Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/ZFcduRutau4LKrFJKr1iqet_VkA.roa
File: ZFcduRutau4LKrFJKr1iqet_VkA.roa (raw, json)
Hash identifier: JWkEgXdNM0Q+fcveUGsW7Fc0Nnn5qz5sCaPfivrQiE4=
Subject key identifier: 64:57:1D:B9:1B:AD:6A:EE:0B:2A:B1:49:2A:BD:62:A9:EB:7F:56:40
Certificate issuer: /CN=b869ee66164d3cb41dbd2df5417817c32f4cea05
Certificate serial: 1C03B3D0
Authority key identifier: B8:69:EE:66:16:4D:3C:B4:1D:BD:2D:F5:41:78:17:C3:2F:4C:EA:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uGnuZhZNPLQdvS31QXgXwy9M6gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/ZFcduRutau4LKrFJKr1iqet_VkA.roa
Signing time: Sat 01 Jan 2022 12:59:47 +0000
ROA not before: Sat 01 Jan 2022 12:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199366
IP address blocks: 185.114.192.0/24 maxlen: 24
185.114.194.0/24 maxlen: 24
185.114.193.0/24 maxlen: 24
185.114.195.0/24 maxlen: 24
185.19.94.0/24 maxlen: 24
185.19.93.0/24 maxlen: 24
185.19.95.0/24 maxlen: 24
185.19.92.0/24 maxlen: 24
185.59.28.0/24 maxlen: 24
185.59.30.0/24 maxlen: 24
185.59.29.0/24 maxlen: 24
185.59.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 470004688 (0x1c03b3d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b869ee66164d3cb41dbd2df5417817c32f4cea05
Validity
Not Before: Jan 1 12:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64571db91bad6aee0b2ab1492abd62a9eb7f5640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:62:3d:e3:d3:32:a8:f0:f1:b0:52:e1:cc:83:
56:cf:15:b7:8b:ad:4f:31:cd:7e:cf:4f:35:0d:86:
bb:8a:b7:76:de:4a:32:8b:9f:5f:a7:3b:39:ba:86:
93:4f:3d:03:4e:ca:12:30:5c:27:87:98:41:f1:49:
a3:a2:48:52:b6:6e:e2:77:c0:e1:a4:40:27:c6:56:
d1:f4:ed:5e:59:f0:61:a9:aa:5e:ff:92:d2:56:fb:
25:cc:af:62:01:1b:82:65:3e:5f:cd:90:cb:64:eb:
ca:1e:54:05:72:4c:3e:bd:71:3a:da:ed:6e:d2:83:
8e:24:f6:96:d3:a1:1f:46:b8:03:f0:d7:21:92:b3:
85:56:fd:91:55:d5:76:97:2a:b1:db:4e:9f:38:e8:
dc:1b:6d:5e:0c:99:4d:33:4c:3a:37:a6:26:53:d5:
b5:1e:2e:55:2b:85:bb:4b:5f:e8:a3:13:bd:f6:8a:
fc:34:9d:39:2c:58:b6:20:29:64:b6:38:61:1a:fc:
05:27:ff:c3:c0:17:30:02:b8:7e:0d:62:d1:c1:00:
3a:65:36:98:79:35:26:cb:d8:7a:c1:a4:a5:d3:65:
24:ee:1b:7b:e5:49:45:73:00:4d:0d:c1:26:a6:e6:
4a:da:0f:1b:b6:bc:24:68:be:96:59:60:64:bc:54:
b7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:57:1D:B9:1B:AD:6A:EE:0B:2A:B1:49:2A:BD:62:A9:EB:7F:56:40
X509v3 Authority Key Identifier:
keyid:B8:69:EE:66:16:4D:3C:B4:1D:BD:2D:F5:41:78:17:C3:2F:4C:EA:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uGnuZhZNPLQdvS31QXgXwy9M6gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/ZFcduRutau4LKrFJKr1iqet_VkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/uGnuZhZNPLQdvS31QXgXwy9M6gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.92.0/22
