Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/d6ae54-ed67-401a-88f3-7f8c983f14a4/1/C1g1vD-ySLu06Nki0xOCYY2CJUE.roa
File: C1g1vD-ySLu06Nki0xOCYY2CJUE.roa (raw, json)
Hash identifier: soXI27bdkcKofp/Znu0szy0if5v1GYjBl6056ST3j38=
Subject key identifier: 0B:58:35:BC:3F:B2:48:BB:B4:E8:D9:22:D3:13:82:61:8D:82:25:41
Certificate issuer: /CN=eb5da1da1fa1d425cf1dc9e826d65edaed6cd898
Certificate serial: 0441C843
Authority key identifier: EB:5D:A1:DA:1F:A1:D4:25:CF:1D:C9:E8:26:D6:5E:DA:ED:6C:D8:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/612h2h-h1CXPHcnoJtZe2u1s2Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/d6ae54-ed67-401a-88f3-7f8c983f14a4/1/C1g1vD-ySLu06Nki0xOCYY2CJUE.roa
Signing time: Sat 01 Jan 2022 07:01:53 +0000
ROA not before: Sat 01 Jan 2022 07:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197869
IP address blocks: 185.194.92.0/22 maxlen: 22
2a00:5980::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71419971 (0x441c843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb5da1da1fa1d425cf1dc9e826d65edaed6cd898
Validity
Not Before: Jan 1 07:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b5835bc3fb248bbb4e8d922d31382618d822541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2e:93:45:ae:21:82:b1:7b:ef:a4:3e:49:3e:
22:2e:5c:89:21:52:f9:44:96:00:b3:9b:88:20:14:
a5:1e:d7:a7:bf:f7:0b:a1:5b:ec:e4:2f:ee:0d:df:
44:3b:2c:c1:0d:b4:3a:5c:35:e9:f6:83:42:c4:ce:
ae:64:17:b1:4e:c6:0c:aa:08:78:d0:96:83:53:cf:
e1:cc:89:90:cc:29:ba:a4:23:c3:ee:c8:a3:95:39:
d9:2b:38:09:5a:3b:47:a2:95:1b:cc:13:01:0f:34:
7f:94:7b:ef:42:ab:a4:4e:86:cf:38:5b:3d:3c:0e:
9d:9d:b8:5f:f9:3b:07:a5:90:70:15:37:9f:d0:b8:
2f:11:7d:75:91:0b:3e:39:75:93:a8:3e:07:a6:fa:
7d:ba:02:7e:8b:fe:61:03:0f:10:ac:bb:07:9f:74:
f3:0e:36:d7:67:b1:08:f4:3e:7d:85:a3:74:81:f9:
a9:57:be:20:5f:09:f9:f3:55:1c:16:2d:50:e2:87:
ac:52:a8:b3:8f:77:ed:d4:24:92:fb:b7:c2:36:db:
7f:57:28:57:df:66:f7:95:3f:cd:6e:5f:af:21:08:
d1:15:8d:eb:11:ce:88:32:72:58:c3:70:7e:1b:04:
bb:be:b6:5e:61:2d:09:47:c0:26:78:2f:a1:a8:7a:
59:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:58:35:BC:3F:B2:48:BB:B4:E8:D9:22:D3:13:82:61:8D:82:25:41
X509v3 Authority Key Identifier:
keyid:EB:5D:A1:DA:1F:A1:D4:25:CF:1D:C9:E8:26:D6:5E:DA:ED:6C:D8:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/612h2h-h1CXPHcnoJtZe2u1s2Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d6ae54-ed67-401a-88f3-7f8c983f14a4/1/C1g1vD-ySLu06Nki0xOCYY2CJUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d6ae54-ed67-401a-88f3-7f8c983f14a4/1/612h2h-h1CXPHcnoJtZe2u1s2Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.92.0/22
