Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/jR70kLpOR7qfXxPvRSU7iTQhpF8.roa
File: jR70kLpOR7qfXxPvRSU7iTQhpF8.roa (raw, json)
Hash identifier: Dzo3WvL4A4p0ryRGAYOmB9kbU2O6B1pE3oUsCqaST9k=
Subject key identifier: 8D:1E:F4:90:BA:4E:47:BA:9F:5F:13:EF:45:25:3B:89:34:21:A4:5F
Certificate issuer: /CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336
Certificate serial: 090A510A
Authority key identifier: 5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/jR70kLpOR7qfXxPvRSU7iTQhpF8.roa
Signing time: Sat 01 Jan 2022 02:54:59 +0000
ROA not before: Sat 01 Jan 2022 02:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8542
IP address blocks: 185.81.12.0/22 maxlen: 22
2a00:ce60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151671050 (0x90a510a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336
Validity
Not Before: Jan 1 02:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d1ef490ba4e47ba9f5f13ef45253b893421a45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ff:29:7a:89:05:35:58:00:ba:b0:7d:17:be:
31:0f:a0:ce:c9:5f:c4:e0:8d:74:ba:59:fb:2b:9f:
2a:60:be:ee:61:0d:a5:31:4a:bc:2c:08:66:c8:ef:
8f:68:b2:4c:80:9c:00:9c:ee:ad:53:a5:eb:b9:80:
f3:46:b0:b7:83:b1:72:83:19:95:c4:dd:2f:5d:2e:
2c:7e:05:9e:fe:28:69:cb:ed:61:48:ec:86:47:14:
37:8c:00:76:07:f0:32:7e:04:0c:1a:08:91:83:b4:
af:df:66:36:6a:89:a1:b3:38:a3:15:07:50:cf:a9:
eb:ef:43:1e:f9:2a:13:5d:9d:a2:c4:09:5d:5c:01:
ab:3d:9f:3d:de:ef:75:d4:19:93:b7:7e:cf:64:20:
e7:9c:c3:3a:8b:0b:6f:4d:0d:e9:29:57:b9:27:84:
ad:31:03:d7:19:b2:6b:c3:39:c6:1d:f1:0f:0a:da:
61:97:f2:45:27:76:b4:aa:9c:b7:af:4e:f8:92:82:
55:81:77:df:cb:95:da:cd:82:a9:d5:4b:18:a9:b0:
0f:fb:8e:99:19:f1:9d:6f:9e:d0:4c:a9:b2:19:95:
d5:e6:13:4d:17:b5:dc:36:f9:1f:ae:db:35:9a:b0:
53:bd:15:dd:0c:26:f2:66:bc:17:37:48:97:cf:9c:
52:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1E:F4:90:BA:4E:47:BA:9F:5F:13:EF:45:25:3B:89:34:21:A4:5F
X509v3 Authority Key Identifier:
keyid:5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/jR70kLpOR7qfXxPvRSU7iTQhpF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/X5n94NY7EbXC3YFsD5PC6lg1AzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.12.0/22
IPv6:
2a00:ce60::/32
Signature Algorithm: sha256WithRSAEncryption
2c:e0:d8:ac:44:df:ef:b7:a3:06:34:02:c1:94:4e:3c:dc:f9:
b0:12:b2:3c:34:20:cf:04:db:ea:50:56:e7:5f:6f:67:c1:db:
ce:c9:76:1b:95:57:d4:bf:e6:4a:a4:ea:fb:2c:a6:db:52:d4:
cd:d1:bf:d3:0f:f8:f2:51:9e:bc:7c:a3:96:b7:68:1e:84:77:
50:eb:fc:5b:04:77:d4:7a:0d:2a:a7:6c:68:99:cf:16:ad:71:
08:52:c9:36:51:6f:13:b9:30:61:c5:e1:62:0a:2b:6d:0b:1f:
e2:c0:e2:61:d9:b9:e1:01:b9:93:c9:3e:81:a8:20:88:e1:41:
0b:5f:45:7f:d0:8b:82:e7:53:54:af:a3:5a:56:a3:77:97:8a:
8d:f0:9c:46:d8:f7:fe:b6:a1:dd:ae:1f:e4:a8:8e:9e:a5:22:
b1:c4:88:cb:bb:69:55:7f:57:8d:d3:cc:d1:76:ba:51:38:e9:
9c:6d:4d:08:0f:01:de:5a:00:87:ac:85:18:57:1e:66:c6:25:
d8:93:c3:3f:8c:2e:c8:a5:1f:05:08:d7:8b:96:e5:0f:14:4c:
b8:2e:dc:3c:5e:38:e1:05:8a:aa:e9:99:66:92:a1:fc:37:6f:
a5:11:20:32:71:94:c8:f2:e4:5a:77:52:71:92:28:e1:8c:ea:
f9:c5:6a:bf
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECQpRCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
Zjk5ZmRlMGQ2M2IxMWI1YzJkZDgxNmMwZjkzYzJlYTU4MzUwMzM2MB4XDTIyMDEw
MTAyNTQ1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQxZWY0OTBiYTRl
NDdiYTlmNWYxM2VmNDUyNTNiODkzNDIxYTQ1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJj/KXqJBTVYALqwfRe+MQ+gzslfxOCNdLpZ+yufKmC+7mEN
pTFKvCwIZsjvj2iyTICcAJzurVOl67mA80awt4OxcoMZlcTdL10uLH4Fnv4oacvt
YUjshkcUN4wAdgfwMn4EDBoIkYO0r99mNmqJobM4oxUHUM+p6+9DHvkqE12dosQJ
XVwBqz2fPd7vddQZk7d+z2Qg55zDOosLb00N6SlXuSeErTED1xmya8M5xh3xDwra
YZfyRSd2tKqct69O+JKCVYF338uV2s2CqdVLGKmwD/uOmRnxnW+e0EypshmV1eYT
TRe13Db5H67bNZqwU70V3Qwm8ma8FzdIl8+cUi8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSNHvSQuk5Hup9fE+9FJTuJNCGkXzAfBgNVHSMEGDAWgBRfmf3g1jsRtcLd
gWwPk8LqWDUDNjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1g1bjk0Tlk3RWJYQzNZRnNENVBDNmxnMUF6WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTMvZjExNmQ3LTg1MTktNDkyNC04ZDFkLTRjNzdkNjA1YWZlYy8x
L2pSNzBrTHBPUjdxZlh4UHZSU1U3aVRRaHBGOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTMv
ZjExNmQ3LTg1MTktNDkyNC04ZDFkLTRjNzdkNjA1YWZlYy8xL1g1bjk0Tlk3RWJY
QzNZRnNENVBDNmxnMUF6WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlRDDANBAIAAjAHAwUAKgDOYDAN
BgkqhkiG9w0BAQsFAAOCAQEALODYrETf77ejBjQCwZROPNz5sBKyPDQgzwTb6lBW
519vZ8Hbzsl2G5VX1L/mSqTq+yym21LUzdG/0w/48lGevHyjlrdoHoR3UOv8WwR3
1HoNKqdsaJnPFq1xCFLJNlFvE7kwYcXhYgorbQsf4sDiYdm54QG5k8k+gaggiOFB
C19Ff9CLgudTVK+jWlajd5eKjfCcRtj3/rah3a4f5KiOnqUiscSIy7tpVX9XjdPM
0Xa6UTjpnG1NCA8B3loAh6yFGFceZsYl2JPDP4wuyKUfBQjXi5blDxRMuC7cPF44
4QWKqumZZpKh/DdvpREgMnGUyPLkWndScZIo4Yzq+cVqvw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:40 2025 by rpki-client