Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/WKG5u4jWDHsKV8Qgt0JFhJmUyiw.roa
File: WKG5u4jWDHsKV8Qgt0JFhJmUyiw.roa (raw, json)
Hash identifier: DyyiVvUW8j+7McXC5kXG2x6K9olUyBpMNLwwAsTGx4s=
Subject key identifier: 58:A1:B9:BB:88:D6:0C:7B:0A:57:C4:20:B7:42:45:84:99:94:CA:2C
Certificate issuer: /CN=ea1c951d61b87da19439784d23667a89cb3290a4
Certificate serial: 0241EB50
Authority key identifier: EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/WKG5u4jWDHsKV8Qgt0JFhJmUyiw.roa
Signing time: Fri 18 Mar 2022 09:57:12 +0000
ROA not before: Fri 18 Mar 2022 09:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203603
IP address blocks: 185.249.233.0/24 maxlen: 24
185.249.234.0/23 maxlen: 23
185.113.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37874512 (0x241eb50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea1c951d61b87da19439784d23667a89cb3290a4
Validity
Not Before: Mar 18 09:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58a1b9bb88d60c7b0a57c420b74245849994ca2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e6:13:85:89:b0:d4:ac:79:28:24:0d:02:7b:
5e:6f:bb:84:92:25:df:67:06:a3:f5:4b:c4:10:44:
86:72:61:93:a9:9d:89:60:c3:af:f6:29:0b:28:c6:
42:17:62:7b:80:7d:21:0b:8e:c0:27:8d:dc:a3:7d:
12:95:0f:40:61:eb:5a:07:76:3b:81:a8:9c:93:bc:
96:b0:98:58:85:a3:28:ec:19:9b:17:3c:d9:df:94:
59:6c:23:78:6b:22:67:1c:70:cc:d0:c0:c3:c5:c8:
e6:eb:9d:99:a8:6a:fe:e7:c6:ff:ab:69:50:62:c7:
49:12:f7:40:28:ba:e7:d8:79:09:26:86:19:0a:29:
db:93:e9:cd:2d:6f:ad:d7:bd:b5:66:2f:20:ab:ee:
a1:9f:0c:05:29:77:32:41:76:44:db:37:a8:21:da:
35:f7:97:6b:d3:ca:42:33:16:f5:21:92:10:01:11:
d9:0f:fd:f4:5c:65:af:fa:f6:46:c9:6a:4c:41:44:
35:ab:c0:a0:ea:8f:af:6e:2f:da:0c:8e:2a:e3:6f:
c9:54:f5:eb:38:bb:cd:fa:9b:4d:b0:9a:0c:b1:b9:
58:cc:8b:c7:b5:ee:a0:9a:8d:57:e6:52:32:0b:5c:
2c:6b:72:ea:d7:1d:6f:f6:a2:5f:96:f8:47:bc:27:
1f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A1:B9:BB:88:D6:0C:7B:0A:57:C4:20:B7:42:45:84:99:94:CA:2C
X509v3 Authority Key Identifier:
keyid:EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/WKG5u4jWDHsKV8Qgt0JFhJmUyiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/6hyVHWG4faGUOXhNI2Z6icsykKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.236.0/22
185.249.233.0-185.249.235.255
Signature Algorithm: sha256WithRSAEncryption
15:e1:e2:a0:a9:32:47:e7:df:f6:6a:c7:ed:86:59:0a:99:56:
95:de:ff:1d:e0:c4:14:3e:13:93:3d:7b:a2:69:67:65:00:c6:
