Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/0ISDcIY4PVaJYKu8HdNeCrYWzg0.roa
File: 0ISDcIY4PVaJYKu8HdNeCrYWzg0.roa (raw, json)
Hash identifier: jjgxHxKax6yCdnAiQr7Q1+TbqpPoCz8bk1Kfj0bKvv8=
Subject key identifier: D0:84:83:70:86:38:3D:56:89:60:AB:BC:1D:D3:5E:0A:B6:16:CE:0D
Certificate issuer: /CN=6e3e501d2513e5aed4423d7eb265e60822a8e78d
Certificate serial: 03A921E6
Authority key identifier: 6E:3E:50:1D:25:13:E5:AE:D4:42:3D:7E:B2:65:E6:08:22:A8:E7:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bj5QHSUT5a7UQj1-smXmCCKo540.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/0ISDcIY4PVaJYKu8HdNeCrYWzg0.roa
Signing time: Sat 01 Jan 2022 15:57:48 +0000
ROA not before: Sat 01 Jan 2022 15:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60893
IP address blocks: 185.220.108.0/22 maxlen: 24
2a0b:efc0::/32 maxlen: 32
2a0b:efc0:400::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61415910 (0x3a921e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e3e501d2513e5aed4423d7eb265e60822a8e78d
Validity
Not Before: Jan 1 15:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d084837086383d568960abbc1dd35e0ab616ce0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c1:75:2e:ec:37:a5:0f:62:de:13:4a:14:bc:
d0:ef:89:c7:18:28:a6:21:09:c4:08:03:04:bf:e7:
5e:88:01:a0:7f:05:37:16:4b:37:f4:bf:d2:08:9a:
d2:b0:8e:bb:67:c1:77:87:c2:3f:ad:19:6c:8a:64:
e9:35:10:97:7e:81:1e:59:ed:1b:0c:ae:0c:e8:91:
89:e9:a6:3b:01:54:28:ec:8f:78:59:c7:4e:d2:ce:
f0:70:6c:2e:aa:6c:98:be:e0:87:1f:c7:0f:0c:5f:
61:ff:5f:fb:6a:30:87:bd:09:44:8c:32:8e:2c:22:
74:ce:0b:ac:ba:4f:e8:11:36:5b:a9:5f:37:db:85:
8f:93:e7:84:23:1b:38:e4:2c:2e:2e:f1:55:87:10:
a5:0f:5f:85:4c:c8:96:b3:4a:27:cc:da:4c:6b:54:
2b:2f:db:3b:36:2f:91:49:1f:8b:76:2d:11:ca:cc:
3f:1c:69:18:7e:14:6c:3a:2f:b6:ef:42:e9:a9:1e:
56:30:8f:53:ab:c8:fb:58:c9:b0:c0:14:51:fa:f8:
2c:5a:30:3c:24:b4:5d:01:4e:86:79:1f:60:dd:ea:
7f:01:19:a8:1a:43:94:a3:70:6a:b9:91:d7:88:a8:
2c:50:60:c7:eb:9a:1e:27:40:9b:f3:16:7a:1e:50:
1d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:84:83:70:86:38:3D:56:89:60:AB:BC:1D:D3:5E:0A:B6:16:CE:0D
X509v3 Authority Key Identifier:
keyid:6E:3E:50:1D:25:13:E5:AE:D4:42:3D:7E:B2:65:E6:08:22:A8:E7:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bj5QHSUT5a7UQj1-smXmCCKo540.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/0ISDcIY4PVaJYKu8HdNeCrYWzg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/bj5QHSUT5a7UQj1-smXmCCKo540.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.108.0/22
IPv6:
2a0b:efc0::/32
