Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/k4P2RhYv3Y4nMasSYgMGZE2stLs.roa
File: k4P2RhYv3Y4nMasSYgMGZE2stLs.roa (raw, json)
Hash identifier: yp8lkW5eW0BrPP2r2brRIkWLuumH2jyvDf75iWqFOrU=
Subject key identifier: 93:83:F6:46:16:2F:DD:8E:27:31:AB:12:62:03:06:64:4D:AC:B4:BB
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 0183E9F773165AD24709BDDF6C6975AD0FDD
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/k4P2RhYv3Y4nMasSYgMGZE2stLs.roa
Signing time: Tue 18 Oct 2022 07:20:51 +0000
ROA not before: Tue 18 Oct 2022 07:20:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3262
IP address blocks: 185.219.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e9:f7:73:16:5a:d2:47:09:bd:df:6c:69:75:ad:0f:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Oct 18 07:20:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9383f646162fdd8e2731ab12620306644dacb4bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7d:20:65:be:12:6f:df:17:77:e6:c6:e8:a9:
a7:12:d4:56:29:3e:f9:2b:0a:6a:3b:bb:16:92:91:
55:1f:3e:99:04:24:6b:a4:e1:f2:9e:b3:85:bb:1d:
22:c4:6d:9a:94:ba:59:8a:3d:67:a0:38:6d:a3:4c:
4e:67:41:02:c5:6b:11:78:8c:09:85:49:a4:08:bc:
60:7d:be:50:f3:de:50:3a:6e:eb:f9:7c:e4:4d:fd:
df:cd:bc:56:b1:22:7d:fb:9b:90:5f:0d:09:64:b4:
a6:7e:30:77:d5:7f:ba:d5:19:1a:66:97:51:35:03:
41:cb:4a:f4:cb:f6:16:07:ac:5d:60:46:7f:65:19:
2d:5d:e7:46:6f:e7:bf:f1:3a:04:82:bd:37:d3:81:
52:3b:c9:8f:6d:c0:8e:47:40:7d:44:67:db:c3:b1:
cf:6a:7b:94:f2:1a:73:9b:55:83:bf:03:d6:1c:4b:
9d:d8:01:20:2d:6c:e6:69:ed:ae:80:b4:20:de:d1:
4e:4f:ee:44:92:5a:4f:fe:fd:12:51:09:74:d3:66:
f2:dc:c0:02:f0:17:4b:2b:c5:08:33:65:3c:43:2e:
e6:70:da:78:dc:e3:56:4e:b6:b2:b0:1a:d9:80:5e:
4f:36:83:37:33:f3:1a:c5:c1:4e:dd:45:b0:b0:b1:
4e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:83:F6:46:16:2F:DD:8E:27:31:AB:12:62:03:06:64:4D:AC:B4:BB
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/k4P2RhYv3Y4nMasSYgMGZE2stLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.217.0/24
Signature Algorithm: sha256WithRSAEncryption
31:87:17:c2:fa:37:5a:e7:2a:05:01:df:37:89:77:20:04:0c:
c0:0a:14:4a:45:18:8b:9b:5e:51:7d:ef:21:d4:b1:84:b6:be:
8e:0c:4a:ed:95:04:fe:c8:47:81:41:90:5c:af:88:d0:b0:c5:
eb:fb:84:f0:9c:10:a4:33:8b:3e:e4:0e:16:f7:4c:b7:df:c0:
00:a8:08:a2:a8:b9:56:0c:65:ca:65:ee:38:67:37:89:d4:28:
a3:65:dd:33:84:51:df:54:cc:42:1b:b2:c9:b9:b1:28:99:75:
02:eb:a3:5f:88:c9:25:7a:f8:f9:6e:e6:06:53:ac:46:1e:b6:
47:14:92:17:9e:49:af:d0:ac:ce:89:e8:ec:ce:58:c9:a6:b7:
3c:59:2b:a3:ac:97:00:8b:16:17:b6:96:23:c0:a2:79:44:e9:
6a:64:b8:ef:c7:e6:3b:2e:45:21:51:b4:75:28:7f:83:bc:25:
a7:e8:c3:8e:b9:1d:3b:ab:92:79:19:d2:2b:26:e1:1c:d8:1f:
84:21:53:36:28:cf:ee:77:b8:03:2f:1c:60:2c:31:54:69:61:
4b:a0:08:1c:a8:a8:7f:47:10:6e:2d:18:d7:75:ad:1c:33:26:
b2:da:48:f1:7e:f2:2d:5b:98:46:d7:06:bd:d2:5d:24:9a:b6:
11:58:28:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPp93MWWtJHCb3fbGl1rQ/dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYTMxODY1OTc3NDJhOTI2Y2QyNjUwNGUxZWQ3NmY4NTQz
ZmRiMjYwHhcNMjIxMDE4MDcyMDUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MzgzZjY0NjE2MmZkZDhlMjczMWFiMTI2MjAzMDY2NDRkYWNiNGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi30gZb4Sb98Xd+bG6KmnEtRWKT75
KwpqO7sWkpFVHz6ZBCRrpOHynrOFux0ixG2alLpZij1noDhto0xOZ0ECxWsReIwJ
hUmkCLxgfb5Q895QOm7r+XzkTf3fzbxWsSJ9+5uQXw0JZLSmfjB31X+61RkaZpdR
NQNBy0r0y/YWB6xdYEZ/ZRktXedGb+e/8ToEgr0304FSO8mPbcCOR0B9RGfbw7HP
anuU8hpzm1WDvwPWHEud2AEgLWzmae2ugLQg3tFOT+5EklpP/v0SUQl002by3MAC
8BdLK8UIM2U8Qy7mcNp43ONWTraysBrZgF5PNoM3M/MaxcFO3UWwsLFOnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJOD9kYWL92OJzGrEmIDBmRNrLS7MB8GA1UdIwQY
MBaAFGujGGWXdCqSbNJlBOHtdvhUP9smMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTZNWVpaZDBLcEpzMG1VRTRlMTItRlFfMnlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi85ZDU5MTAtOWY1ZS00NDZjLThkM2Mt
YmMwMDdmMmRhYzI0LzEvazRQMlJoWXYzWTRuTWFzU1lnTUdaRTJzdExzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi85ZDU5MTAtOWY1ZS00NDZjLThkM2MtYmMwMDdmMmRhYzI0
LzEvYTZNWVpaZDBLcEpzMG1VRTRlMTItRlFfMnlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudvZMA0G
CSqGSIb3DQEBCwUAA4IBAQAxhxfC+jda5yoFAd83iXcgBAzAChRKRRiLm15Rfe8h
1LGEtr6ODErtlQT+yEeBQZBcr4jQsMXr+4TwnBCkM4s+5A4W90y338AAqAiiqLlW
DGXKZe44ZzeJ1CijZd0zhFHfVMxCG7LJubEomXUC66NfiMklevj5buYGU6xGHrZH
FJIXnkmv0KzOiejszljJprc8WSujrJcAixYXtpYjwKJ5ROlqZLjvx+Y7LkUhUbR1
KH+DvCWn6MOOuR07q5J5GdIrJuEc2B+EIVM2KM/ud7gDLxxgLDFUaWFLoAgcqKh/
RxBuLRjXda0cMyay2kjxfvItW5hG1wa90l0kmrYRWCjZ
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:50 2025 by rpki-client