Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/6ce994-8e99-40f9-a4eb-b2d73678727b/1/edE7vjAGOekDMMLBF1HnuVRDsUA.roa
File: edE7vjAGOekDMMLBF1HnuVRDsUA.roa (raw, json)
Hash identifier: qPtlHOVKV93X3XCZK9r4brp4hvsvsj4JOfm5NuQIrLc=
Subject key identifier: 79:D1:3B:BE:30:06:39:E9:03:30:C2:C1:17:51:E7:B9:54:43:B1:40
Certificate issuer: /CN=60c44dff71879863ea71442023b7f354dc3dad7c
Certificate serial: 018BFB6FFA09C37FA5F9BFB5400C029DE301
Authority key identifier: 60:C4:4D:FF:71:87:98:63:EA:71:44:20:23:B7:F3:54:DC:3D:AD:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMRN_3GHmGPqcUQgI7fzVNw9rXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/6ce994-8e99-40f9-a4eb-b2d73678727b/1/edE7vjAGOekDMMLBF1HnuVRDsUA.roa
Signing time: Thu 23 Nov 2023 09:08:21 +0000
ROA not before: Thu 23 Nov 2023 09:08:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.88.186.0/24 maxlen: 24
185.88.184.0/24 maxlen: 24
185.88.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fb:6f:fa:09:c3:7f:a5:f9:bf:b5:40:0c:02:9d:e3:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c44dff71879863ea71442023b7f354dc3dad7c
Validity
Not Before: Nov 23 09:08:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79d13bbe300639e90330c2c11751e7b95443b140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4d:96:52:b8:a0:01:41:03:9b:0c:0e:53:83:
a8:d3:84:20:73:c0:63:9a:f3:9b:6f:8c:de:df:ca:
8e:73:a6:11:23:6d:72:ed:70:ae:97:2e:fe:73:9b:
c9:c6:3b:b5:c2:43:eb:37:40:b9:08:33:e7:5d:da:
3c:a9:7b:03:97:6a:38:3e:83:00:76:3d:5e:d8:10:
40:ea:60:1a:85:02:80:49:7a:81:e0:bf:45:ff:65:
68:5b:19:2e:d1:32:49:29:5b:3e:89:71:e3:c7:7b:
b7:1f:b3:3e:a6:0c:5d:c6:2e:ae:9c:e9:d6:8c:f0:
a7:53:bc:25:bd:62:c9:1e:23:83:74:f3:e1:2c:fb:
3c:0c:27:fb:bf:df:17:a6:92:54:aa:3e:a5:7d:74:
6a:42:d4:a3:53:8f:c4:a7:b8:4b:46:e9:f7:6b:6d:
fc:40:bf:8e:98:58:2e:37:56:c2:de:9e:9a:c9:12:
0c:46:42:10:8b:5a:8a:3e:7b:c5:9e:54:2f:f1:8e:
a4:14:aa:c7:08:5a:8b:6b:f0:95:7c:e1:17:81:c5:
28:bf:b8:dc:c9:e9:79:b4:e3:8e:76:ad:b8:3d:f3:
e3:56:f7:04:09:60:6a:77:21:60:63:ee:33:53:24:
ef:bc:0a:de:2a:4b:f6:a9:5b:dd:05:ee:1a:3c:12:
61:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D1:3B:BE:30:06:39:E9:03:30:C2:C1:17:51:E7:B9:54:43:B1:40
X509v3 Authority Key Identifier:
keyid:60:C4:4D:FF:71:87:98:63:EA:71:44:20:23:B7:F3:54:DC:3D:AD:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMRN_3GHmGPqcUQgI7fzVNw9rXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6ce994-8e99-40f9-a4eb-b2d73678727b/1/edE7vjAGOekDMMLBF1HnuVRDsUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6ce994-8e99-40f9-a4eb-b2d73678727b/1/YMRN_3GHmGPqcUQgI7fzVNw9rXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.184.0-185.88.186.255
