Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/RIHwavpEe-nvgQ0tZXEdrjgv-uE.roa
File: RIHwavpEe-nvgQ0tZXEdrjgv-uE.roa (raw, json)
Hash identifier: r1mOrhCWpjMahTWCYSWOL8RnpvGIqiDn4qFdG/cIVMc=
Subject key identifier: 44:81:F0:6A:FA:44:7B:E9:EF:81:0D:2D:65:71:1D:AE:38:2F:FA:E1
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 04A6F74D
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/RIHwavpEe-nvgQ0tZXEdrjgv-uE.roa
Signing time: Mon 18 Apr 2022 14:50:25 +0000
ROA not before: Mon 18 Apr 2022 14:50:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28753
IP address blocks: 185.172.130.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
185.94.166.0/24 maxlen: 24
185.40.5.0/24 maxlen: 24
45.138.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78051149 (0x4a6f74d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Apr 18 14:50:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4481f06afa447be9ef810d2d65711dae382ffae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:15:fc:f3:f3:57:fe:43:20:89:0a:9f:c9:1b:
84:31:4d:90:a0:37:ac:10:4e:cf:87:a1:32:bd:86:
08:3a:e9:29:55:db:74:ed:a9:9a:4f:c3:39:7d:5a:
0b:f1:dc:f0:94:72:7a:4e:26:76:3a:b3:5f:29:aa:
10:71:e1:1b:91:8c:dd:9d:e0:ed:22:46:6c:75:b9:
37:33:44:28:92:9f:34:8c:f9:d2:fc:b6:83:92:a2:
3b:9f:04:cb:58:b9:77:9e:d8:81:09:4d:3e:9b:d4:
16:3b:ea:b8:3e:77:94:1f:06:f4:66:9f:fc:b8:4a:
4f:cd:85:ac:18:60:d4:c4:cc:db:06:fc:5b:7a:4b:
42:e5:14:9b:0f:1e:37:a1:5d:1f:47:30:a9:c7:6e:
6d:4d:6c:7f:b6:b9:7b:25:f2:4e:fd:49:8c:61:31:
8b:13:0e:7c:02:2a:d4:cd:85:e7:d3:d1:24:22:f7:
2d:47:4e:48:a7:b2:5c:a1:e6:92:ca:ea:1d:6e:1d:
67:58:b2:5d:b3:5e:0d:4f:b7:c9:f1:46:bd:7c:3f:
c3:c3:97:00:d9:8b:41:cf:1e:42:82:21:ac:3c:83:
9d:a7:85:bb:47:3c:6e:ec:00:28:8a:62:08:b7:13:
e8:85:64:8b:af:a5:d1:82:7b:5e:cc:c1:7b:09:60:
fd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:81:F0:6A:FA:44:7B:E9:EF:81:0D:2D:65:71:1D:AE:38:2F:FA:E1
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/RIHwavpEe-nvgQ0tZXEdrjgv-uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.72.0/24
185.40.5.0/24
185.94.166.0/24
185.172.130.0/23
Signature Algorithm: sha256WithRSAEncryption
63:01:8b:d4:f7:5f:7d:44:d4:f2:a7:cd:68:a3:3f:ef:9b:49:
3e:ab:2d:37:3c:f7:76:dd:b1:c4:9c:34:cf:d9:ab:ff:6f:c6:
57:74:8e:9e:59:d4:28:21:c2:86:bc:94:53:cd:1a:6e:af:f7:
5a:74:8b:3c:c9:c9:23:d6:64:3a:56:79:51:a7:e9:72:66:9d:
55:42:70:1e:54:92:96:dc:24:a4:dc:d4:9a:8d:bd:89:34:93:
6a:fa:b0:b5:d8:d4:ec:02:d5:3c:8a:59:b7:9f:ca:f7:8b:f6:
ce:71:3a:5d:fa:97:d4:b6:94:15:83:a5:1a:d2:46:fb:55:1b:
12:50:16:49:fa:b5:18:e0:6b:25:d6:13:92:79:d3:f2:b2:54:
8c:25:b0:eb:14:b4:8c:dd:0b:a3:38:87:0e:c3:66:5a:69:3a:
63:7e:9a:7e:e6:96:7d:ce:96:39:66:27:3d:9d:35:3e:d0:a3:
23:31:05:b8:3d:29:21:f9:2e:67:bd:40:74:ef:5c:a5:16:06:
7d:c0:bd:b1:b3:88:b8:44:e9:21:47:3b:5e:38:31:c9:7b:86:
b8:b1:5b:9a:2d:dc:74:19:3e:b1:d3:c5:ed:03:69:97:ae:eb:
4c:43:65:bd:7b:5c:58:ca:be:ef:fb:64:fb:a5:9e:6e:ff:80:
cd:a1:af:15
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEBKb3TTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDQx
ODE0NTAyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ4MWYwNmFmYTQ0
N2JlOWVmODEwZDJkNjU3MTFkYWUzODJmZmFlMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO0V/PPzV/5DIIkKn8kbhDFNkKA3rBBOz4ehMr2GCDrpKVXb
dO2pmk/DOX1aC/Hc8JRyek4mdjqzXymqEHHhG5GM3Z3g7SJGbHW5NzNEKJKfNIz5
0vy2g5KiO58Ey1i5d57YgQlNPpvUFjvquD53lB8G9Gaf/LhKT82FrBhg1MTM2wb8
W3pLQuUUmw8eN6FdH0cwqcdubU1sf7a5eyXyTv1JjGExixMOfAIq1M2F59PRJCL3
LUdOSKeyXKHmksrqHW4dZ1iyXbNeDU+3yfFGvXw/w8OXANmLQc8eQoIhrDyDnaeF
u0c8buwAKIpiCLcT6IVki6+l0YJ7XszBewlg/bMCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBREgfBq+kR76e+BDS1lcR2uOC/64TAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L1JJSHdhdnBFZS1udmdRMHRaWEVkcmpndi11RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAC2KSAMEALkoBQMEALlepgMEAbms
gjANBgkqhkiG9w0BAQsFAAOCAQEAYwGL1PdffUTU8qfNaKM/75tJPqstNzz3dt2x
xJw0z9mr/2/GV3SOnlnUKCHChryUU80abq/3WnSLPMnJI9ZkOlZ5UafpcmadVUJw
HlSSltwkpNzUmo29iTSTavqwtdjU7ALVPIpZt5/K94v2znE6XfqX1LaUFYOlGtJG
+1UbElAWSfq1GOBrJdYTknnT8rJUjCWw6xS0jN0LoziHDsNmWmk6Y36afuaWfc6W
OWYnPZ01PtCjIzEFuD0pIfkuZ71AdO9cpRYGfcC9sbOIuETpIUc7XjgxyXuGuLFb
mi3cdBk+sdPF7QNpl67rTENlvXtcWMq+7/tk+6Webv+AzaGvFQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-fra.rpki-client.org