Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/y-_N9NGi941dlQ6CGSUv6n2D3eE.roa
File: y-_N9NGi941dlQ6CGSUv6n2D3eE.roa (raw, json)
Hash identifier: gf0M7QQT7DA5wzoO+toHDGOViUM0nVr4wGrPdpKWWok=
Subject key identifier: CB:EF:CD:F4:D1:A2:F7:8D:5D:95:0E:82:19:25:2F:EA:7D:83:DD:E1
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 031A9BBA
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/y-_N9NGi941dlQ6CGSUv6n2D3eE.roa
Signing time: Mon 09 May 2022 11:43:44 +0000
ROA not before: Mon 09 May 2022 11:43:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.228.2.0/24 maxlen: 24
185.228.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52075450 (0x31a9bba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: May 9 11:43:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbefcdf4d1a2f78d5d950e8219252fea7d83dde1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:75:c5:c4:88:b3:0d:08:4a:ad:4c:7b:2b:62:
a6:27:76:5f:e8:c5:4b:1d:5e:44:f0:df:bf:12:28:
f2:b9:ec:58:c5:00:07:ab:ea:47:bc:61:76:67:f9:
e6:a8:47:f7:51:cb:6d:5f:2b:73:d0:70:45:2a:09:
f6:f5:0d:36:11:43:05:2c:6b:f3:6f:44:f7:17:6a:
0f:a0:7b:f5:cf:3d:48:a4:72:72:bc:08:e6:60:53:
9f:76:8b:f7:ae:51:5e:36:be:c5:6a:41:da:2c:f4:
15:82:b4:e6:d9:17:97:fe:fc:a3:3a:39:d7:96:f0:
fe:9f:f1:39:37:39:f9:55:54:8f:be:38:58:a8:19:
d3:91:91:32:1f:ab:55:30:76:71:3d:20:9f:4d:e1:
e2:ab:a0:43:3e:bf:93:19:3b:ba:c9:95:0b:0c:0d:
f9:c4:28:6d:dd:2f:89:d8:41:73:8f:51:1f:73:27:
7a:c1:97:b8:eb:19:5b:12:32:35:25:ad:28:44:a8:
c7:14:d3:db:dd:5e:9e:ca:ff:9b:a5:a3:6b:70:97:
36:4e:68:ff:e2:8a:3f:cf:92:fa:68:e5:d0:28:e2:
27:4f:3c:9f:8c:02:74:fc:f3:2e:e8:7a:fe:c1:76:
24:b2:a6:27:23:c9:48:c0:80:15:22:f1:a0:35:4a:
9f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EF:CD:F4:D1:A2:F7:8D:5D:95:0E:82:19:25:2F:EA:7D:83:DD:E1
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/y-_N9NGi941dlQ6CGSUv6n2D3eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.2.0/23
Signature Algorithm: sha256WithRSAEncryption
79:18:77:42:bb:d0:87:48:be:83:a9:72:28:87:60:24:d6:f7:
bb:63:1a:d4:08:cf:bb:d8:fa:6a:45:f5:4c:05:9b:71:11:96:
1c:0b:e4:72:cc:d7:a9:bf:be:83:a7:80:e0:92:49:5e:a2:6f:
ed:b9:2e:4d:3a:e3:17:2c:15:9d:42:2a:7b:bf:1c:a0:95:f4:
95:19:ab:07:b6:06:38:2f:b1:4a:0a:d8:b0:30:f0:cc:00:9d:
9c:32:79:40:a1:79:26:11:e0:ce:99:46:5b:08:67:40:9e:f2:
34:10:93:37:05:ff:33:bc:01:39:d9:aa:66:2e:4e:12:df:d3:
f5:15:79:3f:80:63:03:07:f0:92:7b:5b:6b:3c:af:2a:0f:5f:
f6:2d:63:21:eb:5d:be:80:7c:f7:29:31:15:5e:fa:da:03:11:
3a:db:43:ca:d3:51:bd:08:95:32:9c:15:5a:92:51:38:92:50:
e3:b7:64:d7:ab:de:30:96:58:91:f4:28:21:76:b4:c0:0e:67:
5d:70:89:6c:ae:6b:4d:b3:a9:5f:10:d7:b1:d0:2a:53:d9:90:
88:db:ff:de:66:b5:f1:06:c4:7c:00:b9:50:86:f0:06:b4:66:
b5:80:b9:45:ef:e2:32:81:a3:19:ca:ae:0a:1e:98:99:6e:0a:
e8:e4:03:d9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAxqbujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NWM2MzczZWFiMTljZjQzZGQyZjQzMTExMzk4MzgzZWUyYmFkMDMwMB4XDTIyMDUw
OTExNDM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2JlZmNkZjRkMWEy
Zjc4ZDVkOTUwZTgyMTkyNTJmZWE3ZDgzZGRlMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKp1xcSIsw0ISq1Meytipid2X+jFSx1eRPDfvxIo8rnsWMUA
B6vqR7xhdmf55qhH91HLbV8rc9BwRSoJ9vUNNhFDBSxr829E9xdqD6B79c89SKRy
crwI5mBTn3aL965RXja+xWpB2iz0FYK05tkXl/78ozo515bw/p/xOTc5+VVUj744
WKgZ05GRMh+rVTB2cT0gn03h4qugQz6/kxk7usmVCwwN+cQobd0vidhBc49RH3Mn
esGXuOsZWxIyNSWtKESoxxTT291ensr/m6Wja3CXNk5o/+KKP8+S+mjl0CjiJ088
n4wCdPzzLuh6/sF2JLKmJyPJSMCAFSLxoDVKn+sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTL78300aL3jV2VDoIZJS/qfYPd4TAfBgNVHSMEGDAWgBSlxjc+qxnPQ90v
QxETmDg+4rrQMDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BjWTNQcXNaejBQZEwwTVJFNWc0UHVLNjBEQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvZjBmNWUzLTYwNTAtNGUyZC1hNGVhLWE0ZWEwYTYzZjc2Ni8x
L3ktX045TkdpOTQxZGxRNkNHU1V2Nm4yRDNlRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
ZjBmNWUzLTYwNTAtNGUyZC1hNGVhLWE0ZWEwYTYzZjc2Ni8xL3BjWTNQcXNaejBQ
ZEwwTVJFNWc0UHVLNjBEQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnkAjANBgkqhkiG9w0BAQsFAAOC
AQEAeRh3QrvQh0i+g6lyKIdgJNb3u2Ma1AjPu9j6akX1TAWbcRGWHAvkcszXqb++
g6eA4JJJXqJv7bkuTTrjFywVnUIqe78coJX0lRmrB7YGOC+xSgrYsDDwzACdnDJ5
QKF5JhHgzplGWwhnQJ7yNBCTNwX/M7wBOdmqZi5OEt/T9RV5P4BjAwfwkntbazyv
Kg9f9i1jIetdvoB89ykxFV762gMROttDytNRvQiVMpwVWpJROJJQ47dk16veMJZY
kfQoIXa0wA5nXXCJbK5rTbOpXxDXsdAqU9mQiNv/3ma18QbEfAC5UIbwBrRmtYC5
Re/iMoGjGcquCh6YmW4K6OQD2Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:14 2024 by rpki-client on console-fra.rpki-client.org