Signature Algorithm: sha256WithRSAEncryption
a8:bd:93:81:57:b4:cf:12:18:83:b4:ec:7d:9f:f6:de:7a:93:
95:24:ff:cf:71:7a:8a:09:7a:a2:87:98:57:ad:24:88:0b:d6:
b4:ba:69:01:a9:3b:11:05:9e:23:0a:74:bc:8c:26:69:c9:b9:
8c:84:c5:0e:19:21:4c:8d:ca:2a:2d:d1:ca:3f:36:3e:2d:68:
57:d0:01:ba:19:55:a4:3f:4f:21:06:a9:93:db:d5:17:3e:b5:
06:37:07:2a:63:77:1a:0a:18:3b:9f:05:0f:25:a7:92:31:e7:
3c:33:66:77:a9:38:0d:4e:6d:77:81:75:46:f9:53:31:d8:b1:
3f:62:4f:78:dd:76:a4:bb:ee:38:81:31:ff:5b:94:f7:f0:61:
b9:f1:07:cc:a4:3f:ad:d5:e4:05:c8:ae:14:60:ff:c9:51:87:
82:86:d1:7e:5f:32:58:14:23:ad:94:cc:b6:04:be:a0:20:f4:
48:5c:62:b4:31:93:28:24:88:16:2e:74:aa:2b:dd:b8:79:0c:
be:0e:48:02:35:99:a2:03:53:22:ac:3c:db:4e:dc:6b:3b:25:
f8:14:a9:9d:71:32:80:b3:55:a1:41:1a:2a:87:e5:b0:12:34:
d2:dc:06:5b:0f:e1:29:1f:c3:d1:57:76:67:08:16:76:89:e3:
91:36:c2:3d
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYv7b/oJw3+l+b+1QAwCneMBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwYzQ0ZGZmNzE4Nzk4NjNlYTcxNDQyMDIzYjdmMzU0ZGMz
ZGFkN2MwHhcNMjMxMTIzMDkwODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWQxM2JiZTMwMDYzOWU5MDMzMGMyYzExNzUxZTdiOTU0NDNiMTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhk2WUrigAUEDmwwOU4Oo04Qgc8Bj
mvObb4ze38qOc6YRI21y7XCuly7+c5vJxju1wkPrN0C5CDPnXdo8qXsDl2o4PoMA
dj1e2BBA6mAahQKASXqB4L9F/2VoWxku0TJJKVs+iXHjx3u3H7M+pgxdxi6unOnW
jPCnU7wlvWLJHiODdPPhLPs8DCf7v98XppJUqj6lfXRqQtSjU4/Ep7hLRun3a238
QL+OmFguN1bC3p6ayRIMRkIQi1qKPnvFnlQv8Y6kFKrHCFqLa/CVfOEXgcUov7jc
yel5tOOOdq24PfPjVvcECWBqdyFgY+4zUyTvvAreKkv2qVvdBe4aPBJhcwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFHnRO74wBjnpAzDCwRdR57lUQ7FAMB8GA1UdIwQY
MBaAFGDETf9xh5hj6nFEICO381TcPa18MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWU1STl8zR0htR1BxY1VRZ0k3ZnpWTnc5clh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82Y2U5OTQtOGU5OS00MGY5LWE0ZWIt
YjJkNzM2Nzg3MjdiLzEvZWRFN3ZqQUdPZWtETU1MQkYxSG51VlJEc1VBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC82Y2U5OTQtOGU5OS00MGY5LWE0ZWItYjJkNzM2Nzg3Mjdi
LzEvWU1STl8zR0htR1BxY1VRZ0k3ZnpWTnc5clh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAO5WLgD
BAC5WLowDQYJKoZIhvcNAQELBQADggEBAKi9k4FXtM8SGIO07H2f9t56k5Uk/89x
eooJeqKHmFetJIgL1rS6aQGpOxEFniMKdLyMJmnJuYyExQ4ZIUyNyiot0co/Nj4t
aFfQAboZVaQ/TyEGqZPb1Rc+tQY3BypjdxoKGDufBQ8lp5Ix5zwzZnepOA1ObXeB
dUb5UzHYsT9iT3jddqS77jiBMf9blPfwYbnxB8ykP63V5AXIrhRg/8lRh4KG0X5f
MlgUI62UzLYEvqAg9EhcYrQxkygkiBYudKor3bh5DL4OSAI1maIDUyKsPNtO3Gs7
JfgUqZ1xMoCzVaFBGiqH5bASNNLcBlsP4Skfw9FXdmcIFnaJ45E2wj0=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:47 2025 by rpki-client