IPv6:
2a00:5980::/32
Signature Algorithm: sha256WithRSAEncryption
be:49:27:7a:6f:b6:ff:2f:85:15:d2:6e:2a:6f:d4:97:ba:3a:
22:eb:26:b0:71:bf:29:c2:66:11:3f:6e:18:3c:e3:9a:86:23:
24:f5:02:03:a5:ac:40:31:fc:b2:0d:fc:f8:78:af:7e:f7:f3:
70:d1:95:c6:f7:b9:9d:90:6e:24:c6:d9:da:f3:fd:5b:68:ee:
5b:f5:5a:80:59:b1:09:d5:7e:bd:4e:4e:95:59:74:44:f9:c4:
66:f0:ff:1f:1d:23:9d:9f:dd:8e:77:24:79:75:37:e6:0d:72:
05:bb:3e:54:d8:6e:da:d0:43:e1:45:03:17:39:a8:51:38:8b:
cb:af:e6:a5:26:4b:67:c3:1f:eb:8e:05:9b:5b:d9:56:3e:04:
f4:10:43:2c:f5:5b:fd:40:1b:14:5f:ef:a0:92:11:34:32:a7:
2b:fc:12:28:e7:a8:34:19:c7:b1:97:b8:a0:cb:26:20:5f:e9:
c0:21:a3:1f:04:90:d9:2a:01:71:4d:c7:56:6b:56:a9:70:bd:
14:74:ba:e4:0c:3f:1a:ec:03:ae:90:12:41:af:8a:4b:6d:73:
f7:45:d6:8e:c5:31:43:cd:84:6b:91:6d:17:3d:d9:4c:3c:59:
76:5b:60:03:98:70:87:b2:a3:03:5a:5b:52:70:9f:2c:c6:59:
8b:fe:40:18
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBEHIQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YjVkYTFkYTFmYTFkNDI1Y2YxZGM5ZTgyNmQ2NWVkYWVkNmNkODk4MB4XDTIyMDEw
MTA3MDE1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGI1ODM1YmMzZmIy
NDhiYmI0ZThkOTIyZDMxMzgyNjE4ZDgyMjU0MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOcuk0WuIYKxe++kPkk+Ii5ciSFS+USWALObiCAUpR7Xp7/3
C6Fb7OQv7g3fRDsswQ20Olw16faDQsTOrmQXsU7GDKoIeNCWg1PP4cyJkMwpuqQj
w+7Io5U52Ss4CVo7R6KVG8wTAQ80f5R770KrpE6GzzhbPTwOnZ24X/k7B6WQcBU3
n9C4LxF9dZELPjl1k6g+B6b6fboCfov+YQMPEKy7B5908w4212exCPQ+fYWjdIH5
qVe+IF8J+fNVHBYtUOKHrFKos4937dQkkvu3wjbbf1coV99m95U/zW5fryEI0RWN
6xHOiDJyWMNwfhsEu762XmEtCUfAJngvoah6WWECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQLWDW8P7JIu7To2SLTE4JhjYIlQTAfBgNVHSMEGDAWgBTrXaHaH6HUJc8d
yegm1l7a7WzYmDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzYxMmgyaC1oMUNYUEhjbm9KdFplMnUxczJKZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmMvZDZhZTU0LWVkNjctNDAxYS04OGYzLTdmOGM5ODNmMTRhNC8x
L0MxZzF2RC15U0x1MDZOa2kweE9DWVkyQ0pVRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmMv
ZDZhZTU0LWVkNjctNDAxYS04OGYzLTdmOGM5ODNmMTRhNC8xLzYxMmgyaC1oMUNY
UEhjbm9KdFplMnUxczJKZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnCXDANBAIAAjAHAwUAKgBZgDAN
BgkqhkiG9w0BAQsFAAOCAQEAvkknem+2/y+FFdJuKm/Ul7o6IusmsHG/KcJmET9u
GDzjmoYjJPUCA6WsQDH8sg38+HivfvfzcNGVxve5nZBuJMbZ2vP9W2juW/VagFmx
CdV+vU5OlVl0RPnEZvD/Hx0jnZ/djnckeXU35g1yBbs+VNhu2tBD4UUDFzmoUTiL
y6/mpSZLZ8Mf644Fm1vZVj4E9BBDLPVb/UAbFF/voJIRNDKnK/wSKOeoNBnHsZe4
oMsmIF/pwCGjHwSQ2SoBcU3HVmtWqXC9FHS65Aw/GuwDrpASQa+KS21z90XWjsUx
Q82Ea5FtFz3ZTDxZdltgA5hwh7KjA1pbUnCfLMZZi/5AGA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:13 2023 by rpki-client on console-ams.rpki-client.org