Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/xr6m8SItso2jC2qJgzfFwc7dh-c.roa
File: xr6m8SItso2jC2qJgzfFwc7dh-c.roa (raw, json)
Hash identifier: f9j7uz0RMaWHZ2fT5oySt1fqHdnCTV4ug8dNR4ZI028=
Subject key identifier: C6:BE:A6:F1:22:2D:B2:8D:A3:0B:6A:89:83:37:C5:C1:CE:DD:87:E7
Certificate issuer: /CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Certificate serial: 01828780A2E5C7E086347C88A42397F4C4FE
Authority key identifier: 95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/xr6m8SItso2jC2qJgzfFwc7dh-c.roa
Signing time: Wed 10 Aug 2022 11:25:30 +0000
ROA not before: Wed 10 Aug 2022 11:25:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54203
IP address blocks: 185.147.213.0/24 maxlen: 24
185.147.212.0/24 maxlen: 24
185.147.214.0/24 maxlen: 24
185.147.215.0/24 maxlen: 24
2a03:efc0:ba5e::/48 maxlen: 48
2a03:efc0:1300::/40 maxlen: 40
2a03:efc0:200::/40 maxlen: 40
2a03:efc0:900::/40 maxlen: 40
2a03:efc0:1900::/40 maxlen: 40
2a03:efc0:1700::/40 maxlen: 40
2a03:efc0:1500::/40 maxlen: 40
2a03:efc0:1100::/40 maxlen: 40
2a03:efc0:700::/40 maxlen: 40
2a03:efc0:500::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:80:a2:e5:c7:e0:86:34:7c:88:a4:23:97:f4:c4:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Validity
Not Before: Aug 10 11:25:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6bea6f1222db28da30b6a898337c5c1cedd87e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:14:e1:14:5c:bf:41:ee:31:54:dd:ee:ca:02:
0f:35:bd:46:49:57:93:8b:0e:f0:71:5f:59:cf:ca:
3b:96:01:fb:bc:ad:c4:29:d3:5f:d7:ef:d2:e1:09:
1d:62:f2:4e:cb:cd:da:ce:ea:49:5c:82:7c:21:22:
be:e5:74:bf:71:51:9d:21:cc:c5:d4:88:cf:67:6e:
cb:62:ee:a0:a5:10:eb:60:0c:79:23:a9:8a:3b:e5:
66:64:16:11:c9:4b:bd:f6:38:6e:db:76:8a:bb:46:
4c:8b:30:bc:8a:2f:8a:06:fc:60:a1:d8:bd:df:9a:
9f:75:80:e0:16:69:06:c6:e8:c7:ce:96:64:e8:df:
0d:5a:91:b9:c5:8e:e3:62:6e:ff:86:7a:3a:a7:c2:
34:f4:e3:9e:78:4d:0e:76:f8:4e:bd:7f:f4:2d:00:
a6:ac:56:ad:eb:e2:1f:37:5c:01:89:37:ab:a5:a9:
e5:98:db:bb:98:4f:85:a1:d2:06:f8:29:e5:d4:74:
31:2a:5b:51:d8:7b:a1:6d:95:b4:61:92:77:0d:7c:
ee:d1:94:1a:2e:dc:67:ea:09:4e:1b:24:9b:bf:5d:
d7:eb:dd:9a:1c:33:19:35:3d:d8:38:f4:a8:c7:9e:
ac:ad:11:dd:ab:e7:75:24:19:9f:cf:ec:ea:15:d3:
f4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BE:A6:F1:22:2D:B2:8D:A3:0B:6A:89:83:37:C5:C1:CE:DD:87:E7
X509v3 Authority Key Identifier:
keyid:95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/xr6m8SItso2jC2qJgzfFwc7dh-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/lQLYuCacawf4FKzwx-1ymz9LWYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.212.0/22
IPv6:
2a03:efc0:200::/40
2a03:efc0:500::/40
2a03:efc0:700::/40
2a03:efc0:900::/40
2a03:efc0:1100::/40
2a03:efc0:1300::/40
2a03:efc0:1500::/40
2a03:efc0:1700::/40
