Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/jeGttSHBhczRze1KzSE4nH5PZgw.roa
File: jeGttSHBhczRze1KzSE4nH5PZgw.roa (raw, json)
Hash identifier: sHg5Vxn12h5E8UrvdDW3f5ORBSg+XeZUF4pzxq1GNAk=
Subject key identifier: 8D:E1:AD:B5:21:C1:85:CC:D1:CD:ED:4A:CD:21:38:9C:7E:4F:66:0C
Certificate issuer: /CN=535825ce8bf544170282f720a2484141568b0e7d
Certificate serial: 33E94251
Authority key identifier: 53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/jeGttSHBhczRze1KzSE4nH5PZgw.roa
Signing time: Sat 01 Jan 2022 06:56:52 +0000
ROA not before: Sat 01 Jan 2022 06:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198382
IP address blocks: 185.123.81.0/24 maxlen: 24
212.84.64.0/21 maxlen: 21
212.84.72.0/21 maxlen: 24
212.84.80.0/21 maxlen: 21
212.84.88.0/21 maxlen: 24
2a00:14a0:6::/48 maxlen: 48
2a00:14a0:1::/48 maxlen: 48
2a00:14a0::/29 maxlen: 48
2a00:14a0:5::/48 maxlen: 48
2a00:14a0::/48 maxlen: 48
2a00:14a0:3::/48 maxlen: 48
2a00:14a0:9::/48 maxlen: 48
2a00:14a0:4::/48 maxlen: 48
2a00:14a0:7::/48 maxlen: 48
2a00:14a0:8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870924881 (0x33e94251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535825ce8bf544170282f720a2484141568b0e7d
Validity
Not Before: Jan 1 06:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8de1adb521c185ccd1cded4acd21389c7e4f660c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7a:44:3c:01:23:a2:77:ad:51:5d:fb:b1:4c:
33:86:db:7a:92:04:37:be:c7:e1:fb:42:16:7d:79:
99:bd:de:10:f4:af:12:49:cc:e9:a5:e6:5c:fa:1e:
2e:c0:5b:8e:8d:a2:a6:b7:53:bf:d1:e0:25:b0:27:
fd:69:90:06:e7:52:98:95:65:90:42:9c:b6:75:5d:
c9:55:0c:ca:9a:71:6f:72:4a:4b:38:11:3f:89:33:
52:9b:f8:85:8a:17:9e:a0:c1:77:47:9c:f1:41:ef:
59:0e:48:2a:fe:b9:e7:c8:6f:cb:40:56:20:16:a7:
24:4d:23:81:48:72:b0:b8:0e:aa:46:40:28:fd:15:
32:be:21:62:10:7f:f3:82:63:20:8c:cb:60:83:da:
0f:ae:e6:51:b4:3a:5a:30:a4:e9:c2:25:57:30:f1:
6d:3c:47:9b:e4:ba:21:72:9a:96:a6:57:36:ca:de:
e2:f0:35:51:33:9c:90:2f:63:5f:38:0c:1d:01:5a:
79:dd:e8:a7:b0:02:3a:79:14:2d:f8:4c:24:1d:c6:
aa:c4:38:ff:6e:20:94:d7:93:43:62:24:8d:32:aa:
f0:d5:1c:28:eb:82:c2:4d:d1:da:72:68:00:a5:d8:
41:b3:cf:31:89:59:6e:71:07:90:08:e4:38:f9:a5:
9c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E1:AD:B5:21:C1:85:CC:D1:CD:ED:4A:CD:21:38:9C:7E:4F:66:0C
X509v3 Authority Key Identifier:
keyid:53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/jeGttSHBhczRze1KzSE4nH5PZgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.81.0/24
212.84.64.0/19
IPv6:
2a00:14a0::/29
Signature Algorithm: sha256WithRSAEncryption
