Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/EWRfOFHhDmXGDxJDse8YQsapbfo.roa
File: EWRfOFHhDmXGDxJDse8YQsapbfo.roa (raw, json)
Hash identifier: 0l06aKXAYG0Loo+gK3Lz5DvmOPoZsfbCp4GD4N2BcWY=
Subject key identifier: 11:64:5F:38:51:E1:0E:65:C6:0F:12:43:B1:EF:18:42:C6:A9:6D:FA
Certificate issuer: /CN=ccb0ca2291276d7d2a2f8a7050f4ba827fe910a1
Certificate serial: 34B127DB
Authority key identifier: CC:B0:CA:22:91:27:6D:7D:2A:2F:8A:70:50:F4:BA:82:7F:E9:10:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zLDKIpEnbX0qL4pwUPS6gn_pEKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/EWRfOFHhDmXGDxJDse8YQsapbfo.roa
Signing time: Sat 01 Jan 2022 00:58:20 +0000
ROA not before: Sat 01 Jan 2022 00:58:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35754
IP address blocks: 87.254.32.0/19 maxlen: 19
185.247.120.0/22 maxlen: 22
2a03:d500::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884025307 (0x34b127db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccb0ca2291276d7d2a2f8a7050f4ba827fe910a1
Validity
Not Before: Jan 1 00:58:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11645f3851e10e65c60f1243b1ef1842c6a96dfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:d6:fe:fc:b5:1d:3b:ad:1c:54:ad:97:c5:
3c:de:e4:97:82:75:3c:02:02:56:ea:77:32:95:7b:
9d:a7:22:76:c3:91:3a:0e:9a:83:c6:6f:3c:de:a2:
5b:05:48:02:26:c9:2b:0e:93:b5:e5:14:cc:c7:09:
0a:06:6e:c7:b5:78:0b:b2:60:b3:ae:0c:05:4d:10:
63:12:36:bb:ee:1f:64:51:69:2e:72:87:98:01:cd:
40:69:c6:32:20:04:d6:5e:3d:06:79:1a:92:a9:60:
6f:1b:26:aa:22:34:a6:b8:24:cb:88:20:29:1c:9f:
4a:fd:b6:74:9f:68:cd:23:54:9c:30:b2:4f:87:18:
4f:96:d2:d5:c4:f6:7f:17:86:88:5a:34:d6:51:70:
13:70:d2:ce:92:44:8b:0a:2f:67:8f:70:d8:05:aa:
4b:ef:43:c1:6a:09:ca:8c:41:cb:e2:ba:9c:dd:7a:
6d:c3:75:6b:65:05:ee:e4:e8:69:87:bf:5d:07:06:
e1:dc:0c:e8:f6:3b:9d:06:9b:11:d7:71:a4:07:43:
54:ec:0f:23:af:d2:d4:d1:19:56:99:67:ec:ef:91:
26:40:25:e8:9e:98:83:0a:1d:7d:f7:b5:f4:fb:1b:
b7:dc:92:e7:78:91:b3:8c:2f:04:16:15:69:fa:f5:
5f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:64:5F:38:51:E1:0E:65:C6:0F:12:43:B1:EF:18:42:C6:A9:6D:FA
X509v3 Authority Key Identifier:
keyid:CC:B0:CA:22:91:27:6D:7D:2A:2F:8A:70:50:F4:BA:82:7F:E9:10:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zLDKIpEnbX0qL4pwUPS6gn_pEKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/EWRfOFHhDmXGDxJDse8YQsapbfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/zLDKIpEnbX0qL4pwUPS6gn_pEKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.32.0/19
185.247.120.0/22
IPv6:
2a03:d500::/32
Signature Algorithm: sha256WithRSAEncryption
