Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/iQA2aAg9uioZrHdCu3Lnz9ZD5pc.roa
File: iQA2aAg9uioZrHdCu3Lnz9ZD5pc.roa (raw, json)
Hash identifier: 6mj19wDDp49qSZjOHI6QpsDofqN3fg18jtHYqLz1rNc=
Subject key identifier: 89:00:36:68:08:3D:BA:2A:19:AC:77:42:BB:72:E7:CF:D6:43:E6:97
Certificate issuer: /CN=35b1cce4d5bad8d9c2edca400e2bfc54a24185bf
Certificate serial: 0EBE69CA
Authority key identifier: 35:B1:CC:E4:D5:BA:D8:D9:C2:ED:CA:40:0E:2B:FC:54:A2:41:85:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NbHM5NW62NnC7cpADiv8VKJBhb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/iQA2aAg9uioZrHdCu3Lnz9ZD5pc.roa
Signing time: Sat 01 Jan 2022 13:02:43 +0000
ROA not before: Sat 01 Jan 2022 13:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206298
IP address blocks: 185.190.76.0/22 maxlen: 22
2a0a:5c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247359946 (0xebe69ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35b1cce4d5bad8d9c2edca400e2bfc54a24185bf
Validity
Not Before: Jan 1 13:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89003668083dba2a19ac7742bb72e7cfd643e697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a2:86:8a:4c:7b:ca:bc:0b:be:aa:2b:0a:ca:
23:b7:bb:98:e8:21:19:82:c5:6e:7f:a7:be:d3:5e:
9c:16:e8:ec:df:8f:07:34:a9:39:ba:23:2c:68:ce:
e1:dd:ef:7d:01:51:5e:2e:4d:9e:bf:d7:8e:c4:f4:
de:e3:f4:c8:6a:c2:fb:84:19:6c:e8:fd:e1:35:9d:
58:ba:64:e5:b7:4f:4f:f0:73:d3:b7:30:1a:ca:5f:
e6:69:9d:3e:39:1b:45:9c:40:be:64:6b:9d:51:e8:
65:bf:a5:ba:a0:58:8e:54:1a:59:2d:75:75:07:51:
8c:0d:ee:7e:4a:38:94:7e:70:63:a7:58:f5:ed:a9:
63:e2:62:b4:41:09:d7:80:39:c5:aa:fc:f3:6f:77:
fe:c9:ec:02:0f:26:e3:93:e3:82:78:e1:a6:f2:27:
d7:bd:8f:8e:af:8f:0b:ad:e9:e8:1f:36:5e:8b:31:
17:1a:58:2e:81:93:68:78:18:a9:05:72:59:33:76:
a7:8b:b1:bc:65:9f:24:db:1c:55:91:8e:2f:99:79:
59:24:54:69:7e:fd:44:aa:c9:19:c7:ac:f8:93:82:
42:e0:26:a6:ec:92:b7:1f:12:39:a1:01:89:9c:c9:
59:a5:cf:ce:51:84:aa:47:a6:20:b9:78:89:1c:48:
a2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:00:36:68:08:3D:BA:2A:19:AC:77:42:BB:72:E7:CF:D6:43:E6:97
X509v3 Authority Key Identifier:
keyid:35:B1:CC:E4:D5:BA:D8:D9:C2:ED:CA:40:0E:2B:FC:54:A2:41:85:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NbHM5NW62NnC7cpADiv8VKJBhb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/iQA2aAg9uioZrHdCu3Lnz9ZD5pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/NbHM5NW62NnC7cpADiv8VKJBhb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.76.0/22
IPv6:
2a0a:5c0::/29
Signature Algorithm: sha256WithRSAEncryption
