Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mlI-rVrZxs9Ft7InDszkjr23ig4.roa
File: mlI-rVrZxs9Ft7InDszkjr23ig4.roa (raw, json)
Hash identifier: lON1f2Fw1PQyyJ6g6wbjxG0kdYEHoqV+pvkPfoEL7KI=
Subject key identifier: 9A:52:3E:AD:5A:D9:C6:CF:45:B7:B2:27:0E:CC:E4:8E:BD:B7:8A:0E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0813DFCF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mlI-rVrZxs9Ft7InDszkjr23ig4.roa
Signing time: Wed 25 May 2022 08:01:13 +0000
ROA not before: Wed 25 May 2022 08:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.255.125.0/24 maxlen: 24
185.238.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135520207 (0x813dfcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 25 08:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a523ead5ad9c6cf45b7b2270ecce48ebdb78a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ff:d6:f1:aa:b0:44:39:e2:17:00:39:ec:b7:
80:58:89:86:f5:80:60:3b:16:a7:2b:e4:27:5d:d5:
d9:bf:b8:c7:76:f5:ad:fc:e4:bc:d3:43:26:49:52:
2b:c6:a0:b2:40:4a:ba:c8:68:52:30:ec:24:19:be:
56:ab:3a:21:85:48:21:29:f0:dc:87:f9:d5:6d:89:
3f:9b:b9:dc:02:28:ff:ef:4a:9d:ae:8b:d8:47:75:
f7:e4:b6:14:6c:67:ab:6b:3c:f3:58:8d:e4:d6:d9:
83:3b:1b:48:7a:19:c0:1c:eb:37:3a:7b:e6:99:dc:
2c:e7:9c:8b:ab:68:04:9c:28:c7:0b:d4:b9:33:24:
8e:e4:c5:78:b0:11:79:c9:21:2f:6f:c2:1a:a3:02:
d9:69:ee:19:35:d5:55:fd:6e:9c:e5:4a:f8:10:79:
3e:f0:9a:8c:12:cc:5d:0d:b5:e7:20:7e:4a:b1:c9:
cd:bb:c9:bf:73:62:d4:ff:4b:96:0a:d5:8b:5c:86:
31:25:a4:c1:72:38:9e:86:98:e9:e3:91:26:ef:bd:
2d:9e:da:db:d9:6a:2c:8c:7b:b1:0b:11:ac:f5:33:
10:29:9b:cb:f5:67:fe:e9:59:7a:68:14:9a:d6:5f:
ee:21:d1:fd:a4:4c:26:99:f9:59:4b:77:3e:6f:db:
31:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:52:3E:AD:5A:D9:C6:CF:45:B7:B2:27:0E:CC:E4:8E:BD:B7:8A:0E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mlI-rVrZxs9Ft7InDszkjr23ig4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.229.0/24
185.255.125.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:0d:bc:09:06:7b:61:43:22:2b:74:c9:9c:51:c8:31:ae:76:
70:73:7d:fc:75:b7:e4:b0:99:57:68:d6:ba:ba:75:67:e8:74:
8a:25:39:47:c6:e6:e3:2b:bc:5b:3f:96:b0:12:12:1d:c0:00:
b1:61:25:44:20:e7:70:3c:1d:fd:38:47:8a:e0:9a:03:3d:bd:
57:61:03:78:d4:2a:4b:c9:5b:2c:9a:21:e8:ff:ee:f4:98:d9:
46:5c:5a:96:1c:96:01:c5:34:7d:46:88:5a:ec:1b:b7:d8:48:
bf:29:af:53:8f:86:76:82:af:c0:06:42:9a:71:3d:21:ac:46:
3e:51:53:cb:8f:5e:06:29:c4:03:18:5b:c4:fc:75:0a:2f:a2:
13:43:0a:2f:b7:aa:88:ef:66:32:4a:a5:fd:97:82:08:f3:e3:
90:35:d1:5d:4a:c2:48:c9:94:49:99:64:0a:d5:6e:82:69:69:
20:23:a2:b0:81:a0:d1:09:11:ab:a2:33:3b:50:8b:b5:1b:62:
eb:36:0d:eb:f6:49:70:22:25:91:54:e3:52:e2:6d:7e:14:c7:
e2:89:5f:12:1d:8a:dc:ca:a2:53:4e:6e:c1:c8:aa:64:16:f9:
9c:27:f7:63:12:ef:ec:70:90:06:59:e2:15:1d:02:13:e5:7f:
78:72:0c:78
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECBPfzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDUy
NTA4MDExM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWE1MjNlYWQ1YWQ5
YzZjZjQ1YjdiMjI3MGVjY2U0OGViZGI3OGEwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK//1vGqsEQ54hcAOey3gFiJhvWAYDsWpyvkJ13V2b+4x3b1
rfzkvNNDJklSK8agskBKushoUjDsJBm+Vqs6IYVIISnw3If51W2JP5u53AIo/+9K
na6L2Ed19+S2FGxnq2s881iN5NbZgzsbSHoZwBzrNzp75pncLOeci6toBJwoxwvU
uTMkjuTFeLAReckhL2/CGqMC2WnuGTXVVf1unOVK+BB5PvCajBLMXQ215yB+SrHJ
zbvJv3Ni1P9LlgrVi1yGMSWkwXI4noaY6eORJu+9LZ7a29lqLIx7sQsRrPUzECmb
y/Vn/ulZemgUmtZf7iHR/aRMJpn5WUt3Pm/bMdsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSaUj6tWtnGz0W3sicOzOSOvbeKDjAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L21sSS1yVnJaeHM5RnQ3SW5Ec3pranIyM2lnNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALnu5QMEALn/fTANBgkqhkiG9w0B
AQsFAAOCAQEAKw28CQZ7YUMiK3TJnFHIMa52cHN9/HW35LCZV2jWurp1Z+h0iiU5
R8bm4yu8Wz+WsBISHcAAsWElRCDncDwd/ThHiuCaAz29V2EDeNQqS8lbLJoh6P/u
9JjZRlxalhyWAcU0fUaIWuwbt9hIvymvU4+GdoKvwAZCmnE9IaxGPlFTy49eBinE
AxhbxPx1Ci+iE0MKL7eqiO9mMkql/ZeCCPPjkDXRXUrCSMmUSZlkCtVugmlpICOi
sIGg0QkRq6IzO1CLtRti6zYN6/ZJcCIlkVTjUuJtfhTH4olfEh2K3MqiU05uwciq
ZBb5nCf3YxLv7HCQBlniFR0CE+V/eHIMeA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org