Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WyP4DnSIMYunoWxLnOOKMmSl-S4.roa
File: WyP4DnSIMYunoWxLnOOKMmSl-S4.roa (raw, json)
Hash identifier: NQcer/mkvF7MyFJG5j2VVWQ1qBi8adxpjR1j8HxzwYM=
Subject key identifier: 5B:23:F8:0E:74:88:31:8B:A7:A1:6C:4B:9C:E3:8A:32:64:A5:F9:2E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 065273F7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WyP4DnSIMYunoWxLnOOKMmSl-S4.roa
Signing time: Sat 01 Jan 2022 06:52:46 +0000
ROA not before: Sat 01 Jan 2022 06:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212861
IP address blocks: 185.197.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106066935 (0x65273f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b23f80e7488318ba7a16c4b9ce38a3264a5f92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3e:e3:c9:3c:88:e1:50:e5:6d:6f:54:d1:33:
9a:8b:69:6c:a6:b8:78:37:7c:77:da:6e:0a:bd:fb:
fa:08:56:99:18:43:c5:fc:4b:50:dc:24:35:23:3a:
fd:34:8f:59:b4:ac:de:7c:fb:22:1d:49:dd:ab:57:
63:07:29:53:45:3b:5a:c4:4b:06:36:a4:d5:49:6b:
3f:ae:9a:11:fb:a6:70:e0:75:55:1b:88:cf:03:23:
f2:a0:35:ee:3d:0c:fb:bf:a0:76:c9:f4:9b:5a:0d:
60:3f:6f:24:c0:96:80:f8:1c:d7:0d:01:93:5d:f9:
3e:87:2f:56:95:7a:7e:85:b7:f2:71:47:60:3f:a9:
be:06:8c:7c:48:1b:d9:3f:7b:f3:de:de:8e:a8:ce:
23:1d:44:e9:4c:54:24:a9:5c:1e:93:71:30:7e:f1:
1d:12:55:2b:b5:50:57:52:e4:f6:3f:1c:5d:6b:77:
22:c3:ae:2c:19:58:a7:9b:19:f5:4e:f8:e5:54:3a:
d1:7c:21:ff:57:fd:ee:0f:ec:1e:d8:92:f9:86:01:
c8:e9:06:71:0d:9e:35:37:1b:ea:dd:3a:95:41:7e:
74:0e:91:28:9e:e8:43:49:bd:7e:72:f5:4c:e6:b2:
9b:7b:7e:22:89:7e:6d:e2:0a:eb:0c:a5:a2:88:af:
e8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:23:F8:0E:74:88:31:8B:A7:A1:6C:4B:9C:E3:8A:32:64:A5:F9:2E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WyP4DnSIMYunoWxLnOOKMmSl-S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.216.0/22
Signature Algorithm: sha256WithRSAEncryption
09:75:d8:25:a5:ad:7d:62:8c:5f:0c:2e:6c:73:5f:10:73:31:
9f:09:bf:90:d3:86:aa:34:7a:e8:bb:1e:cd:af:cb:95:91:fe:
7e:1e:00:c6:71:b2:73:3c:91:7d:1a:51:bd:9f:00:c6:88:32:
9d:51:04:52:97:fe:58:1f:d8:86:7c:df:ea:30:b3:40:c6:41:
00:b0:c0:d0:c0:31:09:49:be:eb:da:9e:06:99:34:bc:7d:cc:
1f:a9:d6:60:2e:0d:06:57:7e:bf:7c:e4:32:7b:5e:4b:95:f1:
6f:11:59:43:4b:29:95:87:4e:bd:d6:12:7d:85:af:64:75:80:
4c:f4:a4:ca:cb:a8:22:5a:21:1f:0d:8a:0c:0c:c6:19:88:08:
01:5a:07:45:17:84:41:85:9b:53:c9:40:fa:88:fc:c6:3d:e0:
19:53:56:25:25:6c:fd:0b:e2:db:f3:fd:7b:03:6d:87:f1:d0:
8b:cf:09:cd:8e:65:5b:54:0b:ce:a9:c7:2b:9f:21:cd:4c:7e:
5d:fd:d8:3e:83:bb:00:53:27:d9:72:40:07:15:93:9b:eb:25:
b0:5e:0f:2f:fe:0c:b5:d4:b1:63:77:a3:f2:d4:1d:5d:eb:ff:
fb:6a:aa:5b:f3:d8:84:0d:84:9e:bb:08:cc:4d:eb:c5:05:37:
27:3e:0b:57
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBlJz9zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDEw
MTA2NTI0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWIyM2Y4MGU3NDg4
MzE4YmE3YTE2YzRiOWNlMzhhMzI2NGE1ZjkyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM4+48k8iOFQ5W1vVNEzmotpbKa4eDd8d9puCr37+ghWmRhD
xfxLUNwkNSM6/TSPWbSs3nz7Ih1J3atXYwcpU0U7WsRLBjak1UlrP66aEfumcOB1
VRuIzwMj8qA17j0M+7+gdsn0m1oNYD9vJMCWgPgc1w0Bk135PocvVpV6foW38nFH
YD+pvgaMfEgb2T97897ejqjOIx1E6UxUJKlcHpNxMH7xHRJVK7VQV1Lk9j8cXWt3
IsOuLBlYp5sZ9U745VQ60Xwh/1f97g/sHtiS+YYByOkGcQ2eNTcb6t06lUF+dA6R
KJ7oQ0m9fnL1TOaym3t+Iol+beIK6wylooiv6NcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRbI/gOdIgxi6ehbEuc44oyZKX5LjAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L1d5UDREblNJTVl1bm9XeExuT09LTW1TbC1TNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnF2DANBgkqhkiG9w0BAQsFAAOC
AQEACXXYJaWtfWKMXwwubHNfEHMxnwm/kNOGqjR66Lseza/LlZH+fh4AxnGyczyR
fRpRvZ8AxogynVEEUpf+WB/Yhnzf6jCzQMZBALDA0MAxCUm+69qeBpk0vH3MH6nW
YC4NBld+v3zkMnteS5XxbxFZQ0splYdOvdYSfYWvZHWATPSkysuoIlohHw2KDAzG
GYgIAVoHRReEQYWbU8lA+oj8xj3gGVNWJSVs/Qvi2/P9ewNth/HQi88JzY5lW1QL
zqnHK58hzUx+Xf3YPoO7AFMn2XJABxWTm+slsF4PL/4MtdSxY3ej8tQdXev/+2qq
W/PYhA2EnrsIzE3rxQU3Jz4LVw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org