Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/ieInWfI0Aw5-JANX7gqKIsem_wM.roa
File: ieInWfI0Aw5-JANX7gqKIsem_wM.roa (raw, json)
Hash identifier: XlGxrMIMmTZ+wmwLiJjSokIf3/IRfU9ls4eM4+DvDvY=
Subject key identifier: 89:E2:27:59:F2:34:03:0E:7E:24:03:57:EE:0A:8A:22:C7:A6:FF:03
Certificate issuer: /CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Certificate serial: 0F272BE3
Authority key identifier: 5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/ieInWfI0Aw5-JANX7gqKIsem_wM.roa
Signing time: Sat 01 Jan 2022 04:52:27 +0000
ROA not before: Sat 01 Jan 2022 04:52:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34893
IP address blocks: 185.112.53.0/24 maxlen: 24
185.112.52.0/24 maxlen: 24
185.112.54.0/24 maxlen: 24
194.30.181.0/24 maxlen: 24
2a06:6540:1003::/48 maxlen: 48
2a06:6541:1002::/48 maxlen: 48
2a06:6541:1003::/48 maxlen: 48
2a06:6541:1000::/48 maxlen: 48
2a06:6540:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254225379 (0xf272be3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Validity
Not Before: Jan 1 04:52:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89e22759f234030e7e240357ee0a8a22c7a6ff03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a0:1b:e3:dd:97:9e:7c:f2:6d:c4:3b:0e:6a:
bc:9e:a8:81:b7:55:6d:3b:88:e9:8d:d3:e7:1e:42:
c7:4d:b7:c5:1a:9b:c2:6b:28:d6:84:57:16:3f:9c:
20:4b:37:6d:e4:a3:fa:b1:53:fc:a1:76:08:0b:d1:
52:8c:84:78:92:03:55:db:c9:04:36:9b:ec:0f:a4:
55:dd:2b:de:00:ed:ed:57:3d:8a:6c:67:79:b8:95:
5c:8c:b6:c2:1f:04:b3:93:9a:72:28:c7:e6:c0:ac:
7e:65:9a:e3:f5:70:76:1c:68:0e:22:e6:40:35:51:
e8:81:8e:b3:36:2f:c1:6c:9d:1d:e1:b7:ca:70:18:
d7:70:dd:37:82:a5:ae:8b:d8:93:c4:aa:6b:9b:36:
16:d1:c3:cd:83:5d:13:4d:fc:63:6b:58:df:4c:3e:
0c:e5:16:5c:17:e6:6e:d3:a8:86:ae:9f:bf:81:82:
34:48:7d:ca:ff:3f:af:3f:69:c4:b6:8e:99:30:83:
01:94:09:74:68:5f:1c:12:35:5f:e8:09:e9:4a:3a:
54:8d:a6:69:69:57:b1:4d:93:9b:aa:47:7c:ec:a6:
29:c3:ac:31:d7:2f:10:e9:c9:cd:1d:a9:6b:78:07:
4c:38:76:b0:c3:03:3e:1b:7b:d5:c4:12:1c:37:28:
b8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E2:27:59:F2:34:03:0E:7E:24:03:57:EE:0A:8A:22:C7:A6:FF:03
X509v3 Authority Key Identifier:
keyid:5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/ieInWfI0Aw5-JANX7gqKIsem_wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/WsRmzIn5204xxUANKueiv_2yJUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.52.0-185.112.54.255
194.30.181.0/24
IPv6:
2a06:6540:1000::/48
2a06:6540:1003::/48
2a06:6541:1000::/48
2a06:6541:1002::/47
Signature Algorithm: sha256WithRSAEncryption
57:1f:61:86:94:3f:eb:21:f3:7d:8b:13:46:2c:05:b2:ee:31:
