Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/L4TWp0GksfIK7gggOGU-1QRQoI8.roa
File: L4TWp0GksfIK7gggOGU-1QRQoI8.roa (raw, json)
Hash identifier: 5Kl6dm4SqVWiGJjGCHsgVcCj61fEYJ5z0lm8a6oWGHc=
Subject key identifier: 2F:84:D6:A7:41:A4:B1:F2:0A:EE:08:20:38:65:3E:D5:04:50:A0:8F
Certificate issuer: /CN=391c5d3331145ec8e271876f8042207b9d00cb64
Certificate serial: B3F8C1
Authority key identifier: 39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/L4TWp0GksfIK7gggOGU-1QRQoI8.roa
Signing time: Tue 01 Feb 2022 07:23:40 +0000
ROA not before: Tue 01 Feb 2022 07:23:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60398
IP address blocks: 185.249.105.0/24 maxlen: 24
185.249.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11794625 (0xb3f8c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391c5d3331145ec8e271876f8042207b9d00cb64
Validity
Not Before: Feb 1 07:23:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f84d6a741a4b1f20aee082038653ed50450a08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:36:d9:0f:d4:e0:b4:4e:ac:3f:47:97:e6:12:
77:70:06:f4:d8:af:bb:4a:cf:b2:67:9e:37:15:e2:
1b:3c:7c:c1:93:02:43:de:24:88:52:6e:f1:2b:1e:
b1:2f:c5:7c:1d:78:b6:3e:41:e8:5e:9b:9b:11:7a:
78:fb:79:16:fb:3e:d9:dc:1f:fc:27:a2:64:7f:7b:
25:25:ea:30:dd:4b:ef:e0:df:07:00:55:f4:32:c4:
40:47:3a:27:14:7c:e6:21:3d:35:c3:5c:c9:0c:36:
66:82:40:52:81:af:94:db:c9:37:94:0a:2e:a4:81:
ee:6d:44:eb:62:31:ec:4e:e7:e5:c5:a8:fb:90:3b:
2e:9f:78:4e:3b:47:43:69:d2:50:fb:09:ad:5c:c9:
11:fd:e1:0b:83:16:b0:aa:55:b5:d8:e3:67:64:91:
85:22:8b:41:20:f0:10:b0:e6:42:06:33:50:e8:95:
84:67:90:04:ce:28:3d:a6:cc:7e:a9:a3:cf:84:c6:
72:a4:b5:7b:cf:41:be:82:4a:52:b8:57:42:34:62:
ef:e3:00:91:70:fd:b4:8f:f3:97:ef:71:9e:78:27:
65:b2:83:5e:2b:7b:c4:7a:86:01:5e:14:13:b9:1d:
6a:29:44:62:3f:24:02:6c:ed:8f:a9:c2:37:d2:b4:
32:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:84:D6:A7:41:A4:B1:F2:0A:EE:08:20:38:65:3E:D5:04:50:A0:8F
X509v3 Authority Key Identifier:
keyid:39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/L4TWp0GksfIK7gggOGU-1QRQoI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.105.0-185.249.106.255
Signature Algorithm: sha256WithRSAEncryption
33:c5:29:33:0c:33:f3:b8:6b:71:93:da:7d:9d:02:41:27:05:
ce:20:d0:f9:19:fc:69:ff:b0:c0:c8:ae:0d:29:79:16:ba:56:
12:ad:00:59:42:14:14:49:30:1e:fb:71:95:04:39:c4:79:a5:
0d:87:2a:d2:ba:1b:e8:a9:3c:3e:0a:a1:46:b3:01:bb:61:c6:
e6:46:40:0a:d1:20:a7:4c:a4:3b:ed:6b:e4:6a:2c:25:38:2b:
64:13:22:69:f2:6b:b5:4e:63:ca:1a:db:7a:5d:78:db:d1:b1:
e9:4f:de:06:81:2b:be:18:0e:86:b0:14:c8:bc:b3:3b:8b:c4:
71:e5:e9:bc:d1:57:a4:8d:4e:95:46:aa:1e:cd:95:c2:8a:19:
70:e6:4c:24:a2:eb:15:ad:9e:c5:10:19:8e:a5:c4:66:7a:72:
cc:d3:86:a7:57:d7:12:a8:a3:40:ec:c4:cf:13:ee:d0:5d:68:
90:e2:52:8a:28:f7:90:04:e4:f8:5c:3a:96:2d:79:8e:2e:3b:
d3:49:db:ea:50:a7:3b:89:23:13:7f:b4:ea:5c:23:d9:0e:e8:
18:00:b0:d6:96:16:1c:5c:2b:61:fd:f8:ce:6d:e1:e4:48:13:
8f:b4:7e:e7:73:08:d5:c7:1d:21:c8:e7:12:14:74:8c:5f:7d:
d8:06:a4:e4
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEALP4wTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTFjNWQzMzMxMTQ1ZWM4ZTI3MTg3NmY4MDQyMjA3YjlkMDBjYjY0MB4XDTIyMDIw
MTA3MjM0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmY4NGQ2YTc0MWE0
YjFmMjBhZWUwODIwMzg2NTNlZDUwNDUwYTA4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKc22Q/U4LROrD9Hl+YSd3AG9Nivu0rPsmeeNxXiGzx8wZMC
Q94kiFJu8SsesS/FfB14tj5B6F6bmxF6ePt5Fvs+2dwf/CeiZH97JSXqMN1L7+Df
BwBV9DLEQEc6JxR85iE9NcNcyQw2ZoJAUoGvlNvJN5QKLqSB7m1E62Ix7E7n5cWo
+5A7Lp94TjtHQ2nSUPsJrVzJEf3hC4MWsKpVtdjjZ2SRhSKLQSDwELDmQgYzUOiV
hGeQBM4oPabMfqmjz4TGcqS1e89BvoJKUrhXQjRi7+MAkXD9tI/zl+9xnngnZbKD
Xit7xHqGAV4UE7kdailEYj8kAmztj6nCN9K0MhECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQvhNanQaSx8gruCCA4ZT7VBFCgjzAfBgNVHSMEGDAWgBQ5HF0zMRReyOJx
h2+AQiB7nQDLZDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09SeGRNekVVWHNqaWNZZHZnRUlnZTUwQXkyUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvMDU4NjI0LWRlNzctNDIyNC1iNTQwLWNhMzM1MGU3NjBjYi8x
L0w0VFdwMEdrc2ZJSzdnZ2dPR1UtMVFSUW9JOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
MDU4NjI0LWRlNzctNDIyNC1iNTQwLWNhMzM1MGU3NjBjYi8xL09SeGRNekVVWHNq
aWNZZHZnRUlnZTUwQXkyUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAuflpAwQAuflqMA0GCSqGSIb3
DQEBCwUAA4IBAQAzxSkzDDPzuGtxk9p9nQJBJwXOIND5Gfxp/7DAyK4NKXkWulYS
rQBZQhQUSTAe+3GVBDnEeaUNhyrSuhvoqTw+CqFGswG7YcbmRkAK0SCnTKQ77Wvk
aiwlOCtkEyJp8mu1TmPKGtt6XXjb0bHpT94GgSu+GA6GsBTIvLM7i8Rx5em80Vek
jU6VRqoezZXCihlw5kwkousVrZ7FEBmOpcRmenLM04anV9cSqKNA7MTPE+7QXWiQ
4lKKKPeQBOT4XDqWLXmOLjvTSdvqUKc7iSMTf7TqXCPZDugYALDWlhYcXCth/fjO
beHkSBOPtH7ncwjVxx0hyOcSFHSMX33YBqTk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:00 2024 by rpki-client on console-ams.rpki-client.org