Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/vl_DEquQISkMvrmry6xoLmGpEzY.roa
File: vl_DEquQISkMvrmry6xoLmGpEzY.roa (raw, json)
Hash identifier: BMSRFQu4a4lF/YGPFHCsLCU2Y6bAeRekCwg/86YFnuo=
Subject key identifier: BE:5F:C3:12:AB:90:21:29:0C:BE:B9:AB:CB:AC:68:2E:61:A9:13:36
Certificate issuer: /CN=cbd4719d72d288a73218d8c1a498823333297e25
Certificate serial: 0D2E589A
Authority key identifier: CB:D4:71:9D:72:D2:88:A7:32:18:D8:C1:A4:98:82:33:33:29:7E:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9RxnXLSiKcyGNjBpJiCMzMpfiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/vl_DEquQISkMvrmry6xoLmGpEzY.roa
Signing time: Tue 29 Mar 2022 19:35:50 +0000
ROA not before: Tue 29 Mar 2022 19:35:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206611
IP address blocks: 185.98.157.0/24 maxlen: 24
185.181.52.0/24 maxlen: 24
185.181.52.0/22 maxlen: 24
185.181.55.0/24 maxlen: 24
185.181.53.0/24 maxlen: 24
185.181.54.0/24 maxlen: 24
192.161.6.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221141146 (0xd2e589a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd4719d72d288a73218d8c1a498823333297e25
Validity
Not Before: Mar 29 19:35:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be5fc312ab9021290cbeb9abcbac682e61a91336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d7:28:72:66:f0:e3:1f:5b:31:6b:4e:1d:2e:
5d:e3:5a:2a:e0:30:bf:80:13:11:d5:ec:e4:e9:09:
58:fd:6d:9c:ce:ea:0d:e1:31:88:00:c5:d6:8d:41:
99:40:5c:57:a9:03:19:13:ce:f9:7b:50:f4:39:4f:
52:7e:97:f8:05:50:d7:70:d3:f5:1c:72:3d:53:d7:
b9:c4:db:f0:00:34:7f:8c:67:93:51:d9:4c:d7:07:
43:6a:34:90:c0:b1:17:32:ef:4d:aa:f5:84:19:c5:
ac:e4:0f:2d:87:a5:5a:12:c8:e0:8a:88:e2:2c:61:
4b:b2:9a:05:b8:34:0f:b8:77:ae:3b:32:34:41:0c:
be:e0:bd:c0:75:fa:6f:6c:d3:4d:be:4d:19:7d:bb:
cc:1d:19:18:37:e2:80:4f:af:a5:0b:b4:f3:84:df:
0d:ab:f1:8e:fe:44:d4:85:5b:e1:33:80:ee:5d:3d:
c4:eb:5c:29:79:6f:32:cb:1a:12:0c:07:14:dd:58:
53:cb:8b:9a:b6:63:07:e1:11:1d:c4:4f:a6:06:28:
81:f6:41:a3:7d:d7:d2:e9:e9:fe:46:c2:2e:a7:6f:
89:96:f5:2d:62:71:68:e1:f5:f9:ff:e6:65:0a:fb:
7b:73:da:45:d7:e4:e8:74:80:69:68:ba:b7:f0:1e:
53:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5F:C3:12:AB:90:21:29:0C:BE:B9:AB:CB:AC:68:2E:61:A9:13:36
X509v3 Authority Key Identifier:
keyid:CB:D4:71:9D:72:D2:88:A7:32:18:D8:C1:A4:98:82:33:33:29:7E:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9RxnXLSiKcyGNjBpJiCMzMpfiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/vl_DEquQISkMvrmry6xoLmGpEzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/y9RxnXLSiKcyGNjBpJiCMzMpfiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.157.0/24
