Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/s2_pe6LPq6Po2y1CVcosW9YbRj8.roa
File: s2_pe6LPq6Po2y1CVcosW9YbRj8.roa (raw, json)
Hash identifier: 757p0G/jziy3pk3RmD5SLhm392iGsMSDEB/uJrEbKxE=
Subject key identifier: B3:6F:E9:7B:A2:CF:AB:A3:E8:DB:2D:42:55:CA:2C:5B:D6:1B:46:3F
Certificate issuer: /CN=66927b2b26b5214b9665d8dc85f414709714996c
Certificate serial: 01857DBDFE807A59C5D1AB90EADBE4AA6C79
Authority key identifier: 66:92:7B:2B:26:B5:21:4B:96:65:D8:DC:85:F4:14:70:97:14:99:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/s2_pe6LPq6Po2y1CVcosW9YbRj8.roa
Signing time: Wed 04 Jan 2023 17:04:41 +0000
ROA not before: Wed 04 Jan 2023 17:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212098
IP address blocks: 185.223.163.0/24 maxlen: 24
2a10:8c80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7d:bd:fe:80:7a:59:c5:d1:ab:90:ea:db:e4:aa:6c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66927b2b26b5214b9665d8dc85f414709714996c
Validity
Not Before: Jan 4 17:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b36fe97ba2cfaba3e8db2d4255ca2c5bd61b463f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fb:72:ef:c1:29:73:0b:82:67:dd:fa:c7:26:
43:da:5a:97:51:df:2f:1c:81:b8:c8:d7:74:36:35:
32:33:09:67:08:78:de:43:4c:2d:28:10:90:01:ed:
81:01:91:00:a7:ab:a2:db:0f:f7:c9:8e:23:3a:66:
0b:77:91:20:96:53:53:31:2f:17:08:88:d8:6b:8f:
e0:c8:15:4e:b7:1e:e4:c1:6d:96:73:e9:68:f5:af:
70:23:b8:a2:e9:14:82:8e:e4:72:76:e8:1e:a7:9e:
c5:2d:5c:de:29:f2:36:78:24:aa:3f:0d:0f:42:49:
48:e4:da:96:09:cd:89:ec:e8:40:ed:aa:be:c1:e6:
b3:b5:c4:ad:15:26:11:a2:67:53:9f:96:96:02:eb:
80:9a:aa:db:b9:0a:41:bb:d1:e7:13:b5:c6:13:a5:
f7:bd:a4:cc:5b:30:d0:34:52:5c:02:5e:59:27:f5:
e2:6b:53:26:36:36:43:f9:cb:54:3d:47:e8:73:a3:
77:93:88:35:1a:1d:c1:49:5e:67:cf:fb:9a:b7:50:
48:57:68:4b:9b:78:43:3b:de:f1:53:7d:95:57:03:
6b:f8:7e:6e:25:e5:61:15:17:f4:26:c4:b0:ad:39:
ef:e0:dc:c7:da:67:96:72:f4:c2:bb:3b:0b:d0:57:
5b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6F:E9:7B:A2:CF:AB:A3:E8:DB:2D:42:55:CA:2C:5B:D6:1B:46:3F
X509v3 Authority Key Identifier:
keyid:66:92:7B:2B:26:B5:21:4B:96:65:D8:DC:85:F4:14:70:97:14:99:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/s2_pe6LPq6Po2y1CVcosW9YbRj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.163.0/24
IPv6:
2a10:8c80::/32
Signature Algorithm: sha256WithRSAEncryption
63:f8:24:1c:60:df:9c:24:d7:e9:06:5a:5f:ad:7d:59:9a:80:
83:00:03:3a:25:80:fb:ee:e4:9b:52:57:ee:a2:4f:2e:c4:ed:
8e:c6:03:d6:3c:60:1d:c1:7b:87:2f:a6:75:20:8c:fc:43:61:
f9:77:e7:ef:47:9d:e7:51:7f:8e:03:c7:75:22:9b:c4:f4:ea:
10:ad:9c:01:90:de:4a:3a:77:77:75:de:f4:e1:25:5e:05:2b:
18:11:31:35:32:db:d5:70:ab:c3:c9:2a:f0:45:af:3d:fc:6c:
db:07:f0:18:3c:6f:ba:11:02:fc:5e:9c:98:84:4d:92:d0:f7:
a4:6d:d6:c8:ce:85:41:26:80:b1:97:4f:5d:ca:74:5e:43:6f:
2e:b0:92:6a:6f:7b:d8:33:d5:bf:68:85:eb:4b:ee:96:4b:09:
c3:30:d2:81:99:96:f9:e5:6d:00:70:5e:23:6a:0e:a9:df:76:
69:65:6e:12:3d:8f:4d:7e:a9:06:21:98:f5:a1:31:31:5d:d5:
86:26:56:a1:1a:aa:a7:78:0c:f1:b1:ad:29:59:da:d4:27:9e:
62:6a:17:3d:75:10:34:a4:ba:3d:fe:da:b6:59:5b:62:2c:3c:
02:06:41:c5:3a:c9:d6:1d:81:db:99:49:63:bf:68:b4:90:42:
97:24:25:85
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYV9vf6AelnF0auQ6tvkqmx5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2OTI3YjJiMjZiNTIxNGI5NjY1ZDhkYzg1ZjQxNDcwOTcx
NDk5NmMwHhcNMjMwMTA0MTcwNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzZmZTk3YmEyY2ZhYmEzZThkYjJkNDI1NWNhMmM1YmQ2MWI0NjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/ty78EpcwuCZ936xyZD2lqXUd8v
HIG4yNd0NjUyMwlnCHjeQ0wtKBCQAe2BAZEAp6ui2w/3yY4jOmYLd5EgllNTMS8X
CIjYa4/gyBVOtx7kwW2Wc+lo9a9wI7ii6RSCjuRydugep57FLVzeKfI2eCSqPw0P
QklI5NqWCc2J7OhA7aq+weaztcStFSYRomdTn5aWAuuAmqrbuQpBu9HnE7XGE6X3
vaTMWzDQNFJcAl5ZJ/Xia1MmNjZD+ctUPUfoc6N3k4g1Gh3BSV5nz/uat1BIV2hL
m3hDO97xU32VVwNr+H5uJeVhFRf0JsSwrTnv4NzH2meWcvTCuzsL0FdbGwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLNv6Xuiz6uj6NstQlXKLFvWG0Y/MB8GA1UdIwQY
MBaAFGaSeysmtSFLlmXY3IX0FHCXFJlsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnBKN0t5YTFJVXVXWmRqY2hmUVVjSmNVbVd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9lNGNlN2MtYWQ3Yi00MDA2LThlNmEt
ODAzNTJkMTQxM2Q5LzEvczJfcGU2TFBxNlBvMnkxQ1Zjb3NXOVliUmo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9lNGNlN2MtYWQ3Yi00MDA2LThlNmEtODAzNTJkMTQxM2Q5
LzEvWnBKN0t5YTFJVXVXWmRqY2hmUVVjSmNVbVd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAud+jMA0E
AgACMAcDBQAqEIyAMA0GCSqGSIb3DQEBCwUAA4IBAQBj+CQcYN+cJNfpBlpfrX1Z
moCDAAM6JYD77uSbUlfuok8uxO2OxgPWPGAdwXuHL6Z1IIz8Q2H5d+fvR53nUX+O
A8d1IpvE9OoQrZwBkN5KOnd3dd704SVeBSsYETE1MtvVcKvDySrwRa89/GzbB/AY
PG+6EQL8XpyYhE2S0PekbdbIzoVBJoCxl09dynReQ28usJJqb3vYM9W/aIXrS+6W
SwnDMNKBmZb55W0AcF4jag6p33ZpZW4SPY9NfqkGIZj1oTExXdWGJlahGqqneAzx
sa0pWdrUJ55iahc9dRA0pLo9/tq2WVtiLDwCBkHFOsnWHYHbmUljv2i0kEKXJCWF
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:49 2025 by rpki-client