Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/EFOiasuhNcHjJtxTMFrLm6kGOXo.roa
File: EFOiasuhNcHjJtxTMFrLm6kGOXo.roa (raw, json)
Hash identifier: kPN+wGPoMNAS3H07udPVHb6ofPcdmA/n0cMw8blYJeU=
Subject key identifier: 10:53:A2:6A:CB:A1:35:C1:E3:26:DC:53:30:5A:CB:9B:A9:06:39:7A
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 01830CAB1660BBA3DD825854A141A5B442B2
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/EFOiasuhNcHjJtxTMFrLm6kGOXo.roa
Signing time: Mon 05 Sep 2022 08:01:22 +0000
ROA not before: Mon 05 Sep 2022 08:01:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62303
IP address blocks: 185.235.81.0/24 maxlen: 24
185.235.83.0/24 maxlen: 24
185.235.82.0/24 maxlen: 24
2a0d:4d00:83::/48 maxlen: 48
2a0d:4d00:81::/48 maxlen: 48
2a0d:4d00:82::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:ab:16:60:bb:a3:dd:82:58:54:a1:41:a5:b4:42:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Sep 5 08:01:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1053a26acba135c1e326dc53305acb9ba906397a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:64:f8:15:1a:98:61:74:4e:dd:56:2d:e7:28:
c7:a8:74:ab:63:f2:b3:2f:d7:10:1b:b7:c6:6d:ae:
a2:9e:9c:28:21:09:b6:2b:28:7b:fa:60:37:b0:a3:
03:d0:df:df:78:ae:a6:42:40:5f:03:9e:c3:50:a7:
aa:0f:40:a4:b8:99:32:85:61:eb:2c:a2:69:40:27:
96:ee:2d:9f:ff:41:cd:f5:6c:42:4c:5a:ae:45:57:
75:e1:60:a2:3b:61:06:6a:b9:96:c5:49:28:fa:8c:
19:a1:65:e2:0d:40:ba:d8:c6:5a:e2:7e:e6:7f:4b:
64:8c:98:d5:2a:29:32:88:bd:16:11:f6:ab:e2:da:
a2:5e:6b:a9:1e:5d:6f:85:f9:68:0e:8c:22:8d:93:
65:f0:94:a8:aa:a1:62:fd:14:ac:15:ff:48:1d:bf:
3a:1d:3e:db:97:65:80:6b:cc:bc:be:30:d1:87:38:
1f:3e:36:62:f4:4f:b0:b2:d7:cf:39:f8:da:84:61:
33:6f:64:36:bf:2e:bb:73:91:69:01:4e:de:3d:97:
d6:92:ba:94:1a:4d:dd:52:bf:ef:fa:8e:e3:86:98:
48:c6:bc:1c:09:10:53:32:7a:bd:f2:02:ab:28:aa:
34:64:e5:2d:87:97:31:1e:fe:37:d0:70:6f:62:0a:
bd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:53:A2:6A:CB:A1:35:C1:E3:26:DC:53:30:5A:CB:9B:A9:06:39:7A
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/EFOiasuhNcHjJtxTMFrLm6kGOXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.81.0-185.235.83.255
IPv6:
2a0d:4d00:81::-2a0d:4d00:83:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7f:d2:bb:fa:2e:b4:40:da:b6:dc:36:61:f7:f1:30:d1:2f:9d:
ec:a7:34:40:69:17:84:7c:d5:ea:f6:97:31:21:66:a3:ca:35:
01:09:63:3a:f4:d6:c0:1e:85:85:75:80:c3:b4:3b:a9:85:03:
78:44:39:d2:e2:6d:50:6f:ea:1c:db:a9:39:36:e5:31:b7:58:
e4:b8:a2:91:9d:2e:c3:b1:1f:c6:35:75:a3:74:56:a8:8d:14:
d0:f8:ed:dc:ad:25:92:21:26:b4:38:8a:eb:86:5a:d1:e1:87:
a3:70:bc:56:de:2d:7c:86:b2:03:c2:37:4e:ed:d4:d2:9a:be:
d8:5d:dc:1e:d9:95:81:7b:70:11:58:f5:00:34:9f:50:84:f3:
0a:79:2b:45:10:25:b1:07:b6:0f:dd:c9:6d:95:1b:8d:36:34:
83:00:82:12:25:91:ed:b0:ab:31:26:a9:8a:ea:cd:d3:99:3e:
c2:76:08:e3:99:fc:c7:91:45:37:98:6b:84:a1:2e:fe:a9:d4:
02:a0:ac:cc:34:b0:88:43:e7:26:20:5e:ca:cb:09:b5:ec:41:
11:12:81:de:37:83:9e:b1:c0:8d:d4:cc:26:13:f8:78:1a:97:
5b:5f:58:4c:62:a9:23:4a:a6:e8:37:95:0d:6a:1d:b7:e1:11:
73:fd:57:f0
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYMMqxZgu6PdglhUoUGltEKyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzODYwYTliMzY1ODVmYjhhYTA1MWZjMzdmY2M2YTA3NzM5
OTBjYmYwHhcNMjIwOTA1MDgwMTIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDUzYTI2YWNiYTEzNWMxZTMyNmRjNTMzMDVhY2I5YmE5MDYzOTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgmT4FRqYYXRO3VYt5yjHqHSrY/Kz
L9cQG7fGba6inpwoIQm2Kyh7+mA3sKMD0N/feK6mQkBfA57DUKeqD0CkuJkyhWHr
LKJpQCeW7i2f/0HN9WxCTFquRVd14WCiO2EGarmWxUko+owZoWXiDUC62MZa4n7m
f0tkjJjVKikyiL0WEfar4tqiXmupHl1vhfloDowijZNl8JSoqqFi/RSsFf9IHb86
HT7bl2WAa8y8vjDRhzgfPjZi9E+wstfPOfjahGEzb2Q2vy67c5FpAU7ePZfWkrqU
Gk3dUr/v+o7jhphIxrwcCRBTMnq98gKrKKo0ZOUth5cxHv430HBvYgq92wIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFBBTomrLoTXB4ybcUzBay5upBjl6MB8GA1UdIwQY
MBaAFNOGCps2WF+4qgUfw3/MagdzmQy/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDRZS216WllYN2lxQlJfRGY4eHFCM09aREw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wM2M0MzAtZmIwNC00MGVhLTg1ZDEt
YzkyYzYxNjVkZTE4LzEvRUZPaWFzdWhOY0hqSnR4VE1GckxtNmtHT1hvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wM2M0MzAtZmIwNC00MGVhLTg1ZDEtYzkyYzYxNjVkZTE4
LzEvMDRZS216WllYN2lxQlJfRGY4eHFCM09aREw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAUBAIAATAOMAwDBAC561ED
BAK561AwGgQCAAIwFDASAwcAKg1NAACBAwcCKg1NAACAMA0GCSqGSIb3DQEBCwUA
A4IBAQB/0rv6LrRA2rbcNmH38TDRL53spzRAaReEfNXq9pcxIWajyjUBCWM69NbA
HoWFdYDDtDuphQN4RDnS4m1Qb+oc26k5NuUxt1jkuKKRnS7DsR/GNXWjdFaojRTQ
+O3crSWSISa0OIrrhlrR4YejcLxW3i18hrIDwjdO7dTSmr7YXdwe2ZWBe3ARWPUA
NJ9QhPMKeStFECWxB7YP3cltlRuNNjSDAIISJZHtsKsxJqmK6s3TmT7CdgjjmfzH
kUU3mGuEoS7+qdQCoKzMNLCIQ+cmIF7Kywm17EEREoHeN4OescCN1MwmE/h4Gpdb
X1hMYqkjSqboN5UNah234RFz/Vfw
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:00 2023 by rpki-client on console-fra.rpki-client.org