Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VLf8y9bf7bZfblM8ac7rBZwCTVg.roa
File: VLf8y9bf7bZfblM8ac7rBZwCTVg.roa (raw, json)
Hash identifier: wgMAlVqVLN29POkj3wFkTFNgCjDPp07TCorVPdAmGz0=
Subject key identifier: 54:B7:FC:CB:D6:DF:ED:B6:5F:6E:53:3C:69:CE:EB:05:9C:02:4D:58
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 063441F6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VLf8y9bf7bZfblM8ac7rBZwCTVg.roa
Signing time: Sat 01 Jan 2022 06:52:28 +0000
ROA not before: Sat 01 Jan 2022 06:52:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.226.105.0/24 maxlen: 24
185.240.120.0/22 maxlen: 24
185.223.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104088054 (0x63441f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54b7fccbd6dfedb65f6e533c69ceeb059c024d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7a:fa:1c:a8:5b:c0:5c:fc:ef:90:73:3b:64:
3d:ee:74:a9:9a:ed:bd:7d:c3:6a:b5:ea:d0:09:89:
50:67:1a:2e:9f:d1:77:20:60:22:51:96:57:55:05:
1d:0a:b0:bb:0c:c1:f0:30:0f:77:3b:50:46:fc:2b:
a3:85:db:72:72:35:08:11:80:b0:c9:ea:25:8a:2a:
b5:da:6d:2a:90:cf:ff:7b:97:77:bc:3d:f1:49:44:
c5:8e:7b:4a:4c:a4:2a:8a:9d:29:4a:48:ec:f6:97:
cf:fa:d5:ce:d0:d3:c7:d4:6b:4e:f4:84:bb:53:4f:
08:37:a7:98:1a:de:08:ec:cd:0f:b7:ab:f0:81:cd:
ef:fb:d4:4c:39:b8:1b:a1:6b:bf:db:ef:51:74:23:
20:21:54:68:79:53:10:e6:3d:ac:ee:49:ae:e7:39:
54:43:cd:72:ab:33:51:dc:5d:38:26:61:96:9b:0f:
fe:4d:cd:8b:d2:99:83:8c:98:f9:29:de:27:20:2a:
40:16:6d:65:13:4c:e7:3b:37:65:ca:06:a4:10:3c:
af:3b:a2:fc:cd:56:63:fc:45:eb:ed:b1:1c:ea:0b:
44:6b:86:17:31:c1:d6:f7:fa:8f:d8:93:7e:b3:4b:
57:64:cc:72:f6:4d:79:d3:12:89:d3:39:9c:18:41:
43:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B7:FC:CB:D6:DF:ED:B6:5F:6E:53:3C:69:CE:EB:05:9C:02:4D:58
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VLf8y9bf7bZfblM8ac7rBZwCTVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.76.0/24
185.226.105.0/24
185.240.120.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:c3:f2:c7:25:d7:63:2c:ed:fe:c8:10:bf:28:d1:43:47:a0:
df:85:49:5e:8a:c7:51:a6:36:e8:36:dd:df:32:a6:77:d6:5c:
8f:23:c0:11:d2:15:a9:af:3a:82:80:98:96:89:f8:44:d5:2f:
ae:c0:4d:b4:98:9e:96:48:dd:05:0a:89:ef:2b:95:97:5d:d1:
b8:27:93:16:40:0d:e7:91:61:92:18:f8:ac:76:a7:d5:47:80:
a3:2c:e0:ad:72:ec:f9:95:33:54:95:ab:0a:09:46:ef:c2:9e:
ed:4c:be:43:5f:fc:52:a1:bc:97:31:01:db:be:76:fa:fc:c9:
52:db:bf:fd:4f:7f:ce:c2:71:42:fc:ae:66:36:82:e7:0f:06:
a2:78:c8:8f:46:9a:07:21:11:19:a0:05:ec:f9:be:53:7b:32:
15:c8:10:20:c4:f8:65:1d:59:10:5c:5d:7a:b6:e2:7f:74:b3:
7f:24:b3:03:85:1f:58:7c:65:0b:40:e3:a5:06:52:72:b2:c1:
ba:b0:1f:8c:20:f7:d0:44:66:6c:3a:b3:4f:be:9c:25:51:79:
88:df:05:8e:77:64:58:06:41:d6:6d:20:79:ad:35:14:49:fe:
e9:ff:8e:08:39:70:3e:9c:81:6c:f3:a2:ad:d1:81:e4:f3:b6:
49:8b:9f:3f
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBjRB9jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDEw
MTA2NTIyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTRiN2ZjY2JkNmRm
ZWRiNjVmNmU1MzNjNjljZWViMDU5YzAyNGQ1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMt6+hyoW8Bc/O+QcztkPe50qZrtvX3DarXq0AmJUGcaLp/R
dyBgIlGWV1UFHQqwuwzB8DAPdztQRvwro4XbcnI1CBGAsMnqJYoqtdptKpDP/3uX
d7w98UlExY57SkykKoqdKUpI7PaXz/rVztDTx9RrTvSEu1NPCDenmBreCOzND7er
8IHN7/vUTDm4G6Frv9vvUXQjICFUaHlTEOY9rO5Jruc5VEPNcqszUdxdOCZhlpsP
/k3Ni9KZg4yY+SneJyAqQBZtZRNM5zs3ZcoGpBA8rzui/M1WY/xF6+2xHOoLRGuG
FzHB1vf6j9iTfrNLV2TMcvZNedMSidM5nBhBQyMCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRUt/zL1t/ttl9uUzxpzusFnAJNWDAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L1ZMZjh5OWJmN2JaZmJsTThhYzdyQlp3Q1RWZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEALnfTAMEALniaQMEArnweDANBgkq
hkiG9w0BAQsFAAOCAQEAesPyxyXXYyzt/sgQvyjRQ0eg34VJXorHUaY26Dbd3zKm
d9ZcjyPAEdIVqa86goCYlon4RNUvrsBNtJielkjdBQqJ7yuVl13RuCeTFkAN55Fh
khj4rHan1UeAoyzgrXLs+ZUzVJWrCglG78Ke7Uy+Q1/8UqG8lzEB2752+vzJUtu/
/U9/zsJxQvyuZjaC5w8GonjIj0aaByERGaAF7Pm+U3syFcgQIMT4ZR1ZEFxderbi
f3SzfySzA4UfWHxlC0DjpQZScrLBurAfjCD30ERmbDqzT76cJVF5iN8FjndkWAZB
1m0gea01FEn+6f+OCDlwPpyBbPOirdGB5PO2SYufPw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org