Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/rm0bH54ydZlVFE2rJLxxvnULH5M.roa
File: rm0bH54ydZlVFE2rJLxxvnULH5M.roa (raw, json)
Hash identifier: w+ORlH0GDSGYkyXf42A9/vjHXUj4HD3DNSpWXclG5Fw=
Subject key identifier: AE:6D:1B:1F:9E:32:75:99:55:14:4D:AB:24:BC:71:BE:75:0B:1F:93
Certificate issuer: /CN=845d042f65e1b1303a44e43e0e02748a75837b44
Certificate serial: 06914C16
Authority key identifier: 84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/rm0bH54ydZlVFE2rJLxxvnULH5M.roa
Signing time: Wed 06 Apr 2022 10:33:09 +0000
ROA not before: Wed 06 Apr 2022 10:33:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12459
IP address blocks: 185.241.212.0/24 maxlen: 24
185.119.89.0/24 maxlen: 24
185.119.90.0/24 maxlen: 24
185.119.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110185494 (0x6914c16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845d042f65e1b1303a44e43e0e02748a75837b44
Validity
Not Before: Apr 6 10:33:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae6d1b1f9e32759955144dab24bc71be750b1f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:70:15:27:9b:44:3a:c4:1e:22:df:d8:61:58:
10:ec:b6:a4:e1:c8:fb:ad:49:de:a0:2f:2f:4e:eb:
d2:2a:70:e3:9f:b0:dd:2e:16:61:7b:ae:13:aa:9d:
44:ff:fe:8e:d7:03:f7:dc:e7:2d:99:23:ea:83:f2:
a8:e7:7d:24:1a:44:18:d2:31:dd:48:96:24:77:7a:
9f:c3:49:59:b5:89:b2:d1:32:d6:b5:59:a8:ff:4e:
94:87:4a:56:0e:b9:cf:99:68:a0:61:ec:bf:40:db:
99:5b:4b:df:07:f2:73:5e:23:6a:90:cb:8e:da:6d:
64:74:91:20:a4:30:fe:b4:40:0a:a3:95:7a:76:e5:
d3:9f:13:49:d9:76:ad:cb:89:35:e1:f2:89:3d:13:
42:67:b7:0d:85:e7:27:9a:33:ac:f8:95:ef:b4:75:
dd:dc:46:05:21:75:5d:86:77:61:e8:96:33:1c:f1:
7b:fc:9e:cd:b5:3d:fe:37:a1:57:8e:7b:3d:c9:ba:
41:9b:9d:ea:98:bc:56:bf:8e:21:9f:72:f3:26:04:
ad:49:b0:01:09:05:69:f6:1b:7f:cd:86:ca:5e:0f:
05:1b:1a:a0:68:b1:79:64:1c:da:5b:99:74:3d:43:
41:1c:ea:5e:5a:4d:b2:0d:6a:e9:c1:9e:21:3b:fb:
a4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6D:1B:1F:9E:32:75:99:55:14:4D:AB:24:BC:71:BE:75:0B:1F:93
X509v3 Authority Key Identifier:
keyid:84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/rm0bH54ydZlVFE2rJLxxvnULH5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.88.0-185.119.90.255
185.241.212.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:09:50:ad:07:8e:17:c0:20:fd:c5:c1:2c:d3:fc:78:a9:76:
bd:6c:67:0c:25:82:0f:75:39:ff:f3:e2:1d:a8:79:41:86:a1:
39:b0:5f:18:1c:56:5a:a2:40:08:6e:4b:d2:03:ad:65:4e:92:
a1:50:34:53:97:3f:3a:e3:ed:87:5b:60:e2:2e:12:2e:65:b7:
73:af:54:11:68:ce:05:dd:46:49:d3:f8:4a:8f:37:f3:2e:c9:
1a:6e:b9:be:7b:fa:da:53:10:cb:4e:56:57:fe:b9:e6:99:ca:
f0:db:4e:78:c1:ef:71:a4:ff:b8:be:12:c5:0e:a5:b3:da:e0:
21:03:3d:b9:28:e0:8b:d4:0c:87:f7:bd:a5:60:70:ca:4f:ad:
6c:f2:c6:d4:5b:d8:9c:57:ce:31:ed:af:d9:8a:d5:d8:90:6b:
38:1e:d5:dd:d0:da:c0:19:2d:4d:87:1f:89:81:12:22:c1:5b:
a2:22:2c:d6:02:d0:e3:fd:fd:ca:2f:cb:30:3e:6f:04:e9:26:
5f:d3:a2:1f:33:b8:01:5e:a4:9a:d5:7b:29:6e:fd:8e:bd:f6:
37:87:99:5e:35:38:3f:cc:0c:0d:cb:a0:70:b4:c2:ad:1d:fc:
d4:94:af:3b:6c:ec:69:34:16:5c:1a:ae:a0:01:f2:fa:53:b5:
3a:39:42:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEBpFMFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NDVkMDQyZjY1ZTFiMTMwM2E0NGU0M2UwZTAyNzQ4YTc1ODM3YjQ0MB4XDTIyMDQw
NjEwMzMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWU2ZDFiMWY5ZTMy
NzU5OTU1MTQ0ZGFiMjRiYzcxYmU3NTBiMWY5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMtwFSebRDrEHiLf2GFYEOy2pOHI+61J3qAvL07r0ipw45+w
3S4WYXuuE6qdRP/+jtcD99znLZkj6oPyqOd9JBpEGNIx3UiWJHd6n8NJWbWJstEy
1rVZqP9OlIdKVg65z5looGHsv0DbmVtL3wfyc14japDLjtptZHSRIKQw/rRACqOV
enbl058TSdl2rcuJNeHyiT0TQme3DYXnJ5ozrPiV77R13dxGBSF1XYZ3YeiWMxzx
e/yezbU9/jehV457Pcm6QZud6pi8Vr+OIZ9y8yYErUmwAQkFafYbf82Gyl4PBRsa
oGixeWQc2luZdD1DQRzqXlpNsg1q6cGeITv7pA0CAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBSubRsfnjJ1mVUUTaskvHG+dQsfkzAfBgNVHSMEGDAWgBSEXQQvZeGxMDpE
5D4OAnSKdYN7RDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hGMEVMMlhoc1RBNlJPUS1EZ0owaW5XRGUwUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvOTZkYmNkLTZhMzktNGMyMC05MTI4LWQ4YzM1MWQ5M2VjNi8x
L3JtMGJINTR5ZFpsVkZFMnJKTHh4dm5VTEg1TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
OTZkYmNkLTZhMzktNGMyMC05MTI4LWQ4YzM1MWQ5M2VjNi8xL2hGMEVMMlhoc1RB
NlJPUS1EZ0owaW5XRGUwUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFDAMAwQDuXdYAwQAuXdaAwQAufHUMA0G
CSqGSIb3DQEBCwUAA4IBAQBbCVCtB44XwCD9xcEs0/x4qXa9bGcMJYIPdTn/8+Id
qHlBhqE5sF8YHFZaokAIbkvSA61lTpKhUDRTlz864+2HW2DiLhIuZbdzr1QRaM4F
3UZJ0/hKjzfzLskabrm+e/raUxDLTlZX/rnmmcrw2054we9xpP+4vhLFDqWz2uAh
Az25KOCL1AyH972lYHDKT61s8sbUW9icV84x7a/ZitXYkGs4HtXd0NrAGS1Nhx+J
gRIiwVuiIizWAtDj/f3KL8swPm8E6SZf06IfM7gBXqSa1Xspbv2OvfY3h5leNTg/
zAwNy6BwtMKtHfzUlK87bOxpNBZcGq6gAfL6U7U6OULz
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-ams.rpki-client.org