Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/efU70yOYQtCKlNlCs6kDtgrVZ0A.roa
File: efU70yOYQtCKlNlCs6kDtgrVZ0A.roa (raw, json)
Hash identifier: SsY614f8Rp3WgSnBuWzFHgCbUdJKJt7W4lskrsVoolo=
Subject key identifier: 79:F5:3B:D3:23:98:42:D0:8A:94:D9:42:B3:A9:03:B6:0A:D5:67:40
Certificate issuer: /CN=668d2f64c337465ed38da5f7cc4584df87d4a744
Certificate serial: 03BA15D8
Authority key identifier: 66:8D:2F:64:C3:37:46:5E:D3:8D:A5:F7:CC:45:84:DF:87:D4:A7:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zo0vZMM3Rl7TjaX3zEWE34fUp0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/efU70yOYQtCKlNlCs6kDtgrVZ0A.roa
Signing time: Sat 01 Jan 2022 09:59:53 +0000
ROA not before: Sat 01 Jan 2022 09:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205867
IP address blocks: 185.55.234.0/24 maxlen: 24
2a00:b404::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62526936 (0x3ba15d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=668d2f64c337465ed38da5f7cc4584df87d4a744
Validity
Not Before: Jan 1 09:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79f53bd3239842d08a94d942b3a903b60ad56740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:77:da:b0:bc:0e:97:ec:b7:3d:67:8b:3a:88:
0c:72:bd:14:b7:c6:1a:f3:37:51:af:d7:90:2e:ac:
1b:d8:6a:24:5a:dd:5d:c8:41:94:a7:d1:c8:a7:48:
ec:b7:89:61:93:28:61:6b:66:a2:08:f2:ed:50:bb:
3f:b1:be:ff:90:1e:45:ef:0d:c2:ad:14:d0:21:5f:
3f:e2:cb:ac:6e:5b:fa:9b:8b:af:12:b3:d8:df:eb:
92:c3:f1:17:90:df:20:64:39:cc:b8:e3:24:d6:dc:
4c:2c:08:80:94:99:08:3b:aa:94:1e:cf:58:6a:ed:
31:fe:79:3e:a3:f9:64:00:5f:ee:90:81:93:b3:6e:
b3:0d:26:06:bd:8b:a9:b3:b3:e9:2c:4a:9c:96:ae:
c1:7f:3c:c4:44:4d:fb:19:a6:1a:68:f9:ce:60:99:
0c:53:0a:4f:b9:61:1c:03:37:60:aa:aa:66:dc:34:
f9:60:93:00:a1:46:64:c2:f3:3c:46:04:03:2e:08:
35:e8:ec:15:29:e1:de:8d:22:e7:4f:e8:fc:c0:85:
c7:5c:e5:a1:23:40:d9:2d:ad:7c:6d:76:b7:25:d8:
ad:36:74:d2:fb:aa:78:64:85:7b:e5:de:99:82:3e:
02:55:d3:c0:3f:04:b0:45:b4:7b:2a:5a:bf:55:96:
58:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F5:3B:D3:23:98:42:D0:8A:94:D9:42:B3:A9:03:B6:0A:D5:67:40
X509v3 Authority Key Identifier:
keyid:66:8D:2F:64:C3:37:46:5E:D3:8D:A5:F7:CC:45:84:DF:87:D4:A7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zo0vZMM3Rl7TjaX3zEWE34fUp0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/efU70yOYQtCKlNlCs6kDtgrVZ0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/828b0f-80e8-427b-971d-38bbcfaee6ce/1/Zo0vZMM3Rl7TjaX3zEWE34fUp0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.234.0/24
IPv6:
2a00:b404::/32
Signature Algorithm: sha256WithRSAEncryption
