Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PDiY42JXQPa74CJbdO5ZCvzzjYU.roa
File: PDiY42JXQPa74CJbdO5ZCvzzjYU.roa (raw, json)
Hash identifier: ZthtenSrLg7CNVkeHtmD5XZYkq/GYGZZBlh4KZyncwc=
Subject key identifier: 3C:38:98:E3:62:57:40:F6:BB:E0:22:5B:74:EE:59:0A:FC:F3:8D:85
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0182B7CC9BFB07687C67830EC4D818B85004
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PDiY42JXQPa74CJbdO5ZCvzzjYU.roa
Signing time: Fri 19 Aug 2022 20:30:15 +0000
ROA not before: Fri 19 Aug 2022 20:30:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 194.35.40.0/24 maxlen: 24
185.226.8.0/24 maxlen: 24
45.134.84.0/23 maxlen: 23
45.134.84.0/22 maxlen: 24
45.147.116.0/22 maxlen: 24
185.216.30.0/24 maxlen: 24
185.216.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b7:cc:9b:fb:07:68:7c:67:83:0e:c4:d8:18:b8:50:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 19 20:30:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c3898e3625740f6bbe0225b74ee590afcf38d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d2:69:94:9f:94:73:42:c8:77:6e:2a:b0:53:
44:4a:27:cd:2e:42:c1:76:4d:34:6a:fb:5f:b5:35:
d6:27:77:29:6a:5d:82:9f:c1:6b:53:ec:59:ae:4f:
80:4e:55:df:a7:67:06:3b:68:83:cc:39:6f:1c:d1:
bd:48:14:d4:00:c2:d8:ab:4e:97:74:14:5d:05:bc:
cc:e3:f0:b9:fb:06:09:9a:8e:c0:52:d1:cc:15:c1:
50:68:a3:06:12:f0:0b:e4:7a:2e:c1:44:34:e8:b7:
9e:d4:f1:48:75:29:88:ea:fb:51:42:cc:f6:d2:29:
75:72:2c:c4:c7:fc:2c:55:f0:77:26:d9:c4:2f:63:
30:a9:9f:21:10:32:26:7e:f8:2b:8c:c8:b1:08:09:
4a:75:01:6b:fb:77:36:2a:bc:f4:86:1b:06:4c:f7:
21:cb:fe:24:20:1a:4f:39:47:2e:6a:47:cf:f7:45:
21:9b:b8:80:ce:12:ae:18:71:8d:e9:b3:c5:1a:78:
f4:e2:7d:e7:d7:f0:3e:5b:db:d7:53:b0:6c:b2:1f:
56:43:e9:2b:df:ad:6a:f0:25:59:27:c5:ca:cd:15:
d3:15:94:80:e0:75:a5:5d:e9:0b:2b:e7:a9:a8:28:
04:b8:0a:1a:1d:44:60:66:e8:46:c1:15:82:58:b1:
79:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:38:98:E3:62:57:40:F6:BB:E0:22:5B:74:EE:59:0A:FC:F3:8D:85
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PDiY42JXQPa74CJbdO5ZCvzzjYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.84.0/22
45.147.116.0/22
185.216.30.0/23
185.226.8.0/24
194.35.40.0/24
Signature Algorithm: sha256WithRSAEncryption
98:62:fe:36:7c:02:5b:9a:0e:61:ab:f1:be:ae:78:4b:47:5f:
60:b7:cc:29:d1:e1:f2:8d:aa:08:25:a9:37:d4:e7:04:36:9b:
ca:ef:55:6c:c9:9b:ba:af:55:0c:d7:bb:9e:a1:9f:d3:0c:d4:
36:0d:8b:70:b4:61:72:14:3b:50:26:9f:66:dd:c3:f9:65:fd:
9f:51:bf:ec:44:62:85:4e:33:0d:16:ef:30:58:fa:79:20:bc:
98:73:51:0b:28:e8:d1:84:c5:48:6a:26:b8:1b:eb:ad:64:93:
67:67:d7:6d:e1:32:51:2a:e3:05:d5:94:97:cf:84:8c:1a:dd:
0f:46:db:50:ff:88:2b:e4:6b:54:61:9e:47:99:11:3d:cc:96:
98:6d:1c:2c:40:fe:ff:fa:4d:ff:95:6c:10:45:cb:fd:78:e6:
1e:b0:87:90:a8:b3:e0:74:8e:fc:b4:62:76:4f:a8:e8:85:65:
eb:44:f2:9f:3f:37:af:5b:35:1a:68:07:f3:85:91:7c:67:92:
91:16:e9:fd:63:b6:72:cf:57:df:39:01:0e:8a:8c:84:77:d7:
f7:8b:1c:1b:0c:5e:60:38:34:56:a3:6a:41:87:2d:97:30:1c:
6f:2b:fc:c3:0d:88:ec:16:1a:bc:bf:89:2a:26:4a:9a:95:99:
41:0d:cc:28
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYK3zJv7B2h8Z4MOxNgYuFAEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjIwODE5MjAzMDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzM4OThlMzYyNTc0MGY2YmJlMDIyNWI3NGVlNTkwYWZjZjM4ZDg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztJplJ+Uc0LId24qsFNESifNLkLB
dk00avtftTXWJ3cpal2Cn8FrU+xZrk+ATlXfp2cGO2iDzDlvHNG9SBTUAMLYq06X
dBRdBbzM4/C5+wYJmo7AUtHMFcFQaKMGEvAL5HouwUQ06Lee1PFIdSmI6vtRQsz2
0il1cizEx/wsVfB3JtnEL2MwqZ8hEDImfvgrjMixCAlKdQFr+3c2Krz0hhsGTPch
y/4kIBpPOUcuakfP90Uhm7iAzhKuGHGN6bPFGnj04n3n1/A+W9vXU7Bssh9WQ+kr
361q8CVZJ8XKzRXTFZSA4HWlXekLK+epqCgEuAoaHURgZuhGwRWCWLF5tQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFDw4mONiV0D2u+AiW3TuWQr8842FMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvUERpWTQySlhRUGE3NENKYmRPNVpDdnp6allVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCLYZUAwQC
LZN0AwQBudgeAwQAueIIAwQAwiMoMA0GCSqGSIb3DQEBCwUAA4IBAQCYYv42fAJb
mg5hq/G+rnhLR19gt8wp0eHyjaoIJak31OcENpvK71VsyZu6r1UM17ueoZ/TDNQ2
DYtwtGFyFDtQJp9m3cP5Zf2fUb/sRGKFTjMNFu8wWPp5ILyYc1ELKOjRhMVIaia4
G+utZJNnZ9dt4TJRKuMF1ZSXz4SMGt0PRttQ/4gr5GtUYZ5HmRE9zJaYbRwsQP7/
+k3/lWwQRcv9eOYesIeQqLPgdI78tGJ2T6johWXrRPKfPzevWzUaaAfzhZF8Z5KR
Fun9Y7Zyz1ffOQEOioyEd9f3ixwbDF5gODRWo2pBhy2XMBxvK/zDDYjsFhq8v4kq
JkqalZlBDcwo
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org