Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/iRWDPihLnE3FWW3CSEwiGjNHCZc.roa
File: iRWDPihLnE3FWW3CSEwiGjNHCZc.roa (raw, json)
Hash identifier: ylnNDyUmFB5pdGWVtqoXw2JJJFdA4Oj8vLBur9A6QIM=
Subject key identifier: 89:15:83:3E:28:4B:9C:4D:C5:59:6D:C2:48:4C:22:1A:33:47:09:97
Certificate issuer: /CN=97de85c684fcff83ec4148ab5f6f67cd1504f93d
Certificate serial: 022566EB
Authority key identifier: 97:DE:85:C6:84:FC:FF:83:EC:41:48:AB:5F:6F:67:CD:15:04:F9:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l96FxoT8_4PsQUirX29nzRUE-T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/iRWDPihLnE3FWW3CSEwiGjNHCZc.roa
Signing time: Sat 01 Jan 2022 10:56:08 +0000
ROA not before: Sat 01 Jan 2022 10:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200698
IP address blocks: 185.212.108.0/22 maxlen: 24
185.164.32.0/22 maxlen: 24
185.99.0.0/22 maxlen: 24
2a00:8620::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36005611 (0x22566eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97de85c684fcff83ec4148ab5f6f67cd1504f93d
Validity
Not Before: Jan 1 10:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8915833e284b9c4dc5596dc2484c221a33470997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8d:33:1b:9c:02:90:c3:c1:94:7a:ed:a3:92:
db:df:3e:e8:70:69:23:82:53:35:63:94:d1:b3:08:
1b:1b:d2:29:5d:24:2a:79:bb:2a:45:91:d3:59:32:
36:29:38:0f:47:71:1c:66:fa:79:85:97:ea:0b:0b:
f7:be:88:ef:d6:a9:1e:4b:93:fb:6c:9f:66:a7:98:
19:73:58:86:0d:5c:86:71:a5:ba:8f:c1:5e:a2:6f:
ec:d3:72:11:be:f6:e0:9e:a7:86:f5:9b:2f:7a:5a:
88:89:9f:a8:dd:f6:2a:2a:99:ab:73:e9:f4:52:37:
4e:a5:42:d0:b0:b3:06:61:60:42:39:e8:9d:df:e8:
d7:a5:0f:c4:7b:c8:dc:ec:44:b3:1f:68:04:9b:20:
78:29:dc:c0:d7:5c:93:3b:83:af:38:0d:4d:a6:36:
25:2b:69:13:b0:da:95:1e:a7:13:99:9b:ca:b5:f5:
34:37:7e:19:ee:2f:92:18:e6:a3:31:3f:22:d8:b9:
6e:4e:14:b3:81:85:9c:8d:df:85:90:6b:ba:ad:1c:
31:d7:0f:0b:9c:ca:a3:50:af:d1:59:27:24:f0:a6:
95:ec:47:71:8b:d6:68:34:64:c3:f9:21:c4:60:8e:
d6:2e:b3:5d:08:d0:44:d5:86:64:23:9b:c5:15:ef:
1b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:15:83:3E:28:4B:9C:4D:C5:59:6D:C2:48:4C:22:1A:33:47:09:97
X509v3 Authority Key Identifier:
keyid:97:DE:85:C6:84:FC:FF:83:EC:41:48:AB:5F:6F:67:CD:15:04:F9:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l96FxoT8_4PsQUirX29nzRUE-T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/iRWDPihLnE3FWW3CSEwiGjNHCZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/l96FxoT8_4PsQUirX29nzRUE-T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.0.0/22
185.164.32.0/22
185.212.108.0/22
IPv6:
2a00:8620::/32
