Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/AkGO-cIeEgqlLIzj13bO3Fvw_dU.roa
File: AkGO-cIeEgqlLIzj13bO3Fvw_dU.roa (raw, json)
Hash identifier: zPqhE1OxHtNeLnbVk+W5QRYtcgxBGCGdSYqgA7Y4A1I=
Subject key identifier: 02:41:8E:F9:C2:1E:12:0A:A5:2C:8C:E3:D7:76:CE:DC:5B:F0:FD:D5
Certificate issuer: /CN=c1aaf043fe209c0345362205f8cc7cd61951c27e
Certificate serial: 2702A4
Authority key identifier: C1:AA:F0:43:FE:20:9C:03:45:36:22:05:F8:CC:7C:D6:19:51:C2:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/warwQ_4gnANFNiIF-Mx81hlRwn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/AkGO-cIeEgqlLIzj13bO3Fvw_dU.roa
Signing time: Sat 01 Jan 2022 02:00:59 +0000
ROA not before: Sat 01 Jan 2022 02:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29608
IP address blocks: 185.150.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2556580 (0x2702a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1aaf043fe209c0345362205f8cc7cd61951c27e
Validity
Not Before: Jan 1 02:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02418ef9c21e120aa52c8ce3d776cedc5bf0fdd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d1:52:b1:20:da:dc:ca:b0:cd:a1:62:33:01:
88:fd:a7:20:a5:0a:e6:ef:94:bb:81:e9:d6:e3:e9:
2f:fc:e8:64:a3:5a:f9:1b:3e:0a:64:ad:0e:ef:11:
01:c7:f2:29:51:81:68:cf:dc:06:c6:1d:da:62:fd:
35:8b:45:da:9e:2b:2f:8c:66:a3:28:c9:e1:8f:e6:
ec:5c:88:48:a1:57:d2:c7:a7:8f:ff:9f:9f:58:a8:
f6:7b:a6:8d:1c:ea:5a:0e:c6:20:49:b7:37:e9:0b:
e6:f1:c1:a1:af:ab:79:06:26:d0:3c:60:68:64:4c:
ac:14:99:1e:ad:fa:7e:3d:aa:0f:fe:5d:2e:5c:18:
68:9f:f0:dc:db:20:bf:ab:37:49:75:84:bd:37:09:
12:1d:05:d5:54:41:85:97:da:f9:1f:63:36:c8:29:
15:67:e7:46:89:fe:41:ed:0f:9d:e3:06:ac:2e:d2:
97:4a:4e:06:e7:e9:27:02:c0:80:5e:86:3a:d8:73:
da:09:26:51:2c:1a:33:79:c2:34:f5:f9:7e:05:f5:
7c:02:8a:cd:e2:03:e6:58:c9:36:f7:ff:d5:ba:b4:
60:37:2b:24:3b:9f:e9:99:73:a6:b2:3b:6a:a6:36:
44:ca:9e:55:66:04:d3:4d:fa:58:ce:93:54:30:90:
77:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:41:8E:F9:C2:1E:12:0A:A5:2C:8C:E3:D7:76:CE:DC:5B:F0:FD:D5
X509v3 Authority Key Identifier:
keyid:C1:AA:F0:43:FE:20:9C:03:45:36:22:05:F8:CC:7C:D6:19:51:C2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/warwQ_4gnANFNiIF-Mx81hlRwn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/AkGO-cIeEgqlLIzj13bO3Fvw_dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/warwQ_4gnANFNiIF-Mx81hlRwn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.88.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:b9:f5:8e:7f:12:b6:be:31:a0:bc:f8:49:13:93:7e:eb:cd:
