Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/589a15-9c52-4a1b-8d32-b8aab3323524/1/m6EULlmc0yPiv2HDkMNjFcIhmrA.roa
File: m6EULlmc0yPiv2HDkMNjFcIhmrA.roa (raw, json)
Hash identifier: auJNxpGui6Xc8i8y9J+Ep3X7JILIN/5D0GSImPFHIXs=
Subject key identifier: 9B:A1:14:2E:59:9C:D3:23:E2:BF:61:C3:90:C3:63:15:C2:21:9A:B0
Certificate issuer: /CN=0ec3ad5ff65b8dcb476229f12d457d7761a0b97c
Certificate serial: 0A857672
Authority key identifier: 0E:C3:AD:5F:F6:5B:8D:CB:47:62:29:F1:2D:45:7D:77:61:A0:B9:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DsOtX_ZbjctHYinxLUV9d2GguXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/589a15-9c52-4a1b-8d32-b8aab3323524/1/m6EULlmc0yPiv2HDkMNjFcIhmrA.roa
Signing time: Sat 01 Jan 2022 16:02:57 +0000
ROA not before: Sat 01 Jan 2022 16:02:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201722
IP address blocks: 185.82.112.0/24 maxlen: 24
185.82.114.0/24 maxlen: 24
185.82.115.0/24 maxlen: 24
185.82.113.0/24 maxlen: 24
2a05:8f80::/32 maxlen: 32
2a05:8f81::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176518770 (0xa857672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ec3ad5ff65b8dcb476229f12d457d7761a0b97c
Validity
Not Before: Jan 1 16:02:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ba1142e599cd323e2bf61c390c36315c2219ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:56:d2:2a:30:ab:20:6b:94:85:a6:16:62:75:
2f:f1:e0:76:b0:6b:4e:18:7e:90:e8:28:35:7c:b0:
99:0e:c3:f8:77:72:0c:09:40:26:f6:f8:bd:f3:09:
85:75:43:d9:7c:c5:08:34:a6:80:97:3c:ff:29:fc:
fa:bb:65:7a:9b:90:d1:a0:cc:a0:97:83:6f:f4:0a:
77:ce:aa:c0:b8:28:a0:a6:fb:44:24:e4:bb:71:f0:
0f:8f:67:36:3f:b6:0c:2d:0e:6b:28:10:44:21:4b:
37:b0:af:a1:d9:07:db:1d:39:70:7e:43:47:7a:21:
e1:a7:bb:30:ca:3a:0e:3b:47:4a:36:27:b1:5e:0b:
92:36:a5:bd:a4:ac:4d:23:28:f5:e3:f3:75:15:b7:
cc:dd:c9:1d:1a:dc:f9:82:1f:b1:e6:07:d3:97:41:
df:e5:33:7f:0e:69:21:ff:a4:97:20:f8:dc:b9:28:
21:81:39:c8:16:c3:64:37:57:20:bb:a5:b5:3a:ee:
fa:df:34:2a:ca:4a:d4:13:df:23:1c:e9:2a:bf:97:
28:78:1d:a0:22:f6:93:a4:fd:bb:da:f3:dc:a8:61:
fa:d3:5d:76:35:33:d9:d7:72:48:27:ff:9b:d3:ef:
f0:46:9b:f0:7c:f8:b1:cb:ff:d2:2b:6c:27:1e:3b:
d5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A1:14:2E:59:9C:D3:23:E2:BF:61:C3:90:C3:63:15:C2:21:9A:B0
X509v3 Authority Key Identifier:
keyid:0E:C3:AD:5F:F6:5B:8D:CB:47:62:29:F1:2D:45:7D:77:61:A0:B9:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DsOtX_ZbjctHYinxLUV9d2GguXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/589a15-9c52-4a1b-8d32-b8aab3323524/1/m6EULlmc0yPiv2HDkMNjFcIhmrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/589a15-9c52-4a1b-8d32-b8aab3323524/1/DsOtX_ZbjctHYinxLUV9d2GguXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.112.0/22