Signature Algorithm: sha256WithRSAEncryption
6d:19:98:3e:63:e7:2c:3b:dc:9a:ab:3f:7c:47:c8:10:a3:06:
57:1f:13:7b:3e:3e:7d:d7:d4:e6:00:52:f0:03:d3:dd:54:27:
29:a7:f2:4a:29:bf:40:bb:06:d1:60:91:38:2b:0d:e3:00:c2:
88:5b:1e:d2:20:68:58:23:d4:df:41:c5:96:fa:fc:81:75:df:
6e:a5:fe:57:4d:c2:96:5e:b1:e2:9e:15:9b:9a:a7:7d:04:5a:
29:32:16:df:40:0e:1c:26:58:71:81:03:72:45:f4:67:62:aa:
a7:35:f0:59:b9:37:92:c9:38:30:fa:7c:e3:d7:c5:39:a1:54:
93:a3:8c:22:dd:c3:1d:41:9c:66:36:d1:61:15:e6:dc:bd:f4:
18:0e:be:ff:d7:7e:fe:59:29:9c:10:ce:45:fc:71:d1:7c:20:
2c:a7:9b:85:62:a5:22:89:ff:f0:43:05:bb:0a:a3:f0:4e:51:
b8:5d:fe:26:85:40:86:1d:30:0a:1b:36:a4:ec:fb:63:ce:a9:
ec:b0:75:31:97:72:99:70:bf:b3:28:14:a5:96:8b:f6:79:e4:
25:03:8e:5d:55:ae:2c:ea:7a:74:b8:cf:11:f3:60:82:d4:df:
ff:41:70:11:b0:00:91:3d:15:ed:7e:fb:4a:52:f0:c4:c2:6f:
1b:63:8a:c5
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEAiVm6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
N2RlODVjNjg0ZmNmZjgzZWM0MTQ4YWI1ZjZmNjdjZDE1MDRmOTNkMB4XDTIyMDEw
MTEwNTYwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODkxNTgzM2UyODRi
OWM0ZGM1NTk2ZGMyNDg0YzIyMWEzMzQ3MDk5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANKNMxucApDDwZR67aOS298+6HBpI4JTNWOU0bMIGxvSKV0k
Knm7KkWR01kyNik4D0dxHGb6eYWX6gsL976I79apHkuT+2yfZqeYGXNYhg1chnGl
uo/BXqJv7NNyEb724J6nhvWbL3paiImfqN32KiqZq3Pp9FI3TqVC0LCzBmFgQjno
nd/o16UPxHvI3OxEsx9oBJsgeCncwNdckzuDrzgNTaY2JStpE7DalR6nE5mbyrX1
NDd+Ge4vkhjmozE/Iti5bk4Us4GFnI3fhZBruq0cMdcPC5zKo1Cv0VknJPCmlexH
cYvWaDRkw/khxGCO1i6zXQjQRNWGZCObxRXvGw8CAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBSJFYM+KEucTcVZbcJITCIaM0cJlzAfBgNVHSMEGDAWgBSX3oXGhPz/g+xB
SKtfb2fNFQT5PTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2w5NkZ4b1Q4XzRQc1FVaXJYMjluelJVRS1UMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvZGI0NTI2LWUwZWYtNGUyMi04ZmY5LTUwMzBkMGFlNmViYy8x
L2lSV0RQaWhMbkUzRldXM0NTRXdpR2pOSENaYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
ZGI0NTI2LWUwZWYtNGUyMi04ZmY5LTUwMzBkMGFlNmViYy8xL2w5NkZ4b1Q4XzRQ
c1FVaXJYMjluelJVRS1UMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEArljAAMEArmkIAMEArnUbDANBAIA
AjAHAwUAKgCGIDANBgkqhkiG9w0BAQsFAAOCAQEAbRmYPmPnLDvcmqs/fEfIEKMG
Vx8Tez4+fdfU5gBS8APT3VQnKafySim/QLsG0WCROCsN4wDCiFse0iBoWCPU30HF
lvr8gXXfbqX+V03Cll6x4p4Vm5qnfQRaKTIW30AOHCZYcYEDckX0Z2KqpzXwWbk3
ksk4MPp849fFOaFUk6OMIt3DHUGcZjbRYRXm3L30GA6+/9d+/lkpnBDORfxx0Xwg
LKebhWKlIon/8EMFuwqj8E5RuF3+JoVAhh0wChs2pOz7Y86p7LB1MZdymXC/sygU
pZaL9nnkJQOOXVWuLOp6dLjPEfNggtTf/0FwEbAAkT0V7X77SlLwxMJvG2OKxQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:13 2024 by rpki-client on console-ams.rpki-client.org