Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/b3c215-d866-42d0-a6c3-20677d80e838/1/A-hA0vpU-lR9CfNXbo1KWrQHXZY.roa
File: A-hA0vpU-lR9CfNXbo1KWrQHXZY.roa (raw, json)
Hash identifier: Q91itinZI3Fr4sj5KmzX1YPC1Fxf9XYXY+lnYWj3Rz0=
Subject key identifier: 03:E8:40:D2:FA:54:FA:54:7D:09:F3:57:6E:8D:4A:5A:B4:07:5D:96
Certificate issuer: /CN=cca750fcc76d0dd75d7381e36d1bde4edddc3e51
Certificate serial: 171F8193
Authority key identifier: CC:A7:50:FC:C7:6D:0D:D7:5D:73:81:E3:6D:1B:DE:4E:DD:DC:3E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zKdQ_MdtDdddc4HjbRveTt3cPlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/b3c215-d866-42d0-a6c3-20677d80e838/1/A-hA0vpU-lR9CfNXbo1KWrQHXZY.roa
Signing time: Sat 01 Jan 2022 06:57:23 +0000
ROA not before: Sat 01 Jan 2022 06:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198722
IP address blocks: 185.75.123.0/24 maxlen: 24
185.75.120.0/24 maxlen: 24
185.75.121.0/24 maxlen: 24
185.75.120.0/22 maxlen: 22
185.75.122.0/24 maxlen: 24
2a05:5240::/32 maxlen: 32
2a05:5242::/32 maxlen: 32
2a05:5243::/32 maxlen: 32
2a05:5240::/29 maxlen: 29
2a05:5241::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 387940755 (0x171f8193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cca750fcc76d0dd75d7381e36d1bde4edddc3e51
Validity
Not Before: Jan 1 06:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03e840d2fa54fa547d09f3576e8d4a5ab4075d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e8:65:a7:6d:14:e8:7d:9b:e0:45:62:44:6f:
ca:14:cc:e9:51:67:cf:27:94:7f:64:95:4d:fb:4e:
57:cf:1c:22:42:c3:d2:82:7c:26:cf:52:0d:8d:90:
0f:c5:e7:a4:49:d9:34:86:31:0e:3c:ac:0a:0b:fc:
6f:2e:9b:35:55:1b:e3:ec:ee:a2:2d:54:f5:c6:f5:
56:01:d7:4d:f2:7f:da:f4:94:ce:7a:27:da:89:db:
b2:71:f1:55:f2:2e:fd:b0:75:a4:06:18:83:97:1f:
61:2c:f8:b8:c9:7f:d5:a0:f8:de:bf:80:b2:e6:79:
eb:c7:dd:e4:42:a7:86:f7:1c:0d:28:d0:c4:2c:d1:
11:fe:ca:ff:7e:97:89:01:89:4b:f1:fc:3d:12:15:
51:5b:20:73:3e:b8:08:93:dc:63:9f:25:69:b2:09:
a4:ac:77:f3:cb:56:f9:f4:65:99:7e:b6:01:cc:44:
48:34:8b:86:1c:b2:dd:bc:b6:cf:4c:76:cc:4d:a9:
1c:19:55:17:40:67:e7:40:47:01:f3:a5:dd:07:01:
1f:9f:4b:38:a6:f0:ec:d9:8b:d0:8a:87:44:73:2e:
56:d6:fa:b5:66:5f:93:c1:82:b9:74:cd:f7:d9:21:
c4:1e:e2:f0:d8:c4:73:58:07:62:c1:b0:4b:94:4d:
53:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E8:40:D2:FA:54:FA:54:7D:09:F3:57:6E:8D:4A:5A:B4:07:5D:96
X509v3 Authority Key Identifier:
keyid:CC:A7:50:FC:C7:6D:0D:D7:5D:73:81:E3:6D:1B:DE:4E:DD:DC:3E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zKdQ_MdtDdddc4HjbRveTt3cPlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b3c215-d866-42d0-a6c3-20677d80e838/1/A-hA0vpU-lR9CfNXbo1KWrQHXZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b3c215-d866-42d0-a6c3-20677d80e838/1/zKdQ_MdtDdddc4HjbRveTt3cPlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.120.0/22
