Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/5b535e-b143-4b4a-90e8-0e7949935d81/1/E03GW42ugg7qewXbn70GLodH2HI.roa
File: E03GW42ugg7qewXbn70GLodH2HI.roa (raw, json)
Hash identifier: eIhVbV3ECl8isEXgTL+KcEDwwjfs4mYof/GayQK4wQ8=
Subject key identifier: 13:4D:C6:5B:8D:AE:82:0E:EA:7B:05:DB:9F:BD:06:2E:87:47:D8:72
Certificate issuer: /CN=7eb4565a32db3c9c8b8b0f7b4c11bd1154e20de9
Certificate serial: 18E0334D
Authority key identifier: 7E:B4:56:5A:32:DB:3C:9C:8B:8B:0F:7B:4C:11:BD:11:54:E2:0D:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/frRWWjLbPJyLiw97TBG9EVTiDek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/5b535e-b143-4b4a-90e8-0e7949935d81/1/E03GW42ugg7qewXbn70GLodH2HI.roa
Signing time: Sat 01 Jan 2022 02:57:06 +0000
ROA not before: Sat 01 Jan 2022 02:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52122
IP address blocks: 185.4.185.0/24 maxlen: 24
185.4.186.0/24 maxlen: 24
185.4.184.0/24 maxlen: 24
185.4.187.0/24 maxlen: 24
46.255.185.0/24 maxlen: 24
46.255.186.0/24 maxlen: 24
46.255.184.0/24 maxlen: 24
46.255.187.0/24 maxlen: 24
46.255.188.0/24 maxlen: 24
46.255.190.0/24 maxlen: 24
46.255.191.0/24 maxlen: 24
46.255.189.0/24 maxlen: 24
2a01:9140:cccc::/48 maxlen: 48
2a01:9140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417346381 (0x18e0334d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7eb4565a32db3c9c8b8b0f7b4c11bd1154e20de9
Validity
Not Before: Jan 1 02:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=134dc65b8dae820eea7b05db9fbd062e8747d872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:54:3d:25:1a:13:7b:d1:ed:3f:68:28:0e:5c:
63:88:57:32:3e:37:9e:b0:87:f5:4f:e9:3b:2a:fb:
4a:25:88:1a:9b:56:cc:15:d8:6d:20:42:12:f7:80:
5b:95:91:f3:f4:22:d4:24:61:02:37:5f:4a:49:93:
1f:87:63:80:b2:46:3c:f9:95:9a:2a:26:e6:b5:c7:
99:1b:a5:8e:bb:77:02:37:ab:b9:64:6a:70:03:40:
98:2f:ad:45:38:00:77:cd:de:c0:fd:b0:a2:3f:53:
a8:76:d1:05:25:c6:4b:a9:16:18:3a:9c:93:30:f2:
a6:d5:04:42:11:91:6d:14:df:06:9a:18:7a:df:95:
09:5b:4b:e0:3a:0c:84:25:62:f5:3f:79:a7:d1:85:
fd:a5:2c:68:78:1c:43:13:5b:41:e3:f8:f3:5e:b4:
6b:da:00:04:23:08:39:c4:85:b0:7c:54:73:f0:a8:
a1:2c:cc:32:3e:30:78:df:d3:3a:bb:58:00:dd:82:
5b:b6:3e:8c:8c:c1:26:04:da:53:42:2c:33:4a:14:
83:dd:88:be:0b:2f:87:f9:97:f3:aa:62:a2:14:69:
e7:1d:92:b8:08:ff:d3:1d:1f:d6:5a:de:1e:39:4a:
28:ac:7b:a4:1e:55:6d:c1:46:7e:94:f5:e1:7a:06:
c8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4D:C6:5B:8D:AE:82:0E:EA:7B:05:DB:9F:BD:06:2E:87:47:D8:72
X509v3 Authority Key Identifier:
keyid:7E:B4:56:5A:32:DB:3C:9C:8B:8B:0F:7B:4C:11:BD:11:54:E2:0D:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/frRWWjLbPJyLiw97TBG9EVTiDek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5b535e-b143-4b4a-90e8-0e7949935d81/1/E03GW42ugg7qewXbn70GLodH2HI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5b535e-b143-4b4a-90e8-0e7949935d81/1/frRWWjLbPJyLiw97TBG9EVTiDek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.184.0/21
