Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/v8Ke0K4JgYqlaRWFHgKhTRv9cOY.roa
File: v8Ke0K4JgYqlaRWFHgKhTRv9cOY.roa (raw, json)
Hash identifier: gGjiFaUGQe2XJQip3oyy7h0ADAqK7+clSw7iBGl1U5U=
Subject key identifier: BF:C2:9E:D0:AE:09:81:8A:A5:69:15:85:1E:02:A1:4D:1B:FD:70:E6
Certificate issuer: /CN=5d99e8d5713a5e6382c0d1389d6242816f9d6fb9
Certificate serial: 01838048A6421153F23D5E09B9BAF4BD1765
Authority key identifier: 5D:99:E8:D5:71:3A:5E:63:82:C0:D1:38:9D:62:42:81:6F:9D:6F:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZno1XE6XmOCwNE4nWJCgW-db7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/v8Ke0K4JgYqlaRWFHgKhTRv9cOY.roa
Signing time: Tue 27 Sep 2022 18:49:48 +0000
ROA not before: Tue 27 Sep 2022 18:49:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202796
IP address blocks: 185.194.250.0/24 maxlen: 24
185.194.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:80:48:a6:42:11:53:f2:3d:5e:09:b9:ba:f4:bd:17:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d99e8d5713a5e6382c0d1389d6242816f9d6fb9
Validity
Not Before: Sep 27 18:49:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfc29ed0ae09818aa56915851e02a14d1bfd70e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:91:e2:bd:8a:8b:09:14:7c:18:f6:9a:ab:af:
0b:3e:87:cf:3c:69:4c:6c:2f:b6:f8:e8:81:a2:44:
5e:7c:a4:ad:26:7e:4e:07:ef:44:70:29:f4:14:99:
9b:5e:f4:33:53:7a:22:43:c9:19:74:7c:e2:86:58:
f7:87:ad:8b:85:bc:37:41:c0:57:00:0d:8d:7b:bc:
44:f2:f4:53:d6:79:47:bc:93:3a:a8:c5:8e:33:e6:
29:09:82:3f:bc:a1:e7:f0:1e:78:eb:e4:62:58:a5:
c4:8d:16:16:a8:3d:8a:67:c2:b8:f6:fc:8d:e6:35:
58:45:9b:5f:5e:d5:c4:b4:de:a0:cd:3b:82:46:f1:
77:5b:cf:ab:48:c3:ec:f1:ae:72:76:a6:45:8a:24:
59:2f:99:e6:94:8e:52:52:f3:74:17:62:fb:e3:a0:
35:ad:b2:22:ea:5b:d5:36:8f:d6:1b:7a:c1:bc:42:
54:d0:2d:66:92:e1:70:7b:e8:a5:11:59:eb:ba:4e:
e4:40:67:08:f5:23:4b:e5:f0:0b:55:3a:ee:c1:80:
f5:cd:a2:98:8d:ba:ec:83:21:ca:43:ea:a4:2f:f8:
7e:49:d1:45:26:d2:56:52:6b:b2:19:ca:2a:b4:a1:
40:99:77:ed:21:b3:44:79:81:a8:04:3b:53:ab:dd:
17:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C2:9E:D0:AE:09:81:8A:A5:69:15:85:1E:02:A1:4D:1B:FD:70:E6
X509v3 Authority Key Identifier:
keyid:5D:99:E8:D5:71:3A:5E:63:82:C0:D1:38:9D:62:42:81:6F:9D:6F:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZno1XE6XmOCwNE4nWJCgW-db7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/v8Ke0K4JgYqlaRWFHgKhTRv9cOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/XZno1XE6XmOCwNE4nWJCgW-db7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.250.0/23
Signature Algorithm: sha256WithRSAEncryption
