Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/KcL6th6W69m7tUAhtUOCD-rXyLo.roa
File: KcL6th6W69m7tUAhtUOCD-rXyLo.roa (raw, json)
Hash identifier: 59USUfPTolk00yuiva+i9vNQdzUPghD8CXInyA+uw90=
Subject key identifier: 29:C2:FA:B6:1E:96:EB:D9:BB:B5:40:21:B5:43:82:0F:EA:D7:C8:BA
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 031FF2AF
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/KcL6th6W69m7tUAhtUOCD-rXyLo.roa
Signing time: Sat 01 Jan 2022 16:04:18 +0000
ROA not before: Sat 01 Jan 2022 16:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48940
IP address blocks: 185.229.65.0/24 maxlen: 24
185.128.106.0/23 maxlen: 23
185.229.64.0/24 maxlen: 24
185.229.64.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52425391 (0x31ff2af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29c2fab61e96ebd9bbb54021b543820fead7c8ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:88:f2:91:d5:db:03:10:7e:70:52:1e:70:
e1:df:9f:48:0b:da:39:10:c3:88:a2:1f:96:19:53:
29:ea:d4:a8:66:5f:8d:3b:3d:30:73:de:4e:79:85:
42:5a:38:47:9c:e6:69:fe:b5:a9:72:51:61:3d:2c:
91:ff:fe:cf:24:29:a6:e6:d7:63:a0:4f:aa:a1:a5:
0c:c1:1a:dd:ac:ad:9f:79:dd:ae:bb:f4:62:4d:f0:
91:4c:88:09:59:08:c6:3b:b4:00:d9:86:3b:39:e1:
5f:80:bc:c5:e9:1e:33:f2:2f:77:d7:68:44:21:19:
5e:22:0e:11:db:d0:a6:cf:7e:d7:59:fa:5c:34:fc:
1e:93:6e:ef:99:ed:e7:33:78:d6:7b:90:0a:27:51:
3c:fc:fe:20:3f:77:e5:de:9c:53:93:83:c5:3a:d1:
df:33:ca:38:0d:96:53:cb:8f:b8:78:c1:f7:37:48:
db:44:7f:f3:cf:62:a0:3c:83:da:97:f1:02:4c:f3:
cd:94:a7:83:49:e0:01:b1:af:8a:58:88:cd:01:4b:
01:6f:94:0c:56:b7:86:ca:9c:25:d6:59:a4:f1:85:
71:e8:72:13:c7:76:14:2c:b1:dc:fc:73:12:9d:c7:
7b:c5:f4:4d:9d:d1:c2:eb:38:c7:75:cb:f0:b0:8f:
1d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C2:FA:B6:1E:96:EB:D9:BB:B5:40:21:B5:43:82:0F:EA:D7:C8:BA
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/KcL6th6W69m7tUAhtUOCD-rXyLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.106.0/23
185.229.64.0/23
Signature Algorithm: sha256WithRSAEncryption
54:33:1a:a1:3b:8e:c9:54:91:5b:c5:5b:0e:29:64:02:95:82:
6b:f0:f0:3d:45:1f:39:f6:f8:db:5a:59:6e:76:25:61:a4:ca:
23:9b:94:1a:15:88:80:28:65:fb:89:cf:44:0e:6c:25:02:3b:
b1:e4:bd:2b:70:18:47:a7:1c:e3:95:61:0c:de:2f:26:b2:8a:
dd:84:52:9b:31:d4:f0:83:85:9a:5f:6c:33:66:9b:66:4e:05:
db:c9:8e:66:c6:fc:7a:68:39:29:ad:a1:6f:75:a3:ea:01:45:
dd:91:24:82:d6:49:93:32:62:1d:24:f4:50:8d:07:33:51:ca:
f2:a8:4d:3a:2f:f8:13:c9:65:50:14:9e:45:21:99:f8:a6:f9:
5b:e4:f5:e2:0b:37:e7:db:46:fa:ae:fd:7a:ad:6f:61:55:2f:
78:1b:80:2d:25:79:fc:58:d6:35:69:79:87:ee:fa:22:74:19:
96:47:97:04:b5:df:5b:cb:3a:10:5c:47:55:8c:2f:f8:fd:fb:
10:27:c0:c9:90:24:e4:e2:e8:4a:cf:4d:ac:82:29:bb:6b:f3:
c6:7c:63:e4:d1:ec:91:df:e1:42:3e:39:6a:f8:83:81:70:12:
e7:66:18:14:ec:4c:c7:9d:d6:2d:ee:1a:dc:d6:5e:71:51:bb:
3b:56:fd:fc
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAx/yrzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEw
MTE2MDQxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjljMmZhYjYxZTk2
ZWJkOWJiYjU0MDIxYjU0MzgyMGZlYWQ3YzhiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2wiPKR1dsDEH5wUh5w4d+fSAvaORDDiKIflhlTKerUqGZf
jTs9MHPeTnmFQlo4R5zmaf61qXJRYT0skf/+zyQppubXY6BPqqGlDMEa3aytn3nd
rrv0Yk3wkUyICVkIxju0ANmGOznhX4C8xekeM/Ivd9doRCEZXiIOEdvQps9+11n6
XDT8HpNu75nt5zN41nuQCidRPPz+ID935d6cU5ODxTrR3zPKOA2WU8uPuHjB9zdI
20R/889ioDyD2pfxAkzzzZSng0ngAbGviliIzQFLAW+UDFa3hsqcJdZZpPGFcehy
E8d2FCyx3PxzEp3He8X0TZ3Rwus4x3XL8LCPHfECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQpwvq2Hpbr2bu1QCG1Q4IP6tfIujAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L0tjTDZ0aDZXNjltN3RVQWh0VU9DRC1yWHlMby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAbmAagMEAbnlQDANBgkqhkiG9w0B
AQsFAAOCAQEAVDMaoTuOyVSRW8VbDilkApWCa/DwPUUfOfb421pZbnYlYaTKI5uU
GhWIgChl+4nPRA5sJQI7seS9K3AYR6cc45VhDN4vJrKK3YRSmzHU8IOFml9sM2ab
Zk4F28mOZsb8emg5Ka2hb3Wj6gFF3ZEkgtZJkzJiHST0UI0HM1HK8qhNOi/4E8ll
UBSeRSGZ+Kb5W+T14gs359tG+q79eq1vYVUveBuALSV5/FjWNWl5h+76InQZlkeX
BLXfW8s6EFxHVYwv+P37ECfAyZAk5OLoSs9NrIIpu2vzxnxj5NHskd/hQj45aviD
gXAS52YYFOxMx53WLe4a3NZecVG7O1b9/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org