185.59.28.0/22
185.114.192.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:a8:bb:e5:12:04:33:d7:75:cb:c2:68:48:e3:8f:12:49:65:
01:82:fa:6a:a7:bf:d7:05:f8:1b:82:ec:7c:cc:1e:ed:a8:78:
8a:41:14:2d:79:53:7c:f6:77:1e:12:ad:25:a5:87:f1:63:35:
81:86:57:a0:b4:82:c8:1f:1b:2a:bd:c1:5b:60:31:7b:d7:20:
88:47:7d:87:57:ee:1a:88:1f:b5:ef:da:30:65:4d:f1:61:06:
c2:0b:40:62:42:68:1c:7a:d9:ad:50:69:48:d8:89:ec:3b:e5:
b9:32:0b:92:f1:53:c6:51:f6:da:6f:7d:5e:4e:06:21:bc:11:
5d:f2:d8:ce:7a:7d:1c:a1:74:5d:67:46:7d:5b:d3:c2:ad:2c:
d3:59:f8:68:ad:63:83:b4:12:3f:b4:c1:49:c2:de:a5:d3:61:
24:50:3c:0d:90:32:4c:bc:c9:e1:e4:8e:89:a0:87:0a:3b:99:
f7:f6:3d:91:d5:b5:14:04:d2:60:b8:61:8e:03:7b:1f:6d:4e:
9d:27:9c:a7:e8:9c:f9:31:dc:73:cb:81:6a:ed:33:96:2b:c0:
cd:e2:41:b8:8a:28:14:a2:d9:8f:04:0c:69:32:23:8a:c1:34:
83:91:5c:a3:24:53:1f:5f:43:f8:6a:f7:02:84:5b:df:02:66:
60:b1:ae:89
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEHAOz0DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODY5ZWU2NjE2NGQzY2I0MWRiZDJkZjU0MTc4MTdjMzJmNGNlYTA1MB4XDTIyMDEw
MTEyNTk0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjQ1NzFkYjkxYmFk
NmFlZTBiMmFiMTQ5MmFiZDYyYTllYjdmNTY0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKNiPePTMqjw8bBS4cyDVs8Vt4utTzHNfs9PNQ2Gu4q3dt5K
MoufX6c7ObqGk089A07KEjBcJ4eYQfFJo6JIUrZu4nfA4aRAJ8ZW0fTtXlnwYamq
Xv+S0lb7JcyvYgEbgmU+X82Qy2Tryh5UBXJMPr1xOtrtbtKDjiT2ltOhH0a4A/DX
IZKzhVb9kVXVdpcqsdtOnzjo3BttXgyZTTNMOjemJlPVtR4uVSuFu0tf6KMTvfaK
/DSdOSxYtiApZLY4YRr8BSf/w8AXMAK4fg1i0cEAOmU2mHk1JsvYesGkpdNlJO4b
e+VJRXMATQ3BJqbmStoPG7a8JGi+lllgZLxUt0sCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRkVx25G61q7gsqsUkqvWKp639WQDAfBgNVHSMEGDAWgBS4ae5mFk08tB29
LfVBeBfDL0zqBTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VHbnVaaFpOUExRZHZTMzFRWGdYd3k5TTZnVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvMWQ1ZWUxLWFjY2YtNDc0Zi1hNTg5LWNkMWZhNDg0NDExYi8x
L1pGY2R1UnV0YXU0TEtyRkpLcjFpcWV0X1ZrQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
MWQ1ZWUxLWFjY2YtNDc0Zi1hNTg5LWNkMWZhNDg0NDExYi8xL3VHbnVaaFpOUExR
ZHZTMzFRWGdYd3k5TTZnVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEArkTXAMEArk7HAMEArlywDANBgkq
hkiG9w0BAQsFAAOCAQEAHKi75RIEM9d1y8JoSOOPEkllAYL6aqe/1wX4G4LsfMwe
7ah4ikEULXlTfPZ3HhKtJaWH8WM1gYZXoLSCyB8bKr3BW2Axe9cgiEd9h1fuGogf
te/aMGVN8WEGwgtAYkJoHHrZrVBpSNiJ7DvluTILkvFTxlH22m99Xk4GIbwRXfLY
znp9HKF0XWdGfVvTwq0s01n4aK1jg7QSP7TBScLepdNhJFA8DZAyTLzJ4eSOiaCH
CjuZ9/Y9kdW1FATSYLhhjgN7H21OnSecp+ic+THcc8uBau0zlivAzeJBuIooFKLZ
jwQMaTIjisE0g5FcoyRTH19D+Gr3AoRb3wJmYLGuiQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:34 2024 by rpki-client on console-fra.rpki-client.org