Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/c071a8-54aa-4abd-8127-edf7bb653f13/1/sGhqJMRAP8gk_ztdRXKI-uraTj0.roa
File: sGhqJMRAP8gk_ztdRXKI-uraTj0.roa (raw, json)
Hash identifier: xAcBhy33/iAEztYxPusv1gVOmvXrFP5MCEjPfY1746o=
Subject key identifier: B0:68:6A:24:C4:40:3F:C8:24:FF:3B:5D:45:72:88:FA:EA:DA:4E:3D
Certificate issuer: /CN=bbe128dcb6810ffdc502ba3047cd419132da2274
Certificate serial: 0561D997
Authority key identifier: BB:E1:28:DC:B6:81:0F:FD:C5:02:BA:30:47:CD:41:91:32:DA:22:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-Eo3LaBD_3FArowR81BkTLaInQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/c071a8-54aa-4abd-8127-edf7bb653f13/1/sGhqJMRAP8gk_ztdRXKI-uraTj0.roa
Signing time: Sat 01 Jan 2022 06:52:50 +0000
ROA not before: Sat 01 Jan 2022 06:52:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25460
IP address blocks: 185.118.28.0/22 maxlen: 22
45.154.208.0/22 maxlen: 22
5.61.120.0/21 maxlen: 21
2a01:5ac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90298775 (0x561d997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbe128dcb6810ffdc502ba3047cd419132da2274
Validity
Not Before: Jan 1 06:52:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0686a24c4403fc824ff3b5d457288faeada4e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:68:cb:be:5f:41:cf:db:fb:7a:1c:92:7a:f3:
a3:b3:ef:d7:57:c2:14:82:27:0a:38:67:59:e9:a1:
39:e1:07:65:83:79:51:58:90:69:fc:30:d4:e8:05:
9c:6a:c2:07:7c:63:f1:ef:b8:e6:17:b8:a2:4e:e7:
62:86:e2:a3:2d:e2:13:74:b9:d0:ad:23:7f:d2:88:
d8:98:1f:dd:1d:19:95:1f:9d:e3:a0:27:ae:fc:26:
91:5e:4d:65:b6:0c:10:36:7a:e7:e1:e8:13:f8:44:
f1:a0:ff:e0:5e:de:3b:a9:93:3d:f4:f4:d0:af:07:
d7:18:e0:fd:61:8e:e4:da:6e:2e:f5:1f:75:c3:8e:
1f:6f:67:3f:a3:9d:fa:87:6e:e3:33:ea:d5:af:70:
84:35:eb:bb:80:7a:e0:b5:1d:c8:c0:8d:9e:bb:b1:
be:f1:20:0f:fd:ec:e7:1d:f4:b8:31:bd:a1:58:7c:
72:e4:49:53:dc:aa:95:ee:f7:2f:d1:b3:9c:b0:94:
8a:2b:ba:3e:01:22:4c:a2:88:10:17:01:ed:20:03:
3f:3d:f2:8d:cc:93:a7:8c:1b:52:a9:c0:f5:66:80:
5e:1f:c5:a3:46:05:bf:52:7f:c9:dc:90:48:4c:0d:
95:90:10:f2:47:88:6b:16:c7:72:a9:bc:26:95:5c:
1c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:68:6A:24:C4:40:3F:C8:24:FF:3B:5D:45:72:88:FA:EA:DA:4E:3D
X509v3 Authority Key Identifier:
keyid:BB:E1:28:DC:B6:81:0F:FD:C5:02:BA:30:47:CD:41:91:32:DA:22:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Eo3LaBD_3FArowR81BkTLaInQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/c071a8-54aa-4abd-8127-edf7bb653f13/1/sGhqJMRAP8gk_ztdRXKI-uraTj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/c071a8-54aa-4abd-8127-edf7bb653f13/1/u-Eo3LaBD_3FArowR81BkTLaInQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.120.0/21
