Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/6e5ff1-39f9-466b-827f-7bc268a0b517/1/mfvVJ0SGJeWXSOK1tAAxdi-BwY8.roa
File: mfvVJ0SGJeWXSOK1tAAxdi-BwY8.roa (raw, json)
Hash identifier: Uz7n2Y5NzTZ6z4OprMChMAMBFCm+TfUKhwPINoW0b4U=
Subject key identifier: 99:FB:D5:27:44:86:25:E5:97:48:E2:B5:B4:00:31:76:2F:81:C1:8F
Certificate issuer: /CN=6b66c53b13566d01c4a893adf130bbb4fa1653aa
Certificate serial: 0A6EC707
Authority key identifier: 6B:66:C5:3B:13:56:6D:01:C4:A8:93:AD:F1:30:BB:B4:FA:16:53:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a2bFOxNWbQHEqJOt8TC7tPoWU6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/6e5ff1-39f9-466b-827f-7bc268a0b517/1/mfvVJ0SGJeWXSOK1tAAxdi-BwY8.roa
Signing time: Sat 01 Jan 2022 15:04:37 +0000
ROA not before: Sat 01 Jan 2022 15:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204817
IP address blocks: 185.219.8.0/22 maxlen: 24
2a0b:dd40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175032071 (0xa6ec707)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b66c53b13566d01c4a893adf130bbb4fa1653aa
Validity
Not Before: Jan 1 15:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99fbd527448625e59748e2b5b40031762f81c18f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:fa:2d:a4:0d:50:a6:79:f0:a5:d2:6a:72:
19:0e:0e:13:95:4b:62:f2:2e:95:8f:45:34:13:ee:
48:9f:f8:3c:c6:16:dc:1e:50:4c:bb:18:8a:67:9e:
0f:a0:f5:73:20:15:56:00:75:a1:0d:d9:7c:9c:e9:
7e:e4:83:a3:e6:49:9c:17:77:0e:0f:68:97:c3:38:
4a:8b:3b:53:db:cf:22:ad:7d:12:5a:65:a4:de:41:
f2:c1:4c:b8:03:13:33:7d:40:1a:35:bd:e7:4f:7f:
1d:97:54:55:32:7e:9b:1c:0b:53:12:e2:b3:90:64:
96:af:67:36:7d:f4:4f:1a:a7:27:90:c3:03:32:83:
15:b6:ce:37:1b:6c:ec:89:4c:d3:89:c6:97:a8:49:
cc:6f:7f:68:a1:6c:e4:84:28:99:8b:d5:93:11:44:
9a:64:f2:48:b9:54:10:8b:7a:db:2e:91:48:31:36:
c1:10:ee:db:4b:60:15:1a:6b:fb:a4:d5:c1:f0:6c:
11:e5:6c:2f:41:5d:ec:ed:a7:a9:24:86:f8:8e:d9:
48:93:49:38:eb:2f:e7:8f:fa:d5:da:72:18:d0:d9:
de:57:f4:37:37:f6:5d:18:f0:c5:85:0e:dc:cb:71:
90:37:86:56:68:a6:7b:49:1e:0e:35:9e:3f:cc:ab:
9d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FB:D5:27:44:86:25:E5:97:48:E2:B5:B4:00:31:76:2F:81:C1:8F
X509v3 Authority Key Identifier:
keyid:6B:66:C5:3B:13:56:6D:01:C4:A8:93:AD:F1:30:BB:B4:FA:16:53:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2bFOxNWbQHEqJOt8TC7tPoWU6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/6e5ff1-39f9-466b-827f-7bc268a0b517/1/mfvVJ0SGJeWXSOK1tAAxdi-BwY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/6e5ff1-39f9-466b-827f-7bc268a0b517/1/a2bFOxNWbQHEqJOt8TC7tPoWU6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.8.0/22