ac:ed:18:72:46:dc:1d:ba:9c:73:01:21:2f:15:17:0e:56:5c:
73:e2:d7:d4:84:cc:1e:bb:f2:f0:32:98:7f:59:5d:99:85:b5:
d5:59:52:cc:5e:67:ca:34:a2:b0:d7:1e:c6:f8:cf:97:8c:ab:
08:8b:66:82:b9:aa:e8:82:59:82:81:51:c0:e2:20:bd:02:e5:
8d:71:b6:d7:47:d4:29:15:e6:b3:5f:10:f0:01:58:4d:66:5e:
22:ec:22:de:8d:31:4f:12:ac:ac:d5:2d:d9:4f:77:9e:42:34:
c3:1a:62:81:d0:57:ee:ad:bc:8b:26:68:53:99:06:0b:17:4a:
a4:06:7d:8a:8b:07:f4:86:16:97:20:55:b6:87:68:49:f7:37:
2f:cd:5b:e8:69:0b:a0:ad:99:a8:a0:d2:be:6a:0a:70:75:da:
f9:62:bb:56:4e:38:e0:bc:c6:ce:9e:7e:9a:34:fb:22:5a:98:
02:58:c5:b3:d1:be:a0:ea:b3:19:e2:4c:72:b4:9a:f5:ec:ee:
da:c0:2d:b8:80:2a:36:31:9e:6c:2f:96:fe:da:85:f3:43:ca:
d1:23:dc:af:22:ad:b9:9f:fb:b0:1a:ef:1d:95:11:b0:4e:48:
86:f6:83:86
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgIEDycr4zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YWM0NjZjYzg5ZjlkYjRlMzFjNTQwMGQyYWU3YTJiZmZkYjIyNTQ3MB4XDTIyMDEw
MTA0NTIyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODllMjI3NTlmMjM0
MDMwZTdlMjQwMzU3ZWUwYThhMjJjN2E2ZmYwMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAImgG+Pdl5588m3EOw5qvJ6ogbdVbTuI6Y3T5x5Cx023xRqb
wmso1oRXFj+cIEs3beSj+rFT/KF2CAvRUoyEeJIDVdvJBDab7A+kVd0r3gDt7Vc9
imxnebiVXIy2wh8Es5OacijH5sCsfmWa4/VwdhxoDiLmQDVR6IGOszYvwWydHeG3
ynAY13DdN4KlrovYk8Sqa5s2FtHDzYNdE038Y2tY30w+DOUWXBfmbtOohq6fv4GC
NEh9yv8/rz9pxLaOmTCDAZQJdGhfHBI1X+gJ6Uo6VI2maWlXsU2Tm6pHfOymKcOs
MdcvEOnJzR2pa3gHTDh2sMMDPht71cQSHDcouNMCAwEAAaOCAkMwggI/MB0GA1Ud
DgQWBBSJ4idZ8jQDDn4kA1fuCooix6b/AzAfBgNVHSMEGDAWgBRaxGbMifnbTjHF
QA0q56K//bIlRzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dzUm16SW41MjA0eHhVQU5LdWVpdl8yeUpVYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvZTI5Yzg3LTQ2ODMtNDQzZS04ODNmLTlhYmQxYWE2NGJlMS8x
L2llSW5XZkkwQXc1LUpBTlg3Z3FLSXNlbV93TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
ZTI5Yzg3LTQ2ODMtNDQzZS04ODNmLTlhYmQxYWE2NGJlMS8xL1dzUm16SW41MjA0
eHhVQU5LdWVpdl8yeUpVYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZ
BggrBgEFBQcBBwEB/wRKMEgwGgQCAAEwFDAMAwQCuXA0AwQAuXA2AwQAwh61MCoE
AgACMCQDBwAqBmVAEAADBwAqBmVAEAMDBwAqBmVBEAADBwEqBmVBEAIwDQYJKoZI
hvcNAQELBQADggEBAFcfYYaUP+sh832LE0YsBbLuMaztGHJG3B26nHMBIS8VFw5W
XHPi19SEzB678vAymH9ZXZmFtdVZUsxeZ8o0orDXHsb4z5eMqwiLZoK5quiCWYKB
UcDiIL0C5Y1xttdH1CkV5rNfEPABWE1mXiLsIt6NMU8SrKzVLdlPd55CNMMaYoHQ
V+6tvIsmaFOZBgsXSqQGfYqLB/SGFpcgVbaHaEn3Ny/NW+hpC6Ctmaig0r5qCnB1
2vliu1ZOOOC8xs6efpo0+yJamAJYxbPRvqDqsxniTHK0mvXs7trALbiAKjYxnmwv
lv7ahfNDytEj3K8irbmf+7Aa7x2VEbBOSIb2g4Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:08 2024 by rpki-client on console-fra.rpki-client.org