:76:3f:d7:b1:70:46:c5:f3:4b:15:c8:6b:46:11:
c9:0e:af:40:34:8b:04:62:85:f5:36:a8:4f:42:76:
a3:4e:b2:6d:73:d4:32:ff:41:f8:8d:d7:45:8e:81:
79:5e:97:42:27:e6:09:f0:40:b4:61:4b:8f:1f:01:
81:c4:54:8b:f9:10:42:04:0b:ac:26:5c:0e:be:0d:
b4:ad:cd:9d:89:3d:df:26:a0:e4:ff:2e:e4:08:69:
a5:f8:d0:54:dc:8b:06:87:cc:62:26:6e:9f:d5:ee:
eb:15:32:1e:cb:b6:94:fc:71:c2:f7:84:54:09:ef:
ac:1a:81:25:69:45:03:b2:7b:f1:0d:4c:a3:15:ac:
73:40:39:fd:6c:7b:e9:2e:b8:a5:30:46:49:49:35:
ef:f4:31:10:b0:5c:9e:8e:9a:c9:7a:34:bb:40:8f:
39:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:8A:5B:74:BE:C7:1C:93:34:46:BA:DD:90:00:7B:2C:AA:66:46:14
X509v3 Authority Key Identifier:
keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/1-4pbdL7HHJM0RrrdkAB7LKpmRhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.198.16.0/21
185.157.188.0-185.157.190.255
Signature Algorithm: sha256WithRSAEncryption
60:27:ba:6b:90:56:55:c6:60:f6:33:91:72:99:2b:73:3f:2e:
a4:4d:04:37:d4:97:04:b5:83:c3:77:f2:2f:da:75:da:44:65:
d8:1b:16:83:19:45:c0:ee:c6:82:c3:1c:8b:58:fd:33:fb:c5:
ba:43:2b:28:dd:11:0d:f8:73:91:90:0d:09:8d:b6:d9:e3:15:
b3:b9:81:35:21:de:ff:44:ff:91:d3:99:7e:19:0a:14:e2:3e:
6c:e0:be:03:30:ad:64:57:1f:e3:af:64:5d:d8:47:c7:ac:d4:
fb:7f:6f:b5:2a:69:0c:27:32:6f:c6:4b:34:62:c6:5b:ac:29:
19:db:bd:7d:aa:d6:0b:e9:f7:fb:b5:25:ad:cc:32:c8:72:85:
cb:25:bb:23:32:ec:4c:64:9c:c9:5d:05:67:f4:42:57:61:26:
1b:de:57:68:25:d6:53:5d:ba:a6:0f:dd:b9:6f:5a:8d:bd:db:
fc:42:65:1a:91:49:d0:25:d2:3e:c8:eb:ef:eb:85:d3:d3:9f:
ed:96:72:9e:db:ec:59:c0:5c:d5:06:ec:a0:19:c5:46:60:9f:
30:b2:2d:d4:77:98:29:94:ac:e7:a0:18:52:6b:9b:1a:26:ca:
86:bd:3b:d0:4f:c6:e4:93:b0:3d:40:eb:83:5b:35:07:25:89:
20:b9:e9:82
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEN4Ie7DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OGY0MWZhYjNlNjNlYWY1YmRmMDcxNjZkZjVhYTY4MTYyZWFkN2E2MB4XDTIyMDEw
MTEzNTY0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmI4YTViNzRiZWM3
MWM5MzM0NDZiYWRkOTAwMDdiMmNhYTY2NDYxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOWVCFoSodWrZgcU7jBYicWp2TdcJEdvFCvTqwCv14gRyHrf
8sdWd4Yu+oe1krMDlKKTdMJFwZc6DR7nd4JkFj7jDf5Sq7GhqvEGQztA7TsHpDhT
wICO7/4O0HY/17FwRsXzSxXIa0YRyQ6vQDSLBGKF9TaoT0J2o06ybXPUMv9B+I3X
RY6BeV6XQifmCfBAtGFLjx8BgcRUi/kQQgQLrCZcDr4NtK3NnYk93yag5P8u5Ahp
pfjQVNyLBofMYiZun9Xu6xUyHsu2lPxxwveEVAnvrBqBJWlFA7J78Q1MoxWsc0A5
/Wx76S64pTBGSUk17/QxELBcno6ayXo0u0CPOTMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBT7ilt0vscckzRGut2QAHssqmZGFDAfBgNVHSMEGDAWgBSI9B+rPmPq9b3w
cWbfWqaBYurXpjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lQUWZxejVqNnZXOThIRm0zMXFtZ1dMcTE2WS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvZTA2ZDhiLWM3NTgtNGI5My1iOWYzLTg5N2NiNmE0MzBkNy8x
LzEtNHBiZEw3SEhKTTBScnJka0FCN0xLcG1SaFEucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJk
L2UwNmQ4Yi1jNzU4LTRiOTMtYjlmMy04OTdjYjZhNDMwZDcvMS9pUFFmcXo1ajZ2
Vzk4SEZtMzFxbWdXTHExNlkuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
LQYIKwYBBQUHAQcBAf8EHjAcMBoEAgABMBQDBANexhAwDAMEArmdvAMEALmdvjAN
BgkqhkiG9w0BAQsFAAOCAQEAYCe6a5BWVcZg9jORcpkrcz8upE0EN9SXBLWDw3fy
L9p12kRl2BsWgxlFwO7GgsMci1j9M/vFukMrKN0RDfhzkZANCY222eMVs7mBNSHe
/0T/kdOZfhkKFOI+bOC+AzCtZFcf469kXdhHx6zU+39vtSppDCcyb8ZLNGLGW6wp
Gdu9farWC+n3+7UlrcwyyHKFyyW7IzLsTGScyV0FZ/RCV2EmG95XaCXWU126pg/d
uW9ajb3b/EJlGpFJ0CXSPsjr7+uF09Of7ZZyntvsWcBc1QbsoBnFRmCfMLIt1HeY
KZSs56AYUmubGibKhr070E/G5JOwPUDrg1s1ByWJILnpgg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:43 2023 by rpki-client on console-ams.rpki-client.org