Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/c2560f-1c4c-4ca3-a63b-304fa18898bf/1/7tVrJyWJ9VozUFQHvp6em1tO9Ng.roa
File: 7tVrJyWJ9VozUFQHvp6em1tO9Ng.roa (raw, json)
Hash identifier: twfoWF59tSu1tyRCG4/F9IICv895G6iwJOW8oM/hb6g=
Subject key identifier: EE:D5:6B:27:25:89:F5:5A:33:50:54:07:BE:9E:9E:9B:5B:4E:F4:D8
Certificate issuer: /CN=c07804766b2353985b9718088b5c679e0c3ea67f
Certificate serial: 09545C74
Authority key identifier: C0:78:04:76:6B:23:53:98:5B:97:18:08:8B:5C:67:9E:0C:3E:A6:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHgEdmsjU5hblxgIi1xnngw-pn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/c2560f-1c4c-4ca3-a63b-304fa18898bf/1/7tVrJyWJ9VozUFQHvp6em1tO9Ng.roa
Signing time: Sat 01 Jan 2022 14:02:18 +0000
ROA not before: Sat 01 Jan 2022 14:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58059
IP address blocks: 185.12.109.0/24 maxlen: 24
185.12.110.0/24 maxlen: 24
185.12.108.0/24 maxlen: 24
185.12.111.0/24 maxlen: 24
185.154.130.0/24 maxlen: 24
185.154.128.0/24 maxlen: 24
185.154.131.0/24 maxlen: 24
185.154.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156523636 (0x9545c74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c07804766b2353985b9718088b5c679e0c3ea67f
Validity
Not Before: Jan 1 14:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eed56b272589f55a33505407be9e9e9b5b4ef4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5a:17:28:0b:e8:6a:57:b0:37:19:b9:61:e2:
58:db:17:60:1d:4b:b3:34:ff:b5:4c:1e:7e:e6:4c:
bd:e4:ed:f6:34:ff:da:60:bb:b0:a2:13:f0:b9:3e:
33:f4:d1:39:75:13:06:35:07:11:9a:55:f5:df:38:
48:3a:0d:95:a3:4a:84:c0:5f:64:f1:ba:1e:c8:fa:
78:0a:d0:a1:76:c1:fd:10:4a:d9:f0:55:7b:df:41:
0e:d8:79:7a:7c:76:d9:9e:10:73:4b:ee:c2:32:a0:
1f:4b:14:08:f1:d5:ff:b3:cf:1f:d1:8f:3a:c6:ab:
98:11:fa:c6:5d:30:53:ee:a0:5a:91:86:53:bf:2a:
fd:94:ba:f0:87:b8:60:5d:1c:ec:13:96:e1:4f:23:
9a:76:af:8b:75:62:48:40:7a:14:e8:d0:00:ba:b0:
9c:c0:85:31:93:ba:65:c5:fd:ae:47:f0:eb:84:d5:
01:40:ff:82:70:f6:8d:08:57:0a:da:68:d3:df:9e:
43:8a:04:e3:3a:36:ba:06:be:c3:49:7e:a8:c4:11:
7f:98:96:34:44:eb:b1:a1:0c:ed:8f:85:46:8f:e7:
a9:17:5d:ed:cf:99:20:de:b7:99:77:22:83:f9:3c:
2e:82:78:86:e9:bf:9b:ba:5f:75:f1:89:7c:c5:97:
12:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D5:6B:27:25:89:F5:5A:33:50:54:07:BE:9E:9E:9B:5B:4E:F4:D8
X509v3 Authority Key Identifier:
keyid:C0:78:04:76:6B:23:53:98:5B:97:18:08:8B:5C:67:9E:0C:3E:A6:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHgEdmsjU5hblxgIi1xnngw-pn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2560f-1c4c-4ca3-a63b-304fa18898bf/1/7tVrJyWJ9VozUFQHvp6em1tO9Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2560f-1c4c-4ca3-a63b-304fa18898bf/1/wHgEdmsjU5hblxgIi1xnngw-pn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.108.0/22
