Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/73cdd0-0649-4fe9-9971-0be6337bf6b6/1/KelNWfFsRaJYkOOH4gxKJo1I8Zs.roa
File: KelNWfFsRaJYkOOH4gxKJo1I8Zs.roa (raw, json)
Hash identifier: RfbnDv1RFAjjUjM3EK+BiC2SqJNsafO60wuO9ARkBCw=
Subject key identifier: 29:E9:4D:59:F1:6C:45:A2:58:90:E3:87:E2:0C:4A:26:8D:48:F1:9B
Certificate issuer: /CN=49bf32abf77f412c210f409822d1398ec3beda9b
Certificate serial: 0E0D2902
Authority key identifier: 49:BF:32:AB:F7:7F:41:2C:21:0F:40:98:22:D1:39:8E:C3:BE:DA:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sb8yq_d_QSwhD0CYItE5jsO-2ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/73cdd0-0649-4fe9-9971-0be6337bf6b6/1/KelNWfFsRaJYkOOH4gxKJo1I8Zs.roa
Signing time: Sat 01 Jan 2022 13:05:54 +0000
ROA not before: Sat 01 Jan 2022 13:05:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205606
IP address blocks: 185.212.142.0/24 maxlen: 24
185.212.141.0/24 maxlen: 24
185.212.143.0/24 maxlen: 24
185.212.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235743490 (0xe0d2902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49bf32abf77f412c210f409822d1398ec3beda9b
Validity
Not Before: Jan 1 13:05:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29e94d59f16c45a25890e387e20c4a268d48f19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:a5:36:45:5e:7e:a5:cd:e1:c1:60:fd:32:
4f:b8:19:1e:91:0f:02:a3:3f:c9:89:b3:7a:3f:4a:
b6:e3:68:9a:0e:1b:f5:ec:b3:c4:6f:ac:4b:4a:5b:
ec:d0:47:49:58:8a:8c:5c:f7:c1:a8:80:39:ce:80:
66:bd:4e:3c:a5:8f:f7:1a:7d:a5:57:7c:28:e3:9f:
03:76:0b:68:69:75:f7:19:43:cd:33:17:53:92:94:
56:f0:c5:6b:44:c2:63:4f:fa:a8:ce:d9:a6:33:2e:
45:1d:2a:03:41:5e:f7:a9:da:db:27:fc:01:3d:16:
83:12:1a:5d:95:f4:b5:57:4b:8d:4e:da:e3:8e:af:
98:8d:21:4c:81:2e:06:e4:6f:32:f6:79:9e:50:5d:
b4:75:f1:98:ef:31:4a:c9:c7:4c:f4:fe:e0:21:1b:
ac:2c:53:03:16:fa:90:c1:74:fa:aa:d5:61:e6:be:
cc:29:c7:a9:b1:cd:b9:1b:aa:57:92:83:2b:b7:07:
60:dc:95:8f:ea:44:6f:a5:66:a7:8e:52:a3:8a:2a:
42:e1:8b:1d:e7:0f:de:7a:80:a6:3f:af:1c:f1:95:
1b:2e:35:27:74:fe:92:ee:5a:79:20:8b:c5:04:e4:
bd:4b:e2:10:ec:9a:2c:0a:6e:3a:e1:72:34:d0:cd:
11:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E9:4D:59:F1:6C:45:A2:58:90:E3:87:E2:0C:4A:26:8D:48:F1:9B
X509v3 Authority Key Identifier:
keyid:49:BF:32:AB:F7:7F:41:2C:21:0F:40:98:22:D1:39:8E:C3:BE:DA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sb8yq_d_QSwhD0CYItE5jsO-2ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/73cdd0-0649-4fe9-9971-0be6337bf6b6/1/KelNWfFsRaJYkOOH4gxKJo1I8Zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/73cdd0-0649-4fe9-9971-0be6337bf6b6/1/Sb8yq_d_QSwhD0CYItE5jsO-2ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.140.0/22