2a03:efc0:1900::/40
2a03:efc0:ba5e::/48
Signature Algorithm: sha256WithRSAEncryption
11:00:60:e2:b8:95:fd:c7:0b:fe:de:4b:32:9b:aa:fd:24:a5:
0c:43:8b:71:17:3c:40:87:01:6f:0e:d6:27:07:3f:74:68:d3:
f4:73:4d:6d:0d:b7:19:5f:3a:6d:ea:9b:80:b6:c1:a7:ef:98:
76:d2:0c:64:48:4b:cd:20:a4:50:98:06:18:72:18:10:5e:f7:
bd:a7:36:f6:db:6c:61:4c:23:19:95:b9:37:07:80:73:cd:01:
71:35:76:14:5f:67:bf:99:d4:1a:aa:ab:06:bc:74:d6:29:ba:
49:d3:81:2c:d9:fc:23:d0:63:50:0e:5d:e4:fd:5b:9e:67:9b:
4c:91:dc:46:90:36:d6:5e:ef:a1:42:ed:d2:a6:e4:ff:f1:4c:
40:df:46:b5:bd:83:37:68:cb:99:b9:ee:1a:97:8c:a7:b5:ba:
02:0b:e2:2a:2e:65:21:54:dc:28:3c:42:33:08:4a:a5:7f:e0:
d1:71:c2:c7:00:e5:69:7f:be:70:7d:31:bc:b6:2d:47:59:dc:
c3:c5:36:72:de:11:56:d2:58:ee:5b:11:ac:3f:76:6f:16:51:
22:39:b4:51:77:18:ec:27:35:46:af:1f:41:81:1f:1a:4b:8d:
2b:42:d4:f3:66:c6:11:e0:ed:46:ac:51:54:41:44:3a:7e:c3:
89:14:3d:f5
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgISAYKHgKLlx+CGNHyIpCOX9MT+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MDJkOGI4MjY5YzZiMDdmODE0YWNmMGM3ZWQ3MjliM2Y0
YjU5ODQwHhcNMjIwODEwMTEyNTMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmJlYTZmMTIyMmRiMjhkYTMwYjZhODk4MzM3YzVjMWNlZGQ4N2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhxThFFy/Qe4xVN3uygIPNb1GSVeT
iw7wcV9Zz8o7lgH7vK3EKdNf1+/S4QkdYvJOy83azupJXIJ8ISK+5XS/cVGdIczF
1IjPZ27LYu6gpRDrYAx5I6mKO+VmZBYRyUu99jhu23aKu0ZMizC8ii+KBvxgodi9
35qfdYDgFmkGxujHzpZk6N8NWpG5xY7jYm7/hno6p8I09OOeeE0OdvhOvX/0LQCm
rFat6+IfN1wBiTerpanlmNu7mE+FodIG+Cnl1HQxKltR2HuhbZW0YZJ3DXzu0ZQa
Ltxn6glOGySbv13X692aHDMZNT3YOPSox56srRHdq+d1JBmfz+zqFdP0eQIDAQAB
o4ICYjCCAl4wHQYDVR0OBBYEFMa+pvEiLbKNowtqiYM3xcHO3YfnMB8GA1UdIwQY
MBaAFJUC2LgmnGsH+BSs8Mftcps/S1mEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFFMWXVDYWNhd2Y0Rkt6d3gtMXltejlMV1lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS85ZGVjYWYtNDdlYi00MzQ5LTllODYt
MDFiOGJiNmFkOTBhLzEveHI2bThTSXRzbzJqQzJxSmd6ZkZ3YzdkaC1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS85ZGVjYWYtNDdlYi00MzQ5LTllODYtMDFiOGJiNmFkOTBh
LzEvbFFMWXVDYWNhd2Y0Rkt6d3gtMXltejlMV1lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHgGCCsGAQUFBwEHAQH/BGkwZzAMBAIAATAGAwQCuZPUMFcE
AgACMFEDBgAqA+/AAgMGACoD78AFAwYAKgPvwAcDBgAqA+/ACQMGACoD78ARAwYA
KgPvwBMDBgAqA+/AFQMGACoD78AXAwYAKgPvwBkDBwAqA+/Aul4wDQYJKoZIhvcN
AQELBQADggEBABEAYOK4lf3HC/7eSzKbqv0kpQxDi3EXPECHAW8O1icHP3Ro0/Rz
TW0NtxlfOm3qm4C2wafvmHbSDGRIS80gpFCYBhhyGBBe972nNvbbbGFMIxmVuTcH
gHPNAXE1dhRfZ7+Z1Bqqqwa8dNYpuknTgSzZ/CPQY1AOXeT9W55nm0yR3EaQNtZe
76FC7dKm5P/xTEDfRrW9gzdoy5m57hqXjKe1ugIL4iouZSFU3Cg8QjMISqV/4NFx
wscA5Wl/vnB9Mby2LUdZ3MPFNnLeEVbSWO5bEaw/dm8WUSI5tFF3GOwnNUavH0GB
HxpLjStC1PNmxhHg7UasUVRBRDp+w4kUPfU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:30 2024 by rpki-client on console-fra.rpki-client.org