Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/A5YjREtakHZYVrPjvIDfYJP76jE.roa
File: A5YjREtakHZYVrPjvIDfYJP76jE.roa (raw, json)
Hash identifier: 0BbN5e7KG1s8G2ESfALSXBfLZc40aXCQlSWn4ylSMDk=
Subject key identifier: 03:96:23:44:4B:5A:90:76:58:56:B3:E3:BC:80:DF:60:93:FB:EA:31
Certificate issuer: /CN=a65fbcb4ea308a98b09397625e63866383c16dd0
Certificate serial: 017B4BCA
Authority key identifier: A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl-8tOowipiwk5diXmOGY4PBbdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/A5YjREtakHZYVrPjvIDfYJP76jE.roa
Signing time: Sat 01 Jan 2022 11:01:18 +0000
ROA not before: Sat 01 Jan 2022 11:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32708
IP address blocks: 185.211.78.0/24 maxlen: 24
85.92.101.0/24 maxlen: 24
85.92.102.0/24 maxlen: 24
85.92.100.0/24 maxlen: 24
85.92.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24857546 (0x17b4bca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a65fbcb4ea308a98b09397625e63866383c16dd0
Validity
Not Before: Jan 1 11:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=039623444b5a90765856b3e3bc80df6093fbea31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b0:32:8f:92:65:6d:05:c9:f7:fa:1e:e5:6f:
64:21:d5:d0:95:e2:42:02:49:8d:f1:19:d9:83:d3:
d7:6e:96:7d:92:d2:08:fb:eb:f6:66:d3:75:47:76:
3c:8c:1d:fb:a4:a7:3d:f5:fa:c4:ea:50:29:fb:38:
36:00:20:73:18:b9:09:c2:5d:6d:90:1e:e9:ee:c6:
d2:3b:f6:c4:69:da:c8:ca:c4:a0:32:18:db:f8:e6:
d4:c7:bf:39:37:69:a7:06:7a:a3:5e:35:3a:75:62:
67:b6:c5:db:08:71:95:b0:02:7d:bf:38:c5:71:89:
94:53:12:df:ce:ac:84:01:56:ea:a9:9d:85:65:7f:
2f:f3:41:c3:d4:92:6c:5c:fb:33:85:5c:5f:58:60:
5d:30:00:c0:39:96:9a:60:cc:04:d5:ab:8f:cf:d8:
32:c2:bb:b2:41:03:ec:b4:5e:af:2d:9b:ce:54:25:
be:cd:0c:99:d7:79:fd:e2:a8:d6:8a:2f:e4:e6:3a:
98:55:93:4a:68:0a:69:90:9f:95:51:90:2a:d2:4b:
25:fa:c5:dc:ad:1c:62:18:a6:3f:99:bc:eb:2e:a1:
98:bf:56:98:24:f8:2e:a3:fb:df:d6:0b:62:07:44:
41:54:13:e8:24:a9:41:d3:7d:88:23:7d:19:6c:95:
dc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:96:23:44:4B:5A:90:76:58:56:B3:E3:BC:80:DF:60:93:FB:EA:31
X509v3 Authority Key Identifier:
keyid:A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl-8tOowipiwk5diXmOGY4PBbdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/A5YjREtakHZYVrPjvIDfYJP76jE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/pl-8tOowipiwk5diXmOGY4PBbdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.100.0/22
185.211.78.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:0a:ab:ce:2a:12:22:bf:71:0b:84:95:6d:2a:ab:79:7b:17:
23:55:0f:72:68:5f:78:99:93:90:44:7d:a3:38:d9:cb:52:a4:
e5:49:7b:b2:e4:c9:d0:76:35:c7:3b:94:87:a8:59:db:1e:2b:
60:5d:4f:b9:6f:5b:7e:85:8e:a4:fb:0a:e9:71:ac:07:b0:51:
28:5a:15:43:52:7c:95:63:50:55:85:d7:76:78:57:39:7d:17:
9a:04:aa:d7:6c:86:4c:33:04:74:76:c5:ec:0d:7c:59:54:60:
15:68:a1:99:4a:2c:38:8c:60:35:41:65:18:91:47:ab:4d:9c:
e2:18:a4:8f:89:84:18:9d:ed:a3:fd:40:bd:a0:dc:aa:24:28:
24:09:4e:8b:89:1c:ab:4f:8f:d5:63:14:b6:89:90:43:9b:92:
e4:15:23:82:14:93:0a:1c:6d:99:b6:7f:0c:f2:06:69:fc:3e:
09:49:4f:35:0e:c6:f4:78:f7:3a:f6:f2:89:83:cd:0d:d2:67:
93:11:23:e1:70:1a:d7:e3:95:7e:aa:83:34:e9:c5:51:ab:7e:
b6:ab:69:25:a5:9d:44:f5:b4:f8:71:ea:1e:2f:59:45:4e:c2:
33:ee:88:f7:6e:58:a0:83:29:ce:48:97:ae:5d:15:eb:fd:6e:
1a:af:a9:9f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAXtLyjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NjVmYmNiNGVhMzA4YTk4YjA5Mzk3NjI1ZTYzODY2MzgzYzE2ZGQwMB4XDTIyMDEw
MTExMDExOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDM5NjIzNDQ0YjVh
OTA3NjU4NTZiM2UzYmM4MGRmNjA5M2ZiZWEzMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALGwMo+SZW0Fyff6HuVvZCHV0JXiQgJJjfEZ2YPT126WfZLS
CPvr9mbTdUd2PIwd+6SnPfX6xOpQKfs4NgAgcxi5CcJdbZAe6e7G0jv2xGnayMrE
oDIY2/jm1Me/OTdppwZ6o141OnViZ7bF2whxlbACfb84xXGJlFMS386shAFW6qmd
hWV/L/NBw9SSbFz7M4VcX1hgXTAAwDmWmmDMBNWrj8/YMsK7skED7LRery2bzlQl
vs0Mmdd5/eKo1oov5OY6mFWTSmgKaZCflVGQKtJLJfrF3K0cYhimP5m86y6hmL9W
mCT4LqP739YLYgdEQVQT6CSpQdN9iCN9GWyV3G8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQDliNES1qQdlhWs+O8gN9gk/vqMTAfBgNVHSMEGDAWgBSmX7y06jCKmLCT
l2JeY4Zjg8Ft0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BsLTh0T293aXBpd2s1ZGlYbU9HWTRQQmJkQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvZjcyMzFkLWM1NjEtNGFhMi1iODBlLTYyZDQyZmU2ZmQzYy8x
L0E1WWpSRXRha0haWVZyUGp2SURmWUpQNzZqRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
ZjcyMzFkLWM1NjEtNGFhMi1iODBlLTYyZDQyZmU2ZmQzYy8xL3BsLTh0T293aXBp
d2s1ZGlYbU9HWTRQQmJkQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAlVcZAMEALnTTjANBgkqhkiG9w0B
AQsFAAOCAQEAxQqrzioSIr9xC4SVbSqreXsXI1UPcmhfeJmTkER9ozjZy1Kk5Ul7
suTJ0HY1xzuUh6hZ2x4rYF1PuW9bfoWOpPsK6XGsB7BRKFoVQ1J8lWNQVYXXdnhX
OX0XmgSq12yGTDMEdHbF7A18WVRgFWihmUosOIxgNUFlGJFHq02c4hikj4mEGJ3t
o/1AvaDcqiQoJAlOi4kcq0+P1WMUtomQQ5uS5BUjghSTChxtmbZ/DPIGafw+CUlP
NQ7G9Hj3OvbyiYPNDdJnkxEj4XAa1+OVfqqDNOnFUat+tqtpJaWdRPW0+HHqHi9Z
RU7CM+6I925YoIMpzkiXrl0V6/1uGq+pnw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:55 2024 by rpki-client on console-fra.rpki-client.org