Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/hnRj_-6LZ9E1w9xLuMNKG6GdYZ4.roa
File: hnRj_-6LZ9E1w9xLuMNKG6GdYZ4.roa (raw, json)
Hash identifier: AKNsTx8wqXJqB2gojyHgPnzF9Ryw6fEvN4Qaq9+YNuQ=
Subject key identifier: 86:74:63:FF:EE:8B:67:D1:35:C3:DC:4B:B8:C3:4A:1B:A1:9D:61:9E
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 01828387A78A7D1F2E44BB78C4B4ADBF20E4
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/hnRj_-6LZ9E1w9xLuMNKG6GdYZ4.roa
Signing time: Tue 09 Aug 2022 16:54:41 +0000
ROA not before: Tue 09 Aug 2022 16:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206273
IP address blocks: 185.198.60.0/23 maxlen: 23
185.198.62.0/23 maxlen: 23
178.212.58.0/23 maxlen: 23
31.130.242.0/23 maxlen: 23
31.130.244.0/22 maxlen: 22
178.212.60.0/22 maxlen: 22
91.218.154.0/23 maxlen: 23
185.191.62.0/23 maxlen: 23
185.191.60.0/23 maxlen: 23
2a0a:15c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:83:87:a7:8a:7d:1f:2e:44:bb:78:c4:b4:ad:bf:20:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Aug 9 16:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=867463ffee8b67d135c3dc4bb8c34a1ba19d619e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:67:28:63:3e:cb:bb:73:05:5a:24:ad:c7:7f:
57:95:72:f1:98:af:a8:ab:73:c8:13:60:4a:bc:33:
4c:8a:9d:a9:3e:d1:da:f9:bf:50:f8:e2:94:d9:15:
cc:31:7e:49:d9:f0:c2:ec:d6:39:bb:a4:dc:c4:b7:
36:c4:1d:a9:59:52:5f:bb:80:38:6f:c9:e4:29:83:
69:57:f9:7f:80:aa:66:90:1c:20:ef:d1:d2:7f:91:
8e:b4:a7:9b:50:ce:27:b6:20:7c:e5:43:fe:7e:2d:
2b:18:a1:91:f3:e0:3e:25:d3:77:50:af:46:7f:98:
76:f4:de:10:1b:76:96:66:43:fc:94:c6:27:20:e4:
53:08:f0:52:a6:d5:09:4a:8a:6d:dd:a6:d1:44:ce:
48:b0:e2:b8:ff:34:ff:7b:09:07:ee:ce:06:c5:0d:
e6:80:55:e9:22:d5:21:ca:fc:43:f8:c8:a8:eb:21:
e9:56:37:0e:e4:bd:ad:f2:a2:ec:19:4a:0b:b6:0c:
2b:02:de:ee:e1:0f:29:a4:c0:1e:50:e1:5a:0d:49:
30:56:6e:07:23:e3:8b:2e:fd:1a:a0:00:6f:b7:79:
5c:a5:88:b6:f3:ed:6f:d6:9c:57:33:62:c7:18:89:
f0:a0:58:ef:e0:c7:bb:6c:f8:17:47:c6:7c:fe:47:
33:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:74:63:FF:EE:8B:67:D1:35:C3:DC:4B:B8:C3:4A:1B:A1:9D:61:9E
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/hnRj_-6LZ9E1w9xLuMNKG6GdYZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.242.0-31.130.247.255
91.218.154.0/23
178.212.58.0-178.212.63.255
185.191.60.0/22
185.198.60.0/22
IPv6:
2a0a:15c0::/29
Signature Algorithm: sha256WithRSAEncryption
99:ab:5e:3e:9f:f2:b2:e1:fb:1a:57:46:08:85:e2:82:ad:1c:
eb:ee:14:c8:51:91:db:2c:dd:e9:d7:35:ac:d1:3f:a6:f7:8b:
