Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/pJU7w6MBBqjoQRRq-hOJ8hYUVyQ.roa
File: pJU7w6MBBqjoQRRq-hOJ8hYUVyQ.roa (raw, json)
Hash identifier: 3dvX8Z59SV6UgzhU6m6jH3diEPBHlNREWxiJ7Mv1wuE=
Subject key identifier: A4:95:3B:C3:A3:01:06:A8:E8:41:14:6A:FA:13:89:F2:16:14:57:24
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 04E3078B
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/pJU7w6MBBqjoQRRq-hOJ8hYUVyQ.roa
Signing time: Fri 04 Mar 2022 15:04:38 +0000
ROA not before: Fri 04 Mar 2022 15:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.104.32.0/21 maxlen: 24
185.101.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81987467 (0x4e3078b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Mar 4 15:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4953bc3a30106a8e841146afa1389f216145724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fd:0f:b1:9d:09:90:1e:4c:54:d8:67:40:28:
2f:9d:4f:c7:1b:2f:b1:45:5c:f1:33:42:e1:f1:40:
04:ab:0d:e9:93:31:74:49:f9:2e:3b:b5:a9:2b:2b:
62:a1:a8:36:60:e0:c4:5a:be:e8:50:b1:9c:7a:a5:
3f:3f:36:26:4d:d5:33:6f:5e:de:90:ca:25:18:d6:
a1:6b:57:04:85:5c:13:a0:13:00:05:aa:b3:19:78:
9d:da:13:a5:80:cd:e9:17:99:62:00:60:a9:20:b0:
7b:38:16:57:9e:91:68:ff:b2:a0:97:c0:ce:65:cb:
0a:43:29:72:a1:f8:6a:96:3a:53:fa:90:a1:0d:b1:
e1:fe:9f:90:65:27:11:01:97:50:4b:88:c5:5c:bd:
d2:fc:09:08:48:83:79:82:e7:c5:39:ba:9d:12:b4:
74:d3:89:49:58:21:1c:dc:6f:eb:8a:28:86:c2:b6:
f9:09:5c:f8:28:5e:ca:1f:8d:7f:cc:f1:ab:f8:68:
82:92:11:c5:00:3a:db:d6:5f:92:7c:1c:bd:c9:5f:
cb:1e:7f:70:6c:99:5f:87:fa:76:a9:d6:bd:64:45:
11:2d:0f:3d:4f:7e:11:1c:19:0f:95:75:b6:d0:a4:
f5:d6:ad:db:58:23:a7:a8:2f:1a:c2:36:ae:f2:e2:
04:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:95:3B:C3:A3:01:06:A8:E8:41:14:6A:FA:13:89:F2:16:14:57:24
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/pJU7w6MBBqjoQRRq-hOJ8hYUVyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/22
185.104.32.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:6e:d7:c6:e3:33:bd:33:ee:7e:a8:7a:53:b6:33:41:4e:c7:
b7:ca:fe:c2:27:4d:08:89:e4:09:8a:cc:7d:04:c4:a5:81:94:
8a:b5:ac:24:41:30:32:31:d2:92:5f:20:c1:c5:12:b5:80:a2:
6f:dd:6b:f0:41:93:69:c9:37:87:93:a0:46:cd:69:15:04:08:
93:a2:2f:9a:84:2e:a7:1c:29:16:4d:bc:49:13:0a:ef:c7:a5:
84:06:d4:9a:9f:a8:07:cd:3b:94:66:c4:79:ce:6d:0a:85:1a:
19:2c:ac:8a:c8:45:81:01:9b:d7:e7:8b:16:0b:f0:40:43:aa:
fc:4c:b4:56:5b:c2:5c:66:2a:87:1f:94:7c:35:fd:58:03:30:
84:d4:9c:dd:ea:cd:ea:40:fc:4b:db:4d:3c:bc:f9:eb:c8:81:
5a:bb:a3:2d:7e:15:04:84:47:05:1e:bf:36:17:ea:4d:a9:8b:
9f:d8:2f:8d:87:86:b1:48:98:cb:82:8f:f6:af:99:5d:25:17:
e6:e6:91:15:0e:a6:9f:af:2e:42:44:a3:37:a9:cb:e9:4d:b4:
7f:62:e4:8d:89:3d:7c:98:66:8e:3c:60:30:fe:8f:df:4d:bc:
f1:5e:b3:65:b3:ab:f3:16:d7:64:80:f0:ec:11:b7:06:80:2c:
2c:a3:23:75
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBOMHizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDFmZGM3YTJmMTFhNTc2NmQzYWQ3YmRmNjI1Y2U1ZTExOWE4ZmRmMB4XDTIyMDMw
NDE1MDQzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTQ5NTNiYzNhMzAx
MDZhOGU4NDExNDZhZmExMzg5ZjIxNjE0NTcyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALH9D7GdCZAeTFTYZ0AoL51PxxsvsUVc8TNC4fFABKsN6ZMx
dEn5Lju1qSsrYqGoNmDgxFq+6FCxnHqlPz82Jk3VM29e3pDKJRjWoWtXBIVcE6AT
AAWqsxl4ndoTpYDN6ReZYgBgqSCwezgWV56RaP+yoJfAzmXLCkMpcqH4apY6U/qQ
oQ2x4f6fkGUnEQGXUEuIxVy90vwJCEiDeYLnxTm6nRK0dNOJSVghHNxv64oohsK2
+Qlc+Cheyh+Nf8zxq/hogpIRxQA629Zfknwcvclfyx5/cGyZX4f6dqnWvWRFES0P
PU9+ERwZD5V1ttCk9dat21gjp6gvGsI2rvLiBIcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSklTvDowEGqOhBFGr6E4nyFhRXJDAfBgNVHSMEGDAWgBRUH9x6LxGldm06
1732Jc5eEZqP3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZCX2NlaThScFhadE90ZTk5aVhPWGhHYWo5OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvOGZhZDY3LWJiNmItNDc3My1iODFlLWM5MDBhODlmMjBmMS8x
L3BKVTd3Nk1CQnFqb1FSUnEtaE9KOGhZVVZ5US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
OGZhZDY3LWJiNmItNDc3My1iODFlLWM5MDBhODlmMjBmMS8xL1ZCX2NlaThScFha
dE90ZTk5aVhPWGhHYWo5OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArllqAMEA7loIDANBgkqhkiG9w0B
AQsFAAOCAQEAnm7XxuMzvTPufqh6U7YzQU7Ht8r+widNCInkCYrMfQTEpYGUirWs
JEEwMjHSkl8gwcUStYCib91r8EGTack3h5OgRs1pFQQIk6IvmoQupxwpFk28SRMK
78elhAbUmp+oB807lGbEec5tCoUaGSysishFgQGb1+eLFgvwQEOq/Ey0VlvCXGYq
hx+UfDX9WAMwhNSc3erN6kD8S9tNPLz568iBWrujLX4VBIRHBR6/NhfqTamLn9gv
jYeGsUiYy4KP9q+ZXSUX5uaRFQ6mn68uQkSjN6nL6U20f2LkjYk9fJhmjjxgMP6P
30288V6zZbOr8xbXZIDw7BG3BoAsLKMjdQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:24 2025 by rpki-client