81:a3:6c:6e:45:83:09:3d:ad:84:d8:72:76:6f:62:c2:eb:b3:
80:fc:61:3d:c4:e6:d7:77:fd:63:e5:69:1b:f3:84:0f:33:7a:
53:9a:31:ba:5b:9a:ec:22:10:37:0a:4f:c8:33:7b:96:33:e2:
29:bc:1d:ca:be:f3:dc:cf:5b:ca:a8:db:0d:48:b4:d2:92:8a:
c3:be:f4:e6:ab:ed:e9:e0:01:ff:0e:1a:42:cf:92:f9:50:02:
7c:4c:d4:5e:c1:56:f3:d1:c0:8c:3f:05:ec:21:b4:90:db:22:
a1:76:83:ce:c5:d0:0b:d8:c9:fa:77:6c:5c:88:8c:af:fd:03:
23:df:3c:22:cd:38:d0:46:89:4e:ef:6d:3a:70:41:0f:13:1b:
aa:21:9f:07:fa:fe:17:fb:98:28:bd:62:d0:86:89:f3:da:84:
29:e8:75:a0:64:27:91:2c:be:76:51:e2:68:23:46:4c:9c:f1:
d8:10:b0:ce:98:16:c3:fe:f9:b1:19:50:ef:52:28:06:30:81:
e2:67:65:19:1c:2b:92:f8:0b:2e:ed:40:d7:07:c9:53:de:55:
3f:e5:45:9c:f1:85:e0:1a:dc:c1:36:ee:1b:80:69:1f:a7:1d:
1a:c0:fb:08:a5:83:b8:80:09:fe:fa:78:24:80:38:89:b1:b0:
27:ed:32:5a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEA7oV2DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NjhkMmY2NGMzMzc0NjVlZDM4ZGE1ZjdjYzQ1ODRkZjg3ZDRhNzQ0MB4XDTIyMDEw
MTA5NTk1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzlmNTNiZDMyMzk4
NDJkMDhhOTRkOTQyYjNhOTAzYjYwYWQ1Njc0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALF32rC8Dpfstz1nizqIDHK9FLfGGvM3Ua/XkC6sG9hqJFrd
XchBlKfRyKdI7LeJYZMoYWtmogjy7VC7P7G+/5AeRe8Nwq0U0CFfP+LLrG5b+puL
rxKz2N/rksPxF5DfIGQ5zLjjJNbcTCwIgJSZCDuqlB7PWGrtMf55PqP5ZABf7pCB
k7Nusw0mBr2LqbOz6SxKnJauwX88xERN+xmmGmj5zmCZDFMKT7lhHAM3YKqqZtw0
+WCTAKFGZMLzPEYEAy4INejsFSnh3o0i50/o/MCFx1zloSNA2S2tfG12tyXYrTZ0
0vuqeGSFe+XemYI+AlXTwD8EsEW0eypav1WWWDkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBR59TvTI5hC0IqU2UKzqQO2CtVnQDAfBgNVHSMEGDAWgBRmjS9kwzdGXtON
pffMRYTfh9SnRDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pvMHZaTU0zUmw3VGphWDN6RVdFMzRmVXAwUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTUvODI4YjBmLTgwZTgtNDI3Yi05NzFkLTM4YmJjZmFlZTZjZS8x
L2VmVTcweU9ZUXRDS2xObENzNmtEdGdyVlowQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUv
ODI4YjBmLTgwZTgtNDI3Yi05NzFkLTM4YmJjZmFlZTZjZS8xL1pvMHZaTU0zUmw3
VGphWDN6RVdFMzRmVXAwUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALk36jANBAIAAjAHAwUAKgC0BDAN
BgkqhkiG9w0BAQsFAAOCAQEAgaNsbkWDCT2thNhydm9iwuuzgPxhPcTm13f9Y+Vp
G/OEDzN6U5oxulua7CIQNwpPyDN7ljPiKbwdyr7z3M9byqjbDUi00pKKw7705qvt
6eAB/w4aQs+S+VACfEzUXsFW89HAjD8F7CG0kNsioXaDzsXQC9jJ+ndsXIiMr/0D
I988Is040EaJTu9tOnBBDxMbqiGfB/r+F/uYKL1i0IaJ89qEKeh1oGQnkSy+dlHi
aCNGTJzx2BCwzpgWw/75sRlQ71IoBjCB4mdlGRwrkvgLLu1A1wfJU95VP+VFnPGF
4BrcwTbuG4BpH6cdGsD7CKWDuIAJ/vp4JIA4ibGwJ+0yWg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:18 2024 by rpki-client on console-ams.rpki-client.org