Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hSf8NraeLh-6zX4os4-q_KTfs-Q.roa
File: hSf8NraeLh-6zX4os4-q_KTfs-Q.roa (raw, json)
Hash identifier: sz7E3U458+5wVtuWIbd5Gvm6upA69j7jQAiqnaKlFeM=
Subject key identifier: 85:27:FC:36:B6:9E:2E:1F:BA:CD:7E:28:B3:8F:AA:FC:A4:DF:B3:E4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07019088
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hSf8NraeLh-6zX4os4-q_KTfs-Q.roa
Signing time: Fri 25 Feb 2022 11:42:14 +0000
ROA not before: Fri 25 Feb 2022 11:42:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 185.234.22.0/24 maxlen: 24
185.223.154.0/24 maxlen: 24
185.238.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117543048 (0x7019088)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 25 11:42:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8527fc36b69e2e1fbacd7e28b38faafca4dfb3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4d:fe:fe:84:ed:45:37:a1:af:8f:8e:16:3e:
47:f0:dd:f3:65:dd:68:10:2c:2f:c5:8a:c1:89:ac:
f7:46:ee:96:eb:8e:18:e4:73:8a:17:ac:41:75:62:
48:90:f9:d5:21:31:b7:03:c1:42:f9:28:92:f2:3c:
d1:76:d8:3c:09:d1:05:80:d2:9a:74:90:33:c6:e2:
03:0d:be:19:6e:3e:5e:2a:e8:01:96:77:23:67:5d:
6f:7c:81:92:30:13:25:95:cf:16:91:e5:e0:e9:5c:
19:e2:4b:f3:b7:c5:26:02:90:63:a2:22:08:7e:96:
63:36:4d:56:f5:48:69:5a:81:3f:7a:77:d3:32:95:
72:2e:ca:73:b9:dc:4f:e3:db:44:67:44:aa:1f:d0:
e5:3c:89:4d:f1:5d:6b:75:75:61:b8:0c:70:90:64:
a0:e0:74:e9:2f:08:bc:4d:df:28:6e:05:18:df:17:
c3:19:04:f6:78:98:cf:a5:17:7a:92:8f:fa:92:81:
c9:f8:5b:e3:7c:71:01:d7:55:69:88:34:6c:61:46:
7b:d2:43:2d:a9:15:4c:7d:e0:60:47:03:16:11:b6:
40:1b:1e:ee:6e:d0:73:40:9a:a5:57:13:4c:a7:f0:
8b:2e:a2:d8:6c:50:24:c6:04:c6:c6:4a:b7:20:56:
3d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:27:FC:36:B6:9E:2E:1F:BA:CD:7E:28:B3:8F:AA:FC:A4:DF:B3:E4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hSf8NraeLh-6zX4os4-q_KTfs-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.154.0/24
185.234.22.0/24
185.238.228.0/24
Signature Algorithm: sha256WithRSAEncryption
be:70:d8:b2:a4:7b:c6:ac:1f:d8:d0:56:30:95:05:10:2c:03:
27:a7:2b:44:eb:a1:93:22:53:04:ab:55:52:50:49:46:b1:4a:
3b:3d:a8:0e:59:07:0e:63:ac:98:48:e7:3c:35:d8:cc:ed:3f:
16:3d:d1:fd:fa:2e:78:2e:ee:5d:49:c7:4c:d7:97:31:a1:61:
03:40:bc:47:ca:23:77:56:27:a0:69:47:0a:78:17:45:98:88:
61:7e:b3:e6:20:5c:0e:32:8d:d8:75:a7:aa:7e:1f:43:5a:ec:
01:63:42:08:b6:0a:76:3a:6b:ab:61:d0:c6:c6:5f:3a:e6:d3:
5b:93:a8:ce:c9:7e:8d:f2:bf:4b:8d:83:77:4d:8c:53:26:08:
74:30:f4:cb:1e:8a:1f:ec:67:4e:ee:1f:60:b8:8d:fa:34:ed:
b1:ce:82:ca:2a:01:ab:01:67:34:d6:4e:0c:ea:00:7e:15:41:
f4:1d:eb:4e:b8:8b:10:12:46:c9:53:91:8e:cf:e6:69:1c:7e:
36:72:d5:f0:57:b4:1b:fa:89:d6:49:8b:cf:f8:65:7c:fd:15:
af:95:30:e3:b3:c1:82:5f:4a:e0:1f:28:7c:78:4b:da:6b:86:
98:27:4b:40:60:63:00:1f:0a:ae:ce:83:26:49:82:82:e4:af:
13:22:ce:df
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBwGQiDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDIy
NTExNDIxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODUyN2ZjMzZiNjll
MmUxZmJhY2Q3ZTI4YjM4ZmFhZmNhNGRmYjNlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlN/v6E7UU3oa+PjhY+R/Dd82XdaBAsL8WKwYms90buluuO
GORzihesQXViSJD51SExtwPBQvkokvI80XbYPAnRBYDSmnSQM8biAw2+GW4+Xiro
AZZ3I2ddb3yBkjATJZXPFpHl4OlcGeJL87fFJgKQY6IiCH6WYzZNVvVIaVqBP3p3
0zKVci7Kc7ncT+PbRGdEqh/Q5TyJTfFda3V1YbgMcJBkoOB06S8IvE3fKG4FGN8X
wxkE9niYz6UXepKP+pKByfhb43xxAddVaYg0bGFGe9JDLakVTH3gYEcDFhG2QBse
7m7Qc0CapVcTTKfwiy6i2GxQJMYExsZKtyBWPSkCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSFJ/w2tp4uH7rNfiizj6r8pN+z5DAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L2hTZjhOcmFlTGgtNnpYNG9zNC1xX0tUZnMtUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEALnfmgMEALnqFgMEALnu5DANBgkq
hkiG9w0BAQsFAAOCAQEAvnDYsqR7xqwf2NBWMJUFECwDJ6crROuhkyJTBKtVUlBJ
RrFKOz2oDlkHDmOsmEjnPDXYzO0/Fj3R/foueC7uXUnHTNeXMaFhA0C8R8ojd1Yn
oGlHCngXRZiIYX6z5iBcDjKN2HWnqn4fQ1rsAWNCCLYKdjprq2HQxsZfOubTW5Oo
zsl+jfK/S42Dd02MUyYIdDD0yx6KH+xnTu4fYLiN+jTtsc6CyioBqwFnNNZODOoA
fhVB9B3rTriLEBJGyVORjs/maRx+NnLV8Fe0G/qJ1kmLz/hlfP0Vr5Uw47PBgl9K
4B8ofHhL2muGmCdLQGBjAB8Krs6DJkmCguSvEyLO3w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org