57:8c:c8:01:6f:72:2f:56:1d:0f:d4:15:d7:5e:4e:18:d3:51:
f9:66:40:f9:b7:e2:1d:29:d6:01:b1:69:d1:19:3b:07:5c:d4:
48:bc:84:52:87:21:a5:b8:9f:22:c5:0e:1f:c7:1d:5e:26:b3:
b1:a6:f7:cb:b3:ab:70:0b:a3:1a:4d:f5:2e:33:43:e4:bd:51:
da:55:ec:98:41:86:84:28:6f:3f:0b:1a:64:17:2a:d3:e7:d8:
83:5b:c8:a5:0c:48:37:c7:ae:95:2a:5c:cd:e9:dd:66:ad:6e:
f2:15:a6:40:0d:7a:1a:18:e4:90:ea:52:90:68:af:81:a6:e6:
d1:fe:c7:96:9c:c7:fc:91:20:e7:75:4d:21:e9:1e:47:32:44:
03:05:f6:81:20:bc:61:9f:cc:df:2d:a5:00:82:19:6d:1d:09:
20:b6:7f:08:04:00:77:9d:c9:8a:c5:a6:19:bb:db:90:e3:ec:
00:fc:d3:71:04:f9:ca:95:21:d3:92:7e:a8:8a:99:8d:8c:66:
aa:45:10:20:31:51:1d:cc:d9:88:21:f5:90:83:ce:5d:b4:68:
5e:26:07:f7:76:4e:24:e8:84:d5:2d:8b:c5:33:a4:22:8d:5c:
96:cb:fb:2d:06:e5:a9:06:ea:6d:70:df:03:25:09:79:e6:9e:
16:15:53:72
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIENLEn2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Y2IwY2EyMjkxMjc2ZDdkMmEyZjhhNzA1MGY0YmE4MjdmZTkxMGExMB4XDTIyMDEw
MTAwNTgyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTE2NDVmMzg1MWUx
MGU2NWM2MGYxMjQzYjFlZjE4NDJjNmE5NmRmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKrN1v78tR07rRxUrZfFPN7kl4J1PAICVup3MpV7nacidsOR
Og6ag8ZvPN6iWwVIAibJKw6TteUUzMcJCgZux7V4C7Jgs64MBU0QYxI2u+4fZFFp
LnKHmAHNQGnGMiAE1l49BnkakqlgbxsmqiI0prgky4ggKRyfSv22dJ9ozSNUnDCy
T4cYT5bS1cT2fxeGiFo01lFwE3DSzpJEiwovZ49w2AWqS+9DwWoJyoxBy+K6nN16
bcN1a2UF7uToaYe/XQcG4dwM6PY7nQabEddxpAdDVOwPI6/S1NEZVpln7O+RJkAl
6J6Ygwodffe19Psbt9yS53iRs4wvBBYVafr1XwcCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQRZF84UeEOZcYPEkOx7xhCxqlt+jAfBgNVHSMEGDAWgBTMsMoikSdtfSov
inBQ9LqCf+kQoTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pMREtJcEVuYlgwcUw0cHdVUFM2Z25fcEVLRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTAvZDM4MzYwLTRkMWYtNDIyZS05MGFlLTA4YjllMTEwMWFhNy8x
L0VXUmZPRkhoRG1YR0R4SkRzZThZUXNhcGJmby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAv
ZDM4MzYwLTRkMWYtNDIyZS05MGFlLTA4YjllMTEwMWFhNy8xL3pMREtJcEVuYlgw
cUw0cHdVUFM2Z25fcEVLRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBVf+IAMEArn3eDANBAIAAjAHAwUA
KgPVADANBgkqhkiG9w0BAQsFAAOCAQEAV4zIAW9yL1YdD9QV115OGNNR+WZA+bfi
HSnWAbFp0Rk7B1zUSLyEUochpbifIsUOH8cdXiazsab3y7OrcAujGk31LjND5L1R
2lXsmEGGhChvPwsaZBcq0+fYg1vIpQxIN8eulSpczendZq1u8hWmQA16GhjkkOpS
kGivgabm0f7HlpzH/JEg53VNIekeRzJEAwX2gSC8YZ/M3y2lAIIZbR0JILZ/CAQA
d53JisWmGbvbkOPsAPzTcQT5ypUh05J+qIqZjYxmqkUQIDFRHczZiCH1kIPOXbRo
XiYH93ZOJOiE1S2LxTOkIo1clsv7LQblqQbqbXDfAyUJeeaeFhVTcg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:44 2024 by rpki-client on console-ams.rpki-client.org