Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/ql6QsS-qJZKPKQUeGBn44qVYtw0.roa
File: ql6QsS-qJZKPKQUeGBn44qVYtw0.roa (raw, json)
Hash identifier: 6xbH2x5/ZqwOl4F8uXQzgntAWqKOxRp0x1q1GSHnLmg=
Subject key identifier: AA:5E:90:B1:2F:AA:25:92:8F:29:05:1E:18:19:F8:E2:A5:58:B7:0D
Certificate issuer: /CN=e334ec393448d83bf1515f4967a448098e55fb43
Certificate serial: 066BDA8D
Authority key identifier: E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/ql6QsS-qJZKPKQUeGBn44qVYtw0.roa
Signing time: Sat 01 Jan 2022 13:03:45 +0000
ROA not before: Sat 01 Jan 2022 13:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62092
IP address blocks: 185.226.164.0/24 maxlen: 24
2a0f:d340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107731597 (0x66bda8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e334ec393448d83bf1515f4967a448098e55fb43
Validity
Not Before: Jan 1 13:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa5e90b12faa25928f29051e1819f8e2a558b70d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:60:83:28:20:bd:9a:ad:e2:96:a4:02:7b:b6:
55:43:5e:73:f9:9f:92:0a:ff:0f:5b:06:ab:7f:f8:
95:04:60:f0:34:4b:39:ab:40:9a:fd:71:28:72:99:
5d:5f:0b:70:bc:63:08:3d:ed:ed:58:64:3a:d2:c5:
ca:1e:6d:17:28:3a:7b:b4:db:72:fd:21:16:d9:06:
23:f4:c1:60:39:bb:92:f3:a9:8a:08:1f:48:8f:21:
b9:96:33:8a:e5:ef:2c:c6:f8:95:f8:b1:b0:42:bb:
be:c0:5e:84:81:32:6d:d6:be:8d:73:cd:6e:f1:2b:
3f:22:8d:66:0e:4c:bc:99:e4:b0:50:48:e1:4f:a2:
52:1c:48:88:f0:ae:45:d8:58:b3:77:f1:df:53:4b:
74:52:4b:de:94:16:61:01:4a:1a:1b:33:aa:af:d2:
cd:5d:ab:3e:28:cc:c7:19:31:74:d4:02:c2:af:11:
47:25:b2:60:1c:cd:eb:75:ad:fa:19:92:07:e5:46:
fa:6b:02:ca:f2:87:f8:82:ca:77:17:3f:fc:34:36:
b8:90:ba:71:12:42:37:19:7a:b0:b2:0e:b8:70:aa:
04:f9:b9:41:71:2a:cc:fa:66:df:c9:bb:27:55:3d:
f2:57:e8:03:da:c8:47:01:d4:61:69:b5:2a:4b:54:
99:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5E:90:B1:2F:AA:25:92:8F:29:05:1E:18:19:F8:E2:A5:58:B7:0D
X509v3 Authority Key Identifier:
keyid:E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/ql6QsS-qJZKPKQUeGBn44qVYtw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.164.0/24
IPv6:
2a0f:d340::/29
Signature Algorithm: sha256WithRSAEncryption
3b:c4:ea:c7:c8:04:e6:4c:d7:e7:db:45:9c:83:a1:14:86:f6:
8a:9a:69:fa:97:1b:68:6b:af:d4:8d:ad:aa:ea:7c:bd:57:11:
e8:91:8f:c9:23:7f:b4:46:6e:09:12:7b:10:97:89:38:ea:6c:
