Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5WPJe82BfmQHgvkaR3hOcaf2RQ0.roa
File: 5WPJe82BfmQHgvkaR3hOcaf2RQ0.roa (raw, json)
Hash identifier: KeEvpJmMRjjc/PIHRvEdGA9QGjYSBRuszlgyGj57Ydc=
Subject key identifier: E5:63:C9:7B:CD:81:7E:64:07:82:F9:1A:47:78:4E:71:A7:F6:45:0D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07F4211B
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5WPJe82BfmQHgvkaR3hOcaf2RQ0.roa
Signing time: Fri 13 May 2022 12:56:40 +0000
ROA not before: Fri 13 May 2022 12:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.240.122.0/24 maxlen: 24
185.225.0.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133439771 (0x7f4211b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 13 12:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e563c97bcd817e640782f91a47784e71a7f6450d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b5:d7:a1:fe:7b:2e:f0:c5:cc:51:76:98:d2:
72:64:fe:a2:59:a3:de:3b:24:2f:6a:6e:e7:d1:57:
14:3e:1e:50:81:1e:4a:a2:de:fb:f3:1b:dd:36:f0:
dc:dd:01:bd:64:e9:a9:0f:e7:28:ad:c2:78:51:fc:
36:fa:11:0f:f8:3e:3c:8a:35:4a:d6:41:02:aa:31:
88:88:82:b2:0f:8d:23:2b:93:6c:40:91:a1:37:a9:
e6:c3:e8:94:9b:bb:41:9f:60:7a:5a:8a:f1:da:54:
65:82:39:60:7d:21:7a:3a:9b:36:bc:8b:db:1a:0b:
4c:cc:e3:7c:c9:05:a1:85:e6:75:8d:28:a6:22:7c:
11:b4:32:5f:f8:66:e6:ae:93:fb:99:6f:c7:fb:40:
d7:09:4a:c0:14:4c:6b:c3:dc:89:57:03:1d:b4:50:
43:34:53:74:35:6c:af:4f:17:bb:11:87:59:03:33:
6f:c9:72:d3:ee:66:6c:62:14:7b:d6:66:f1:f2:eb:
5f:bc:f9:f4:c3:41:ee:db:4a:43:f2:f2:f3:cb:97:
a5:41:6e:a8:72:6d:cf:51:dc:1b:4f:1a:0d:76:38:
87:20:cd:aa:72:2c:cf:ca:06:4e:b4:45:3c:a9:95:
41:4e:90:d6:05:14:e1:d0:3b:8d:5b:b5:9f:f0:8d:
c5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:63:C9:7B:CD:81:7E:64:07:82:F9:1A:47:78:4E:71:A7:F6:45:0D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5WPJe82BfmQHgvkaR3hOcaf2RQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.0.0/23
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:2a:e1:a6:7d:02:9e:26:63:40:c0:6c:80:2a:b2:3d:ca:22:
9a:99:4e:0e:d5:71:28:8c:fd:c3:85:a8:45:f5:40:a3:92:1d:
9b:5e:53:dc:3e:33:d0:b5:38:85:95:02:73:7c:31:54:e7:df:
7d:5c:f1:f5:6b:db:15:02:83:5b:5b:3b:d3:50:06:ed:ee:2e:
b7:1a:e0:82:9a:5d:b6:b7:c2:33:9b:d0:d5:42:f0:c8:36:e0:
43:38:2e:3d:69:de:23:79:f4:a4:92:02:04:eb:85:92:79:23:
ff:f7:be:8d:3f:ab:95:02:95:12:85:f3:97:26:bb:68:05:1f:
87:17:d1:b4:25:c4:bb:be:9b:a5:05:99:d6:fa:db:08:6a:d8:
83:25:19:4a:b3:fb:a5:f6:d9:7b:45:af:b2:39:39:d3:32:af:
d7:52:ea:0c:02:43:4a:3a:ec:fd:cc:c3:be:5b:bc:4f:c3:37:
6b:da:94:63:58:02:e9:34:1d:a2:2e:a5:e7:b0:98:cf:6c:3a:
a4:b5:ad:4d:7c:5b:18:27:ed:fd:ef:9e:cb:1c:0b:b7:30:ca:
3b:83:29:52:b7:35:3d:78:6a:d2:95:ed:2a:02:86:11:7c:50:
b5:a3:ed:26:68:e4:db:99:21:b7:f5:7b:59:34:89:8c:b0:8c:
cf:7d:5c:23
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB/QhGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDUx
MzEyNTY0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTU2M2M5N2JjZDgx
N2U2NDA3ODJmOTFhNDc3ODRlNzFhN2Y2NDUwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIu116H+ey7wxcxRdpjScmT+olmj3jskL2pu59FXFD4eUIEe
SqLe+/Mb3Tbw3N0BvWTpqQ/nKK3CeFH8NvoRD/g+PIo1StZBAqoxiIiCsg+NIyuT
bECRoTep5sPolJu7QZ9gelqK8dpUZYI5YH0hejqbNryL2xoLTMzjfMkFoYXmdY0o
piJ8EbQyX/hm5q6T+5lvx/tA1wlKwBRMa8PciVcDHbRQQzRTdDVsr08XuxGHWQMz
b8ly0+5mbGIUe9Zm8fLrX7z59MNB7ttKQ/Ly88uXpUFuqHJtz1HcG08aDXY4hyDN
qnIsz8oGTrRFPKmVQU6Q1gUU4dA7jVu1n/CNxVECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTlY8l7zYF+ZAeC+RpHeE5xp/ZFDTAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
LzVXUEplODJCZm1RSGd2a2FSM2hPY2FmMlJRMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAbnhAAMEALnwejANBgkqhkiG9w0B
AQsFAAOCAQEAnyrhpn0CniZjQMBsgCqyPcoimplODtVxKIz9w4WoRfVAo5Idm15T
3D4z0LU4hZUCc3wxVOfffVzx9WvbFQKDW1s701AG7e4utxrggppdtrfCM5vQ1ULw
yDbgQzguPWneI3n0pJICBOuFknkj//e+jT+rlQKVEoXzlya7aAUfhxfRtCXEu76b
pQWZ1vrbCGrYgyUZSrP7pfbZe0Wvsjk50zKv11LqDAJDSjrs/czDvlu8T8M3a9qU
Y1gC6TQdoi6l57CYz2w6pLWtTXxbGCft/e+eyxwLtzDKO4MpUrc1PXhq0pXtKgKG
EXxQtaPtJmjk25kht/V7WTSJjLCMz31cIw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org