IPv6:
2a0b:dd40::/29
Signature Algorithm: sha256WithRSAEncryption
b0:7c:9c:00:52:69:be:23:1e:68:4e:94:29:cf:47:06:ba:6a:
4f:43:0a:04:84:d3:1a:09:56:8c:51:0f:da:5a:7d:a7:c0:c2:
b8:8a:c9:2e:bb:1d:66:cf:1f:94:0f:69:3e:93:df:87:57:00:
9a:bf:da:d7:1b:b2:5a:b9:72:cf:94:bb:0e:e6:be:3e:f0:45:
00:41:4c:a5:1b:a8:22:d5:b8:ed:f6:f3:35:2a:5a:35:3b:17:
2d:cb:0b:cf:6b:74:4b:ff:0c:de:74:50:8b:f9:d1:4c:e4:02:
57:b4:68:47:0b:3f:16:68:62:a3:a6:82:df:02:e8:c0:bb:e0:
27:44:b6:18:8c:6b:90:c7:28:e9:61:c0:94:65:ea:a4:09:01:
f7:c6:47:dc:ee:f6:94:54:29:7e:eb:18:9f:1b:4e:54:60:81:
96:b5:f2:cd:23:0e:4a:5e:1d:61:fa:e3:e6:c5:09:3e:3e:37:
02:bc:41:cb:20:39:28:56:03:30:2a:6d:37:8e:71:c1:b3:37:
8b:3b:35:c9:ee:73:cb:d3:c0:38:31:c1:ca:c7:a1:42:39:81:
f1:a8:3d:40:83:5a:b5:81:a1:4d:fa:25:42:31:c3:48:70:b5:
d3:fb:72:b2:6e:ff:ad:32:12:b4:c2:92:c5:ac:73:a2:a9:c5:
eb:aa:36:43
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECm7HBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YjY2YzUzYjEzNTY2ZDAxYzRhODkzYWRmMTMwYmJiNGZhMTY1M2FhMB4XDTIyMDEw
MTE1MDQzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTlmYmQ1Mjc0NDg2
MjVlNTk3NDhlMmI1YjQwMDMxNzYyZjgxYzE4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK0R+i2kDVCmefCl0mpyGQ4OE5VLYvIulY9FNBPuSJ/4PMYW
3B5QTLsYimeeD6D1cyAVVgB1oQ3ZfJzpfuSDo+ZJnBd3Dg9ol8M4Sos7U9vPIq19
ElplpN5B8sFMuAMTM31AGjW9509/HZdUVTJ+mxwLUxLis5Bklq9nNn30TxqnJ5DD
AzKDFbbONxts7IlM04nGl6hJzG9/aKFs5IQomYvVkxFEmmTySLlUEIt62y6RSDE2
wRDu20tgFRpr+6TVwfBsEeVsL0Fd7O2nqSSG+I7ZSJNJOOsv54/61dpyGNDZ3lf0
Nzf2XRjwxYUO3MtxkDeGVmime0keDjWeP8yrnSkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSZ+9UnRIYl5ZdI4rW0ADF2L4HBjzAfBgNVHSMEGDAWgBRrZsU7E1ZtAcSo
k63xMLu0+hZTqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2EyYkZPeE5XYlFIRXFKT3Q4VEM3dFBvV1U2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTgvNmU1ZmYxLTM5ZjktNDY2Yi04MjdmLTdiYzI2OGEwYjUxNy8x
L21mdlZKMFNHSmVXWFNPSzF0QUF4ZGktQndZOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTgv
NmU1ZmYxLTM5ZjktNDY2Yi04MjdmLTdiYzI2OGEwYjUxNy8xL2EyYkZPeE5XYlFI
RXFKT3Q4VEM3dFBvV1U2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnbCDANBAIAAjAHAwUDKgvdQDAN
BgkqhkiG9w0BAQsFAAOCAQEAsHycAFJpviMeaE6UKc9HBrpqT0MKBITTGglWjFEP
2lp9p8DCuIrJLrsdZs8flA9pPpPfh1cAmr/a1xuyWrlyz5S7Dua+PvBFAEFMpRuo
ItW47fbzNSpaNTsXLcsLz2t0S/8M3nRQi/nRTOQCV7RoRws/Fmhio6aC3wLowLvg
J0S2GIxrkMco6WHAlGXqpAkB98ZH3O72lFQpfusYnxtOVGCBlrXyzSMOSl4dYfrj
5sUJPj43ArxByyA5KFYDMCptN45xwbM3izs1ye5zy9PAODHBysehQjmB8ag9QINa
tYGhTfolQjHDSHC10/tysm7/rTIStMKSxaxzoqnF66o2Qw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:52 2024 by rpki-client on console-fra.rpki-client.org