Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/18d6d5-6c86-42c1-84f1-99a0189888b5/1/n4-xKXq3v0TN5tNkkmDQOsmPvsg.roa
File: n4-xKXq3v0TN5tNkkmDQOsmPvsg.roa (raw, json)
Hash identifier: KUg8p2N8wSNjRjfOjCTY5nf5PNhJNjInB18ZV8Ko8+8=
Subject key identifier: 9F:8F:B1:29:7A:B7:BF:44:CD:E6:D3:64:92:60:D0:3A:C9:8F:BE:C8
Certificate issuer: /CN=2588b1b560f998eccd3a6eff40543b59204d67b8
Certificate serial: 37384751
Authority key identifier: 25:88:B1:B5:60:F9:98:EC:CD:3A:6E:FF:40:54:3B:59:20:4D:67:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYixtWD5mOzNOm7_QFQ7WSBNZ7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/18d6d5-6c86-42c1-84f1-99a0189888b5/1/n4-xKXq3v0TN5tNkkmDQOsmPvsg.roa
Signing time: Wed 29 Jun 2022 07:10:02 +0000
ROA not before: Wed 29 Jun 2022 07:10:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198013
IP address blocks: 94.185.97.0/24 maxlen: 24
94.185.96.0/19 maxlen: 19
94.185.98.0/24 maxlen: 24
94.185.104.0/22 maxlen: 22
94.185.103.0/24 maxlen: 24
94.185.102.0/24 maxlen: 24
94.185.101.0/24 maxlen: 24
94.185.100.0/24 maxlen: 24
94.185.99.0/24 maxlen: 24
94.185.110.0/24 maxlen: 24
94.185.109.0/24 maxlen: 24
94.185.108.0/24 maxlen: 24
94.185.112.0/24 maxlen: 24
94.185.113.0/24 maxlen: 24
2a03:4580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 926435153 (0x37384751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2588b1b560f998eccd3a6eff40543b59204d67b8
Validity
Not Before: Jun 29 07:10:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f8fb1297ab7bf44cde6d3649260d03ac98fbec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5a:00:37:15:1a:29:00:39:c3:50:96:1f:5e:
ca:e3:4a:e6:b2:fa:76:52:63:c7:1b:ce:72:a7:18:
2b:9d:2e:f3:c6:64:cc:0b:e1:d3:57:5a:72:89:67:
6a:63:7b:29:dc:d0:94:e9:88:60:e7:e4:5f:84:f6:
07:17:af:73:83:1f:54:2b:bd:60:10:57:4d:bc:28:
f3:79:9b:2e:bb:00:70:04:4a:ed:f7:0e:a9:f9:39:
9c:d7:1b:25:c0:3a:d8:cc:02:de:cc:b5:b0:50:93:
19:ca:3c:5c:86:c2:fc:c9:bc:3d:d2:2b:be:f1:4e:
84:83:3c:7f:57:c7:84:f3:03:3c:43:00:44:e9:3d:
22:ec:86:23:e8:c2:9d:78:ce:5d:a9:68:d0:d3:3b:
dc:c8:a6:49:e8:63:14:83:d4:5e:03:87:43:a6:bc:
8a:5c:d6:43:9a:54:62:8c:d2:ef:f5:3b:bc:71:c2:
5d:db:fa:4d:fa:76:cc:b4:3c:6a:4c:ee:44:1d:69:
07:b1:f1:16:6a:9d:8a:f6:05:08:f3:30:30:26:58:
c0:c3:dd:b1:83:6e:ae:5d:d7:1d:15:ad:0a:b5:1b:
d6:f5:c8:45:7a:1b:d9:0b:b6:9a:16:d9:42:74:67:
e3:71:24:a0:09:af:53:a2:ae:f4:17:e4:77:2b:1d:
c1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8F:B1:29:7A:B7:BF:44:CD:E6:D3:64:92:60:D0:3A:C9:8F:BE:C8
X509v3 Authority Key Identifier:
keyid:25:88:B1:B5:60:F9:98:EC:CD:3A:6E:FF:40:54:3B:59:20:4D:67:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYixtWD5mOzNOm7_QFQ7WSBNZ7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/18d6d5-6c86-42c1-84f1-99a0189888b5/1/n4-xKXq3v0TN5tNkkmDQOsmPvsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/18d6d5-6c86-42c1-84f1-99a0189888b5/1/JYixtWD5mOzNOm7_QFQ7WSBNZ7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.185.96.0/19
