Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/bf09b7-71c4-499c-9fd6-5475135f1905/1/PehPdFECK0KBQ9C6980fhN22j7c.roa
File: PehPdFECK0KBQ9C6980fhN22j7c.roa (raw, json)
Hash identifier: odwEUGT1e85YLkNcIixf7VdaEdxKWDxQBaF9Ld8Vt0U=
Subject key identifier: 3D:E8:4F:74:51:02:2B:42:81:43:D0:BA:F7:CD:1F:84:DD:B6:8F:B7
Certificate issuer: /CN=ee8a95327187c30880f5bbf3c37289ee311c5920
Certificate serial: 044810D6
Authority key identifier: EE:8A:95:32:71:87:C3:08:80:F5:BB:F3:C3:72:89:EE:31:1C:59:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7oqVMnGHwwiA9bvzw3KJ7jEcWSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/bf09b7-71c4-499c-9fd6-5475135f1905/1/PehPdFECK0KBQ9C6980fhN22j7c.roa
Signing time: Sat 01 Jan 2022 09:01:14 +0000
ROA not before: Sat 01 Jan 2022 09:01:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199354
IP address blocks: 185.19.228.0/22 maxlen: 22
2a03:ffc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71831766 (0x44810d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8a95327187c30880f5bbf3c37289ee311c5920
Validity
Not Before: Jan 1 09:01:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3de84f7451022b428143d0baf7cd1f84ddb68fb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d6:58:d1:ff:69:46:12:ab:0c:70:2e:bc:40:
9d:45:97:46:d4:9d:53:b0:c7:cf:5f:c8:42:bd:12:
aa:8d:6e:17:e6:29:76:00:62:a1:8d:a9:e7:0b:1e:
d0:e5:7a:81:cd:09:91:a3:fa:90:5c:6e:fb:18:7f:
24:2b:da:34:98:9e:49:c0:90:68:f9:70:9d:99:1b:
20:72:61:5d:f5:07:76:09:6c:a3:63:4e:c3:6a:cb:
c2:4b:fb:ff:37:95:e9:93:f5:6c:f1:1d:57:98:66:
d5:94:de:80:3d:91:f7:48:c8:8d:2f:ba:d9:0f:69:
1d:4b:8e:0b:ef:94:b6:4d:f1:07:2b:bf:d2:55:f3:
11:b2:b0:88:a3:71:c2:8e:d6:61:4c:f4:64:a3:a8:
05:4f:bf:03:c1:a2:a2:b0:ab:07:01:17:37:98:a7:
ab:f1:0e:e5:d4:2a:5b:ec:f0:80:be:e6:41:17:d2:
43:4f:f1:49:cf:3d:dc:e6:de:22:cd:c3:22:30:a1:
4a:6b:30:a4:79:60:73:2b:93:9b:c8:a4:c9:c4:16:
ee:d4:d1:5f:75:12:6d:69:47:1c:6d:2d:72:83:98:
c1:34:1b:0e:d0:c9:d6:8b:ce:c7:33:20:74:3b:8d:
51:0a:9b:1e:b2:9b:a1:d6:2d:13:f4:83:dc:b4:a0:
8e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E8:4F:74:51:02:2B:42:81:43:D0:BA:F7:CD:1F:84:DD:B6:8F:B7
X509v3 Authority Key Identifier:
keyid:EE:8A:95:32:71:87:C3:08:80:F5:BB:F3:C3:72:89:EE:31:1C:59:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7oqVMnGHwwiA9bvzw3KJ7jEcWSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/bf09b7-71c4-499c-9fd6-5475135f1905/1/PehPdFECK0KBQ9C6980fhN22j7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/bf09b7-71c4-499c-9fd6-5475135f1905/1/7oqVMnGHwwiA9bvzw3KJ7jEcWSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.228.0/22
