Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5ab585-b29b-4e71-8038-90e21df01e91/1/gJ0Wti08ylmIdm41jgqdHWOzBqA.roa
File: gJ0Wti08ylmIdm41jgqdHWOzBqA.roa (raw, json)
Hash identifier: G6pQE9r+OjD8vCZixBI1wa30rmZ4hvysL+NiOTHLAgk=
Subject key identifier: 80:9D:16:B6:2D:3C:CA:59:88:76:6E:35:8E:0A:9D:1D:63:B3:06:A0
Certificate issuer: /CN=eb1dc00fd2c1e3eaafceccc1b4ba1f8fd0a4a98c
Certificate serial: 0182343065638AF186E7129530E3CBD5561F
Authority key identifier: EB:1D:C0:0F:D2:C1:E3:EA:AF:CE:CC:C1:B4:BA:1F:8F:D0:A4:A9:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6x3AD9LB4-qvzszBtLofj9CkqYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5ab585-b29b-4e71-8038-90e21df01e91/1/gJ0Wti08ylmIdm41jgqdHWOzBqA.roa
Signing time: Mon 25 Jul 2022 07:09:23 +0000
ROA not before: Mon 25 Jul 2022 07:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62167
IP address blocks: 185.44.163.0/24 maxlen: 24
185.44.160.0/24 maxlen: 24
185.44.160.0/22 maxlen: 22
185.44.162.0/24 maxlen: 24
185.44.161.0/24 maxlen: 24
89.107.29.0/24 maxlen: 24
89.107.28.0/24 maxlen: 24
89.107.28.0/22 maxlen: 22
185.163.83.0/24 maxlen: 24
185.163.82.0/23 maxlen: 23
185.163.81.0/24 maxlen: 24
185.163.80.0/22 maxlen: 22
185.163.80.0/24 maxlen: 24
2a01:7520:5::/48 maxlen: 48
2a01:7520::/32 maxlen: 32
2a01:7520::/48 maxlen: 48
2a01:7520:4::/48 maxlen: 48
2a01:7520:2::/48 maxlen: 48
2a01:7520:8::/48 maxlen: 48
2a01:7520:3::/48 maxlen: 48
2a01:7520:6::/48 maxlen: 48
2a01:7520:1::/48 maxlen: 48
2a01:7520:7::/48 maxlen: 48
2a0b:5800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:34:30:65:63:8a:f1:86:e7:12:95:30:e3:cb:d5:56:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb1dc00fd2c1e3eaafceccc1b4ba1f8fd0a4a98c
Validity
Not Before: Jul 25 07:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=809d16b62d3cca5988766e358e0a9d1d63b306a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:db:3a:9c:b3:43:b5:40:be:ff:5a:30:4c:
bf:50:2d:b7:93:fc:fc:c2:c8:f9:5a:7a:21:78:85:
51:aa:72:5c:5d:8f:81:b2:d8:40:ae:b1:4b:8b:0c:
99:04:76:0e:ad:ff:c4:13:73:c8:30:52:b8:24:f3:
43:f8:8d:22:a3:8c:e5:e7:fa:78:d2:d5:da:00:9b:
eb:45:66:f8:96:ac:15:18:52:79:16:5e:e1:1d:9c:
f5:4d:22:d5:c5:3d:b0:fc:69:e8:27:d6:92:bf:5a:
b0:e7:ab:f9:09:bb:cc:47:02:ba:2f:d0:5e:91:1f:
15:7f:43:b7:a7:f2:1a:6a:63:84:b8:2a:0f:59:79:
53:cf:33:d0:55:e5:19:10:d2:f3:35:7c:5f:e7:5b:
58:3f:57:6a:ba:36:20:a5:77:3e:04:e0:b3:93:5e:
1f:2a:27:3c:cd:5a:dd:fc:2a:57:d2:7c:3a:fd:18:
9b:56:bd:a4:f0:7d:26:a2:47:aa:9a:8a:8f:90:b4:
28:b0:0c:8e:17:85:14:88:fd:d8:b6:d5:6b:ec:b1:
07:27:9d:0c:98:5b:72:0d:fe:ec:9c:3a:4f:7e:d9:
38:2b:ce:14:01:9b:6c:b8:e2:b9:96:79:13:a1:c7:
6f:37:ae:ad:89:db:1b:92:38:3d:1c:ab:6b:45:7d:
3b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9D:16:B6:2D:3C:CA:59:88:76:6E:35:8E:0A:9D:1D:63:B3:06:A0
X509v3 Authority Key Identifier:
keyid:EB:1D:C0:0F:D2:C1:E3:EA:AF:CE:CC:C1:B4:BA:1F:8F:D0:A4:A9:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6x3AD9LB4-qvzszBtLofj9CkqYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5ab585-b29b-4e71-8038-90e21df01e91/1/gJ0Wti08ylmIdm41jgqdHWOzBqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5ab585-b29b-4e71-8038-90e21df01e91/1/6x3AD9LB4-qvzszBtLofj9CkqYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.28.0/22
185.44.160.0/22
185.163.80.0/22
IPv6:
2a01:7520::/32
2a0b:5800::/32
Signature Algorithm: sha256WithRSAEncryption
5e:17:a6:5c:e8:d1:a7:26:ac:20:5e:8d:7f:09:27:c1:eb:e2:
65:18:c3:cb:d0:7b:93:13:57:37:3b:af:98:8c:55:a3:6b:90:
d9:5f:c7:1a:24:aa:30:cc:65:53:c6:f0:61:a5:f7:dc:bc:37:
62:2c:5f:3a:93:b8:91:cb:27:46:90:03:68:9d:78:99:e9:ab:
1f:65:f4:72:eb:b1:51:cf:c1:28:05:35:22:3a:6f:48:63:97:
bf:66:1d:15:57:dc:8a:fb:d9:57:20:95:b9:f0:a2:3c:35:4b:
74:6b:77:f4:43:d1:51:b3:e3:1d:d9:32:59:f1:98:3c:9c:2e:
e1:47:6b:fe:70:a9:3e:aa:dd:9d:44:63:5b:89:12:4f:ba:05:
b3:25:4a:24:ab:82:4a:13:7d:38:be:5a:31:6c:2e:12:76:52:
d0:cf:03:6c:78:b1:39:85:7e:4b:15:3c:f4:32:c3:0c:50:f1:
a6:ee:45:40:e7:8d:a5:1f:2f:eb:fc:dd:73:6d:07:7f:ed:a8:
b4:61:ef:14:fb:d9:73:eb:08:b6:5e:db:4c:d4:76:5a:61:c2:
2a:a8:ae:8a:36:f8:63:22:28:48:d3:cb:9f:f0:79:76:73:15:
5f:92:60:22:8c:d8:59:25:ff:34:24:48:8a:da:ae:75:b4:9f:
21:be:2d:fd
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgISAYI0MGVjivGG5xKVMOPL1VYfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViMWRjMDBmZDJjMWUzZWFhZmNlY2NjMWI0YmExZjhmZDBh
NGE5OGMwHhcNMjIwNzI1MDcwOTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDlkMTZiNjJkM2NjYTU5ODg3NjZlMzU4ZTBhOWQxZDYzYjMwNmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnonbOpyzQ7VAvv9aMEy/UC23k/z8
wsj5WnoheIVRqnJcXY+BsthArrFLiwyZBHYOrf/EE3PIMFK4JPND+I0io4zl5/p4
0tXaAJvrRWb4lqwVGFJ5Fl7hHZz1TSLVxT2w/GnoJ9aSv1qw56v5CbvMRwK6L9Be
kR8Vf0O3p/IaamOEuCoPWXlTzzPQVeUZENLzNXxf51tYP1dqujYgpXc+BOCzk14f
Kic8zVrd/CpX0nw6/RibVr2k8H0mokeqmoqPkLQosAyOF4UUiP3YttVr7LEHJ50M
mFtyDf7snDpPftk4K84UAZtsuOK5lnkTocdvN66tidsbkjg9HKtrRX07pwIDAQAB
o4ICKzCCAicwHQYDVR0OBBYEFICdFrYtPMpZiHZuNY4KnR1jswagMB8GA1UdIwQY
MBaAFOsdwA/SwePqr87MwbS6H4/QpKmMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNngzQUQ5TEI0LXF2enN6QnRMb2ZqOUNrcVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS81YWI1ODUtYjI5Yi00ZTcxLTgwMzgt
OTBlMjFkZjAxZTkxLzEvZ0owV3RpMDh5bG1JZG00MWpncWRIV096QnFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS81YWI1ODUtYjI5Yi00ZTcxLTgwMzgtOTBlMjFkZjAxZTkx
LzEvNngzQUQ5TEI0LXF2enN6QnRMb2ZqOUNrcVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAYBAIAATASAwQCWWscAwQC
uSygAwQCuaNQMBQEAgACMA4DBQAqAXUgAwUAKgtYADANBgkqhkiG9w0BAQsFAAOC
AQEAXhemXOjRpyasIF6NfwknweviZRjDy9B7kxNXNzuvmIxVo2uQ2V/HGiSqMMxl
U8bwYaX33Lw3YixfOpO4kcsnRpADaJ14memrH2X0cuuxUc/BKAU1IjpvSGOXv2Yd
FVfcivvZVyCVufCiPDVLdGt39EPRUbPjHdkyWfGYPJwu4Udr/nCpPqrdnURjW4kS
T7oFsyVKJKuCShN9OL5aMWwuEnZS0M8DbHixOYV+SxU89DLDDFDxpu5FQOeNpR8v
6/zdc20Hf+2otGHvFPvZc+sItl7bTNR2WmHCKqiuijb4YyIoSNPLn/B5dnMVX5Jg
IozYWSX/NCRIitqudbSfIb4t/Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:26 2024 by rpki-client on console-fra.rpki-client.org