45.154.208.0/22
185.118.28.0/22
IPv6:
2a01:5ac0::/32
Signature Algorithm: sha256WithRSAEncryption
74:8f:1f:e6:a7:c8:68:52:d0:81:b9:7c:55:61:ef:6f:05:bc:
24:10:41:fa:64:d8:1e:b9:19:47:cd:1a:36:f6:e4:48:2d:af:
2f:5c:a0:c1:99:5c:e3:23:c5:87:f1:ac:f0:0d:5b:39:0a:de:
c8:23:a7:7c:46:e6:66:e0:1f:3a:e1:3e:ea:91:5a:9d:7c:c2:
b0:f8:7f:3e:b5:82:52:4e:f5:9e:20:b3:99:7b:f9:2b:94:61:
f8:dc:f8:2f:36:05:97:fd:ea:54:e0:bf:29:52:f5:c2:99:b6:
75:6c:b0:a1:71:15:dc:fe:fd:2d:57:48:b2:97:c4:08:ea:11:
9a:e3:7e:83:15:38:e9:94:2a:3e:4a:c1:04:4b:75:95:2d:82:
46:f9:01:73:63:a4:5e:a0:97:8d:89:ae:c8:eb:f0:4d:40:53:
30:75:fd:32:96:23:f2:39:3a:2d:92:2d:14:56:c1:1f:ff:13:
d3:eb:68:98:fe:16:46:4b:16:5a:0e:e6:69:a1:de:6e:d0:86:
a6:71:b8:2c:a8:48:78:40:2f:d1:60:f6:be:ae:c1:fc:d7:48:
1a:b4:3a:2e:5e:25:ea:af:43:84:9a:ec:40:77:0b:e1:d0:ed:
37:60:33:61:ba:29:cd:f6:82:b2:09:ba:dd:e5:1f:39:6e:79:
c8:5b:be:24
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEBWHZlzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YmUxMjhkY2I2ODEwZmZkYzUwMmJhMzA0N2NkNDE5MTMyZGEyMjc0MB4XDTIyMDEw
MTA2NTI1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjA2ODZhMjRjNDQw
M2ZjODI0ZmYzYjVkNDU3Mjg4ZmFlYWRhNGUzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJpoy75fQc/b+3ocknrzo7Pv11fCFIInCjhnWemhOeEHZYN5
UViQafww1OgFnGrCB3xj8e+45he4ok7nYobioy3iE3S50K0jf9KI2Jgf3R0ZlR+d
46AnrvwmkV5NZbYMEDZ65+HoE/hE8aD/4F7eO6mTPfT00K8H1xjg/WGO5NpuLvUf
dcOOH29nP6Od+odu4zPq1a9whDXru4B64LUdyMCNnruxvvEgD/3s5x30uDG9oVh8
cuRJU9yqle73L9GznLCUiiu6PgEiTKKIEBcB7SADPz3yjcyTp4wbUqnA9WaAXh/F
o0YFv1J/ydyQSEwNlZAQ8keIaxbHcqm8JpVcHM0CAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBSwaGokxEA/yCT/O11Fcoj66tpOPTAfBgNVHSMEGDAWgBS74SjctoEP/cUC
ujBHzUGRMtoidDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3UtRW8zTGFCRF8zRkFyb3dSODFCa1RMYUluUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDgvYzA3MWE4LTU0YWEtNGFiZC04MTI3LWVkZjdiYjY1M2YxMy8x
L3NHaHFKTVJBUDhna196dGRSWEtJLXVyYVRqMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgv
YzA3MWE4LTU0YWEtNGFiZC04MTI3LWVkZjdiYjY1M2YxMy8xL3UtRW8zTGFCRF8z
RkFyb3dSODFCa1RMYUluUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEAwU9eAMEAi2a0AMEArl2HDANBAIA
AjAHAwUAKgFawDANBgkqhkiG9w0BAQsFAAOCAQEAdI8f5qfIaFLQgbl8VWHvbwW8
JBBB+mTYHrkZR80aNvbkSC2vL1ygwZlc4yPFh/Gs8A1bOQreyCOnfEbmZuAfOuE+
6pFanXzCsPh/PrWCUk71niCzmXv5K5Rh+Nz4LzYFl/3qVOC/KVL1wpm2dWywoXEV
3P79LVdIspfECOoRmuN+gxU46ZQqPkrBBEt1lS2CRvkBc2OkXqCXjYmuyOvwTUBT
MHX9MpYj8jk6LZItFFbBH/8T0+tomP4WRksWWg7maaHebtCGpnG4LKhIeEAv0WD2
vq7B/NdIGrQ6Ll4l6q9DhJrsQHcL4dDtN2AzYbopzfaCsgm63eUfOW55yFu+JA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:23 2025 by rpki-client