185.181.52.0/22
192.161.6.0/23
Signature Algorithm: sha256WithRSAEncryption
75:6f:cf:8a:c8:e7:80:b5:9e:d3:d5:f9:03:0b:91:b1:1b:47:
88:53:81:ff:82:ff:62:c8:36:3f:4a:8d:a2:92:7d:e4:b7:ae:
4e:48:19:e2:21:79:fd:55:56:bf:19:ac:03:23:1b:cf:75:24:
07:0e:2c:71:4c:fc:a0:96:bd:ea:d1:2d:f9:51:7b:33:95:e3:
08:43:f6:23:06:75:a1:cc:7a:47:52:41:11:c8:37:15:94:0e:
e1:98:52:1e:7a:83:67:66:b2:06:57:2b:48:1f:b4:99:aa:cf:
9f:f8:0c:17:cf:f6:48:d1:15:c4:83:6a:ce:62:0e:5d:47:09:
5e:82:47:54:d3:b5:f1:fa:db:a9:b6:03:c5:67:9f:3d:af:07:
ca:27:8d:e1:34:11:f6:80:9a:69:d7:0d:af:6e:6b:dc:8f:cc:
fa:fe:2c:3f:8d:d0:0e:dc:c7:4d:b9:67:d1:62:75:70:b2:a6:
ed:b3:e4:9d:63:93:c5:b7:8a:da:a9:e4:74:1e:55:c2:b3:3e:
93:a0:f3:bc:50:59:7e:c0:69:29:f2:37:21:e3:e7:9b:de:25:
d3:c3:b0:12:62:36:03:15:21:39:18:b1:26:b0:be:93:a7:3e:
cc:1d:31:84:bf:fd:fb:cc:6e:38:78:8c:56:3d:8b:2f:6d:27:
14:7e:dc:51
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEDS5YmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YmQ0NzE5ZDcyZDI4OGE3MzIxOGQ4YzFhNDk4ODIzMzMzMjk3ZTI1MB4XDTIyMDMy
OTE5MzU1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmU1ZmMzMTJhYjkw
MjEyOTBjYmViOWFiY2JhYzY4MmU2MWE5MTMzNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMnXKHJm8OMfWzFrTh0uXeNaKuAwv4ATEdXs5OkJWP1tnM7q
DeExiADF1o1BmUBcV6kDGRPO+XtQ9DlPUn6X+AVQ13DT9RxyPVPXucTb8AA0f4xn
k1HZTNcHQ2o0kMCxFzLvTar1hBnFrOQPLYelWhLI4IqI4ixhS7KaBbg0D7h3rjsy
NEEMvuC9wHX6b2zTTb5NGX27zB0ZGDfigE+vpQu084TfDavxjv5E1IVb4TOA7l09
xOtcKXlvMssaEgwHFN1YU8uLmrZjB+ERHcRPpgYogfZBo33X0unp/kbCLqdviZb1
LWJxaOH1+f/mZQr7e3PaRdfk6HSAaWi6t/AeU7sCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBS+X8MSq5AhKQy+uavLrGguYakTNjAfBgNVHSMEGDAWgBTL1HGdctKIpzIY
2MGkmIIzMyl+JTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3k5UnhuWExTaUtjeUdOakJwSmlDTXpNcGZpVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvZGM4YzBkLWY4YzMtNDA2Yy1iNzllLWI0OTJkNmZmNDgzZi8x
L3ZsX0RFcXVRSVNrTXZybXJ5NnhvTG1HcEV6WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
ZGM4YzBkLWY4YzMtNDA2Yy1iNzllLWI0OTJkNmZmNDgzZi8xL3k5UnhuWExTaUtj
eUdOakJwSmlDTXpNcGZpVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEALlinQMEArm1NAMEAcChBjANBgkq
hkiG9w0BAQsFAAOCAQEAdW/PisjngLWe09X5AwuRsRtHiFOB/4L/Ysg2P0qNopJ9
5LeuTkgZ4iF5/VVWvxmsAyMbz3UkBw4scUz8oJa96tEt+VF7M5XjCEP2IwZ1ocx6
R1JBEcg3FZQO4ZhSHnqDZ2ayBlcrSB+0marPn/gMF8/2SNEVxINqzmIOXUcJXoJH
VNO18frbqbYDxWefPa8HyieN4TQR9oCaadcNr25r3I/M+v4sP43QDtzHTbln0WJ1
cLKm7bPknWOTxbeK2qnkdB5VwrM+k6DzvFBZfsBpKfI3IePnm94l08OwEmI2AxUh
ORixJrC+k6c+zB0xhL/9+8xuOHiMVj2LL20nFH7cUQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:39 2024 by rpki-client on console-ams.rpki-client.org