Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/8-uZcxCFGZgDvSsvNPx0q9mMzxw.roa
File: 8-uZcxCFGZgDvSsvNPx0q9mMzxw.roa (raw, json)
Hash identifier: FpINvaRP61R/E0hg1776aAUak6I/mQ72JSfUEozxRoU=
Subject key identifier: F3:EB:99:73:10:85:19:98:03:BD:2B:2F:34:FC:74:AB:D9:8C:CF:1C
Certificate issuer: /CN=852dc0d0998b8126babb9775ab40c162ef96fa2d
Certificate serial: 038630AD
Authority key identifier: 85:2D:C0:D0:99:8B:81:26:BA:BB:97:75:AB:40:C1:62:EF:96:FA:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS3A0JmLgSa6u5d1q0DBYu-W-i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/8-uZcxCFGZgDvSsvNPx0q9mMzxw.roa
Signing time: Sat 01 Jan 2022 12:03:09 +0000
ROA not before: Sat 01 Jan 2022 12:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62856
IP address blocks: 185.81.102.0/24 maxlen: 24
185.81.101.0/24 maxlen: 24
185.81.100.0/24 maxlen: 24
185.81.100.0/22 maxlen: 22
2a05:8780::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59125933 (0x38630ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852dc0d0998b8126babb9775ab40c162ef96fa2d
Validity
Not Before: Jan 1 12:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3eb99731085199803bd2b2f34fc74abd98ccf1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:34:da:36:46:21:b1:bb:46:97:a8:29:ca:be:
22:ed:19:1a:aa:a1:39:6a:1e:88:bf:c0:e0:4c:99:
72:86:f9:76:c1:0c:45:7e:8c:0f:a7:05:12:72:f7:
1c:7e:87:53:23:ff:7c:39:14:b4:61:c3:13:29:24:
7d:a3:46:42:84:c0:68:96:ac:83:e9:2b:4d:02:4b:
1f:7d:4b:c0:6d:ba:64:38:a6:a4:7c:27:5c:41:18:
36:88:5e:06:2a:f3:36:55:d5:ee:ec:2d:c7:df:9b:
ed:50:e0:38:5c:32:1c:8f:10:fd:0c:4b:9a:1d:2c:
62:b0:2d:45:a3:fc:05:90:a0:89:2f:1d:3f:2a:49:
45:c7:9f:0b:30:77:f1:35:aa:42:58:23:98:90:e2:
83:55:a1:ee:5e:f9:18:17:fc:3f:3f:86:4c:9b:b9:
ab:74:87:bc:0e:2d:99:c9:c5:03:de:cf:b1:8e:24:
af:a0:8a:dc:c3:7c:35:a2:9b:19:3a:7f:c2:40:2d:
58:7f:f8:22:9e:fd:6b:bb:f5:00:db:5d:0a:25:17:
fc:66:f8:74:37:5f:92:53:16:e0:d9:8c:33:dd:58:
eb:12:1e:ea:34:fb:44:f7:fc:8a:c5:6f:5f:bd:7a:
b8:0d:4d:a0:c2:3d:e2:3c:1c:0e:52:b6:93:f2:0d:
c1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EB:99:73:10:85:19:98:03:BD:2B:2F:34:FC:74:AB:D9:8C:CF:1C
X509v3 Authority Key Identifier:
keyid:85:2D:C0:D0:99:8B:81:26:BA:BB:97:75:AB:40:C1:62:EF:96:FA:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS3A0JmLgSa6u5d1q0DBYu-W-i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/8-uZcxCFGZgDvSsvNPx0q9mMzxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/1cd6ca-c052-4e3d-974d-d32e56d79b2a/1/hS3A0JmLgSa6u5d1q0DBYu-W-i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.100.0/22
IPv6:
2a05:8780::/29
