Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/5hpMGxE4E1GbYDYsdO9jdf_jcMM.roa
File: 5hpMGxE4E1GbYDYsdO9jdf_jcMM.roa (raw, json)
Hash identifier: 8P3FHUuaZyW6ZkYmijE65nxjUsQu1b8frVOgZP+Esvg=
Subject key identifier: E6:1A:4C:1B:11:38:13:51:9B:60:36:2C:74:EF:63:75:FF:E3:70:C3
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 07E669
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/5hpMGxE4E1GbYDYsdO9jdf_jcMM.roa
Signing time: Sat 07 May 2022 22:51:32 +0000
ROA not before: Sat 07 May 2022 22:51:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211804
IP address blocks: 185.250.240.0/24 maxlen: 24
185.250.242.0/24 maxlen: 24
185.250.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 517737 (0x7e669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: May 7 22:51:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e61a4c1b113813519b60362c74ef6375ffe370c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:fc:94:09:88:7a:bd:41:25:17:6c:91:fb:
8f:37:a7:13:34:05:19:53:5c:ef:4c:7b:66:a3:a2:
24:b6:f6:28:45:bf:78:9a:50:6d:f7:19:f4:e2:99:
94:08:0d:8b:25:3d:fb:b7:ca:43:8a:c8:f4:29:25:
04:11:3e:7e:b7:29:4b:59:de:2f:65:5a:47:0b:f4:
83:f5:b1:56:fd:8c:dd:5b:d6:94:9d:97:d6:d1:00:
83:25:72:fb:5b:e5:98:db:34:9e:64:24:d6:b7:72:
cd:44:c3:2d:93:ca:3b:fc:d6:6d:ac:2a:0d:8c:fc:
16:a4:5f:17:91:1f:eb:ac:20:64:70:51:36:5d:ff:
e7:df:96:2b:aa:aa:06:07:95:79:18:78:cd:07:dd:
3b:94:4c:7f:f9:b1:f6:01:7b:5c:28:2f:09:d3:c8:
6d:f7:74:fe:41:a5:ea:b4:00:ce:be:36:f9:22:22:
a3:3c:a5:bc:e8:e5:12:c6:df:69:9d:5d:70:59:63:
58:10:9d:df:ad:71:8e:2e:d3:46:a6:e0:5c:74:9e:
d1:b0:de:94:69:fb:71:b4:f6:63:43:07:d7:c9:94:
5b:96:7d:12:75:43:5a:24:ee:39:e0:6a:b9:92:29:
e4:27:8e:d3:f0:d3:7d:d3:22:23:d6:fb:92:5c:25:
54:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1A:4C:1B:11:38:13:51:9B:60:36:2C:74:EF:63:75:FF:E3:70:C3
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/5hpMGxE4E1GbYDYsdO9jdf_jcMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.240.0/24
185.250.242.0/23
Signature Algorithm: sha256WithRSAEncryption
73:ef:aa:df:9d:65:7e:8b:1a:7f:26:aa:e6:da:71:76:1d:3e:
7d:32:38:45:81:80:b1:5f:6e:f0:21:e2:90:df:8a:cd:00:e9:
cb:71:ea:af:f0:3c:90:d8:63:16:f0:ce:56:af:49:cd:f3:14:
c7:30:ee:b8:09:dc:31:b0:b9:bc:d1:54:f9:cf:70:de:c8:d9:
9a:8c:e6:53:ca:bc:45:35:c1:d3:05:3a:10:2d:44:96:f2:16:
01:56:9d:49:78:a5:ac:21:cb:6f:bb:1b:4a:f2:31:2f:be:85:
d0:cf:b1:64:c5:35:0b:c6:d2:7e:86:a3:8c:0b:8b:d3:10:36:
9b:4a:34:f7:cb:77:16:8f:37:d8:73:e5:36:0c:4c:68:7a:1e:
dc:f9:14:c6:16:0f:49:fc:c4:e4:ca:5a:30:31:5e:ab:a2:a0:
79:ce:3f:bf:82:f1:b6:6d:b0:23:f4:2e:00:96:46:13:bc:c0:
45:35:86:31:c8:72:81:27:15:ee:57:bd:3c:3c:fd:59:84:9e:
5a:37:bb:c5:45:95:c3:6e:c4:a8:20:25:8b:51:07:d3:76:f6:
48:c9:18:f7:ea:3b:8a:b1:4e:40:e8:54:79:bd:ec:dc:ce:46:
6a:f9:6f:5f:18:4f:5b:6f:9d:7f:8d:d0:03:fd:70:4f:a6:c2:
e3:f2:17:65
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDB+ZpMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMy
ZDJhYzFkN2M5ZWNjZjU2NThiODhmMTZmNjEzZDdiM2U4ZThjNzIwHhcNMjIwNTA3
MjI1MTMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlNjFhNGMxYjExMzgx
MzUxOWI2MDM2MmM3NGVmNjM3NWZmZTM3MGMzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqzT8lAmIer1BJRdskfuPN6cTNAUZU1zvTHtmo6IktvYoRb94
mlBt9xn04pmUCA2LJT37t8pDisj0KSUEET5+tylLWd4vZVpHC/SD9bFW/YzdW9aU
nZfW0QCDJXL7W+WY2zSeZCTWt3LNRMMtk8o7/NZtrCoNjPwWpF8XkR/rrCBkcFE2
Xf/n35YrqqoGB5V5GHjNB907lEx/+bH2AXtcKC8J08ht93T+QaXqtADOvjb5IiKj
PKW86OUSxt9pnV1wWWNYEJ3frXGOLtNGpuBcdJ7RsN6UaftxtPZjQwfXyZRbln0S
dUNaJO454Gq5kinkJ47T8NN90yIj1vuSXCVUqQIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFOYaTBsROBNRm2A2LHTvY3X/43DDMB8GA1UdIwQYMBaAFMLSrB18nsz1ZYuI
8W9hPXs+joxyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
d3RLc0hYeWV6UFZsaTRqeGIyRTllejZPakhJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80NC84YjFiYzItNTkyNi00YWNlLWIxNmYtMTk3ZmU4MzY1NjQzLzEv
NWhwTUd4RTRFMUdiWURZc2RPOWpkZl9qY01NLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC84
YjFiYzItNTkyNi00YWNlLWIxNmYtMTk3ZmU4MzY1NjQzLzEvd3RLc0hYeWV6UFZs
aTRqeGIyRTllejZPakhJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAufrwAwQBufryMA0GCSqGSIb3DQEB
CwUAA4IBAQBz76rfnWV+ixp/Jqrm2nF2HT59MjhFgYCxX27wIeKQ34rNAOnLceqv
8DyQ2GMW8M5Wr0nN8xTHMO64CdwxsLm80VT5z3DeyNmajOZTyrxFNcHTBToQLUSW
8hYBVp1JeKWsIctvuxtK8jEvvoXQz7FkxTULxtJ+hqOMC4vTEDabSjT3y3cWjzfY
c+U2DExoeh7c+RTGFg9J/MTkylowMV6roqB5zj+/gvG2bbAj9C4AlkYTvMBFNYYx
yHKBJxXuV708PP1ZhJ5aN7vFRZXDbsSoICWLUQfTdvZIyRj36juKsU5A6FR5vezc
zkZq+W9fGE9bb51/jdAD/XBPpsLj8hdl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:21 2024 by rpki-client on console-fra.rpki-client.org