Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/Kay1HVd-a6YrjTutbNeeAVVJujM.roa
File: Kay1HVd-a6YrjTutbNeeAVVJujM.roa (raw, json)
Hash identifier: Iv/ySNFZpYHWBcCj7sY9sIHJ5IiU4ixcPYeNs9WTFVs=
Subject key identifier: 29:AC:B5:1D:57:7E:6B:A6:2B:8D:3B:AD:6C:D7:9E:01:55:49:BA:33
Certificate issuer: /CN=88ff3ba6b60d39ad105ff85c269d626c8157655f
Certificate serial: 047598D6
Authority key identifier: 88:FF:3B:A6:B6:0D:39:AD:10:5F:F8:5C:26:9D:62:6C:81:57:65:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP87prYNOa0QX_hcJp1ibIFXZV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/Kay1HVd-a6YrjTutbNeeAVVJujM.roa
Signing time: Sat 01 Jan 2022 12:58:29 +0000
ROA not before: Sat 01 Jan 2022 12:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202803
IP address blocks: 185.154.44.0/22 maxlen: 22
2a0b:5ac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74815702 (0x47598d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ff3ba6b60d39ad105ff85c269d626c8157655f
Validity
Not Before: Jan 1 12:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29acb51d577e6ba62b8d3bad6cd79e015549ba33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:4e:98:9b:98:73:77:96:fc:b7:0d:fc:54:1b:
d1:49:0f:25:ef:b3:43:c9:74:e3:fc:3d:13:c7:e6:
b3:9c:fd:4f:60:ac:59:29:f4:17:f3:86:65:70:ed:
ef:03:5c:87:07:73:3d:0a:2c:e4:17:04:fd:c1:4d:
e7:67:bd:30:6f:62:42:73:30:6f:b8:31:48:cc:c6:
c5:e8:3a:e6:8e:19:c4:88:63:3b:50:55:8c:73:01:
b1:58:d3:a3:53:3f:2b:9d:0c:d7:31:1d:0b:a0:cb:
78:2a:6c:97:97:78:f1:04:f9:41:2a:03:03:3d:6b:
ae:01:d4:8b:eb:88:62:06:6d:4f:0e:47:51:d9:8d:
66:64:02:76:33:7d:f3:52:67:7c:03:34:c3:b6:bb:
fe:b1:cd:22:a7:91:b9:e1:a4:a6:d0:de:c8:d9:5c:
ba:5f:75:e7:e4:c7:7d:6f:d4:88:e9:18:3c:f8:4d:
0b:d2:ae:55:d7:7d:18:3a:0c:3f:ea:e6:bb:49:de:
00:99:37:cd:a4:40:d5:e5:16:85:93:8a:66:a6:85:
f4:37:cb:d1:1b:b4:d7:6c:77:e5:b4:e1:e9:f1:b7:
a5:83:f1:b6:8b:8b:53:9a:56:0b:00:b9:75:57:1c:
62:8d:36:e5:c0:e9:56:4a:ca:c7:42:dd:cc:37:de:
7f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AC:B5:1D:57:7E:6B:A6:2B:8D:3B:AD:6C:D7:9E:01:55:49:BA:33
X509v3 Authority Key Identifier:
keyid:88:FF:3B:A6:B6:0D:39:AD:10:5F:F8:5C:26:9D:62:6C:81:57:65:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP87prYNOa0QX_hcJp1ibIFXZV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/Kay1HVd-a6YrjTutbNeeAVVJujM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/iP87prYNOa0QX_hcJp1ibIFXZV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.44.0/22
IPv6:
2a0b:5ac0::/29
Signature Algorithm: sha256WithRSAEncryption
