Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/EM1mY95sIQ1_1uWk9hc4knaBmns.roa
File: EM1mY95sIQ1_1uWk9hc4knaBmns.roa (raw, json)
Hash identifier: UcFGXrUPRjGeqam4Oep4PzB0fiLeJMt+91rv+SjtE40=
Subject key identifier: 10:CD:66:63:DE:6C:21:0D:7F:D6:E5:A4:F6:17:38:92:76:81:9A:7B
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 0FD304E0
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/EM1mY95sIQ1_1uWk9hc4knaBmns.roa
Signing time: Sat 01 Jan 2022 14:07:24 +0000
ROA not before: Sat 01 Jan 2022 14:07:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136796
IP address blocks: 185.192.58.0/24 maxlen: 24
185.192.56.0/24 maxlen: 24
185.192.56.0/22 maxlen: 24
185.192.57.0/24 maxlen: 24
185.192.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265487584 (0xfd304e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 1 14:07:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10cd6663de6c210d7fd6e5a4f617389276819a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:4e:b9:35:2a:5d:9d:6d:e0:e8:7e:fd:75:
e2:27:b1:29:61:b0:c5:21:9e:62:7c:8e:fb:72:f8:
c9:ab:03:fd:4e:2c:6d:b4:f5:b2:4d:12:b1:fb:5e:
cd:b4:68:8f:7c:b1:54:07:95:62:fc:f2:ca:c6:da:
3c:33:e8:69:9c:57:41:aa:98:03:ca:e7:95:cd:a7:
28:3e:48:99:e7:18:71:58:98:b7:ff:ac:82:55:15:
94:3a:e6:d0:be:5e:46:b0:69:ff:ef:09:b8:ad:40:
b2:bd:ab:70:9a:78:4a:6c:90:6d:43:f5:e7:13:65:
0f:b3:3a:25:11:90:ce:30:ed:d0:78:f4:dc:89:4e:
b8:a9:47:2c:7f:84:43:0d:a3:15:4a:ac:5d:cb:c9:
1a:33:6b:99:ef:0d:2c:80:67:36:ee:eb:3c:aa:48:
df:0c:ac:63:96:7a:c0:5b:c4:a3:f7:f7:03:62:d0:
22:26:89:97:1d:39:5d:52:7c:d7:ec:68:c5:15:8b:
45:5f:1b:36:74:b1:de:16:7b:30:e2:91:cf:96:c5:
e9:ef:f9:95:d8:3d:64:4a:92:71:c0:9f:90:f3:48:
6d:71:a8:83:bc:ee:bc:42:5a:b0:a5:c3:59:54:06:
09:11:76:f4:28:7c:db:7a:e2:63:20:71:23:7c:e1:
b5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CD:66:63:DE:6C:21:0D:7F:D6:E5:A4:F6:17:38:92:76:81:9A:7B
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/EM1mY95sIQ1_1uWk9hc4knaBmns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.56.0/22
Signature Algorithm: sha256WithRSAEncryption
27:4b:71:95:fb:4c:45:02:7c:66:98:76:d2:d3:cc:1b:66:6c:
e0:0a:58:e7:79:8a:02:06:17:e1:f9:79:2c:21:63:ce:cc:b2:
41:98:74:1d:a8:28:06:ff:17:ff:bd:e3:f0:d6:f5:12:96:a7:
73:fb:45:17:5e:67:54:bd:22:1e:01:92:5b:4a:8f:f8:a6:4a:
99:0f:6f:dd:27:95:87:d8:ab:75:16:22:24:94:e0:82:c5:12:
53:ef:de:ee:d5:29:ed:79:f1:ce:f9:31:3a:d9:e7:d1:cf:9b:
03:d9:18:62:f8:10:fa:40:74:1c:f9:a2:dd:5e:81:04:9f:24:
f3:e6:79:3e:e5:b5:55:26:e5:55:f6:48:3f:c4:c2:e9:51:65:
c2:bf:5b:10:1a:0f:ca:82:5c:c9:2c:6d:22:fa:48:74:ab:c1:
9f:08:be:c4:bc:87:72:77:0c:c9:32:c4:b3:16:50:92:04:d7:
b5:92:85:63:04:7c:c7:7f:c3:a7:38:f3:c4:1f:42:05:d8:49:
f2:d5:63:2f:18:d1:de:a0:3e:37:5e:25:f4:12:c0:8a:6e:bf:
88:dc:ea:29:9d:f4:5e:ee:8f:06:2a:be:d1:ba:bc:d0:d4:45:
2f:6e:df:7a:1e:4d:9f:48:3e:a6:a3:29:71:37:27:6f:8c:68:
82:7f:94:6f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED9ME4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YTRkZDExNTU0MjQ3YmQyYmQzMDFjZWE0M2ZmNTE4MDM3MmMzOGU0MB4XDTIyMDEw
MTE0MDcyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTBjZDY2NjNkZTZj
MjEwZDdmZDZlNWE0ZjYxNzM4OTI3NjgxOWE3YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALabTrk1Kl2dbeDofv114iexKWGwxSGeYnyO+3L4yasD/U4s
bbT1sk0SsftezbRoj3yxVAeVYvzyysbaPDPoaZxXQaqYA8rnlc2nKD5ImecYcViY
t/+sglUVlDrm0L5eRrBp/+8JuK1Asr2rcJp4SmyQbUP15xNlD7M6JRGQzjDt0Hj0
3IlOuKlHLH+EQw2jFUqsXcvJGjNrme8NLIBnNu7rPKpI3wysY5Z6wFvEo/f3A2LQ
IiaJlx05XVJ81+xoxRWLRV8bNnSx3hZ7MOKRz5bF6e/5ldg9ZEqSccCfkPNIbXGo
g7zuvEJasKXDWVQGCRF29Ch823riYyBxI3zhtb0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQQzWZj3mwhDX/W5aT2FziSdoGaezAfBgNVHSMEGDAWgBQaTdEVVCR70r0w
HOpD/1GANyw45DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0drM1JGVlFrZTlLOU1CenFRXzlSZ0Rjc09PUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvN2JkZGRhLTBjNmMtNGE1ZS1iMWM1LTNiYTVmMzBjYWFiZi8x
L0VNMW1ZOTVzSVExXzF1V2s5aGM0a25hQm1ucy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
N2JkZGRhLTBjNmMtNGE1ZS1iMWM1LTNiYTVmMzBjYWFiZi8xL0drM1JGVlFrZTlL
OU1CenFRXzlSZ0Rjc09PUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnAODANBgkqhkiG9w0BAQsFAAOC
AQEAJ0txlftMRQJ8Zph20tPMG2Zs4ApY53mKAgYX4fl5LCFjzsyyQZh0HagoBv8X
/73j8Nb1Epanc/tFF15nVL0iHgGSW0qP+KZKmQ9v3SeVh9irdRYiJJTggsUSU+/e
7tUp7XnxzvkxOtnn0c+bA9kYYvgQ+kB0HPmi3V6BBJ8k8+Z5PuW1VSblVfZIP8TC
6VFlwr9bEBoPyoJcySxtIvpIdKvBnwi+xLyHcncMyTLEsxZQkgTXtZKFYwR8x3/D
pzjzxB9CBdhJ8tVjLxjR3qA+N14l9BLAim6/iNzqKZ30Xu6PBiq+0bq80NRFL27f
eh5Nn0g+pqMpcTcnb4xogn+Ubw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:38 2023 by rpki-client on console-ams.rpki-client.org