Signature Algorithm: sha256WithRSAEncryption
09:9f:04:8f:77:0c:b8:94:c5:22:a0:13:ed:64:77:48:7a:ea:
ca:87:61:94:95:5f:85:dd:e1:c5:b7:cc:77:81:cc:6a:db:ac:
27:fc:09:d7:4d:61:6e:66:3c:7d:06:19:82:cc:06:13:78:00:
63:a6:b7:0b:0f:fc:61:20:64:55:a2:36:03:e8:95:cb:0d:d3:
1b:72:35:95:a2:ec:3a:d7:8a:ef:b2:35:5e:f6:30:e7:b2:5e:
08:08:e4:be:b6:ce:28:13:b0:7a:76:84:51:f4:5c:ff:aa:11:
06:ce:b8:68:b7:7e:fe:22:8e:f2:47:6f:54:c1:f5:67:13:21:
6f:4c:57:03:cb:b1:01:8c:ee:4a:a6:3c:db:42:d0:e8:37:dc:
6d:e2:62:b9:15:01:0e:73:f1:a9:ad:7e:bd:c9:57:3a:47:6a:
58:a3:d6:35:0f:c1:17:63:ec:b0:b3:ce:98:13:97:19:84:8a:
65:6a:d6:32:c1:22:f4:84:e2:93:f8:cc:5e:4c:d1:04:76:96:
94:d8:06:30:87:85:5f:79:c0:9a:0e:7a:97:dc:f0:26:d5:de:
49:6d:5f:10:4f:85:cc:c2:a4:e3:3b:d2:9b:b2:c4:10:09:ee:
cb:82:8b:84:cf:86:ee:cb:0b:3c:11:a6:b5:77:db:38:15:f5:
ee:c5:26:43
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDg0pAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OWJmMzJhYmY3N2Y0MTJjMjEwZjQwOTgyMmQxMzk4ZWMzYmVkYTliMB4XDTIyMDEw
MTEzMDU1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjllOTRkNTlmMTZj
NDVhMjU4OTBlMzg3ZTIwYzRhMjY4ZDQ4ZjE5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALaDpTZFXn6lzeHBYP0yT7gZHpEPAqM/yYmzej9KtuNomg4b
9eyzxG+sS0pb7NBHSViKjFz3waiAOc6AZr1OPKWP9xp9pVd8KOOfA3YLaGl19xlD
zTMXU5KUVvDFa0TCY0/6qM7ZpjMuRR0qA0Fe96na2yf8AT0WgxIaXZX0tVdLjU7a
446vmI0hTIEuBuRvMvZ5nlBdtHXxmO8xSsnHTPT+4CEbrCxTAxb6kMF0+qrVYea+
zCnHqbHNuRuqV5KDK7cHYNyVj+pEb6Vmp45So4oqQuGLHecP3nqApj+vHPGVGy41
J3T+ku5aeSCLxQTkvUviEOyaLApuOuFyNNDNEecCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQp6U1Z8WxFoliQ44fiDEomjUjxmzAfBgNVHSMEGDAWgBRJvzKr939BLCEP
QJgi0TmOw77amzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NiOHlxX2RfUVN3aEQwQ1lJdEU1anNPLTJwcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvNzNjZGQwLTA2NDktNGZlOS05OTcxLTBiZTYzMzdiZjZiNi8x
L0tlbE5XZkZzUmFKWWtPT0g0Z3hLSm8xSThacy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
NzNjZGQwLTA2NDktNGZlOS05OTcxLTBiZTYzMzdiZjZiNi8xL1NiOHlxX2RfUVN3
aEQwQ1lJdEU1anNPLTJwcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnUjDANBgkqhkiG9w0BAQsFAAOC
AQEACZ8Ej3cMuJTFIqAT7WR3SHrqyodhlJVfhd3hxbfMd4HMatusJ/wJ101hbmY8
fQYZgswGE3gAY6a3Cw/8YSBkVaI2A+iVyw3TG3I1laLsOteK77I1XvYw57JeCAjk
vrbOKBOwenaEUfRc/6oRBs64aLd+/iKO8kdvVMH1ZxMhb0xXA8uxAYzuSqY820LQ
6DfcbeJiuRUBDnPxqa1+vclXOkdqWKPWNQ/BF2PssLPOmBOXGYSKZWrWMsEi9ITi
k/jMXkzRBHaWlNgGMIeFX3nAmg56l9zwJtXeSW1fEE+FzMKk4zvSm7LEEAnuy4KL
hM+G7ssLPBGmtXfbOBX17sUmQw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:04 2025 by rpki-client