185.154.128.0/22
Signature Algorithm: sha256WithRSAEncryption
07:b7:30:1b:48:e7:8d:61:ff:07:0d:b5:a0:a7:03:71:65:5a:
d9:e7:50:b1:56:51:17:f2:40:ec:50:bb:45:a1:c1:c6:5a:c9:
d7:57:80:ee:57:2c:89:77:c9:6f:b4:b4:ca:3f:43:6d:a1:e2:
2a:c2:f3:57:f9:4b:bc:e3:6a:98:32:8a:be:36:71:55:36:07:
4c:b1:e3:3d:1c:22:cf:04:71:21:69:5a:b4:aa:a7:98:f9:02:
be:25:9a:6a:3e:de:e7:9f:8f:05:14:64:6a:65:d6:b4:13:5e:
41:8d:40:35:15:ec:a7:ba:44:1a:30:ea:e5:11:78:f0:6e:fb:
f6:1c:13:30:97:59:c9:f0:87:cc:90:d7:a0:e6:b4:66:03:ac:
e4:b6:0e:0e:80:d3:9c:c3:af:04:58:d9:8c:56:f1:ad:6d:7b:
9c:5b:a8:89:ab:25:5b:ce:1b:42:ac:5c:4c:08:18:16:a5:95:
93:c1:b2:27:00:59:ab:97:53:31:30:ce:e5:9a:ae:a2:0b:37:
98:ac:42:04:35:84:cd:ba:d3:69:ff:39:5c:c7:e4:10:c1:17:
bb:83:f3:02:fa:75:dc:03:71:55:73:82:54:7e:d7:37:99:f4:
ea:63:6e:8b:8c:a8:82:88:fc:d1:7e:cc:dc:8a:f7:b2:96:56:
2c:ad:f7:0f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECVRcdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MDc4MDQ3NjZiMjM1Mzk4NWI5NzE4MDg4YjVjNjc5ZTBjM2VhNjdmMB4XDTIyMDEw
MTE0MDIxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWVkNTZiMjcyNTg5
ZjU1YTMzNTA1NDA3YmU5ZTllOWI1YjRlZjRkODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJpaFygL6GpXsDcZuWHiWNsXYB1LszT/tUwefuZMveTt9jT/
2mC7sKIT8Lk+M/TROXUTBjUHEZpV9d84SDoNlaNKhMBfZPG6Hsj6eArQoXbB/RBK
2fBVe99BDth5enx22Z4Qc0vuwjKgH0sUCPHV/7PPH9GPOsarmBH6xl0wU+6gWpGG
U78q/ZS68Ie4YF0c7BOW4U8jmnavi3ViSEB6FOjQALqwnMCFMZO6ZcX9rkfw64TV
AUD/gnD2jQhXCtpo09+eQ4oE4zo2uga+w0l+qMQRf5iWNETrsaEM7Y+FRo/nqRdd
7c+ZIN63mXcig/k8LoJ4hum/m7pfdfGJfMWXEqcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTu1WsnJYn1WjNQVAe+np6bW0702DAfBgNVHSMEGDAWgBTAeAR2ayNTmFuX
GAiLXGeeDD6mfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dIZ0VkbXNqVTVoYmx4Z0lpMXhubmd3LXBuOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGUvYzI1NjBmLTFjNGMtNGNhMy1hNjNiLTMwNGZhMTg4OThiZi8x
Lzd0VnJKeVdKOVZvelVGUUh2cDZlbTF0TzlOZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGUv
YzI1NjBmLTFjNGMtNGNhMy1hNjNiLTMwNGZhMTg4OThiZi8xL3dIZ0VkbXNqVTVo
Ymx4Z0lpMXhubmd3LXBuOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArkMbAMEArmagDANBgkqhkiG9w0B
AQsFAAOCAQEAB7cwG0jnjWH/Bw21oKcDcWVa2edQsVZRF/JA7FC7RaHBxlrJ11eA
7lcsiXfJb7S0yj9DbaHiKsLzV/lLvONqmDKKvjZxVTYHTLHjPRwizwRxIWlatKqn
mPkCviWaaj7e55+PBRRkamXWtBNeQY1ANRXsp7pEGjDq5RF48G779hwTMJdZyfCH
zJDXoOa0ZgOs5LYODoDTnMOvBFjZjFbxrW17nFuoiaslW84bQqxcTAgYFqWVk8Gy
JwBZq5dTMTDO5Zquogs3mKxCBDWEzbrTaf85XMfkEMEXu4PzAvp13ANxVXOCVH7X
N5n06mNui4yogoj80X7M3Ir3spZWLK33Dw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:05 2023 by rpki-client on console-fra.rpki-client.org