65:ff:fd:f0:6c:e9:7b:f4:a0:2a:19:f5:91:c3:e7:41:7c:7e:
1e:44:c6:c4:dc:b8:ba:1c:23:25:32:3a:5b:75:76:67:f1:2e:
f4:9b:29:e4:b8:51:85:f3:50:62:ac:8d:ca:db:50:9d:25:95:
52:ce:c2:a2:9f:25:54:42:a3:b0:65:f1:45:be:85:af:3b:1c:
5b:c2:76:4e:13:9e:9e:f8:5e:60:9e:bd:c9:a4:21:1d:1b:6c:
cd:8f:10:f2:ee:c7:c5:28:27:e3:c3:c4:f1:25:e6:02:4d:45:
71:9a:e1:0d:8c:a1:90:27:45:e9:ac:4f:de:7f:ff:36:c7:da:
a7:27:e9:3a:a7:02:c1:da:67:7d:4b:e5:54:ea:96:b5:46:1d:
ba:f9:e3:29:30:b2:93:11:62:2d:9e:c9:60:92:85:c2:c5:29:
ca:d5:41:b5:b6:36:a8:86:a0:f6:15:53:7b:f6:87:c8:af:68:
cd:57:03:bc:8c:79:f8:57:3e:19:51:2e:2f:da:6b:6c:ef:ff:
93:f2:6c:0e:4f:d8:01:70:f3:17:21:c9:fd:38:c4:58:b1:ab:
7c:49:94:f9:83:fc:c3:b4:11:43:13:56:72:9a:dc:d5:6b:6b:
ad:f0:2d:1e:f4:cf:90:4f:d4:3c:54:b9:2c:7c:99:a1:64:da:
24:20:76:1a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBHWY1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OGZmM2JhNmI2MGQzOWFkMTA1ZmY4NWMyNjlkNjI2YzgxNTc2NTVmMB4XDTIyMDEw
MTEyNTgyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjlhY2I1MWQ1Nzdl
NmJhNjJiOGQzYmFkNmNkNzllMDE1NTQ5YmEzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOtOmJuYc3eW/LcN/FQb0UkPJe+zQ8l04/w9E8fms5z9T2Cs
WSn0F/OGZXDt7wNchwdzPQos5BcE/cFN52e9MG9iQnMwb7gxSMzGxeg65o4ZxIhj
O1BVjHMBsVjTo1M/K50M1zEdC6DLeCpsl5d48QT5QSoDAz1rrgHUi+uIYgZtTw5H
UdmNZmQCdjN981JnfAM0w7a7/rHNIqeRueGkptDeyNlcul915+THfW/UiOkYPPhN
C9KuVdd9GDoMP+rmu0neAJk3zaRA1eUWhZOKZqaF9DfL0Ru012x35bTh6fG3pYPx
touLU5pWCwC5dVccYo025cDpVkrKx0LdzDfef/sCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQprLUdV35rpiuNO61s154BVUm6MzAfBgNVHSMEGDAWgBSI/zumtg05rRBf
+FwmnWJsgVdlXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lQODdwcllOT2EwUVhfaGNKcDFpYklGWFpWOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvZDJjOWRiLTM2MTUtNDY2ZS1hMzRhLWIxMDllZDllYThjMC8x
L0theTFIVmQtYTZZcmpUdXRiTmVlQVZWSnVqTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
ZDJjOWRiLTM2MTUtNDY2ZS1hMzRhLWIxMDllZDllYThjMC8xL2lQODdwcllOT2Ew
UVhfaGNKcDFpYklGWFpWOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmaLDANBAIAAjAHAwUDKgtawDAN
BgkqhkiG9w0BAQsFAAOCAQEAZf/98Gzpe/SgKhn1kcPnQXx+HkTGxNy4uhwjJTI6
W3V2Z/Eu9Jsp5LhRhfNQYqyNyttQnSWVUs7Cop8lVEKjsGXxRb6FrzscW8J2ThOe
nvheYJ69yaQhHRtszY8Q8u7HxSgn48PE8SXmAk1FcZrhDYyhkCdF6axP3n//Nsfa
pyfpOqcCwdpnfUvlVOqWtUYduvnjKTCykxFiLZ7JYJKFwsUpytVBtbY2qIag9hVT
e/aHyK9ozVcDvIx5+Fc+GVEuL9prbO//k/JsDk/YAXDzFyHJ/TjEWLGrfEmU+YP8
w7QRQxNWcprc1WtrrfAtHvTPkE/UPFS5LHyZoWTaJCB2Gg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:52 2024 by rpki-client on console-ams.rpki-client.org