a4:67:e3:1f:3c:e3:aa:e3:ea:b1:65:22:a4:f3:7d:72:e3:1e:
57:7a:de:37:76:cf:06:74:d6:b3:dd:b5:b9:59:c2:ef:38:b7:
da:e4:d8:72:cc:e7:bc:b3:e1:53:41:62:cf:6d:58:66:9a:b7:
a8:ee:bd:1f:bb:dd:21:ff:af:29:23:26:5e:39:74:3a:d9:fc:
d1:6e:2c:07:ce:b0:11:92:1a:02:dd:0c:72:87:a8:40:be:5c:
e8:78:e2:79:f6:5e:48:88:e7:87:bc:30:10:58:da:c5:55:09:
ea:53:92:1d:d1:a3:89:76:0f:4d:ba:f3:e3:62:49:be:b9:98:
4a:68:d4:28:4d:fd:3f:3a:27:4a:95:7c:88:9e:43:03:8c:2c:
41:50:14:2b:82:7c:37:57:57:d1:29:d7:e7:b2:88:a0:1e:b8:
5a:01:34:a5:1b:e5:4a:2a:62:bf:82:19:61:df:da:e4:3a:da:
fc:c2:b5:d8:33:4e:1d:65:6f:9f:c2:c9:b6:54:eb:b9:b5:58:
5e:a9:9e:92:cd:56:89:56:d7:73:67:b7:19:81:6a:04:8f:a5:
20:22:36:7e
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgISAYKDh6eKfR8uRLt4xLStvyDkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkYmU2ZTBhZGFlOGJiNDc4MzkzYWFiMTc1YjYzODY0NGM3
NGNjYjcwHhcNMjIwODA5MTY1NDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Njc0NjNmZmVlOGI2N2QxMzVjM2RjNGJiOGMzNGExYmExOWQ2MTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgWcoYz7Lu3MFWiStx39XlXLxmK+o
q3PIE2BKvDNMip2pPtHa+b9Q+OKU2RXMMX5J2fDC7NY5u6TcxLc2xB2pWVJfu4A4
b8nkKYNpV/l/gKpmkBwg79HSf5GOtKebUM4ntiB85UP+fi0rGKGR8+A+JdN3UK9G
f5h29N4QG3aWZkP8lMYnIORTCPBSptUJSopt3abRRM5IsOK4/zT/ewkH7s4GxQ3m
gFXpItUhyvxD+Mio6yHpVjcO5L2t8qLsGUoLtgwrAt7u4Q8ppMAeUOFaDUkwVm4H
I+OLLv0aoABvt3lcpYi28+1v1pxXM2LHGInwoFjv4Me7bPgXR8Z8/kczuwIDAQAB
o4ICQDCCAjwwHQYDVR0OBBYEFIZ0Y//ui2fRNcPcS7jDShuhnWGeMB8GA1UdIwQY
MBaAFN2+bgra6LtHg5OqsXW2OGRMdMy3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2I1dUN0cm91MGVEazZxeGRiWTRaRXgwekxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNjdiNzgtNThjOC00MzExLTllNjkt
NmJhYTNiNTQ4ZDIzLzEvaG5Sal8tNkxaOUUxdzl4THVNTktHNkdkWVo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNjdiNzgtNThjOC00MzExLTllNjktNmJhYTNiNTQ4ZDIz
LzEvM2I1dUN0cm91MGVEazZxeGRiWTRaRXgwekxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTA0BAIAATAuMAwDBAEfgvID
BAMfgvADBAFb2powDAMEAbLUOgMEBrLUAAMEArm/PAMEArnGPDANBAIAAjAHAwUD
KgoVwDANBgkqhkiG9w0BAQsFAAOCAQEAmatePp/ysuH7GldGCIXigq0c6+4UyFGR
2yzd6dc1rNE/pveLpGfjHzzjquPqsWUipPN9cuMeV3reN3bPBnTWs921uVnC7zi3
2uTYcsznvLPhU0Fiz21YZpq3qO69H7vdIf+vKSMmXjl0Otn80W4sB86wEZIaAt0M
coeoQL5c6HjiefZeSIjnh7wwEFjaxVUJ6lOSHdGjiXYPTbrz42JJvrmYSmjUKE39
PzonSpV8iJ5DA4wsQVAUK4J8N1dX0SnX57KIoB64WgE0pRvlSipiv4IZYd/a5Dra
/MK12DNOHWVvn8LJtlTrubVYXqmeks1WiVbXc2e3GYFqBI+lICI2fg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org