Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/S83JFND2gMICgufMTakCLww95Ro.roa
File: S83JFND2gMICgufMTakCLww95Ro.roa (raw, json)
Hash identifier: 7U6ZoYUhVZZ85dwnChMty5NuEf6MNVwMu0JGq7LI96s=
Subject key identifier: 4B:CD:C9:14:D0:F6:80:C2:02:82:E7:CC:4D:A9:02:2F:0C:3D:E5:1A
Certificate issuer: /CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Certificate serial: 01825CB1A8F2D3A7536A79EF4BAFF05CCD8C
Authority key identifier: 4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/S83JFND2gMICgufMTakCLww95Ro.roa
Signing time: Tue 02 Aug 2022 03:55:23 +0000
ROA not before: Tue 02 Aug 2022 03:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25381
IP address blocks: 185.154.192.0/24 maxlen: 24
185.154.193.0/24 maxlen: 24
185.154.195.0/24 maxlen: 24
185.154.194.0/24 maxlen: 24
85.234.108.0/24 maxlen: 24
85.234.107.0/24 maxlen: 24
85.234.110.0/24 maxlen: 24
85.234.109.0/24 maxlen: 24
85.234.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5c:b1:a8:f2:d3:a7:53:6a:79:ef:4b:af:f0:5c:cd:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Validity
Not Before: Aug 2 03:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bcdc914d0f680c20282e7cc4da9022f0c3de51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:39:99:73:d9:73:09:26:cd:42:8f:71:33:51:
be:85:29:59:45:86:3d:ba:d3:b0:a3:bf:fe:d8:15:
20:31:99:f2:06:7f:62:11:c1:6e:c2:5b:bc:f9:eb:
da:11:6d:84:3b:73:51:64:c3:58:e7:ee:a4:60:88:
e6:20:a4:f3:6f:76:df:08:30:57:5f:5e:1f:8f:5f:
1b:1a:04:70:57:f1:51:9b:fd:24:36:87:2f:46:c3:
1e:12:4a:f9:e8:b1:1a:4a:70:c1:f3:e7:78:bf:03:
f8:47:81:18:c5:56:1e:5a:f6:ee:43:2b:cc:ab:43:
c2:34:2e:43:1b:12:b4:4e:d7:e8:a7:9f:dd:39:67:
38:47:72:24:f9:77:21:06:98:c2:b9:c3:80:60:4e:
d9:32:68:24:37:5a:52:8f:c1:0c:f8:94:af:c0:07:
73:f5:f2:af:35:f2:9d:82:99:b1:17:58:3f:e0:fd:
d3:28:4d:c7:69:e1:d6:ea:ee:94:98:af:68:a5:3f:
aa:ae:6e:8e:e8:6c:2a:2d:84:77:9a:3a:a2:9d:bf:
0f:17:aa:62:1e:ce:d6:a2:14:97:96:3b:e0:49:c2:
e3:12:eb:72:50:30:dc:47:d9:f0:d6:05:77:37:be:
7d:fc:69:02:76:2b:09:57:d8:6a:85:c6:56:8a:eb:
98:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CD:C9:14:D0:F6:80:C2:02:82:E7:CC:4D:A9:02:2F:0C:3D:E5:1A
X509v3 Authority Key Identifier:
keyid:4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/S83JFND2gMICgufMTakCLww95Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.234.106.0-85.234.110.255
185.154.192.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:2e:e7:ca:c7:47:d6:c3:45:94:c6:d7:37:10:29:ca:6d:62:
9b:de:39:e8:f9:ae:cb:40:67:6d:6d:6e:48:26:b8:af:47:a6:
10:9a:47:e2:c7:88:3e:a3:86:8b:4c:c2:c7:ad:df:e9:9a:58:
a2:10:a8:c6:fd:6f:f7:85:90:4a:1b:9f:f4:ba:76:c2:01:09:
a6:97:e5:34:e7:71:90:d3:06:d8:63:0a:ad:f2:a6:7e:00:e1:
eb:c8:62:76:8b:e4:89:14:96:f4:ec:b0:78:ac:4a:af:1a:ee:
20:ae:0d:c4:1f:40:3d:99:81:f6:8d:90:55:32:ff:24:c9:0c:
2a:1d:81:fd:61:da:29:0c:55:ae:23:84:c9:25:0f:5d:52:26:
b4:7c:20:d3:47:7b:31:3c:90:50:46:3c:4f:aa:81:00:71:a2:
e3:7e:51:ea:60:86:28:c1:d1:92:1c:d4:1b:e0:bd:38:f9:cd:
e7:c2:f8:3b:ea:ec:f5:7b:74:bb:57:96:f4:04:c6:91:b9:86:
ca:2d:53:aa:8a:f8:9e:8b:4e:65:7c:a8:5f:84:8e:3b:20:3d:
89:01:b2:31:2a:1a:a2:7b:fd:a7:a4:27:3a:d8:72:91:57:cd:
ca:50:b5:b7:ce:b9:a8:ad:81:ff:26:b9:35:c7:42:94:cc:ae:
34:72:19:02
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYJcsajy06dTannvS6/wXM2MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMmI4OWMzYzU3YTNlMjk2YWE0MDYxZTk2Mjg0MGJlN2Fl
OGYwMTgwHhcNMjIwODAyMDM1NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmNkYzkxNGQwZjY4MGMyMDI4MmU3Y2M0ZGE5MDIyZjBjM2RlNTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjmZc9lzCSbNQo9xM1G+hSlZRYY9
utOwo7/+2BUgMZnyBn9iEcFuwlu8+evaEW2EO3NRZMNY5+6kYIjmIKTzb3bfCDBX
X14fj18bGgRwV/FRm/0kNocvRsMeEkr56LEaSnDB8+d4vwP4R4EYxVYeWvbuQyvM
q0PCNC5DGxK0Ttfop5/dOWc4R3Ik+XchBpjCucOAYE7ZMmgkN1pSj8EM+JSvwAdz
9fKvNfKdgpmxF1g/4P3TKE3HaeHW6u6UmK9opT+qrm6O6GwqLYR3mjqinb8PF6pi
Hs7WohSXljvgScLjEutyUDDcR9nw1gV3N759/GkCdisJV9hqhcZWiuuYtwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFEvNyRTQ9oDCAoLnzE2pAi8MPeUaMB8GA1UdIwQY
MBaAFEwricPFej4paqQGHpYoQL566PAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQt
MTEyOGU1Y2U2YTViLzEvUzgzSkZORDJnTUlDZ3VmTVRha0NMd3c5NVJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQtMTEyOGU1Y2U2YTVi
LzEvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAFV6moD
BABV6m4DBAK5msAwDQYJKoZIhvcNAQELBQADggEBAJ4u58rHR9bDRZTG1zcQKcpt
YpveOej5rstAZ21tbkgmuK9HphCaR+LHiD6jhotMwset3+maWKIQqMb9b/eFkEob
n/S6dsIBCaaX5TTncZDTBthjCq3ypn4A4evIYnaL5IkUlvTssHisSq8a7iCuDcQf
QD2ZgfaNkFUy/yTJDCodgf1h2ikMVa4jhMklD11SJrR8INNHezE8kFBGPE+qgQBx
ouN+UepghijB0ZIc1BvgvTj5zefC+Dvq7PV7dLtXlvQExpG5hsotU6qK+J6LTmV8
qF+EjjsgPYkBsjEqGqJ7/aekJzrYcpFXzcpQtbfOuaitgf8muTXHQpTMrjRyGQI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org