50:a3:f1:8d:49:2c:72:d5:d8:15:a3:bc:af:47:a1:da:b5:57:
84:cb:46:22:48:9f:fb:77:2c:64:35:96:eb:86:d8:5c:f8:f8:
b6:cd:9b:60:c1:8a:f4:a6:d8:a0:44:41:8e:b8:fc:00:96:6b:
3d:80:da:cd:c3:21:10:4a:35:7a:1f:09:ed:f7:fe:d8:c7:64:
d9:a1:91:d6:c0:26:97:df:50:77:55:bc:87:d5:56:a3:46:22:
30:b6:1d:a5:47:a1:12:13:51:39:fe:a8:12:96:63:96:62:ad:
a8:f6:c4:c3:a3:ff:26:59:dc:17:51:eb:74:48:6b:56:f2:df:
a4:fd:78:e8:80:89:dd:1e:55:fe:ff:68:5f:3b:e6:de:ab:eb:
04:61:62:cd:fb:9d:9d:de:ca:4f:8b:8d:a5:7f:3b:8e:bb:5d:
67:90:5c:cf:aa:54:cc:1e:04:18:21:1a:3a:74:81:f9:26:f1:
61:31:c2:12:32:63:f6:48:3c:73:07:e4:ed:1c:76:12:45:95:
0c:e9:37:05:6d:ae:c3:8f:cf:d5:a6:12:40:4d:21:66:ae:f4:
85:94:0c:10:46:86:1d:6c:85:59:6d:92:40:ff:04:d3:2a:a1:
4f:6b:3b:82
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDJwKkMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMx
YWFmMDQzZmUyMDljMDM0NTM2MjIwNWY4Y2M3Y2Q2MTk1MWMyN2UwHhcNMjIwMTAx
MDIwMDU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMjQxOGVmOWMyMWUx
MjBhYTUyYzhjZTNkNzc2Y2VkYzViZjBmZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvNFSsSDa3MqwzaFiMwGI/acgpQrm75S7genW4+kv/Ohko1r5
Gz4KZK0O7xEBx/IpUYFoz9wGxh3aYv01i0XanisvjGajKMnhj+bsXIhIoVfSx6eP
/5+fWKj2e6aNHOpaDsYgSbc36Qvm8cGhr6t5BibQPGBoZEysFJkerfp+PaoP/l0u
XBhon/Dc2yC/qzdJdYS9NwkSHQXVVEGFl9r5H2M2yCkVZ+dGif5B7Q+d4wasLtKX
Sk4G5+knAsCAXoY62HPaCSZRLBozecI09fl+BfV8AorN4gPmWMk29//VurRgNysk
O5/pmXOmsjtqpjZEyp5VZgTTTfpYzpNUMJB37wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFAJBjvnCHhIKpSyM49d2ztxb8P3VMB8GA1UdIwQYMBaAFMGq8EP+IJwDRTYi
BfjMfNYZUcJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
d2Fyd1FfNGduQU5GTmlJRi1NeDgxaGxSd240LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zNC82YzI3ZjAtMTM3ZC00NzFiLTlkMWQtYjc1NzhiMTBiYTdlLzEv
QWtHTy1jSWVFZ3FsTEl6ajEzYk8zRnZ3X2RVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82
YzI3ZjAtMTM3ZC00NzFiLTlkMWQtYjc1NzhiMTBiYTdlLzEvd2Fyd1FfNGduQU5G
TmlJRi1NeDgxaGxSd240LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZZYMA0GCSqGSIb3DQEBCwUAA4IB
AQC6ufWOfxK2vjGgvPhJE5N+681Qo/GNSSxy1dgVo7yvR6HatVeEy0YiSJ/7dyxk
NZbrhthc+Pi2zZtgwYr0ptigREGOuPwAlms9gNrNwyEQSjV6Hwnt9/7Yx2TZoZHW
wCaX31B3VbyH1VajRiIwth2lR6ESE1E5/qgSlmOWYq2o9sTDo/8mWdwXUet0SGtW
8t+k/XjogIndHlX+/2hfO+beq+sEYWLN+52d3spPi42lfzuOu11nkFzPqlTMHgQY
IRo6dIH5JvFhMcISMmP2SDxzB+TtHHYSRZUM6TcFba7Dj8/VphJATSFmrvSFlAwQ
RoYdbIVZbZJA/wTTKqFPazuC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:59 2024 by rpki-client on console-fra.rpki-client.org