Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/RU6lbO0mMWW8vOo0A7VDm7eTyaA.roa
File: RU6lbO0mMWW8vOo0A7VDm7eTyaA.roa (raw, json)
Hash identifier: isCqbA/Uamf/OZA1uewYS+kSt8FCbx9U+up3e7nDne0=
Subject key identifier: 45:4E:A5:6C:ED:26:31:65:BC:BC:EA:34:03:B5:43:9B:B7:93:C9:A0
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 02911D6E
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/RU6lbO0mMWW8vOo0A7VDm7eTyaA.roa
Signing time: Wed 27 Apr 2022 10:55:51 +0000
ROA not before: Wed 27 Apr 2022 10:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.22.57.0/24 maxlen: 24
195.14.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43064686 (0x2911d6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Apr 27 10:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=454ea56ced263165bcbcea3403b5439bb793c9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:30:65:18:c1:94:77:ee:50:08:cf:17:de:05:
1c:97:1a:79:35:85:6b:62:6f:06:26:e5:80:b5:01:
89:fb:e0:db:2b:13:ac:0b:79:4e:06:6f:60:55:c6:
53:45:6e:dc:35:89:3e:ee:d3:2f:cb:62:0c:e0:9a:
7f:71:8b:16:bd:43:12:bb:cd:5b:80:d5:2e:de:2f:
85:89:43:28:a7:33:68:f7:4a:5f:30:59:be:b5:04:
f4:d1:ab:cf:4d:93:df:e6:ad:ac:3f:f6:63:ce:45:
98:f1:d5:30:56:b7:a8:2b:14:4d:a6:86:f8:dd:b7:
f7:29:9e:1b:d6:e8:d3:cb:48:88:3e:2f:5d:55:54:
d1:6b:c1:e8:31:f9:90:1d:0a:82:8e:25:89:92:3d:
3b:e8:d6:2f:cd:16:df:d3:31:61:70:85:93:33:2e:
61:d3:ca:bc:76:0e:24:95:1c:4c:4d:ef:21:f6:a4:
f3:64:29:a0:3e:0c:64:5a:35:d4:11:14:fa:ff:55:
6c:19:60:bd:b9:33:5e:7e:c9:d2:4a:69:20:f3:6c:
a0:2a:49:32:5c:29:9b:ea:e8:86:f6:fd:e4:d5:00:
bd:e9:44:7a:e8:08:19:17:83:d3:a1:60:6d:aa:3b:
46:52:34:ae:4b:74:27:cd:2f:6d:f7:38:83:5d:e5:
93:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4E:A5:6C:ED:26:31:65:BC:BC:EA:34:03:B5:43:9B:B7:93:C9:A0
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/RU6lbO0mMWW8vOo0A7VDm7eTyaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.57.0/24
195.14.105.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:26:86:86:43:ce:37:14:11:b7:ed:63:5d:a9:93:a2:94:c7:
a2:4c:7d:e3:6c:4c:04:72:61:0d:75:a1:ec:99:35:95:41:95:
00:d8:c8:21:e1:60:86:69:ae:13:61:f1:49:b7:44:65:10:0e:
82:04:c4:a6:ae:a1:c0:88:0c:c3:33:a1:98:00:c2:e3:90:b2:
7a:11:80:08:77:5f:c8:51:05:f3:84:f8:3a:09:01:ee:8c:98:
0a:33:5b:b9:ed:ab:90:c5:f6:83:5a:57:3f:c6:bb:73:72:84:
fd:b0:f9:0e:3c:e4:2a:d0:3f:71:6c:1a:86:c9:d6:c0:13:2a:
4d:d5:15:01:79:c3:47:b4:0a:ef:75:90:c2:cd:26:fc:01:2b:
25:ca:b1:59:c4:d7:75:40:a1:87:f5:87:da:f1:b0:f9:ea:31:
93:75:ef:f8:44:07:42:3f:d2:e3:52:1b:c1:ee:85:4a:b5:d0:
bf:29:cb:e8:1b:2a:b3:c6:1c:29:9a:77:de:2d:72:d6:80:0f:
a7:f5:30:5d:08:bb:ee:6e:dd:c9:71:dc:37:3c:b0:57:4b:50:
be:a9:88:52:b0:aa:94:22:f8:33:81:5b:7e:ba:b8:ee:b2:7c:
c5:f0:8d:9e:45:cc:c2:e3:3e:a9:25:b8:0f:db:27:d2:03:f1:
e0:8c:b5:9c
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEApEdbjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWMyYzFhZmQ0YmRlYzk4MDUwNmZhMDdkZjdjODY2MmQ1NTRmYTQ2MB4XDTIyMDQy
NzEwNTU1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDU0ZWE1NmNlZDI2
MzE2NWJjYmNlYTM0MDNiNTQzOWJiNzkzYzlhMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKYwZRjBlHfuUAjPF94FHJcaeTWFa2JvBiblgLUBifvg2ysT
rAt5TgZvYFXGU0Vu3DWJPu7TL8tiDOCaf3GLFr1DErvNW4DVLt4vhYlDKKczaPdK
XzBZvrUE9NGrz02T3+atrD/2Y85FmPHVMFa3qCsUTaaG+N239ymeG9bo08tIiD4v
XVVU0WvB6DH5kB0Kgo4liZI9O+jWL80W39MxYXCFkzMuYdPKvHYOJJUcTE3vIfak
82QpoD4MZFo11BEU+v9VbBlgvbkzXn7J0kppIPNsoCpJMlwpm+rohvb95NUAvelE
eugIGReD06Fgbao7RlI0rkt0J80vbfc4g13lk6kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRFTqVs7SYxZby86jQDtUObt5PJoDAfBgNVHSMEGDAWgBTqwsGv1L3smAUG
+gfffIZi1VT6RjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZzTEJyOVM5N0pnRkJ2b0gzM3lHWXRWVS1rWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvNTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8x
L1JVNmxiTzBtTVdXOHZPbzBBN1ZEbTdlVHlhQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
NTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8xLzZzTEJyOVM5N0pn
RkJ2b0gzM3lHWXRWVS1rWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALkWOQMEAMMOaTANBgkqhkiG9w0B
AQsFAAOCAQEAbyaGhkPONxQRt+1jXamTopTHokx942xMBHJhDXWh7Jk1lUGVANjI
IeFghmmuE2HxSbdEZRAOggTEpq6hwIgMwzOhmADC45CyehGACHdfyFEF84T4OgkB
7oyYCjNbue2rkMX2g1pXP8a7c3KE/bD5DjzkKtA/cWwahsnWwBMqTdUVAXnDR7QK
73WQws0m/AErJcqxWcTXdUChh/WH2vGw+eoxk3Xv+EQHQj/S41Ibwe6FSrXQvynL
6Bsqs8YcKZp33i1y1oAPp/UwXQi77m7dyXHcNzywV0tQvqmIUrCqlCL4M4Fbfrq4
7rJ8xfCNnkXMwuM+qSW4D9sn0gPx4Iy1nA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:30 2023 by rpki-client on console-ams.rpki-client.org