IPv6:
2a03:ffc0::/32
Signature Algorithm: sha256WithRSAEncryption
2f:42:6c:8a:1a:58:f9:eb:f5:82:1f:a1:ae:f6:e5:81:5d:5a:
d9:8c:70:b4:b8:5f:f2:77:2b:a3:bb:c6:ba:4c:32:e5:a9:5b:
13:65:61:42:b4:b3:69:83:28:ac:98:3d:a3:e5:3e:72:6f:25:
02:8c:f9:c2:e3:dc:8a:84:8e:34:42:8a:8f:2f:d5:a9:14:48:
92:a6:b2:dc:b2:87:3c:92:a4:0c:ef:5b:93:15:cb:8c:a3:36:
47:72:9f:f2:9c:6b:71:d0:66:8d:92:ef:84:0e:e2:e4:86:16:
e0:62:28:95:c8:e1:52:3e:c7:0e:ce:c8:03:57:17:14:b2:41:
a9:12:2f:ee:83:62:d0:2f:63:7c:60:dd:f5:09:52:5a:fa:86:
ef:d7:bf:19:d9:8f:6f:9e:12:4d:b0:85:c6:98:0c:9f:ac:81:
75:29:e8:58:16:11:c4:d1:9c:d4:cc:28:87:92:f2:a7:75:a4:
f4:10:6e:13:4b:93:56:d9:f0:fb:73:c3:a7:ef:72:b1:31:d6:
db:26:b4:ec:da:62:76:58:00:85:68:9b:20:c6:a3:aa:87:cb:
23:32:c8:5b:d6:cc:ac:71:67:5a:da:b4:81:1e:a8:ed:9e:e3:
bf:f9:8a:ed:85:a0:0c:63:be:dc:eb:46:f1:0c:f3:94:53:71:
69:76:98:da
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBEgQ1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZThhOTUzMjcxODdjMzA4ODBmNWJiZjNjMzcyODllZTMxMWM1OTIwMB4XDTIyMDEw
MTA5MDExNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2RlODRmNzQ1MTAy
MmI0MjgxNDNkMGJhZjdjZDFmODRkZGI2OGZiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKrWWNH/aUYSqwxwLrxAnUWXRtSdU7DHz1/IQr0Sqo1uF+Yp
dgBioY2p5wse0OV6gc0JkaP6kFxu+xh/JCvaNJieScCQaPlwnZkbIHJhXfUHdgls
o2NOw2rLwkv7/zeV6ZP1bPEdV5hm1ZTegD2R90jIjS+62Q9pHUuOC++Utk3xByu/
0lXzEbKwiKNxwo7WYUz0ZKOoBU+/A8GiorCrBwEXN5inq/EO5dQqW+zwgL7mQRfS
Q0/xSc893ObeIs3DIjChSmswpHlgcyuTm8ikycQW7tTRX3USbWlHHG0tcoOYwTQb
DtDJ1ovOxzMgdDuNUQqbHrKbodYtE/SD3LSgjiMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQ96E90UQIrQoFD0Lr3zR+E3baPtzAfBgNVHSMEGDAWgBTuipUycYfDCID1
u/PDconuMRxZIDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdvcVZNbkdId3dpQTlidnp3M0tKN2pFY1dTQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvYmYwOWI3LTcxYzQtNDk5Yy05ZmQ2LTU0NzUxMzVmMTkwNS8x
L1BlaFBkRkVDSzBLQlE5QzY5ODBmaE4yMmo3Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
YmYwOWI3LTcxYzQtNDk5Yy05ZmQ2LTU0NzUxMzVmMTkwNS8xLzdvcVZNbkdId3dp
QTlidnp3M0tKN2pFY1dTQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkT5DANBAIAAjAHAwUAKgP/wDAN
BgkqhkiG9w0BAQsFAAOCAQEAL0JsihpY+ev1gh+hrvblgV1a2YxwtLhf8ncro7vG
ukwy5albE2VhQrSzaYMorJg9o+U+cm8lAoz5wuPcioSONEKKjy/VqRRIkqay3LKH
PJKkDO9bkxXLjKM2R3Kf8pxrcdBmjZLvhA7i5IYW4GIolcjhUj7HDs7IA1cXFLJB
qRIv7oNi0C9jfGDd9QlSWvqG79e/GdmPb54STbCFxpgMn6yBdSnoWBYRxNGc1Mwo
h5Lyp3Wk9BBuE0uTVtnw+3PDp+9ysTHW2ya07NpidlgAhWibIMajqofLIzLIW9bM
rHFnWtq0gR6o7Z7jv/mK7YWgDGO+3OtG8QzzlFNxaXaY2g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:14 2023 by rpki-client on console-ams.rpki-client.org