Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/3EdLZoAfhgmrvxV_GvQUqj2y66A.roa
File: 3EdLZoAfhgmrvxV_GvQUqj2y66A.roa (raw, json)
Hash identifier: zq/S5wbkaOgnx8mRjxznDiESvCeW1Llu/1V6N2kTP2M=
Subject key identifier: DC:47:4B:66:80:1F:86:09:AB:BF:15:7F:1A:F4:14:AA:3D:B2:EB:A0
Certificate issuer: /CN=ea1c951d61b87da19439784d23667a89cb3290a4
Certificate serial: 01846703094D91678D0B96A247EC52B47A62
Authority key identifier: EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/3EdLZoAfhgmrvxV_GvQUqj2y66A.roa
Signing time: Fri 11 Nov 2022 14:06:03 +0000
ROA not before: Fri 11 Nov 2022 14:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.113.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:67:03:09:4d:91:67:8d:0b:96:a2:47:ec:52:b4:7a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea1c951d61b87da19439784d23667a89cb3290a4
Validity
Not Before: Nov 11 14:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc474b66801f8609abbf157f1af414aa3db2eba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6e:5a:c6:1c:83:a5:60:1b:5e:4a:f7:e3:43:
c6:cb:ab:43:57:09:b9:25:3d:8a:c6:c8:59:62:b4:
db:dd:88:3a:7c:ca:da:7c:b3:6a:f5:8e:ef:c8:84:
5e:08:78:e8:25:0c:e3:a4:93:08:0f:3d:e6:0f:74:
3e:0f:f2:74:67:37:77:ba:62:b4:1b:94:e6:9d:ac:
b8:bf:df:eb:ce:65:5b:7e:1d:48:61:bb:f1:a4:61:
25:21:b7:d3:1a:60:07:2b:df:f0:1c:e0:17:bd:b0:
05:3d:c1:94:07:51:24:b3:96:fb:a4:18:5b:b7:cb:
2c:f7:58:1b:fa:f6:df:0f:5f:70:be:9a:0c:40:e2:
05:fa:48:64:d9:cb:82:33:18:53:bd:8d:c6:ba:33:
02:6d:ff:cb:f2:66:97:33:9a:a7:d2:87:0c:57:9b:
89:f1:80:b3:24:8e:87:85:6a:ea:b7:63:a6:9d:65:
07:cc:a6:be:d6:d6:4e:95:8f:a5:c9:cf:8c:9a:ef:
8e:ce:ab:f2:13:bf:5d:27:a0:4f:3b:74:0c:a7:35:
9b:93:eb:21:70:4f:22:e1:46:3b:d1:99:04:d8:24:
30:06:35:b0:7b:4f:8a:f1:1d:fb:01:3d:04:c3:6e:
2f:c7:5b:7a:14:fd:66:7c:22:47:2e:e0:34:08:af:
f9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:47:4B:66:80:1F:86:09:AB:BF:15:7F:1A:F4:14:AA:3D:B2:EB:A0
X509v3 Authority Key Identifier:
keyid:EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/3EdLZoAfhgmrvxV_GvQUqj2y66A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/6hyVHWG4faGUOXhNI2Z6icsykKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.239.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d4:1b:8b:77:03:c7:5f:0d:08:a0:40:26:71:1a:c4:59:6c:
7c:96:db:63:3f:04:25:4b:84:e5:bb:27:95:a9:56:72:43:0e:
72:05:6c:01:f2:47:52:1c:36:55:ff:23:03:5d:6f:57:8a:5a:
9a:5c:db:0d:00:ee:ca:db:d4:97:1b:13:93:dd:78:c7:25:20:
7e:8a:b0:21:f5:cf:7e:59:80:c5:4b:7e:47:fb:08:e4:90:b0:
5b:3c:0d:18:73:4e:4a:e2:71:39:c0:4b:2a:d3:8a:a1:2e:ae:
ce:1b:99:ad:b7:33:ed:a0:85:fd:92:9e:b0:af:10:a8:85:bf:
3f:97:e6:74:57:78:dd:f5:67:5b:44:ef:cb:4a:7c:b8:9e:8b:
ea:cb:54:db:9e:bd:d9:64:70:db:1a:39:c9:e3:1f:1a:39:53:
f0:5d:a1:77:c8:e9:fb:bc:f4:d4:93:e9:b8:1d:2c:99:38:84:
5f:ee:d9:9f:f8:36:f3:b1:1a:e6:02:bb:e5:85:19:37:3d:40:
48:5c:bd:9b:dc:81:c3:b0:d0:5d:75:2c:31:31:47:f7:20:c3:
33:89:5a:eb:a1:40:6a:67:95:20:11:da:a3:a8:81:c4:c5:09:
21:25:96:27:ff:94:3d:ee:8d:7f:b2:6b:80:10:0f:07:40:61:
66:1f:30:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRnAwlNkWeNC5aiR+xStHpiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhMWM5NTFkNjFiODdkYTE5NDM5Nzg0ZDIzNjY3YTg5Y2Iz
MjkwYTQwHhcNMjIxMTExMTQwNjAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzQ3NGI2NjgwMWY4NjA5YWJiZjE1N2YxYWY0MTRhYTNkYjJlYmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl25axhyDpWAbXkr340PGy6tDVwm5
JT2KxshZYrTb3Yg6fMrafLNq9Y7vyIReCHjoJQzjpJMIDz3mD3Q+D/J0Zzd3umK0
G5Tmnay4v9/rzmVbfh1IYbvxpGElIbfTGmAHK9/wHOAXvbAFPcGUB1Eks5b7pBhb
t8ss91gb+vbfD19wvpoMQOIF+khk2cuCMxhTvY3GujMCbf/L8maXM5qn0ocMV5uJ
8YCzJI6HhWrqt2OmnWUHzKa+1tZOlY+lyc+Mmu+OzqvyE79dJ6BPO3QMpzWbk+sh
cE8i4UY70ZkE2CQwBjWwe0+K8R37AT0Ew24vx1t6FP1mfCJHLuA0CK/5yQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNxHS2aAH4YJq78Vfxr0FKo9suugMB8GA1UdIwQY
MBaAFOoclR1huH2hlDl4TSNmeonLMpCkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmh5VkhXRzRmYUdVT1hoTkkyWjZpY3N5a0tRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS82MTc3MTUtOTQ4NC00MGY5LTg5NmMt
NzI0YjFhMDIxMmQ0LzEvM0VkTFpvQWZoZ21ydnhWX0d2UVVxajJ5NjZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS82MTc3MTUtOTQ4NC00MGY5LTg5NmMtNzI0YjFhMDIxMmQ0
LzEvNmh5VkhXRzRmYUdVT1hoTkkyWjZpY3N5a0tRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXHvMA0G
CSqGSIb3DQEBCwUAA4IBAQAr1BuLdwPHXw0IoEAmcRrEWWx8lttjPwQlS4TluyeV
qVZyQw5yBWwB8kdSHDZV/yMDXW9XilqaXNsNAO7K29SXGxOT3XjHJSB+irAh9c9+
WYDFS35H+wjkkLBbPA0Yc05K4nE5wEsq04qhLq7OG5mttzPtoIX9kp6wrxCohb8/
l+Z0V3jd9WdbRO/LSny4novqy1Tbnr3ZZHDbGjnJ4x8aOVPwXaF3yOn7vPTUk+m4
HSyZOIRf7tmf+DbzsRrmArvlhRk3PUBIXL2b3IHDsNBddSwxMUf3IMMziVrroUBq
Z5UgEdqjqIHExQkhJZYn/5Q97o1/smuAEA8HQGFmHzAV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:07 2023 by rpki-client on console-fra.rpki-client.org