Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/Ea8w2Nz-3wKTBN1wLKPhmlIUnQY.roa
File: Ea8w2Nz-3wKTBN1wLKPhmlIUnQY.roa (raw, json)
Hash identifier: GXD5Rtmf6pWXTx5NSNyQ+8qao57k2gKYIgr3pRy11Kk=
Subject key identifier: 11:AF:30:D8:DC:FE:DF:02:93:04:DD:70:2C:A3:E1:9A:52:14:9D:06
Certificate issuer: /CN=3188fae3ebbb3d74feeddcf507f83e67db8850a2
Certificate serial: 022A9636
Authority key identifier: 31:88:FA:E3:EB:BB:3D:74:FE:ED:DC:F5:07:F8:3E:67:DB:88:50:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYj64-u7PXT-7dz1B_g-Z9uIUKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/Ea8w2Nz-3wKTBN1wLKPhmlIUnQY.roa
Signing time: Sat 01 Jan 2022 08:59:51 +0000
ROA not before: Sat 01 Jan 2022 08:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62313
IP address blocks: 185.141.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36345398 (0x22a9636)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3188fae3ebbb3d74feeddcf507f83e67db8850a2
Validity
Not Before: Jan 1 08:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11af30d8dcfedf029304dd702ca3e19a52149d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6d:54:a7:04:8f:40:c8:11:85:31:0d:e5:da:
4f:a2:eb:d0:ca:ad:ef:db:1d:90:a7:14:f3:1c:9c:
ab:a1:f5:79:c7:76:c3:6d:3b:38:03:25:53:ee:3c:
39:b9:5d:f5:e4:0d:e4:3c:fb:e1:ce:27:56:46:da:
5e:3a:ff:0f:5f:2c:95:70:f6:8b:76:a6:b9:c0:4d:
fd:8f:f8:c7:8e:05:1d:09:59:ae:1c:ee:46:ae:be:
44:b7:d2:4d:2b:3c:5e:9f:6a:ff:62:af:e9:05:95:
47:cc:f1:8a:39:0d:1e:88:4f:a6:51:53:93:9d:d5:
92:8a:2c:7d:11:cb:51:50:81:59:9a:0a:cb:da:41:
b9:6f:50:c5:df:67:1d:eb:ae:e1:20:66:fc:52:e5:
61:42:98:61:ad:77:74:e1:1a:4f:5e:34:c4:a3:aa:
0b:12:cd:1d:46:bc:1d:39:a8:49:2f:c5:f6:e0:a4:
51:fd:0c:ed:a8:dc:4f:c1:28:b8:4c:fc:d1:8e:5b:
bf:7e:27:ae:0b:4b:1d:ec:ba:1e:4a:04:ac:c4:5c:
09:48:27:8d:f0:af:cd:b6:f3:c4:df:42:68:e5:48:
3a:a6:ea:fd:f0:5c:30:0f:46:0b:e3:50:26:ab:27:
9d:d6:bb:22:fb:98:05:34:05:e3:23:37:a7:9f:3f:
18:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AF:30:D8:DC:FE:DF:02:93:04:DD:70:2C:A3:E1:9A:52:14:9D:06
X509v3 Authority Key Identifier:
keyid:31:88:FA:E3:EB:BB:3D:74:FE:ED:DC:F5:07:F8:3E:67:DB:88:50:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYj64-u7PXT-7dz1B_g-Z9uIUKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/Ea8w2Nz-3wKTBN1wLKPhmlIUnQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/MYj64-u7PXT-7dz1B_g-Z9uIUKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.200.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:72:81:fa:0f:89:83:1d:6c:76:bd:d5:fc:1b:5e:5a:9b:a6:
af:96:7a:d4:96:70:e6:97:6c:df:8c:24:2e:3c:5f:00:90:99:
50:3b:e7:2c:7e:1a:61:00:c3:25:1c:ba:35:46:a9:7c:cd:c6:
af:d4:bc:1b:58:5a:5c:d5:9b:21:c3:fd:df:14:2f:3c:1a:3c:
df:f0:91:36:c0:58:cf:25:1e:8a:5e:2c:ae:b0:0b:38:dc:c6:
0e:b4:62:a8:66:84:3e:24:58:34:81:35:43:b2:ba:73:ed:a7:
f6:dc:c0:12:9e:1e:97:2b:b7:99:7e:b5:e8:c7:67:43:db:7b:
cd:72:24:9c:ea:3a:1f:11:cb:2b:6f:27:0a:b1:c4:c4:59:2e:
1c:c2:41:49:a3:50:fb:f9:f1:52:5f:6f:c1:0a:fc:48:9f:a4:
40:b8:67:6b:ea:82:bd:01:13:b2:78:45:c2:d4:bb:0a:86:16:
4d:f7:4e:a2:77:dd:5e:ac:58:d3:83:19:84:9c:a0:f7:c3:63:
b0:8b:86:bc:32:de:11:1f:2f:27:22:c5:ad:c9:0b:6a:59:70:
61:ee:4a:52:9c:6f:35:6e:e0:8a:d7:88:51:a5:1e:27:95:2b:
79:bc:e1:77:2e:c2:40:b8:18:3f:17:4a:96:d9:7a:29:11:49:
54:71:44:63
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAiqWNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MTg4ZmFlM2ViYmIzZDc0ZmVlZGRjZjUwN2Y4M2U2N2RiODg1MGEyMB4XDTIyMDEw
MTA4NTk1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTFhZjMwZDhkY2Zl
ZGYwMjkzMDRkZDcwMmNhM2UxOWE1MjE0OWQwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBtVKcEj0DIEYUxDeXaT6Lr0Mqt79sdkKcU8xycq6H1ecd2
w207OAMlU+48Obld9eQN5Dz74c4nVkbaXjr/D18slXD2i3amucBN/Y/4x44FHQlZ
rhzuRq6+RLfSTSs8Xp9q/2Kv6QWVR8zxijkNHohPplFTk53VkoosfRHLUVCBWZoK
y9pBuW9Qxd9nHeuu4SBm/FLlYUKYYa13dOEaT140xKOqCxLNHUa8HTmoSS/F9uCk
Uf0M7ajcT8EouEz80Y5bv34nrgtLHey6HkoErMRcCUgnjfCvzbbzxN9CaOVIOqbq
/fBcMA9GC+NQJqsnnda7IvuYBTQF4yM3p58/GKMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQRrzDY3P7fApME3XAso+GaUhSdBjAfBgNVHSMEGDAWgBQxiPrj67s9dP7t
3PUH+D5n24hQojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01ZajY0LXU3UFhULTdkejFCX2ctWjl1SVVLSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvZWEyOWYyLWMzNDAtNGQ2MS1iNWJiLWI4NTNkZmY4NzY1Yy8x
L0VhOHcyTnotM3dLVEJOMXdMS1BobWxJVW5RWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
ZWEyOWYyLWMzNDAtNGQ2MS1iNWJiLWI4NTNkZmY4NzY1Yy8xL01ZajY0LXU3UFhU
LTdkejFCX2ctWjl1SVVLSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmNyDANBgkqhkiG9w0BAQsFAAOC
AQEAbHKB+g+Jgx1sdr3V/BteWpumr5Z61JZw5pds34wkLjxfAJCZUDvnLH4aYQDD
JRy6NUapfM3Gr9S8G1haXNWbIcP93xQvPBo83/CRNsBYzyUeil4srrALONzGDrRi
qGaEPiRYNIE1Q7K6c+2n9tzAEp4elyu3mX616MdnQ9t7zXIknOo6HxHLK28nCrHE
xFkuHMJBSaNQ+/nxUl9vwQr8SJ+kQLhna+qCvQETsnhFwtS7CoYWTfdOonfdXqxY
04MZhJyg98NjsIuGvDLeER8vJyLFrckLallwYe5KUpxvNW7giteIUaUeJ5Urebzh
dy7CQLgYPxdKltl6KRFJVHFEYw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:23 2025 by rpki-client