185.4.184.0/22
IPv6:
2a01:9140::/32
Signature Algorithm: sha256WithRSAEncryption
07:82:d8:b3:f0:6d:1d:bf:37:c4:f1:8e:c0:1b:da:21:00:f3:
6f:d8:25:e8:3c:bc:26:9c:d7:48:58:ff:12:1e:4b:26:c9:70:
f2:de:39:6e:cc:bc:45:ce:27:e0:40:60:af:8f:9d:b6:f7:9f:
d1:20:0a:5f:af:06:30:e9:50:08:5a:70:5a:cc:67:13:18:29:
22:2e:a2:de:e4:9f:3d:1f:46:e0:73:72:3d:16:14:8f:fb:df:
fc:6c:47:98:0c:41:8d:18:b9:e9:5b:85:b9:03:c0:e0:0d:93:
64:eb:f4:4a:72:28:7e:b3:84:44:24:1a:a3:4b:30:d3:79:d8:
75:4c:af:89:fb:82:40:bb:57:4f:f7:cc:e8:6c:3c:b4:1a:73:
f5:2c:0c:fd:13:30:cd:1f:79:0b:4d:05:e3:6c:71:05:5b:80:
c8:41:5c:73:de:af:65:c8:c5:e9:c7:44:c5:4f:4a:a1:e7:df:
dc:ed:f5:22:55:a9:3b:5d:9d:e6:13:12:d7:9a:ef:38:92:4b:
91:5a:d9:e0:0f:d9:0c:f5:96:4a:aa:75:47:04:4c:11:a4:5c:
b9:b4:9e:13:2a:0e:a7:08:9f:b7:ce:e0:9e:3e:1c:6f:cc:db:
ca:1d:cb:c2:bf:04:10:be:24:af:43:b9:f7:e1:3b:00:37:6e:
2f:85:f0:6e
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEGOAzTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZWI0NTY1YTMyZGIzYzljOGI4YjBmN2I0YzExYmQxMTU0ZTIwZGU5MB4XDTIyMDEw
MTAyNTcwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTM0ZGM2NWI4ZGFl
ODIwZWVhN2IwNWRiOWZiZDA2MmU4NzQ3ZDg3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJlUPSUaE3vR7T9oKA5cY4hXMj43nrCH9U/pOyr7SiWIGptW
zBXYbSBCEveAW5WR8/Qi1CRhAjdfSkmTH4djgLJGPPmVmiom5rXHmRuljrt3Ajer
uWRqcANAmC+tRTgAd83ewP2woj9TqHbRBSXGS6kWGDqckzDyptUEQhGRbRTfBpoY
et+VCVtL4DoMhCVi9T95p9GF/aUsaHgcQxNbQeP48160a9oABCMIOcSFsHxUc/Co
oSzMMj4weN/TOrtYAN2CW7Y+jIzBJgTaU0IsM0oUg92Ivgsvh/mX86piohRp5x2S
uAj/0x0f1lreHjlKKKx7pB5VbcFGfpT14XoGyKECAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQTTcZbja6CDup7BdufvQYuh0fYcjAfBgNVHSMEGDAWgBR+tFZaMts8nIuL
D3tMEb0RVOIN6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZyUldXakxiUEp5TGl3OTdUQkc5RVZUaURlay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNWI1MzVlLWIxNDMtNGI0YS05MGU4LTBlNzk0OTkzNWQ4MS8x
L0UwM0dXNDJ1Z2c3cWV3WGJuNzBHTG9kSDJISS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NWI1MzVlLWIxNDMtNGI0YS05MGU4LTBlNzk0OTkzNWQ4MS8xL2ZyUldXakxiUEp5
TGl3OTdUQkc5RVZUaURlay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAy7/uAMEArkEuDANBAIAAjAHAwUA
KgGRQDANBgkqhkiG9w0BAQsFAAOCAQEAB4LYs/BtHb83xPGOwBvaIQDzb9gl6Dy8
JpzXSFj/Eh5LJslw8t45bsy8Rc4n4EBgr4+dtvef0SAKX68GMOlQCFpwWsxnExgp
Ii6i3uSfPR9G4HNyPRYUj/vf/GxHmAxBjRi56VuFuQPA4A2TZOv0SnIofrOERCQa
o0sw03nYdUyvifuCQLtXT/fM6Gw8tBpz9SwM/RMwzR95C00F42xxBVuAyEFcc96v
ZcjF6cdExU9Koeff3O31IlWpO12d5hMS15rvOJJLkVrZ4A/ZDPWWSqp1RwRMEaRc
ubSeEyoOpwift87gnj4cb8zbyh3Lwr8EEL4kr0O59+E7ADduL4Xwbg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:21 2024 by rpki-client on console-ams.rpki-client.org