Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/INEX0zD_COLRjB0-1KCOG94wnDs.roa
File: INEX0zD_COLRjB0-1KCOG94wnDs.roa (raw, json)
Hash identifier: 8ma4iymuaUeW89zMkUKH/k20DhMQtPXS9a5R3zYzaB0=
Subject key identifier: 20:D1:17:D3:30:FF:08:E2:D1:8C:1D:3E:D4:A0:8E:1B:DE:30:9C:3B
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 0D443585
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/INEX0zD_COLRjB0-1KCOG94wnDs.roa
Signing time: Sat 01 Jan 2022 15:58:57 +0000
ROA not before: Sat 01 Jan 2022 15:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44794
IP address blocks: 185.235.80.0/24 maxlen: 24
2a0d:4d00:80::/48 maxlen: 48
2a0d:4d00::/48 maxlen: 48
2a0d:4d00:83::/48 maxlen: 48
2a0d:4d00:3::/48 maxlen: 48
2a0d:4d00:1::/48 maxlen: 48
2a0d:4d00:82::/48 maxlen: 48
2a0d:4d00:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222573957 (0xd443585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Jan 1 15:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20d117d330ff08e2d18c1d3ed4a08e1bde309c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5b:c4:86:90:45:34:4b:db:d5:e0:a4:7f:f7:
4f:64:a8:37:30:d0:fb:ce:0b:dd:6f:54:da:22:5b:
a1:c7:9c:72:fa:47:2e:5b:cd:96:ec:93:23:c7:f3:
02:40:b3:1d:b4:17:12:f8:98:e7:9d:3a:06:17:1d:
35:b7:b2:31:8c:89:0f:8b:70:4e:9a:0c:b7:aa:c4:
8c:21:fe:c5:52:d4:11:8b:45:9b:b7:31:27:9e:69:
69:02:58:ef:e8:9b:dd:30:98:fe:46:31:d4:eb:1c:
28:42:71:96:40:68:88:c2:5d:7e:e3:73:50:5c:99:
86:d1:2b:a2:24:6f:01:68:2b:77:97:3d:f8:7b:1e:
58:50:66:9c:d4:d3:b6:da:ab:62:c3:00:d7:2f:7f:
7e:8d:c6:37:f1:8e:08:d4:d7:18:cf:55:aa:b9:cc:
32:2d:b5:3a:aa:1f:65:84:a2:af:18:a0:9e:8d:01:
56:ae:db:63:8c:3a:8e:09:6e:22:95:a0:68:49:81:
a6:18:5c:ed:f3:1c:de:6b:88:b9:61:74:5c:71:c4:
81:ae:0e:2d:91:b2:65:15:8f:85:4a:ab:bc:7e:05:
27:8d:f1:b8:4b:6b:bd:81:e1:c5:84:2a:62:2b:f5:
9a:3c:15:b4:c4:4a:1e:d7:23:88:96:83:7c:dc:72:
b8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D1:17:D3:30:FF:08:E2:D1:8C:1D:3E:D4:A0:8E:1B:DE:30:9C:3B
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/INEX0zD_COLRjB0-1KCOG94wnDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.80.0/24
IPv6:
2a0d:4d00::/46
2a0d:4d00:80::/48
2a0d:4d00:82::/47
Signature Algorithm: sha256WithRSAEncryption
6f:40:06:67:e0:11:e2:27:4a:50:51:ee:df:8e:a6:f5:2e:fb:
9d:29:f9:6f:fa:cb:a6:2b:b4:c6:b6:7c:3c:5f:c1:ce:73:6a:
eb:d9:5a:e6:ee:0e:32:94:43:b9:2c:f6:3e:38:cd:50:3c:14:
44:bf:dc:c6:e7:09:de:7b:bb:9e:82:ee:73:ed:72:be:21:73:
2b:4c:c5:e2:ed:54:01:c5:ef:e3:55:66:79:db:56:df:b4:85:
17:c3:51:0c:29:55:c5:4f:10:d2:d0:af:7b:72:52:7c:2b:e8:
4d:75:d9:02:6f:6f:37:f0:01:ce:a8:4a:32:23:bd:0d:b4:7c:
59:92:d8:dc:b0:c6:47:e0:93:86:90:34:8b:b9:11:8d:62:b4:
d2:d9:1f:aa:8b:53:df:89:39:a4:3c:6c:85:f4:56:77:84:0c:
01:d5:f9:5a:5d:7d:7d:67:74:5e:83:6d:a0:a7:a2:5e:ce:6f:
7a:52:63:b5:c3:3d:1a:ef:e6:92:e4:b2:d3:b9:36:70:be:e6:
58:98:18:9b:6d:60:1c:49:e4:f9:21:98:03:f2:8e:e8:df:5f:
c1:d5:99:0f:f6:fa:09:ec:0c:37:36:48:bf:40:7f:b7:d3:e4:
4e:5b:1c:1f:ca:c8:a7:ea:38:5d:2f:6e:e7:8b:1d:37:be:51:
3f:96:23:df
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIEDUQ1hTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Mzg2MGE5YjM2NTg1ZmI4YWEwNTFmYzM3ZmNjNmEwNzczOTkwY2JmMB4XDTIyMDEw
MTE1NTg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjBkMTE3ZDMzMGZm
MDhlMmQxOGMxZDNlZDRhMDhlMWJkZTMwOWMzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJlbxIaQRTRL29XgpH/3T2SoNzDQ+84L3W9U2iJboceccvpH
LlvNluyTI8fzAkCzHbQXEviY5506BhcdNbeyMYyJD4twTpoMt6rEjCH+xVLUEYtF
m7cxJ55paQJY7+ib3TCY/kYx1OscKEJxlkBoiMJdfuNzUFyZhtEroiRvAWgrd5c9
+HseWFBmnNTTttqrYsMA1y9/fo3GN/GOCNTXGM9VqrnMMi21OqofZYSirxigno0B
Vq7bY4w6jgluIpWgaEmBphhc7fMc3muIuWF0XHHEga4OLZGyZRWPhUqrvH4FJ43x
uEtrvYHhxYQqYiv1mjwVtMRKHtcjiJaDfNxyuA0CAwEAAaOCAiwwggIoMB0GA1Ud
DgQWBBQg0RfTMP8I4tGMHT7UoI4b3jCcOzAfBgNVHSMEGDAWgBTThgqbNlhfuKoF
H8N/zGoHc5kMvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA0WUttelpZWDdpcUJSX0RmOHhxQjNPWkRMOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWMvMDNjNDMwLWZiMDQtNDBlYS04NWQxLWM5MmM2MTY1ZGUxOC8x
L0lORVgwekRfQ09MUmpCMC0xS0NPRzk0d25Ecy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMv
MDNjNDMwLWZiMDQtNDBlYS04NWQxLWM5MmM2MTY1ZGUxOC8xLzA0WUttelpZWDdp
cUJSX0RmOHhxQjNPWkRMOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBC
BggrBgEFBQcBBwEB/wQzMDEwDAQCAAEwBgMEALnrUDAhBAIAAjAbAwcCKg1NAAAA
AwcAKg1NAACAAwcBKg1NAACCMA0GCSqGSIb3DQEBCwUAA4IBAQBvQAZn4BHiJ0pQ
Ue7fjqb1LvudKflv+sumK7TGtnw8X8HOc2rr2Vrm7g4ylEO5LPY+OM1QPBREv9zG
5wnee7uegu5z7XK+IXMrTMXi7VQBxe/jVWZ521bftIUXw1EMKVXFTxDS0K97clJ8
K+hNddkCb2838AHOqEoyI70NtHxZktjcsMZH4JOGkDSLuRGNYrTS2R+qi1PfiTmk
PGyF9FZ3hAwB1flaXX19Z3Reg22gp6Jezm96UmO1wz0a7+aS5LLTuTZwvuZYmBib
bWAcSeT5IZgD8o7o31/B1ZkP9voJ7Aw3Nki/QH+30+ROWxwfysin6jhdL27nix03
vlE/liPf
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:20 2025 by rpki-client