Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a7ce03-1f15-4dbc-9a8d-a81544ea5b67/1/3_DS5CgQvVMuvQbbvb3pqwGdcgI.roa
File: 3_DS5CgQvVMuvQbbvb3pqwGdcgI.roa (raw, json)
Hash identifier: oPMdyPE8jdKX5Of4gjJ3A+B7r/NbE+A3zQ/6qob/MkA=
Subject key identifier: DF:F0:D2:E4:28:10:BD:53:2E:BD:06:DB:BD:BD:E9:AB:01:9D:72:02
Certificate issuer: /CN=62e5ec9df4dd03b9f500a6a0947d147b6ed21666
Certificate serial: 01BB50CF
Authority key identifier: 62:E5:EC:9D:F4:DD:03:B9:F5:00:A6:A0:94:7D:14:7B:6E:D2:16:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YuXsnfTdA7n1AKaglH0Ue27SFmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a7ce03-1f15-4dbc-9a8d-a81544ea5b67/1/3_DS5CgQvVMuvQbbvb3pqwGdcgI.roa
Signing time: Sat 01 Jan 2022 08:58:26 +0000
ROA not before: Sat 01 Jan 2022 08:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205225
IP address blocks: 185.188.95.0/24 maxlen: 24
185.188.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29053135 (0x1bb50cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62e5ec9df4dd03b9f500a6a0947d147b6ed21666
Validity
Not Before: Jan 1 08:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dff0d2e42810bd532ebd06dbbdbde9ab019d7202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:87:3c:3a:fc:39:6b:f4:55:a4:8b:b4:98:e6:
40:90:45:8e:1c:43:20:f2:7d:ee:d0:fe:6e:df:16:
f4:63:18:4a:5d:fb:10:2c:04:9c:a4:ed:2a:8a:9e:
51:24:c3:93:72:4b:64:7e:f9:df:7b:9c:c5:71:fe:
75:4a:d3:8e:57:fe:ee:ae:f9:ca:5d:f7:c9:4b:0f:
bc:8c:d2:60:31:65:ac:32:81:10:d0:50:c1:99:72:
a0:d9:d9:75:11:1f:8e:11:45:80:d0:07:5c:ad:3d:
3b:9a:c2:46:9f:4e:67:56:69:87:4b:5e:40:03:6c:
91:47:81:2d:06:d6:55:af:6f:f4:97:e7:dd:b4:26:
b9:d3:a4:e9:7e:b0:38:16:cb:b9:09:0c:f1:d2:fd:
4b:09:92:46:a9:61:e4:89:a0:b4:64:3d:76:c8:dc:
2c:f3:e0:ce:9a:a6:d7:8b:65:21:46:94:b0:d8:9c:
a4:ef:c8:13:c8:07:48:0f:cb:22:25:9b:2d:68:4e:
16:85:c1:46:30:32:43:1c:29:68:25:23:61:7d:b4:
52:98:86:d1:27:5f:64:1e:e2:30:34:ee:42:f5:ad:
62:be:88:ec:3b:f5:2d:02:e1:6d:63:54:84:87:3b:
e2:f8:a2:1d:80:49:0b:12:c6:37:d7:c8:47:c5:ba:
4c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:F0:D2:E4:28:10:BD:53:2E:BD:06:DB:BD:BD:E9:AB:01:9D:72:02
X509v3 Authority Key Identifier:
keyid:62:E5:EC:9D:F4:DD:03:B9:F5:00:A6:A0:94:7D:14:7B:6E:D2:16:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YuXsnfTdA7n1AKaglH0Ue27SFmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a7ce03-1f15-4dbc-9a8d-a81544ea5b67/1/3_DS5CgQvVMuvQbbvb3pqwGdcgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a7ce03-1f15-4dbc-9a8d-a81544ea5b67/1/YuXsnfTdA7n1AKaglH0Ue27SFmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.93.0/24