88:82:b1:59:c7:42:34:b6:99:a1:91:4f:56:fe:a4:1d:47:21:
e6:18:5f:8f:63:0a:18:a6:c1:a1:16:67:b8:cf:10:8d:64:f5:
ed:3e:c0:ac:77:36:ae:53:95:9c:b3:c3:f3:80:cc:40:62:23:
45:8b:85:54:35:4f:38:65:bd:8d:58:8c:b6:6a:d7:f5:28:41:
4b:c8:81:03:60:85:c9:2b:50:d1:ed:3b:e9:31:70:ad:21:8d:
00:5f:1e:cb:02:27:8f:8c:9d:6f:88:69:3d:cb:49:ca:6b:10:
61:48:42:9e:19:af:06:27:3a:a9:9a:f7:20:91:39:41:0b:32:
22:1f:7e:09:6b:3d:d1:33:e5:6f:5b:7b:cc:c6:c9:5c:e4:2c:
98:4c:61:1f:46:d8:40:f6:5e:1b:c4:16:3d:9b:d4:55:56:8a:
12:e6:ce:de:bb:ff:07:3e:bb:dc:4c:4a:0a:61:2f:a0:44:f0:
60:4d:96:8e:4e:17:12:9d:7c:a8:97:0a:2b:3e:e4:b6:aa:a6:
6b:b2:19:4f:e4:73:18:4c:37:51:5f:c1:34:57:57:d5:c5:f2:
57:b1:48:7a:6d:7d:83:39:cc:63:da:75:04:a9:ea:9c:68:d1:
33:98:b8:1b:3d:2d:ec:f0:e4:51:3d:5f:c8:db:29:f4:47:02:
66:15:52:91
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEM+lCUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MzU4MjVjZThiZjU0NDE3MDI4MmY3MjBhMjQ4NDE0MTU2OGIwZTdkMB4XDTIyMDEw
MTA2NTY1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGRlMWFkYjUyMWMx
ODVjY2QxY2RlZDRhY2QyMTM4OWM3ZTRmNjYwYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL96RDwBI6J3rVFd+7FMM4bbepIEN77H4ftCFn15mb3eEPSv
EknM6aXmXPoeLsBbjo2iprdTv9HgJbAn/WmQBudSmJVlkEKctnVdyVUMyppxb3JK
SzgRP4kzUpv4hYoXnqDBd0ec8UHvWQ5IKv6558hvy0BWIBanJE0jgUhysLgOqkZA
KP0VMr4hYhB/84JjIIzLYIPaD67mUbQ6WjCk6cIlVzDxbTxHm+S6IXKalqZXNsre
4vA1UTOckC9jXzgMHQFaed3op7ACOnkULfhMJB3GqsQ4/24glNeTQ2IkjTKq8NUc
KOuCwk3R2nJoAKXYQbPPMYlZbnEHkAjkOPmlnJMCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSN4a21IcGFzNHN7UrNITicfk9mDDAfBgNVHSMEGDAWgBRTWCXOi/VEFwKC
9yCiSEFBVosOfTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1UxZ2x6b3YxUkJjQ2d2Y2dva2hCUVZhTERuMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzkvMDFmNzM2LWFmODMtNDU2Yy04YjQ1LTUxNDZhYjdlYTAxNS8x
L2plR3R0U0hCaGN6UnplMUt6U0U0bkg1UFpndy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkv
MDFmNzM2LWFmODMtNDU2Yy04YjQ1LTUxNDZhYjdlYTAxNS8xL1UxZ2x6b3YxUkJj
Q2d2Y2dva2hCUVZhTERuMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEALl7UQMEBdRUQDANBAIAAjAHAwUD
KgAUoDANBgkqhkiG9w0BAQsFAAOCAQEAiIKxWcdCNLaZoZFPVv6kHUch5hhfj2MK
GKbBoRZnuM8QjWT17T7ArHc2rlOVnLPD84DMQGIjRYuFVDVPOGW9jViMtmrX9ShB
S8iBA2CFyStQ0e076TFwrSGNAF8eywInj4ydb4hpPctJymsQYUhCnhmvBic6qZr3
IJE5QQsyIh9+CWs90TPlb1t7zMbJXOQsmExhH0bYQPZeG8QWPZvUVVaKEubO3rv/
Bz673ExKCmEvoETwYE2Wjk4XEp18qJcKKz7ktqqma7IZT+RzGEw3UV/BNFdX1cXy
V7FIem19gznMY9p1BKnqnGjRM5i4Gz0t7PDkUT1fyNsp9EcCZhVSkQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:01 2024 by rpki-client on console-ams.rpki-client.org