IPv6:
2a05:8f80::/31
Signature Algorithm: sha256WithRSAEncryption
18:5b:c7:dc:a6:e4:91:d2:8f:9c:36:23:01:dc:7c:2e:e7:1f:
6e:6c:4e:ba:3e:b6:e4:d6:0b:ef:a5:3a:81:c0:c0:7e:a0:cb:
e1:bb:73:67:a1:5c:8e:b5:4f:24:61:4b:c7:8f:a3:37:b5:01:
4b:ea:af:68:1c:c0:87:c8:8d:fe:47:9c:4c:ba:2a:38:a6:dc:
6d:56:2e:43:fe:43:73:fe:e3:71:04:e2:d7:66:84:fb:2d:28:
45:dd:a0:1e:0c:f9:ae:69:a9:67:c7:55:f6:47:12:c2:65:13:
f3:fb:1a:bc:8c:9b:eb:ba:e8:eb:1c:74:3a:ff:3f:ae:02:ac:
d5:49:18:08:33:ce:97:18:23:43:f3:ff:fe:8f:0a:c2:94:57:
cb:5e:f1:16:67:7b:6d:34:6b:d4:04:ba:6a:0f:c3:8b:fc:a2:
0d:88:e3:bc:44:6d:ac:b0:c7:8e:6c:7e:7e:64:91:eb:77:27:
02:f5:06:32:ac:67:b0:6b:75:cc:1d:ea:80:25:5b:0f:d4:bb:
91:88:b8:6c:23:86:3b:85:2d:0f:1a:cd:24:bb:37:c1:d7:b7:
a1:74:81:81:12:f5:f8:df:f4:13:34:1f:5f:72:cf:95:33:48:
ab:3c:33:a8:99:17:9c:27:54:ce:b7:bf:60:e3:ab:9b:a7:e6:
a9:e6:41:1e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECoV2cjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZWMzYWQ1ZmY2NWI4ZGNiNDc2MjI5ZjEyZDQ1N2Q3NzYxYTBiOTdjMB4XDTIyMDEw
MTE2MDI1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWJhMTE0MmU1OTlj
ZDMyM2UyYmY2MWMzOTBjMzYzMTVjMjIxOWFiMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJFW0iowqyBrlIWmFmJ1L/HgdrBrThh+kOgoNXywmQ7D+Hdy
DAlAJvb4vfMJhXVD2XzFCDSmgJc8/yn8+rtlepuQ0aDMoJeDb/QKd86qwLgooKb7
RCTku3HwD49nNj+2DC0OaygQRCFLN7CvodkH2x05cH5DR3oh4ae7MMo6DjtHSjYn
sV4LkjalvaSsTSMo9ePzdRW3zN3JHRrc+YIfseYH05dB3+Uzfw5pIf+klyD43Lko
IYE5yBbDZDdXILultTru+t80KspK1BPfIxzpKr+XKHgdoCL2k6T9u9rz3Khh+tNd
djUz2ddySCf/m9Pv8Eab8Hz4scv/0itsJx471SsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSboRQuWZzTI+K/YcOQw2MVwiGasDAfBgNVHSMEGDAWgBQOw61f9luNy0di
KfEtRX13YaC5fDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RzT3RYX1piamN0SFlpbnhMVVY5ZDJHZ3VYdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzMvNTg5YTE1LTljNTItNGExYi04ZDMyLWI4YWFiMzMyMzUyNC8x
L202RVVMbG1jMHlQaXYySERrTU5qRmNJaG1yQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMv
NTg5YTE1LTljNTItNGExYi04ZDMyLWI4YWFiMzMyMzUyNC8xL0RzT3RYX1piamN0
SFlpbnhMVVY5ZDJHZ3VYdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlScDANBAIAAjAHAwUBKgWPgDAN
BgkqhkiG9w0BAQsFAAOCAQEAGFvH3KbkkdKPnDYjAdx8LucfbmxOuj625NYL76U6
gcDAfqDL4btzZ6FcjrVPJGFLx4+jN7UBS+qvaBzAh8iN/kecTLoqOKbcbVYuQ/5D
c/7jcQTi12aE+y0oRd2gHgz5rmmpZ8dV9kcSwmUT8/savIyb67ro6xx0Ov8/rgKs
1UkYCDPOlxgjQ/P//o8KwpRXy17xFmd7bTRr1AS6ag/Di/yiDYjjvERtrLDHjmx+
fmSR63cnAvUGMqxnsGt1zB3qgCVbD9S7kYi4bCOGO4UtDxrNJLs3wde3oXSBgRL1
+N/0EzQfX3LPlTNIqzwzqJkXnCdUzre/YOOrm6fmqeZBHg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:57 2025 by rpki-client