Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/SZ5-m-gkaLN8g6Sln6PLagsEcao.roa
File: SZ5-m-gkaLN8g6Sln6PLagsEcao.roa (raw, json)
Hash identifier: A1fcMDJgZ3/gK0/LKXyFOGwV85rtKkaMpX5r3rLz23k=
Subject key identifier: 49:9E:7E:9B:E8:24:68:B3:7C:83:A4:A5:9F:A3:CB:6A:0B:04:71:AA
Certificate issuer: /CN=7d7b4bcabeb29605ea511de973e4675c4b8a29df
Certificate serial: 043D74A1
Authority key identifier: 7D:7B:4B:CA:BE:B2:96:05:EA:51:1D:E9:73:E4:67:5C:4B:8A:29:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXtLyr6ylgXqUR3pc-RnXEuKKd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/SZ5-m-gkaLN8g6Sln6PLagsEcao.roa
Signing time: Sat 01 Jan 2022 07:00:15 +0000
ROA not before: Sat 01 Jan 2022 07:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199048
IP address blocks: 85.187.210.0/24 maxlen: 24
85.187.209.0/24 maxlen: 24
85.187.212.0/24 maxlen: 24
85.187.211.0/24 maxlen: 24
85.187.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71136417 (0x43d74a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7b4bcabeb29605ea511de973e4675c4b8a29df
Validity
Not Before: Jan 1 07:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=499e7e9be82468b37c83a4a59fa3cb6a0b0471aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:95:f7:70:32:c1:f2:4d:62:27:6e:6b:6c:53:
57:dd:c5:f1:1e:14:51:7d:dd:85:59:ad:db:a9:d9:
99:fc:0c:df:5d:6d:56:3b:d3:91:18:21:b4:dd:af:
da:70:9a:de:2c:cc:cc:66:e7:8a:fb:79:a1:a1:f6:
bb:8c:7d:54:bb:8a:68:df:2d:9e:52:44:14:4e:71:
6f:9c:ca:fb:73:2d:4c:62:5f:f5:c2:f0:9e:e8:81:
c5:9c:21:a4:6d:07:c4:c4:77:0b:42:fa:9b:3d:b0:
2f:26:55:96:da:94:cb:9e:4e:19:b3:03:43:8c:82:
40:4d:94:9b:1c:f2:17:aa:6a:af:7d:04:39:b8:08:
07:4d:04:03:e9:2c:df:ee:33:e3:78:87:df:ad:90:
56:db:9c:86:4f:92:72:72:5e:49:e0:b1:32:5b:91:
d8:75:f2:7b:8c:b0:6d:3b:a4:c6:be:e0:76:cc:f4:
8b:be:5f:94:cc:4b:ec:1a:00:f6:45:bd:15:c8:7c:
1f:76:75:b5:54:c4:10:a8:8f:1d:fb:ff:a8:73:a8:
54:14:79:44:59:70:72:cb:20:83:dd:76:be:d0:a9:
3a:e1:5e:b4:10:c5:a4:a4:a0:ee:31:e5:96:84:b7:
a4:84:83:89:30:b2:c0:4e:5a:00:b5:42:68:22:8d:
f6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9E:7E:9B:E8:24:68:B3:7C:83:A4:A5:9F:A3:CB:6A:0B:04:71:AA
X509v3 Authority Key Identifier:
keyid:7D:7B:4B:CA:BE:B2:96:05:EA:51:1D:E9:73:E4:67:5C:4B:8A:29:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXtLyr6ylgXqUR3pc-RnXEuKKd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/SZ5-m-gkaLN8g6Sln6PLagsEcao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/fXtLyr6ylgXqUR3pc-RnXEuKKd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.208.0-85.187.212.255