185.188.95.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:70:ba:57:8e:1b:26:b8:e4:eb:59:9b:bf:ae:1b:8f:f2:06:
e5:ad:75:5c:cd:f8:43:34:aa:8a:e2:d4:ed:cb:3f:c4:67:46:
16:c4:3c:dc:c7:0a:8a:26:db:78:33:c8:da:32:62:0b:41:b7:
cc:53:26:b1:12:26:05:fd:d3:11:d3:df:70:90:90:98:56:5e:
8e:24:08:cd:a7:51:75:72:7b:2f:e8:2e:44:98:33:db:eb:05:
5d:c8:ba:54:68:b0:17:3a:67:d5:20:4e:42:85:b8:c7:5c:72:
e0:f1:a4:8a:82:ae:c3:ef:15:5e:67:bb:97:4d:6e:91:cb:51:
6f:f2:c7:04:8b:cc:ca:1f:bd:a7:c5:fe:67:ef:d9:96:54:44:
fb:96:e2:c4:7a:39:8a:08:19:68:5c:0c:a8:c6:75:2a:01:8b:
70:a1:fd:d9:09:1a:3c:4a:39:b9:82:39:68:f5:ed:fb:05:f8:
a4:ff:3e:2b:f5:3f:f3:5d:d6:2d:55:2c:6e:0e:2f:e0:1c:ef:
20:ce:a2:a5:a3:2b:d6:04:9e:b8:2c:f8:d3:ab:81:89:aa:c6:
62:c3:22:8f:e2:c1:29:21:6f:35:66:37:72:a5:89:97:cc:f2:
bb:51:1a:8c:04:f1:54:45:3b:45:9a:13:f8:73:36:85:01:98:
a5:bf:5d:5f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAbtQzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MmU1ZWM5ZGY0ZGQwM2I5ZjUwMGE2YTA5NDdkMTQ3YjZlZDIxNjY2MB4XDTIyMDEw
MTA4NTgyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGZmMGQyZTQyODEw
YmQ1MzJlYmQwNmRiYmRiZGU5YWIwMTlkNzIwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+HPDr8OWv0VaSLtJjmQJBFjhxDIPJ97tD+bt8W9GMYSl37
ECwEnKTtKoqeUSTDk3JLZH7533ucxXH+dUrTjlf+7q75yl33yUsPvIzSYDFlrDKB
ENBQwZlyoNnZdREfjhFFgNAHXK09O5rCRp9OZ1Zph0teQANskUeBLQbWVa9v9Jfn
3bQmudOk6X6wOBbLuQkM8dL9SwmSRqlh5ImgtGQ9dsjcLPPgzpqm14tlIUaUsNic
pO/IE8gHSA/LIiWbLWhOFoXBRjAyQxwpaCUjYX20UpiG0SdfZB7iMDTuQvWtYr6I
7Dv1LQLhbWNUhIc74viiHYBJCxLGN9fIR8W6TOkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTf8NLkKBC9Uy69Btu9vemrAZ1yAjAfBgNVHSMEGDAWgBRi5eyd9N0DufUA
pqCUfRR7btIWZjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1l1WHNuZlRkQTduMUFLYWdsSDBVZTI3U0ZtWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvYTdjZTAzLTFmMTUtNGRiYy05YThkLWE4MTU0NGVhNWI2Ny8x
LzNfRFM1Q2dRdlZNdXZRYmJ2YjNwcXdHZGNnSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
YTdjZTAzLTFmMTUtNGRiYy05YThkLWE4MTU0NGVhNWI2Ny8xL1l1WHNuZlRkQTdu
MUFLYWdsSDBVZTI3U0ZtWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALm8XQMEALm8XzANBgkqhkiG9w0B
AQsFAAOCAQEAanC6V44bJrjk61mbv64bj/IG5a11XM34QzSqiuLU7cs/xGdGFsQ8
3McKiibbeDPI2jJiC0G3zFMmsRImBf3TEdPfcJCQmFZejiQIzadRdXJ7L+guRJgz
2+sFXci6VGiwFzpn1SBOQoW4x1xy4PGkioKuw+8VXme7l01ukctRb/LHBIvMyh+9
p8X+Z+/ZllRE+5bixHo5iggZaFwMqMZ1KgGLcKH92QkaPEo5uYI5aPXt+wX4pP8+
K/U/813WLVUsbg4v4BzvIM6ipaMr1gSeuCz406uBiarGYsMij+LBKSFvNWY3cqWJ
l8zyu1EajATxVEU7RZoT+HM2hQGYpb9dXw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:00 2024 by rpki-client on console-fra.rpki-client.org