Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/1ad9bf-0322-4534-b009-e6e91bf052fe/1/5t_r0UGNb45rK1Z97-0EoWAkXtw.roa
File: 5t_r0UGNb45rK1Z97-0EoWAkXtw.roa (raw, json)
Hash identifier: KNxd2vSuPz1xxiLeBrncSRx7+x/SbFWQ9SpvRfxFBtw=
Subject key identifier: E6:DF:EB:D1:41:8D:6F:8E:6B:2B:56:7D:EF:ED:04:A1:60:24:5E:DC
Certificate issuer: /CN=2cd41bcc3cd73e0dc7f7e95b5d0dca6d6857bedc
Certificate serial: 05EA0A83
Authority key identifier: 2C:D4:1B:CC:3C:D7:3E:0D:C7:F7:E9:5B:5D:0D:CA:6D:68:57:BE:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNQbzDzXPg3H9-lbXQ3KbWhXvtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/1ad9bf-0322-4534-b009-e6e91bf052fe/1/5t_r0UGNb45rK1Z97-0EoWAkXtw.roa
Signing time: Sat 01 Jan 2022 13:05:24 +0000
ROA not before: Sat 01 Jan 2022 13:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197886
IP address blocks: 185.97.208.0/22 maxlen: 22
185.166.228.0/22 maxlen: 22
91.228.212.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99224195 (0x5ea0a83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd41bcc3cd73e0dc7f7e95b5d0dca6d6857bedc
Validity
Not Before: Jan 1 13:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6dfebd1418d6f8e6b2b567defed04a160245edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6a:6e:ae:b2:24:9d:e9:6b:72:25:4c:67:3f:
70:96:44:b6:e1:36:aa:eb:44:5d:0c:59:b1:7f:cc:
e5:62:bb:e7:04:0a:c2:16:e4:64:98:83:f4:b3:11:
59:0d:62:68:c2:7c:16:06:41:90:75:e4:f4:9a:86:
87:47:80:f7:a6:58:b8:4c:64:f9:aa:f3:e2:2c:fa:
a2:8f:88:40:c9:1d:46:0b:f5:13:3d:4b:b4:6c:74:
da:16:c6:87:11:b5:ca:89:d7:ca:a5:26:7c:00:aa:
71:4f:62:d5:ab:cd:58:34:7f:53:f2:eb:a2:86:b1:
26:4b:dc:d6:a1:2b:91:34:c9:88:b0:cd:b1:62:ee:
b3:10:5f:00:b8:26:d3:29:32:17:13:e0:00:75:bb:
42:25:b8:e4:1c:9a:6d:06:93:d2:d9:a1:05:b2:45:
6b:93:c5:4e:8a:cd:40:bd:64:1a:c7:e7:14:14:48:
7c:f0:f3:5b:ff:9e:0d:da:a2:5d:7a:da:1c:78:6f:
02:33:23:ed:83:aa:81:c4:5f:bc:e4:06:7c:be:c6:
66:21:24:37:1d:f7:5f:88:fa:d7:56:2d:42:96:d1:
a4:5d:82:ed:2f:d8:2d:22:7d:7e:26:86:70:d5:b6:
48:32:aa:1c:35:de:47:59:b0:2b:70:09:2d:eb:c4:
34:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DF:EB:D1:41:8D:6F:8E:6B:2B:56:7D:EF:ED:04:A1:60:24:5E:DC
X509v3 Authority Key Identifier:
keyid:2C:D4:1B:CC:3C:D7:3E:0D:C7:F7:E9:5B:5D:0D:CA:6D:68:57:BE:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNQbzDzXPg3H9-lbXQ3KbWhXvtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1ad9bf-0322-4534-b009-e6e91bf052fe/1/5t_r0UGNb45rK1Z97-0EoWAkXtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1ad9bf-0322-4534-b009-e6e91bf052fe/1/LNQbzDzXPg3H9-lbXQ3KbWhXvtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.212.0/23