Signature Algorithm: sha256WithRSAEncryption
a3:21:26:28:b1:1e:5c:6f:96:84:9a:80:c9:01:6d:d0:18:58:
49:d1:bd:f8:7f:6b:72:3a:a1:ce:89:44:9e:5c:54:52:a9:b9:
b8:4d:27:be:73:25:d5:0f:71:54:bc:73:72:49:0d:58:0c:22:
d3:84:94:b1:9c:15:8c:2c:bf:0c:d2:3a:91:dd:aa:c8:88:93:
9d:52:ca:28:b9:24:10:6e:92:e7:5a:81:d0:01:3f:87:24:98:
a4:c1:d9:0a:90:86:d7:94:93:d1:c8:8b:71:60:98:c9:c0:66:
d8:d1:ca:84:32:0e:f2:fd:1e:ce:9d:42:68:68:47:81:14:be:
76:d1:05:da:68:f7:ff:75:43:cc:d8:ac:4f:6c:2a:8c:f9:64:
a9:6d:24:cf:01:70:4c:c1:c9:72:7e:b1:60:17:21:20:9f:e7:
d8:dc:6e:81:57:22:66:83:8f:aa:f3:6b:59:a2:f9:00:3c:b2:
62:6f:db:59:4f:09:0c:ef:9d:53:d0:33:4c:17:cd:bf:e8:37:
88:b2:9d:cb:8a:b6:45:cd:26:93:37:98:7a:4b:87:f4:2e:0c:
7a:ef:85:29:61:b9:e2:95:0d:97:c7:2b:cf:9a:c2:f0:86:8f:
6c:55:67:7a:8e:25:36:e4:22:22:63:aa:45:2f:23:3d:83:1b:
44:8f:92:ce
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBD10oTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDdiNGJjYWJlYjI5NjA1ZWE1MTFkZTk3M2U0Njc1YzRiOGEyOWRmMB4XDTIyMDEw
MTA3MDAxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDk5ZTdlOWJlODI0
NjhiMzdjODNhNGE1OWZhM2NiNmEwYjA0NzFhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANSV93AywfJNYidua2xTV93F8R4UUX3dhVmt26nZmfwM311t
VjvTkRghtN2v2nCa3izMzGbnivt5oaH2u4x9VLuKaN8tnlJEFE5xb5zK+3MtTGJf
9cLwnuiBxZwhpG0HxMR3C0L6mz2wLyZVltqUy55OGbMDQ4yCQE2UmxzyF6pqr30E
ObgIB00EA+ks3+4z43iH362QVtuchk+ScnJeSeCxMluR2HXye4ywbTukxr7gdsz0
i75flMxL7BoA9kW9Fch8H3Z1tVTEEKiPHfv/qHOoVBR5RFlwcssgg912vtCpOuFe
tBDFpKSg7jHlloS3pISDiTCywE5aALVCaCKN9n0CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBRJnn6b6CRos3yDpKWfo8tqCwRxqjAfBgNVHSMEGDAWgBR9e0vKvrKWBepR
Helz5GdcS4op3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZYdEx5cjZ5bGdYcVVSM3BjLVJuWEV1S0tkOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvODg5N2ZkLTE4NjItNDM5My1hYTRiLTQ0NzYxN2E0YTc0NC8x
L1NaNS1tLWdrYUxOOGc2U2xuNlBMYWdzRWNhby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
ODg5N2ZkLTE4NjItNDM5My1hYTRiLTQ0NzYxN2E0YTc0NC8xL2ZYdEx5cjZ5bGdY
cVVSM3BjLVJuWEV1S0tkOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQEVbvQAwQAVbvUMA0GCSqGSIb3
DQEBCwUAA4IBAQCjISYosR5cb5aEmoDJAW3QGFhJ0b34f2tyOqHOiUSeXFRSqbm4
TSe+cyXVD3FUvHNySQ1YDCLThJSxnBWMLL8M0jqR3arIiJOdUsoouSQQbpLnWoHQ
AT+HJJikwdkKkIbXlJPRyItxYJjJwGbY0cqEMg7y/R7OnUJoaEeBFL520QXaaPf/
dUPM2KxPbCqM+WSpbSTPAXBMwclyfrFgFyEgn+fY3G6BVyJmg4+q82tZovkAPLJi
b9tZTwkM751T0DNMF82/6DeIsp3LirZFzSaTN5h6S4f0Lgx674UpYbnilQ2XxyvP
msLwho9sVWd6jiU25CIiY6pFLyM9gxtEj5LO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:31 2024 by rpki-client on console-fra.rpki-client.org