Signature Algorithm: sha256WithRSAEncryption
3c:f1:a5:14:a9:89:9b:ea:8e:d2:92:eb:dd:af:6d:65:8d:52:
56:86:c7:7a:db:62:62:83:06:75:92:5d:ea:3b:e8:c8:7a:13:
40:01:31:47:ec:1f:5d:83:dc:6d:bb:84:28:48:43:dc:11:98:
59:33:58:c0:22:6b:30:28:91:d5:0a:b4:0b:6e:61:fd:18:bc:
58:c5:0e:5c:57:83:df:65:f7:22:49:95:c8:22:9f:d2:39:28:
01:35:76:09:1f:92:2a:94:82:3d:41:4a:49:5a:d2:d0:0b:fa:
b5:df:e2:5c:66:61:bb:10:b2:8d:1b:af:ba:9e:fe:31:96:8f:
ec:33:75:57:06:5b:1b:bd:80:e9:ba:4c:65:e6:62:a5:e0:fb:
39:dd:95:d2:b1:90:a0:82:54:87:71:15:cc:bb:4a:10:0e:61:
88:c9:ed:36:bb:8a:ca:a1:67:e2:04:81:3a:19:11:84:84:d1:
96:aa:7a:99:06:68:80:39:9d:70:61:af:90:26:ee:53:9f:8c:
0a:41:9a:1c:d9:3d:2a:ec:84:24:04:85:f2:df:0a:46:ba:3a:
83:21:7e:6d:6e:b9:04:24:66:14:83:42:4d:ce:79:cb:fd:39:
99:15:a8:c4:8a:a2:5b:57:52:85:94:24:e2:d5:f1:0d:f0:28:
2b:bf:88:7c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEA6kh5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZTNlNTAxZDI1MTNlNWFlZDQ0MjNkN2ViMjY1ZTYwODIyYThlNzhkMB4XDTIyMDEw
MTE1NTc0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDA4NDgzNzA4NjM4
M2Q1Njg5NjBhYmJjMWRkMzVlMGFiNjE2Y2UwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJrBdS7sN6UPYt4TShS80O+JxxgopiEJxAgDBL/nXogBoH8F
NxZLN/S/0gia0rCOu2fBd4fCP60ZbIpk6TUQl36BHlntGwyuDOiRiemmOwFUKOyP
eFnHTtLO8HBsLqpsmL7ghx/HDwxfYf9f+2owh70JRIwyjiwidM4LrLpP6BE2W6lf
N9uFj5PnhCMbOOQsLi7xVYcQpQ9fhUzIlrNKJ8zaTGtUKy/bOzYvkUkfi3YtEcrM
PxxpGH4UbDovtu9C6akeVjCPU6vI+1jJsMAUUfr4LFowPCS0XQFOhnkfYN3qfwEZ
qBpDlKNwarmR14ioLFBgx+uaHidAm/MWeh5QHe8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTQhINwhjg9Volgq7wd014KthbODTAfBgNVHSMEGDAWgBRuPlAdJRPlrtRC
PX6yZeYIIqjnjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JqNVFIU1VUNWE3VVFqMS1zbVhtQ0NLbzU0MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvOWQ1ZmRjLTY2YjItNDcxOC04YjI0LTExZGFmMTcwZDdjZC8x
LzBJU0RjSVk0UFZhSllLdThIZE5lQ3JZV3pnMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
OWQ1ZmRjLTY2YjItNDcxOC04YjI0LTExZGFmMTcwZDdjZC8xL2JqNVFIU1VUNWE3
VVFqMS1zbVhtQ0NLbzU0MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArncbDANBAIAAjAHAwUAKgvvwDAN
BgkqhkiG9w0BAQsFAAOCAQEAPPGlFKmJm+qO0pLr3a9tZY1SVobHettiYoMGdZJd
6jvoyHoTQAExR+wfXYPcbbuEKEhD3BGYWTNYwCJrMCiR1Qq0C25h/Ri8WMUOXFeD
32X3IkmVyCKf0jkoATV2CR+SKpSCPUFKSVrS0Av6td/iXGZhuxCyjRuvup7+MZaP
7DN1VwZbG72A6bpMZeZipeD7Od2V0rGQoIJUh3EVzLtKEA5hiMntNruKyqFn4gSB
OhkRhITRlqp6mQZogDmdcGGvkCbuU5+MCkGaHNk9KuyEJASF8t8KRro6gyF+bW65
BCRmFINCTc55y/05mRWoxIqiW1dShZQk4tXxDfAoK7+IfA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org