IPv6:
2a05:5240::/29
Signature Algorithm: sha256WithRSAEncryption
2a:8e:54:ca:50:d0:7d:ea:c7:8d:15:49:cf:a5:84:c4:cf:81:
25:57:a3:74:24:5b:cc:8d:54:12:30:f4:f0:b4:80:e8:24:d6:
7e:ff:3c:c7:12:4c:17:23:77:af:b8:e4:13:c3:22:5c:98:d9:
f1:60:81:4c:c8:98:50:94:02:7e:3f:3d:5e:86:05:06:0e:06:
4b:6c:42:84:06:b7:7b:f9:93:7a:d8:19:f1:43:3b:a2:ed:96:
5a:93:96:20:f3:08:7c:07:83:3b:03:7c:5a:29:ad:88:1a:08:
fb:b1:af:1e:ce:42:b3:db:36:f8:f0:b9:58:e4:7c:43:c9:e6:
84:22:48:d0:b9:9d:98:cc:ac:8b:47:db:92:0d:be:ca:af:34:
5f:5c:58:5d:13:62:f3:11:49:5e:04:ec:e7:52:fe:d8:b9:5d:
cf:3f:d2:2f:59:0e:f4:38:6b:08:a3:13:5e:ae:bd:3b:08:c4:
6b:03:2d:e7:82:6d:69:b3:1b:58:e5:b5:ae:5d:47:f0:2f:09:
4b:94:e0:53:d0:5a:09:29:b8:c9:43:e8:75:07:4b:3b:8d:10:
d8:c5:4e:73:e2:ea:82:e4:d5:d0:b7:65:c4:e6:d6:20:88:bd:
f2:0f:9c:4f:a2:1a:79:46:eb:fa:59:52:0a:29:a1:c4:17:17:
a5:70:d7:a7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFx+BkzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Y2E3NTBmY2M3NmQwZGQ3NWQ3MzgxZTM2ZDFiZGU0ZWRkZGMzZTUxMB4XDTIyMDEw
MTA2NTcyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDNlODQwZDJmYTU0
ZmE1NDdkMDlmMzU3NmU4ZDRhNWFiNDA3NWQ5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKHoZadtFOh9m+BFYkRvyhTM6VFnzyeUf2SVTftOV88cIkLD
0oJ8Js9SDY2QD8XnpEnZNIYxDjysCgv8by6bNVUb4+zuoi1U9cb1VgHXTfJ/2vSU
znon2onbsnHxVfIu/bB1pAYYg5cfYSz4uMl/1aD43r+AsuZ568fd5EKnhvccDSjQ
xCzREf7K/36XiQGJS/H8PRIVUVsgcz64CJPcY58labIJpKx388tW+fRlmX62AcxE
SDSLhhyy3by2z0x2zE2pHBlVF0Bn50BHAfOl3QcBH59LOKbw7NmL0IqHRHMuVtb6
tWZfk8GCuXTN99khxB7i8NjEc1gHYsGwS5RNU6sCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQD6EDS+lT6VH0J81dujUpatAddljAfBgNVHSMEGDAWgBTMp1D8x20N111z
geNtG95O3dw+UTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pLZFFfTWR0RGRkZGM0SGpiUnZlVHQzY1BsRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTAvYjNjMjE1LWQ4NjYtNDJkMC1hNmMzLTIwNjc3ZDgwZTgzOC8x
L0EtaEEwdnBVLWxSOUNmTlhibzFLV3JRSFhaWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAv
YjNjMjE1LWQ4NjYtNDJkMC1hNmMzLTIwNjc3ZDgwZTgzOC8xL3pLZFFfTWR0RGRk
ZGM0SGpiUnZlVHQzY1BsRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlLeDANBAIAAjAHAwUDKgVSQDAN
BgkqhkiG9w0BAQsFAAOCAQEAKo5UylDQferHjRVJz6WExM+BJVejdCRbzI1UEjD0
8LSA6CTWfv88xxJMFyN3r7jkE8MiXJjZ8WCBTMiYUJQCfj89XoYFBg4GS2xChAa3
e/mTetgZ8UM7ou2WWpOWIPMIfAeDOwN8WimtiBoI+7GvHs5Cs9s2+PC5WOR8Q8nm
hCJI0LmdmMysi0fbkg2+yq80X1xYXRNi8xFJXgTs51L+2Lldzz/SL1kO9DhrCKMT
Xq69OwjEawMt54JtabMbWOW1rl1H8C8JS5TgU9BaCSm4yUPodQdLO40Q2MVOc+Lq
guTV0LdlxObWIIi98g+cT6IaeUbr+llSCimhxBcXpXDXpw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:54 2024 by rpki-client on console-fra.rpki-client.org