185.97.208.0/22
185.166.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:84:a0:82:7f:25:9a:7f:da:1f:42:fe:bd:42:02:6a:3b:23:
19:b6:a0:1d:ff:b4:29:9d:b4:21:67:e1:e4:24:be:e3:2d:45:
9d:5f:e8:2f:e7:3c:a1:7d:af:04:a0:85:bf:25:a6:54:96:e9:
54:6e:93:08:f2:68:39:b4:55:28:c3:5b:d4:7e:8b:59:bb:7c:
fe:61:0a:59:9d:1b:40:63:7e:75:2a:f0:56:75:01:25:1d:a1:
7a:41:79:d7:f3:f3:76:a3:8b:82:ae:7a:c6:15:46:a9:e9:c8:
f1:44:21:fd:30:16:66:8d:c3:e3:65:e6:71:be:ba:3c:d8:d0:
25:9c:0a:5e:b5:76:5b:78:44:30:79:45:3d:72:b6:95:02:3b:
e6:b3:2c:e4:a2:d5:f5:71:22:b5:eb:aa:5b:d3:1e:98:0f:ca:
1b:85:98:a5:be:f4:62:5f:10:d0:3f:6e:3f:31:50:48:11:99:
83:00:28:35:f0:3e:eb:5c:d9:49:a5:21:1d:82:11:2e:b6:ca:
a3:30:88:d5:3a:88:fc:2a:64:d3:9b:b4:eb:dc:d7:fc:d4:26:
35:3a:1a:19:aa:29:14:7e:03:9e:b5:f6:0c:4f:02:f1:60:ea:
e8:76:60:09:6d:1d:2c:a7:fa:65:ab:68:51:bc:ac:bc:32:8c:
30:92:ee:06
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBeoKgzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
Y2Q0MWJjYzNjZDczZTBkYzdmN2U5NWI1ZDBkY2E2ZDY4NTdiZWRjMB4XDTIyMDEw
MTEzMDUyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTZkZmViZDE0MThk
NmY4ZTZiMmI1NjdkZWZlZDA0YTE2MDI0NWVkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNqbq6yJJ3pa3IlTGc/cJZEtuE2qutEXQxZsX/M5WK75wQK
whbkZJiD9LMRWQ1iaMJ8FgZBkHXk9JqGh0eA96ZYuExk+arz4iz6oo+IQMkdRgv1
Ez1LtGx02hbGhxG1yonXyqUmfACqcU9i1avNWDR/U/LrooaxJkvc1qErkTTJiLDN
sWLusxBfALgm0ykyFxPgAHW7QiW45ByabQaT0tmhBbJFa5PFTorNQL1kGsfnFBRI
fPDzW/+eDdqiXXraHHhvAjMj7YOqgcRfvOQGfL7GZiEkNx33X4j611YtQpbRpF2C
7S/YLSJ9fiaGcNW2SDKqHDXeR1mwK3AJLevENNUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTm3+vRQY1vjmsrVn3v7QShYCRe3DAfBgNVHSMEGDAWgBQs1BvMPNc+Dcf3
6VtdDcptaFe+3DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xOUWJ6RHpYUGczSDktbGJYUTNLYldoWHZ0dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGQvMWFkOWJmLTAzMjItNDUzNC1iMDA5LWU2ZTkxYmYwNTJmZS8x
LzV0X3IwVUdOYjQ1cksxWjk3LTBFb1dBa1h0dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGQv
MWFkOWJmLTAzMjItNDUzNC1iMDA5LWU2ZTkxYmYwNTJmZS8xL0xOUWJ6RHpYUGcz
SDktbGJYUTNLYldoWHZ0dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAVvk1AMEArlh0AMEArmm5DANBgkq
hkiG9w0BAQsFAAOCAQEApISggn8lmn/aH0L+vUICajsjGbagHf+0KZ20IWfh5CS+
4y1FnV/oL+c8oX2vBKCFvyWmVJbpVG6TCPJoObRVKMNb1H6LWbt8/mEKWZ0bQGN+
dSrwVnUBJR2hekF51/PzdqOLgq56xhVGqenI8UQh/TAWZo3D42Xmcb66PNjQJZwK
XrV2W3hEMHlFPXK2lQI75rMs5KLV9XEiteuqW9MemA/KG4WYpb70Yl8Q0D9uPzFQ
SBGZgwAoNfA+61zZSaUhHYIRLrbKozCI1TqI/Cpk05u069zX/NQmNToaGaopFH4D
nrX2DE8C8WDq6HZgCW0dLKf6ZatoUbysvDKMMJLuBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:24 2024 by rpki-client on console-fra.rpki-client.org