54:fb:58:d2:ed:67:64:32:d3:d7:63:c2:a1:4b:9e:a0:d2:8a:
aa:de:1c:5a:fe:5d:55:d1:19:69:3c:ed:8c:c0:6c:34:d8:7f:
dd:cf:30:33:1b:50:fe:5d:5b:da:f4:87:d7:c8:6a:3b:de:a7:
46:ee:e2:3a:b7:aa:a1:ef:9e:37:80:d8:8d:ed:84:a3:07:c6:
80:ff:b2:4a:6b:42:8a:59:98:37:8a:81:d0:1e:54:e3:2b:72:
44:14:45:39:3f:e6:49:a6:92:c5:64:49:cb:fc:15:4a:d4:44:
6e:1f:53:f8:54:a2:76:37:0f:00:dc:e8:0a:7b:4e:6b:fa:db:
11:14:52:e7:c9:ee:bf:c6:fc:95:86:12:03:20:b8:7d:d5:a5:
5b:c6:f0:4d:28:a5:6a:62:02:f2:a4:ef:6c:c8:46:ef:ac:7d:
9c:70:65:a8:95:de:85:19:59:89:5e:aa:c3:21:19:40:fa:45:
68:bf:e7:72:12:53:04:b9:d0:f2:cb:22:ce:11:58:75:0f:f5:
4d:91:ca:6d:64:a9:a8:8e:4e:69:b0:24:9e:ff:4f:7a:de:6f:
04:44:38:76:d5:2d:11:0a:5b:3c:2a:fc:16:d3:9b:32:06:84:
0d:80:6a:d4:19:f5:bb:9f:aa:7b:15:21:3c:9f:0e:6a:f8:c9:
92:45:69:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOASKZCEVPyPV4Jubr0vRdlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkOTllOGQ1NzEzYTVlNjM4MmMwZDEzODlkNjI0MjgxNmY5
ZDZmYjkwHhcNMjIwOTI3MTg0OTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmMyOWVkMGFlMDk4MThhYTU2OTE1ODUxZTAyYTE0ZDFiZmQ3MGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpHivYqLCRR8GPaaq68LPofPPGlM
bC+2+OiBokRefKStJn5OB+9EcCn0FJmbXvQzU3oiQ8kZdHzihlj3h62Lhbw3QcBX
AA2Ne7xE8vRT1nlHvJM6qMWOM+YpCYI/vKHn8B546+RiWKXEjRYWqD2KZ8K49vyN
5jVYRZtfXtXEtN6gzTuCRvF3W8+rSMPs8a5ydqZFiiRZL5nmlI5SUvN0F2L746A1
rbIi6lvVNo/WG3rBvEJU0C1mkuFwe+ilEVnruk7kQGcI9SNL5fALVTruwYD1zaKY
jbrsgyHKQ+qkL/h+SdFFJtJWUmuyGcoqtKFAmXftIbNEeYGoBDtTq90XwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL/CntCuCYGKpWkVhR4CoU0b/XDmMB8GA1UdIwQY
MBaAFF2Z6NVxOl5jgsDROJ1iQoFvnW+5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFpubzFYRTZYbU9Dd05FNG5XSkNnVy1kYjdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9kMmY5OTItM2ExNy00OTc1LTljMmMt
OWNhOGVhOTBlNjE3LzEvdjhLZTBLNEpnWXFsYVJXRkhnS2hUUnY5Y09ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9kMmY5OTItM2ExNy00OTc1LTljMmMtOWNhOGVhOTBlNjE3
LzEvWFpubzFYRTZYbU9Dd05FNG5XSkNnVy1kYjdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBucL6MA0G
CSqGSIb3DQEBCwUAA4IBAQBU+1jS7WdkMtPXY8KhS56g0oqq3hxa/l1V0RlpPO2M
wGw02H/dzzAzG1D+XVva9IfXyGo73qdG7uI6t6qh7543gNiN7YSjB8aA/7JKa0KK
WZg3ioHQHlTjK3JEFEU5P+ZJppLFZEnL/BVK1ERuH1P4VKJ2Nw8A3OgKe05r+tsR
FFLnye6/xvyVhhIDILh91aVbxvBNKKVqYgLypO9syEbvrH2ccGWold6FGVmJXqrD
IRlA+kVov+dyElMEudDyyyLOEVh1D/VNkcptZKmojk5psCSe/0963m8ERDh21S0R
Cls8KvwW05syBoQNgGrUGfW7n6p7FSE8nw5q+MmSRWml
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:04 2024 by rpki-client on console-fra.rpki-client.org