b5:b6:0b:b3:34:86:26:eb:c8:8b:2b:ea:98:ed:c4:0e:90:2c:
d8:ca:4a:9e:49:d4:b8:1b:84:46:f3:31:6b:68:1e:cb:75:2f:
87:3b:c9:e6:89:8b:42:5e:11:4d:ee:e9:ef:2e:58:e9:16:c7:
7d:31:9a:34:5e:5b:ac:5a:71:e4:80:91:df:c0:0c:e5:5e:7b:
7e:95:69:62:48:c8:de:55:32:f2:0b:c2:6c:9b:1c:bd:9f:4d:
82:7f:39:f1:e9:5c:95:2d:45:3f:68:e6:19:f0:01:96:c2:c7:
7e:44:09:74:ac:c5:93:11:07:d8:2e:e2:39:3e:19:91:0e:ce:
c8:95:64:83:e5:8f:40:9e:cd:0a:4e:85:f2:04:c7:53:01:f9:
39:d5:b8:0f:d1:26:24:35:88:23:de:e6:a0:ba:a6:c1:57:1d:
fc:e5:ad:3e:62:f8:54:03:c8:1b:a2:ea:83:3c:bb:d9:cd:1d:
82:f6:1a:03:62:d8:03:34:24:74:4e:c8:44:39:9f:12:38:75:
a4:05:db:53
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBmvajTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzM0ZWMzOTM0NDhkODNiZjE1MTVmNDk2N2E0NDgwOThlNTVmYjQzMB4XDTIyMDEw
MTEzMDM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWE1ZTkwYjEyZmFh
MjU5MjhmMjkwNTFlMTgxOWY4ZTJhNTU4YjcwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANdggyggvZqt4pakAnu2VUNec/mfkgr/D1sGq3/4lQRg8DRL
OatAmv1xKHKZXV8LcLxjCD3t7VhkOtLFyh5tFyg6e7Tbcv0hFtkGI/TBYDm7kvOp
iggfSI8huZYziuXvLMb4lfixsEK7vsBehIEybda+jXPNbvErPyKNZg5MvJnksFBI
4U+iUhxIiPCuRdhYs3fx31NLdFJL3pQWYQFKGhszqq/SzV2rPijMxxkxdNQCwq8R
RyWyYBzN63Wt+hmSB+VG+msCyvKH+ILKdxc//DQ2uJC6cRJCNxl6sLIOuHCqBPm5
QXEqzPpm38m7J1U98lfoA9rIRwHUYWm1KktUmZECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSqXpCxL6olko8pBR4YGfjipVi3DTAfBgNVHSMEGDAWgBTjNOw5NEjYO/FR
X0lnpEgJjlX7QzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR6VHNPVFJJMkR2eFVWOUpaNlJJQ1k1Vi0wTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTUvMTliZDhhLWM2ZjEtNDJlMi04NDYwLWNkYWIxOWEzZmRlYi8x
L3FsNlFzUy1xSlpLUEtRVWVHQm40NHFWWXR3MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTUv
MTliZDhhLWM2ZjEtNDJlMi04NDYwLWNkYWIxOWEzZmRlYi8xLzR6VHNPVFJJMkR2
eFVWOUpaNlJJQ1k1Vi0wTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALnipDANBAIAAjAHAwUDKg/TQDAN
BgkqhkiG9w0BAQsFAAOCAQEAO8Tqx8gE5kzX59tFnIOhFIb2ippp+pcbaGuv1I2t
qup8vVcR6JGPySN/tEZuCRJ7EJeJOOpstbYLszSGJuvIiyvqmO3EDpAs2MpKnknU
uBuERvMxa2gey3UvhzvJ5omLQl4RTe7p7y5Y6RbHfTGaNF5brFpx5ICR38AM5V57
fpVpYkjI3lUy8gvCbJscvZ9Ngn858elclS1FP2jmGfABlsLHfkQJdKzFkxEH2C7i
OT4ZkQ7OyJVkg+WPQJ7NCk6F8gTHUwH5OdW4D9EmJDWII97moLqmwVcd/OWtPmL4
VAPIG6Lqgzy72c0dgvYaA2LYAzQkdE7IRDmfEjh1pAXbUw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:39 2023 by rpki-client on console-fra.rpki-client.org