Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/4qdJsmlfxG-UqMapDbgmFhWNzsI.roa
File: 4qdJsmlfxG-UqMapDbgmFhWNzsI.roa (raw, json)
Hash identifier: yPggwun1jLThNxTN36Wjir86gHewvXzQq/H8AJGZu5k=
Subject key identifier: E2:A7:49:B2:69:5F:C4:6F:94:A8:C6:A9:0D:B8:26:16:15:8D:CE:C2
Certificate issuer: /CN=391c5d3331145ec8e271876f8042207b9d00cb64
Certificate serial: C36CCB
Authority key identifier: 39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/4qdJsmlfxG-UqMapDbgmFhWNzsI.roa
Signing time: Tue 08 Feb 2022 07:42:07 +0000
ROA not before: Tue 08 Feb 2022 07:42:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204352
IP address blocks: 185.249.105.0/24 maxlen: 24
185.249.104.0/24 maxlen: 24
185.249.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12807371 (0xc36ccb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391c5d3331145ec8e271876f8042207b9d00cb64
Validity
Not Before: Feb 8 07:42:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2a749b2695fc46f94a8c6a90db82616158dcec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:df:6d:31:32:64:c5:cd:83:0c:9d:10:49:c3:
01:c6:54:1d:6d:ec:b8:a1:81:18:18:d4:42:cf:7c:
b0:7d:0c:30:51:01:ca:2a:f3:e5:3d:30:8b:c9:28:
37:40:70:2f:e7:20:40:ad:a9:05:d3:02:14:e7:78:
cc:2b:1d:98:9d:0f:f7:fa:2d:f8:02:66:7d:9e:e2:
be:17:99:47:88:43:8b:8f:b7:89:3c:13:dd:07:88:
64:57:7a:01:9a:9b:9f:7a:5e:e5:aa:f0:c3:d8:20:
a4:cc:90:7f:b8:ff:41:98:9e:59:52:56:1a:a7:db:
15:b8:8b:99:69:a1:bf:f5:fd:30:42:b4:11:71:5d:
51:f1:71:fd:e7:34:6e:88:f8:55:a4:55:53:80:33:
a2:ca:5c:07:5a:ff:dc:42:40:c8:50:3b:02:c4:a5:
67:b2:de:e7:74:1d:64:1a:04:6e:fb:e1:f5:1b:3e:
f0:0e:e4:00:03:3c:9a:4f:f3:5a:c3:b5:19:e3:ae:
0a:0a:0e:7a:f6:b8:5f:0e:38:91:8f:dc:ea:94:ba:
4d:60:f9:46:f1:c1:e5:e4:e6:18:09:d4:9b:05:0a:
82:ee:45:7c:df:a7:cd:a4:14:97:ff:d9:9c:54:7f:
50:52:34:c5:87:76:91:8c:b0:70:df:a5:aa:90:aa:
6f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A7:49:B2:69:5F:C4:6F:94:A8:C6:A9:0D:B8:26:16:15:8D:CE:C2
X509v3 Authority Key Identifier:
keyid:39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/4qdJsmlfxG-UqMapDbgmFhWNzsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.104.0-185.249.106.255
Signature Algorithm: sha256WithRSAEncryption
ac:63:ed:8f:bc:70:be:9a:62:50:0c:df:9b:62:4e:52:3f:91:
26:2d:02:80:63:dc:c4:00:d0:e4:9a:3a:9a:7e:ae:48:a1:76:
43:fe:ef:18:21:79:02:ef:5f:d1:09:10:0f:af:88:73:95:bf:
05:c2:2a:ba:1f:06:9f:a3:65:14:72:15:cc:0e:58:f2:6b:c3:
c2:cb:d1:42:08:5b:7f:ab:01:22:9d:8b:79:d9:17:34:0f:d7:
95:a0:8f:30:98:b0:2d:f3:6d:9b:c4:ce:65:1c:f7:9f:9d:eb:
eb:fe:ed:c8:9d:36:ae:a9:45:a3:1f:82:2f:78:a8:b1:c9:c7:
92:34:0c:7b:ce:1e:a3:a1:41:94:51:1d:e1:95:93:fb:65:70:
b5:59:e9:3b:5a:4b:3c:27:1c:33:b1:54:0c:fc:7b:31:a6:7f:
73:58:39:02:a2:b6:c5:3a:cf:72:a8:18:ed:7c:44:4b:64:c0:
0a:0c:b7:c4:1e:2d:90:b4:16:e9:cf:a3:0e:8f:84:fd:02:c4:
2f:7e:61:a3:da:8d:45:3c:72:a1:3c:13:69:83:d1:4c:96:1b:
1d:ec:60:6a:0d:92:78:e6:93:3e:a1:65:32:40:50:ba:66:2d:
8b:a4:7e:f9:97:df:9a:0e:4b:84:2c:92:86:7d:c2:b4:9c:21:
e9:e1:60:11
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAMNsyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTFjNWQzMzMxMTQ1ZWM4ZTI3MTg3NmY4MDQyMjA3YjlkMDBjYjY0MB4XDTIyMDIw
ODA3NDIwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTJhNzQ5YjI2OTVm
YzQ2Zjk0YThjNmE5MGRiODI2MTYxNThkY2VjMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjfbTEyZMXNgwydEEnDAcZUHW3suKGBGBjUQs98sH0MMFEB
yirz5T0wi8koN0BwL+cgQK2pBdMCFOd4zCsdmJ0P9/ot+AJmfZ7ivheZR4hDi4+3
iTwT3QeIZFd6AZqbn3pe5arww9ggpMyQf7j/QZieWVJWGqfbFbiLmWmhv/X9MEK0
EXFdUfFx/ec0boj4VaRVU4AzospcB1r/3EJAyFA7AsSlZ7Le53QdZBoEbvvh9Rs+
8A7kAAM8mk/zWsO1GeOuCgoOeva4Xw44kY/c6pS6TWD5RvHB5eTmGAnUmwUKgu5F
fN+nzaQUl//ZnFR/UFI0xYd2kYywcN+lqpCqb8kCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTip0myaV/Eb5SoxqkNuCYWFY3OwjAfBgNVHSMEGDAWgBQ5HF0zMRReyOJx
h2+AQiB7nQDLZDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09SeGRNekVVWHNqaWNZZHZnRUlnZTUwQXkyUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvMDU4NjI0LWRlNzctNDIyNC1iNTQwLWNhMzM1MGU3NjBjYi8x
LzRxZEpzbWxmeEctVXFNYXBEYmdtRmhXTnpzSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
MDU4NjI0LWRlNzctNDIyNC1iNTQwLWNhMzM1MGU3NjBjYi8xL09SeGRNekVVWHNq
aWNZZHZnRUlnZTUwQXkyUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQDufloAwQAuflqMA0GCSqGSIb3
DQEBCwUAA4IBAQCsY+2PvHC+mmJQDN+bYk5SP5EmLQKAY9zEANDkmjqafq5IoXZD
/u8YIXkC71/RCRAPr4hzlb8Fwiq6Hwafo2UUchXMDljya8PCy9FCCFt/qwEinYt5
2Rc0D9eVoI8wmLAt822bxM5lHPefnevr/u3InTauqUWjH4IveKixyceSNAx7zh6j
oUGUUR3hlZP7ZXC1Wek7Wks8JxwzsVQM/Hsxpn9zWDkCorbFOs9yqBjtfERLZMAK
DLfEHi2QtBbpz6MOj4T9AsQvfmGj2o1FPHKhPBNpg9FMlhsd7GBqDZJ45pM+oWUy
QFC6Zi2LpH75l9+aDkuELJKGfcK0nCHp4WAR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:00 2024 by rpki-client on console-ams.rpki-client.org