Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/eIWHWi5ZpT3dhXQJFql7PoGmc3k.roa
File: eIWHWi5ZpT3dhXQJFql7PoGmc3k.roa (raw, json)
Hash identifier: HD/Nlgx1cvdl8m+iVQo24AnkwWtQziVqpgQvpSziqHM=
Subject key identifier: 78:85:87:5A:2E:59:A5:3D:DD:85:74:09:16:A9:7B:3E:81:A6:73:79
Certificate issuer: /CN=60a851d59356ca95d4ae78fa6936ba1b8a2b1c7a
Certificate serial: 17824005
Authority key identifier: 60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKhR1ZNWypXUrnj6aTa6G4orHHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/eIWHWi5ZpT3dhXQJFql7PoGmc3k.roa
Signing time: Sat 01 Jan 2022 14:55:55 +0000
ROA not before: Sat 01 Jan 2022 14:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44973
IP address blocks: 185.130.8.0/22 maxlen: 22
93.88.224.0/22 maxlen: 22
2a02:218::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394412037 (0x17824005)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a851d59356ca95d4ae78fa6936ba1b8a2b1c7a
Validity
Not Before: Jan 1 14:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7885875a2e59a53ddd85740916a97b3e81a67379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:12:af:e0:6d:d7:83:61:0b:af:35:17:f9:a4:
c2:5c:dd:e9:6f:f3:1a:90:c1:4c:aa:62:45:9b:3d:
f3:3a:6c:08:80:75:5f:3c:3b:3b:65:42:8f:34:61:
4b:40:5a:a8:0e:77:71:69:1e:7c:f1:ee:70:c8:33:
30:34:b1:ce:45:d0:59:40:64:c1:62:da:c7:5d:77:
5b:c8:85:1d:cf:d9:d7:9f:c4:e4:b1:89:69:da:b5:
64:30:d9:f6:b6:16:c3:6c:8e:d4:d6:65:7b:eb:d2:
af:94:30:0d:27:d2:bf:4d:c5:7f:02:c8:c3:d5:49:
d2:8a:c8:56:7d:e6:8d:d7:98:89:b1:aa:6f:06:7a:
a2:00:29:80:16:5d:29:b4:75:e4:6e:df:0b:6d:36:
5b:d8:c3:7b:fc:ed:93:21:55:08:75:a8:d4:ce:1b:
b6:88:98:47:a9:2e:f6:bc:de:90:ed:c6:93:26:db:
00:87:d1:80:c2:54:d6:b3:32:d8:58:fa:3f:0c:8d:
f8:d0:6d:51:01:31:e2:cf:0f:74:c5:7d:cf:4d:b3:
66:51:ee:8e:18:38:12:a6:c9:ef:3a:b5:7e:23:06:
24:7d:90:83:37:8b:a8:f8:03:a9:3b:f1:48:e0:f9:
b0:56:5f:64:e4:7b:2b:70:0a:28:15:34:7c:5a:2b:
67:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:85:87:5A:2E:59:A5:3D:DD:85:74:09:16:A9:7B:3E:81:A6:73:79
X509v3 Authority Key Identifier:
keyid:60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKhR1ZNWypXUrnj6aTa6G4orHHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/eIWHWi5ZpT3dhXQJFql7PoGmc3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/YKhR1ZNWypXUrnj6aTa6G4orHHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.88.224.0/22
185.130.8.0/22
IPv6:
2a02:218::/29
Signature Algorithm: sha256WithRSAEncryption
bb:eb:c9:d7:a5:55:56:ac:08:68:ff:b0:08:5c:a4:4f:e2:29:
bf:35:86:10:ff:0a:99:21:98:da:61:24:ac:6c:ef:32:6f:6b:
a2:36:f3:83:c2:6c:77:eb:b1:5e:4f:c3:af:e9:e0:87:04:37:
6c:cf:c3:ad:3a:1c:45:6d:13:de:1e:37:9b:4b:bd:bb:91:e9:
88:a3:06:8f:d7:c4:c9:fd:c0:9d:81:30:5c:53:eb:de:7a:10:
71:9d:7d:d3:f3:43:67:c1:0f:18:2f:5f:24:4f:1e:7b:dd:cf:
05:d9:d4:3c:60:00:69:51:34:36:e4:5d:89:64:0b:2d:c5:d4:
0b:a2:8a:73:e7:80:9b:ba:e5:87:e5:67:03:df:c8:99:d1:c6:
65:a8:23:11:00:30:57:83:2c:ba:b9:53:b6:33:4e:bd:57:ee:
21:bb:01:ce:81:9d:8e:1a:d8:3b:f7:fd:2a:d0:e0:a4:14:e9:
ff:cf:65:fd:5d:8a:09:c8:cb:8f:28:c2:fd:b5:ce:85:c0:71:
38:3c:7c:8c:d0:a2:5a:16:97:fc:f3:42:8c:37:a6:24:7a:f5:
24:73:ae:02:c4:4b:11:47:17:1e:ec:90:0b:13:58:78:3d:7d:
d9:0f:87:40:56:01:91:b8:ba:8f:99:dd:fd:6c:ab:2b:ae:38:
ca:37:2b:2f
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEF4JABTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MGE4NTFkNTkzNTZjYTk1ZDRhZTc4ZmE2OTM2YmExYjhhMmIxYzdhMB4XDTIyMDEw
MTE0NTU1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzg4NTg3NWEyZTU5
YTUzZGRkODU3NDA5MTZhOTdiM2U4MWE2NzM3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMsSr+Bt14NhC681F/mkwlzd6W/zGpDBTKpiRZs98zpsCIB1
Xzw7O2VCjzRhS0BaqA53cWkefPHucMgzMDSxzkXQWUBkwWLax113W8iFHc/Z15/E
5LGJadq1ZDDZ9rYWw2yO1NZle+vSr5QwDSfSv03FfwLIw9VJ0orIVn3mjdeYibGq
bwZ6ogApgBZdKbR15G7fC202W9jDe/ztkyFVCHWo1M4btoiYR6ku9rzekO3Gkybb
AIfRgMJU1rMy2Fj6PwyN+NBtUQEx4s8PdMV9z02zZlHujhg4EqbJ7zq1fiMGJH2Q
gzeLqPgDqTvxSOD5sFZfZOR7K3AKKBU0fForZ+MCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBR4hYdaLlmlPd2FdAkWqXs+gaZzeTAfBgNVHSMEGDAWgBRgqFHVk1bKldSu
ePppNrobiiscejAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lLaFIxWk5XeXBYVXJuajZhVGE2RzRvckhIby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYzk3ODk4LTVlNzItNDU0YS1iZTJmLTU0OGU3YjdmYTRlMS8x
L2VJV0hXaTVacFQzZGhYUUpGcWw3UG9HbWMzay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
Yzk3ODk4LTVlNzItNDU0YS1iZTJmLTU0OGU3YjdmYTRlMS8xL1lLaFIxWk5XeXBY
VXJuajZhVGE2RzRvckhIby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAl1Y4AMEArmCCDANBAIAAjAHAwUD
KgICGDANBgkqhkiG9w0BAQsFAAOCAQEAu+vJ16VVVqwIaP+wCFykT+IpvzWGEP8K
mSGY2mEkrGzvMm9rojbzg8Jsd+uxXk/Dr+nghwQ3bM/DrTocRW0T3h43m0u9u5Hp
iKMGj9fEyf3AnYEwXFPr3noQcZ190/NDZ8EPGC9fJE8ee93PBdnUPGAAaVE0NuRd
iWQLLcXUC6KKc+eAm7rlh+VnA9/ImdHGZagjEQAwV4MsurlTtjNOvVfuIbsBzoGd
jhrYO/f9KtDgpBTp/89l/V2KCcjLjyjC/bXOhcBxODx8jNCiWhaX/PNCjDemJHr1
JHOuAsRLEUcXHuyQCxNYeD192Q+HQFYBkbi6j5nd/WyrK644yjcrLw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:39 2024 by rpki-client on console-ams.rpki-client.org