e5:75:43:35:08:9e:35:26:94:3f:8e:88:f1:29:bd:36:bf:f5:
46:9c:a1:54:28:13:18:7d:e0:c8:0d:a5:e1:69:74:bc:a2:2a:
50:46:90:b2:a7:03:d0:13:97:96:eb:c5:72:c7:8f:08:80:66:
44:29:57:4a:1b:f1:ec:f7:c0:a8:a4:2e:61:a6:9b:f0:8b:36:
92:09:40:88:5a:38:bb:d2:70:80:cb:9c:60:7c:75:a4:a6:66:
7a:64:23:ec:8f:bc:e8:73:fd:28:be:7d:f5:11:58:60:ba:48:
d7:49:70:6e:87:d6:53:d8:30:fa:ac:a1:a4:ee:fb:db:b5:d9:
b9:6f:bd:31:5c:a9:38:9b:e0:e8:ef:7c:bd:90:52:04:65:b6:
b6:6b:f9:24:a1:bf:2d:33:c0:83:d4:ca:8c:1f:e4:69:0a:2d:
2b:26:78:74:ae:87:6d:4f:11:18:12:bf:3f:fd:38:f8:04:57:
de:59:58:cf:76:7c:c4:f0:0c:3b:83:ff:63:16:dd:47:67:d9:
ff:32:44:5d:39:de:10:16:7f:27:b6:a0:4c:6c:05:7d:88:43:
d8:32:ff:0a:8e:66:70:c3:91:dd:6a:68:57:df:ad:29:32:c4:
7f:ed:8b:10:04:18:06:3e:72:bf:9e:84:51:00:23:b2:d9:73:
d6:3a:eb:47
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEDr5pyjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NWIxY2NlNGQ1YmFkOGQ5YzJlZGNhNDAwZTJiZmM1NGEyNDE4NWJmMB4XDTIyMDEw
MTEzMDI0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODkwMDM2NjgwODNk
YmEyYTE5YWM3NzQyYmI3MmU3Y2ZkNjQzZTY5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKeihopMe8q8C76qKwrKI7e7mOghGYLFbn+nvtNenBbo7N+P
BzSpObojLGjO4d3vfQFRXi5Nnr/XjsT03uP0yGrC+4QZbOj94TWdWLpk5bdPT/Bz
07cwGspf5mmdPjkbRZxAvmRrnVHoZb+luqBYjlQaWS11dQdRjA3ufko4lH5wY6dY
9e2pY+JitEEJ14A5xar88293/snsAg8m45PjgnjhpvIn172Pjq+PC63p6B82Xosx
FxpYLoGTaHgYqQVyWTN2p4uxvGWfJNscVZGOL5l5WSRUaX79RKrJGces+JOCQuAm
puyStx8SOaEBiZzJWaXPzlGEqkemILl4iRxIotsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSJADZoCD26Khmsd0K7cufP1kPmlzAfBgNVHSMEGDAWgBQ1sczk1brY2cLt
ykAOK/xUokGFvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05iSE01Tlc2Mk5uQzdjcEFEaXY4VktKQmhiOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvMzAzMTg0LTlmN2UtNDU4My04MGJhLWNmZDNiNTNkYzQ1Ni8x
L2lRQTJhQWc5dWlvWnJIZEN1M0xuejlaRDVwYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
MzAzMTg0LTlmN2UtNDU4My04MGJhLWNmZDNiNTNkYzQ1Ni8xL05iSE01Tlc2Mk5u
QzdjcEFEaXY4VktKQmhiOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArm+TDANBAIAAjAHAwUDKgoFwDAN
BgkqhkiG9w0BAQsFAAOCAQEA5XVDNQieNSaUP46I8Sm9Nr/1RpyhVCgTGH3gyA2l
4Wl0vKIqUEaQsqcD0BOXluvFcsePCIBmRClXShvx7PfAqKQuYaab8Is2kglAiFo4
u9JwgMucYHx1pKZmemQj7I+86HP9KL599RFYYLpI10lwbofWU9gw+qyhpO7727XZ
uW+9MVypOJvg6O98vZBSBGW2tmv5JKG/LTPAg9TKjB/kaQotKyZ4dK6HbU8RGBK/
P/04+ARX3llYz3Z8xPAMO4P/YxbdR2fZ/zJEXTneEBZ/J7agTGwFfYhD2DL/Co5m
cMOR3WpoV9+tKTLEf+2LEAQYBj5yv56EUQAjstlz1jrrRw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:06 2025 by rpki-client