90:1b:78:33:a1:eb:8d:09:2d:84:f7:88:65:2a:89:6c:5d:70:
7b:62:b3:67:5d:88:8b:4a:7c:88:05:ab:a4:a7:3e:37:87:79:
5e:ae:a2:77:41:76:7d:bd:9f:6d:50:d0:f2:2e:77:56:a8:7b:
7b:2d:af:f5:1f:fd:56:85:8d:35:cc:c0:3c:de:f9:d4:e5:a1:
df:82:53:fa:91:dc:be:a5:96:7f:87:7b:7a:26:d0:db:d6:69:
38:c7:42:aa:b0:0c:be:55:22:c2:15:4a:89:bc:bd:86:b8:1e:
c5:a7:1b:87:c4:82:6b:01:78:59:df:cb:86:67:0a:18:f6:75:
bb:98:46:42:d6:56:54:04:b9:ac:d8:55:45:a1:8d:3b:20:19:
d4:e5:bb:08:d9:05:fe:a1:07:7c:6a:8f:1d:78:38:0f:3c:ce:
a2:80:09:4a:23:52:dd:e6:cd:17:2e:38:36:c6:af:ab:97:df:
20:f8:e7:d4:41:8b:f4:c9:e1:7b:49:22:86:90:67:a9:d1:8f:
49:85:6a:d0:b7:f5:f2:21:ce:93:40:a0:8f:ff:cf:85:0f:93:
20:8c:97:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEAkHrUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YTFjOTUxZDYxYjg3ZGExOTQzOTc4NGQyMzY2N2E4OWNiMzI5MGE0MB4XDTIyMDMx
ODA5NTcxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNThhMWI5YmI4OGQ2
MGM3YjBhNTdjNDIwYjc0MjQ1ODQ5OTk0Y2EyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKrmE4WJsNSseSgkDQJ7Xm+7hJIl32cGo/VLxBBEhnJhk6md
iWDDr/YpCyjGQhdie4B9IQuOwCeN3KN9EpUPQGHrWgd2O4GonJO8lrCYWIWjKOwZ
mxc82d+UWWwjeGsiZxxwzNDAw8XI5uudmahq/ufG/6tpUGLHSRL3QCi659h5CSaG
GQop25PpzS1vrde9tWYvIKvuoZ8MBSl3MkF2RNs3qCHaNfeXa9PKQjMW9SGSEAER
2Q/99Fxlr/r2RslqTEFENavAoOqPr24v2gyOKuNvyVT16zi7zfqbTbCaDLG5WMyL
x7XuoJqNV+ZSMgtcLGty6tcdb/aiX5b4R7wnH+kCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBRYobm7iNYMewpXxCC3QkWEmZTKLDAfBgNVHSMEGDAWgBTqHJUdYbh9oZQ5
eE0jZnqJyzKQpDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZoeVZIV0c0ZmFHVU9YaE5JMlo2aWNzeWtLUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvNjE3NzE1LTk0ODQtNDBmOS04OTZjLTcyNGIxYTAyMTJkNC8x
L1dLRzV1NGpXREhzS1Y4UWd0MEpGaEptVXlpdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
NjE3NzE1LTk0ODQtNDBmOS04OTZjLTcyNGIxYTAyMTJkNC8xLzZoeVZIV0c0ZmFH
VU9YaE5JMlo2aWNzeWtLUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAMEArlx7DAMAwQAufnpAwQCufnoMA0G
CSqGSIb3DQEBCwUAA4IBAQAV4eKgqTJH59/2asfthlkKmVaV3v8d4MQUPhOTPXui
aWdlAMaQG3gzoeuNCS2E94hlKolsXXB7YrNnXYiLSnyIBaukpz43h3lerqJ3QXZ9
vZ9tUNDyLndWqHt7La/1H/1WhY01zMA83vnU5aHfglP6kdy+pZZ/h3t6JtDb1mk4
x0KqsAy+VSLCFUqJvL2GuB7FpxuHxIJrAXhZ38uGZwoY9nW7mEZC1lZUBLms2FVF
oY07IBnU5bsI2QX+oQd8ao8deDgPPM6igAlKI1Ld5s0XLjg2xq+rl98g+OfUQYv0
yeF7SSKGkGep0Y9JhWrQt/XyIc6TQKCP/8+FD5MgjJcZ
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:11 2025 by rpki-client