IPv6:
2a03:4580::/32
Signature Algorithm: sha256WithRSAEncryption
1e:11:b4:d4:43:eb:f8:f9:f6:b0:f6:e5:9e:a1:0d:61:1c:b3:
2a:32:81:31:f1:ce:ca:58:69:01:39:7b:7e:77:f3:26:84:a1:
a6:5a:ca:dd:ae:55:c2:6c:ec:1c:d3:6d:1a:b5:76:70:f8:84:
e7:28:22:f8:78:f7:14:4d:5b:33:fd:1b:32:5b:d4:9d:87:83:
8a:d7:b1:35:7f:fe:b1:63:8d:27:84:91:fd:18:c3:16:fe:28:
0e:2c:f9:c3:e0:7c:5f:4f:ab:41:56:51:3f:e7:63:e4:89:4c:
67:c9:7c:1b:e0:3e:a0:6b:7f:db:67:d3:19:77:11:7b:e2:b9:
fe:c4:ca:36:61:41:be:db:b9:07:aa:e4:86:c9:de:23:87:e3:
06:f6:4d:6d:e9:f5:23:d3:97:a6:9d:3b:1b:c2:9f:5f:4c:3e:
91:31:5e:53:52:96:13:c3:c9:17:c2:22:fc:a1:da:98:57:e2:
fd:7d:70:69:28:c3:f4:39:2f:d6:22:df:c1:a2:88:5d:5c:4a:
e8:0f:53:cb:f9:f0:a1:8c:1d:17:d2:f3:45:02:bb:5f:b1:f4:
25:3e:42:66:49:c0:78:29:a7:e8:9d:dc:18:e4:23:d7:f3:0d:
8b:cb:73:b6:dd:22:a8:b0:6f:56:da:ec:2b:06:27:1f:a8:57:
05:07:b7:c2
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIENzhHUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NTg4YjFiNTYwZjk5OGVjY2QzYTZlZmY0MDU0M2I1OTIwNGQ2N2I4MB4XDTIyMDYy
OTA3MTAwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWY4ZmIxMjk3YWI3
YmY0NGNkZTZkMzY0OTI2MGQwM2FjOThmYmVjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIVaADcVGikAOcNQlh9eyuNK5rL6dlJjxxvOcqcYK50u88Zk
zAvh01dacolnamN7KdzQlOmIYOfkX4T2Bxevc4MfVCu9YBBXTbwo83mbLrsAcARK
7fcOqfk5nNcbJcA62MwC3sy1sFCTGco8XIbC/Mm8PdIrvvFOhIM8f1fHhPMDPEMA
ROk9IuyGI+jCnXjOXalo0NM73MimSehjFIPUXgOHQ6a8ilzWQ5pUYozS7/U7vHHC
Xdv6Tfp2zLQ8akzuRB1pB7HxFmqdivYFCPMwMCZYwMPdsYNurl3XHRWtCrUb1vXI
RXob2Qu2mhbZQnRn43EkoAmvU6Ku9BfkdysdwTkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSfj7Epere/RM3m02SSYNA6yY++yDAfBgNVHSMEGDAWgBQliLG1YPmY7M06
bv9AVDtZIE1nuDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pZaXh0V0Q1bU96Tk9tN19RRlE3V1NCTlo3Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvMThkNmQ1LTZjODYtNDJjMS04NGYxLTk5YTAxODk4ODhiNS8x
L240LXhLWHEzdjBUTjV0TmtrbURRT3NtUHZzZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
MThkNmQ1LTZjODYtNDJjMS04NGYxLTk5YTAxODk4ODhiNS8xL0pZaXh0V0Q1bU96
Tk9tN19RRlE3V1NCTlo3Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBV65YDANBAIAAjAHAwUAKgNFgDAN
BgkqhkiG9w0BAQsFAAOCAQEAHhG01EPr+Pn2sPblnqENYRyzKjKBMfHOylhpATl7
fnfzJoShplrK3a5VwmzsHNNtGrV2cPiE5ygi+Hj3FE1bM/0bMlvUnYeDitexNX/+
sWONJ4SR/RjDFv4oDiz5w+B8X0+rQVZRP+dj5IlMZ8l8G+A+oGt/22fTGXcRe+K5
/sTKNmFBvtu5B6rkhsneI4fjBvZNben1I9OXpp07G8KfX0w+kTFeU1KWE8PJF8Ii
/KHamFfi/X1waSjD9Dkv1iLfwaKIXVxK6A9Ty/nwoYwdF9LzRQK7X7H0JT5CZknA
eCmn6J3cGOQj1/MNi8tztt0iqLBvVtrsKwYnH6hXBQe3wg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:21 2024 by rpki-client on console-ams.rpki-client.org