Signature Algorithm: sha256WithRSAEncryption
7f:6a:7b:4d:4e:7e:d4:63:73:4d:e1:f9:a3:70:08:58:9e:9b:
5a:f2:8b:3c:2e:eb:fc:03:4c:77:27:67:1f:35:2b:5a:d2:9b:
27:73:d7:2f:12:ab:50:0b:2f:8f:c5:65:13:a6:0d:31:1d:0b:
90:5e:a0:65:8e:a7:ad:4c:53:68:1c:66:70:88:1c:05:b9:4c:
0c:65:14:95:da:06:bf:85:2d:90:bc:05:96:e0:77:3c:aa:38:
d8:87:51:67:39:1e:ae:34:f0:52:ce:3d:d8:2b:f3:03:e8:f9:
c8:ee:89:7a:11:1c:cf:e6:a4:61:6c:3e:96:23:ae:a4:e5:5a:
b7:da:f7:ed:57:b7:ad:6a:36:ee:e7:11:81:6e:9d:29:68:04:
41:1c:b8:19:44:86:27:63:77:99:bb:28:c9:6b:74:59:3f:3e:
66:5f:1a:92:13:17:9c:b5:40:a4:6e:24:09:55:cf:ac:cf:61:
31:13:c8:76:e1:65:11:ed:bc:b2:7e:39:d0:60:d8:67:31:1f:
9b:bb:60:1f:0f:00:94:e4:6f:a3:2f:a4:a6:f3:26:41:31:5f:
c4:5f:00:3f:23:09:72:3a:5f:a5:f4:cc:83:2f:73:fc:03:9f:
20:ba:ed:c0:9f:47:03:3f:7d:d9:a5:0c:70:1b:ba:6b:0f:d3:
ba:ed:bd:06
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEA4YwrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NTJkYzBkMDk5OGI4MTI2YmFiYjk3NzVhYjQwYzE2MmVmOTZmYTJkMB4XDTIyMDEw
MTEyMDMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjNlYjk5NzMxMDg1
MTk5ODAzYmQyYjJmMzRmYzc0YWJkOThjY2YxYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMU02jZGIbG7RpeoKcq+Iu0ZGqqhOWoeiL/A4EyZcob5dsEM
RX6MD6cFEnL3HH6HUyP/fDkUtGHDEykkfaNGQoTAaJasg+krTQJLH31LwG26ZDim
pHwnXEEYNoheBirzNlXV7uwtx9+b7VDgOFwyHI8Q/QxLmh0sYrAtRaP8BZCgiS8d
PypJRcefCzB38TWqQlgjmJDig1Wh7l75GBf8Pz+GTJu5q3SHvA4tmcnFA97PsY4k
r6CK3MN8NaKbGTp/wkAtWH/4Ip79a7v1ANtdCiUX/Gb4dDdfklMW4NmMM91Y6xIe
6jT7RPf8isVvX716uA1NoMI94jwcDlK2k/INwWkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTz65lzEIUZmAO9Ky80/HSr2YzPHDAfBgNVHSMEGDAWgBSFLcDQmYuBJrq7
l3WrQMFi75b6LTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hTM0EwSm1MZ1NhNnU1ZDFxMERCWXUtVy1pMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvMWNkNmNhLWMwNTItNGUzZC05NzRkLWQzMmU1NmQ3OWIyYS8x
LzgtdVpjeENGR1pnRHZTc3ZOUHgwcTltTXp4dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
MWNkNmNhLWMwNTItNGUzZC05NzRkLWQzMmU1NmQ3OWIyYS8xL2hTM0EwSm1MZ1Nh
NnU1ZDFxMERCWXUtVy1pMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlRZDANBAIAAjAHAwUDKgWHgDAN
BgkqhkiG9w0BAQsFAAOCAQEAf2p7TU5+1GNzTeH5o3AIWJ6bWvKLPC7r/ANMdydn
HzUrWtKbJ3PXLxKrUAsvj8VlE6YNMR0LkF6gZY6nrUxTaBxmcIgcBblMDGUUldoG
v4UtkLwFluB3PKo42IdRZzkerjTwUs492CvzA+j5yO6JehEcz+akYWw+liOupOVa
t9r37Ve3rWo27ucRgW6dKWgEQRy4GUSGJ2N3mbsoyWt0WT8+Zl8akhMXnLVApG4k
CVXPrM9hMRPIduFlEe28sn450GDYZzEfm7tgHw8AlORvoy+kpvMmQTFfxF8APyMJ
cjpfpfTMgy9z/AOfILrtwJ9HAz992aUMcBu6aw/Tuu29Bg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:43 2024 by rpki-client on console-fra.rpki-client.org