Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/K092rzBD3667k59VCpyfhKwdIIU.roa
File: K092rzBD3667k59VCpyfhKwdIIU.roa (raw, json)
Hash identifier: z1sfon3wwVdFyPE1fj5o+cixcK6oscaRLsLNI5Gp6bE=
Subject key identifier: 2B:4F:76:AF:30:43:DF:AE:BB:93:9F:55:0A:9C:9F:84:AC:1D:20:85
Certificate issuer: /CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Certificate serial: 1A7D926A
Authority key identifier: 3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/K092rzBD3667k59VCpyfhKwdIIU.roa
Signing time: Mon 16 May 2022 11:44:29 +0000
ROA not before: Mon 16 May 2022 11:44:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199837
IP address blocks: 185.128.148.0/22 maxlen: 24
185.44.212.0/22 maxlen: 24
2a06:cfc0::/29 maxlen: 29
2a04:9f00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444437098 (0x1a7d926a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Validity
Not Before: May 16 11:44:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b4f76af3043dfaebb939f550a9c9f84ac1d2085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1b:a6:ab:aa:6b:d5:8e:a7:03:8f:90:ef:cc:
92:f9:ff:02:b6:46:86:f8:0a:d0:6d:0f:31:89:0d:
5e:35:00:ea:71:90:8b:6b:20:1d:3e:be:f4:11:2f:
81:db:f7:0d:8e:76:02:52:6f:52:09:41:ae:26:ba:
00:43:69:70:47:75:af:45:ad:66:5b:77:5a:e0:6a:
78:04:d9:ea:e8:95:2c:50:9d:80:87:ab:c0:c2:b1:
43:16:7f:30:14:b3:65:0f:d2:c8:e5:13:ed:5f:83:
cf:a0:21:14:71:bc:36:f8:2a:fc:3d:29:04:00:fc:
4a:b8:e6:70:17:4c:2e:43:97:b2:07:25:13:a1:08:
a3:f1:01:ef:22:ca:aa:e0:26:e9:aa:f1:6e:85:d5:
2c:a7:cc:14:20:01:06:ac:62:cb:e9:da:9d:c0:c6:
b9:81:1c:16:40:23:41:9a:70:23:1b:ac:23:e9:8c:
d0:fc:99:5c:8b:30:68:ae:d3:34:df:a3:b4:1b:e6:
ab:fb:16:cb:53:89:59:46:ed:69:52:5e:aa:5a:93:
4f:f3:03:1d:2f:c0:ed:b1:f8:77:a6:8f:86:bb:d8:
9f:75:ef:01:e4:3a:17:ad:06:95:2e:61:d3:e1:c4:
10:c1:29:67:39:c6:7e:c8:3a:07:df:66:ef:fc:b5:
d5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4F:76:AF:30:43:DF:AE:BB:93:9F:55:0A:9C:9F:84:AC:1D:20:85
X509v3 Authority Key Identifier:
keyid:3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/K092rzBD3667k59VCpyfhKwdIIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.212.0/22
185.128.148.0/22
IPv6:
2a04:9f00::/29
2a06:cfc0::/29
Signature Algorithm: sha256WithRSAEncryption
06:9a:42:ae:e4:cc:ef:98:bc:30:60:56:85:7d:f8:eb:2d:44:
ea:29:1e:cb:d0:59:fc:fa:f5:30:d3:b8:31:79:cb:70:70:74:
7a:55:06:e3:ec:83:5f:74:c3:9b:16:bd:cb:6e:bb:3d:d1:6c:
a9:f5:ed:04:4d:06:70:1e:74:e5:20:a5:04:7f:5e:aa:a2:cc:
80:2b:b1:c0:c6:82:d1:4a:bf:9f:d8:d6:d2:3c:51:9f:fe:6b:
b5:1e:a1:15:74:5c:39:21:78:cd:9c:b7:e8:5f:ed:cf:70:dc:
6a:2a:a8:31:6e:69:04:3c:bc:c0:17:13:ca:4d:c7:b1:c5:82:
de:a5:87:6c:12:b2:33:be:b3:cd:39:7c:d5:82:e2:04:ac:fb:
17:5d:ac:32:c8:9e:31:bb:97:1a:a7:06:2f:8b:8b:bf:d3:3e:
aa:32:dd:0e:0e:e6:5e:68:26:d9:ad:6d:a3:71:76:8c:5a:b8:
c3:db:6c:80:d5:8c:ef:8a:e1:51:f8:d1:9a:74:f2:94:b0:e9:
6f:d9:83:05:96:cc:f9:35:4b:83:27:24:d9:d4:a2:95:24:95:
c4:7d:20:9f:84:a4:96:33:9e:1f:c5:a3:3c:ff:27:5c:bd:10:
7f:c1:7b:99:a9:8d:ec:59:ec:be:63:14:f3:9d:12:49:86:a2:
7a:e7:ca:b6
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIEGn2SajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZWExNDg0MmQ4NzdlMjdiYzQwNjhiOTgxZmU3NGFlYjhiZWU3ZTczMB4XDTIyMDUx
NjExNDQyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmI0Zjc2YWYzMDQz
ZGZhZWJiOTM5ZjU1MGE5YzlmODRhYzFkMjA4NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgbpquqa9WOpwOPkO/Mkvn/ArZGhvgK0G0PMYkNXjUA6nGQ
i2sgHT6+9BEvgdv3DY52AlJvUglBria6AENpcEd1r0WtZlt3WuBqeATZ6uiVLFCd
gIerwMKxQxZ/MBSzZQ/SyOUT7V+Dz6AhFHG8Nvgq/D0pBAD8SrjmcBdMLkOXsgcl
E6EIo/EB7yLKquAm6arxboXVLKfMFCABBqxiy+nancDGuYEcFkAjQZpwIxusI+mM
0PyZXIswaK7TNN+jtBvmq/sWy1OJWUbtaVJeqlqTT/MDHS/A7bH4d6aPhrvYn3Xv
AeQ6F60GlS5h0+HEEMEpZznGfsg6B99m7/y11WECAwEAAaOCAiUwggIhMB0GA1Ud
DgQWBBQrT3avMEPfrruTn1UKnJ+ErB0ghTAfBgNVHSMEGDAWgBQ+oUhC2Hfie8QG
i5gf50rri+5+czAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BxRklRdGgzNG52RUJvdVlILWRLNjR2dWZuTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmQvNzk3MDU3LTI3OGEtNGY3My04MGExLTRkY2U0ZjNlYTEzZS8x
L0swOTJyekJEMzY2N2s1OVZDcHlmaEt3ZElJVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQv
Nzk3MDU3LTI3OGEtNGY3My04MGExLTRkY2U0ZjNlYTEzZS8xL1BxRklRdGgzNG52
RUJvdVlILWRLNjR2dWZuTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA7
BggrBgEFBQcBBwEB/wQsMCowEgQCAAEwDAMEArks1AMEArmAlDAUBAIAAjAOAwUD
KgSfAAMFAyoGz8AwDQYJKoZIhvcNAQELBQADggEBAAaaQq7kzO+YvDBgVoV9+Ost
ROopHsvQWfz69TDTuDF5y3BwdHpVBuPsg190w5sWvctuuz3RbKn17QRNBnAedOUg
pQR/XqqizIArscDGgtFKv5/Y1tI8UZ/+a7UeoRV0XDkheM2ct+hf7c9w3GoqqDFu
aQQ8vMAXE8pNx7HFgt6lh2wSsjO+s805fNWC4gSs+xddrDLInjG7lxqnBi+Li7/T
Pqoy3Q4O5l5oJtmtbaNxdoxauMPbbIDVjO+K4VH40Zp08pSw6W/ZgwWWzPk1S4Mn
JNnUopUklcR9IJ+EpJYznh/Fozz/J1y9EH/Be5mpjexZ7L5jFPOdEkmGonrnyrY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:56 2024 by rpki-client on console-fra.rpki-client.org