Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/EsI3nOFzheZ4Sfz-kQ7JW7AMnLQ.roa
File: EsI3nOFzheZ4Sfz-kQ7JW7AMnLQ.roa (raw, json)
Hash identifier: K95l1/dQly9qWPhl3zy9zi2tKUBFDgRzwXdi1aJaZ2g=
Subject key identifier: 12:C2:37:9C:E1:73:85:E6:78:49:FC:FE:91:0E:C9:5B:B0:0C:9C:B4
Certificate issuer: /CN=94948e5f2fa04b222a6e96883b840f7124531556
Certificate serial: 09E8541F
Authority key identifier: 94:94:8E:5F:2F:A0:4B:22:2A:6E:96:88:3B:84:0F:71:24:53:15:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJSOXy-gSyIqbpaIO4QPcSRTFVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/EsI3nOFzheZ4Sfz-kQ7JW7AMnLQ.roa
Signing time: Sat 01 Jan 2022 13:58:28 +0000
ROA not before: Sat 01 Jan 2022 13:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 185.45.194.0/24 maxlen: 24
212.8.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166220831 (0x9e8541f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94948e5f2fa04b222a6e96883b840f7124531556
Validity
Not Before: Jan 1 13:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12c2379ce17385e67849fcfe910ec95bb00c9cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e9:42:6c:c0:60:64:37:81:56:e2:98:b6:5c:
cf:e1:d0:ed:61:a6:28:80:e3:10:07:0c:38:9e:0e:
f6:b7:cb:51:b0:81:bf:c7:52:f2:95:96:a9:cd:c5:
d9:82:de:54:59:bc:62:1c:ac:b2:ea:7c:25:ed:11:
16:24:35:40:ed:d7:70:d5:35:96:bc:a4:b2:51:9b:
f1:fb:90:a2:8a:7f:f5:a4:32:90:7e:d7:40:80:9c:
55:01:af:f9:c9:e9:6b:ec:69:eb:18:8f:06:90:e7:
94:4b:49:49:11:72:7f:5a:04:bf:ed:3d:18:86:e0:
46:4a:f8:0d:0e:41:bd:bf:15:6a:92:43:4e:76:aa:
21:0e:c4:92:43:34:00:24:83:7b:9b:f9:c5:73:e2:
44:92:b1:91:88:72:f3:26:5f:31:cf:10:c5:8e:79:
4c:f3:30:f9:10:0d:c6:23:b7:ba:a8:93:77:8b:86:
4e:ff:3f:d4:88:ff:11:71:e3:c0:d1:1c:2f:ac:03:
b5:58:f5:18:cc:ed:62:6c:86:27:9a:df:a8:6b:40:
72:80:ca:e6:72:e6:5f:37:9e:9e:73:67:b6:c7:b6:
ea:55:fa:78:25:5c:a7:61:1d:7d:af:1c:0a:0f:e0:
11:b9:17:01:21:04:1a:f6:2a:ee:b9:37:16:6c:57:
a8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C2:37:9C:E1:73:85:E6:78:49:FC:FE:91:0E:C9:5B:B0:0C:9C:B4
X509v3 Authority Key Identifier:
keyid:94:94:8E:5F:2F:A0:4B:22:2A:6E:96:88:3B:84:0F:71:24:53:15:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJSOXy-gSyIqbpaIO4QPcSRTFVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/EsI3nOFzheZ4Sfz-kQ7JW7AMnLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/lJSOXy-gSyIqbpaIO4QPcSRTFVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.194.0/24
212.8.251.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:b6:96:26:dd:ef:f2:bf:06:4b:68:93:5a:04:80:05:0f:89:
1e:af:60:ff:d3:e5:38:13:7b:bf:2c:c2:de:7d:ee:ba:a5:82:
ec:91:b2:bd:4b:c8:42:30:2c:6e:b2:b1:96:0b:9f:43:da:53:
c1:c6:5f:95:ad:22:b2:0a:16:3e:22:7b:55:67:82:cd:c9:b4:
fa:84:55:ff:2d:1c:74:41:00:5e:3d:7a:31:c2:c5:26:98:b8:
f6:29:5b:4a:ce:50:05:83:51:18:72:78:be:7c:1f:50:bf:cc:
e1:3c:50:d2:35:f3:23:d3:54:95:8a:cf:07:d8:93:3d:43:b0:
6d:7b:87:3a:77:de:5c:1b:ec:c3:17:e4:6f:c2:66:bc:62:d6:
ab:61:f1:63:d0:22:7e:41:fc:e2:e8:e3:fa:82:6f:a4:9a:bd:
5a:a5:dc:28:7b:43:82:13:fd:74:79:0b:ac:b6:ad:58:6f:8c:
ce:95:c4:68:cf:86:77:dd:2a:72:f3:77:3b:db:ab:16:6a:71:
94:d9:0e:33:16:c8:36:62:49:cc:07:2b:53:e3:14:85:92:6e:
21:bb:c9:c9:a9:23:1e:69:c2:3f:82:0a:72:34:b0:86:79:19:
7b:3f:e5:74:fb:16:6f:68:a8:a8:85:13:25:fb:76:1a:8e:10:
e5:02:af:b1
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECehUHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NDk0OGU1ZjJmYTA0YjIyMmE2ZTk2ODgzYjg0MGY3MTI0NTMxNTU2MB4XDTIyMDEw
MTEzNTgyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTJjMjM3OWNlMTcz
ODVlNjc4NDlmY2ZlOTEwZWM5NWJiMDBjOWNiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI/pQmzAYGQ3gVbimLZcz+HQ7WGmKIDjEAcMOJ4O9rfLUbCB
v8dS8pWWqc3F2YLeVFm8Yhyssup8Je0RFiQ1QO3XcNU1lrykslGb8fuQoop/9aQy
kH7XQICcVQGv+cnpa+xp6xiPBpDnlEtJSRFyf1oEv+09GIbgRkr4DQ5Bvb8VapJD
TnaqIQ7EkkM0ACSDe5v5xXPiRJKxkYhy8yZfMc8QxY55TPMw+RANxiO3uqiTd4uG
Tv8/1Ij/EXHjwNEcL6wDtVj1GMztYmyGJ5rfqGtAcoDK5nLmXzeennNntse26lX6
eCVcp2Edfa8cCg/gEbkXASEEGvYq7rk3FmxXqF0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQSwjec4XOF5nhJ/P6RDslbsAyctDAfBgNVHSMEGDAWgBSUlI5fL6BLIipu
log7hA9xJFMVVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xKU09YeS1nU3lJcWJwYUlPNFFQY1NSVEZWWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvZWM0OGJlLTkyNTAtNGY3Yy05Yzg3LTY0MWI4ZTYwZDNlMi8x
L0VzSTNuT0Z6aGVaNFNmei1rUTdKVzdBTW5MUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
ZWM0OGJlLTkyNTAtNGY3Yy05Yzg3LTY0MWI4ZTYwZDNlMi8xL2xKU09YeS1nU3lJ
cWJwYUlPNFFQY1NSVEZWWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALktwgMEANQI+zANBgkqhkiG9w0B
AQsFAAOCAQEAnLaWJt3v8r8GS2iTWgSABQ+JHq9g/9PlOBN7vyzC3n3uuqWC7JGy
vUvIQjAsbrKxlgufQ9pTwcZfla0isgoWPiJ7VWeCzcm0+oRV/y0cdEEAXj16McLF
Jpi49ilbSs5QBYNRGHJ4vnwfUL/M4TxQ0jXzI9NUlYrPB9iTPUOwbXuHOnfeXBvs
wxfkb8JmvGLWq2HxY9AifkH84ujj+oJvpJq9WqXcKHtDghP9dHkLrLatWG+MzpXE
aM+Gd90qcvN3O9urFmpxlNkOMxbINmJJzAcrU+MUhZJuIbvJyakjHmnCP4IKcjSw
hnkZez/ldPsWb2ioqIUTJft2Go4Q5QKvsQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:50 2024 by rpki-client on console-ams.rpki-client.org