Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/vyoSd0WFDV6bk6GkMmgFhCMSYVA.roa
File: vyoSd0WFDV6bk6GkMmgFhCMSYVA.roa (raw, json)
Hash identifier: ATGn0Ai0/gX4fSYMKHBkOlB3s851Irjba5tSGfAFM4Q=
Subject key identifier: BF:2A:12:77:45:85:0D:5E:9B:93:A1:A4:32:68:05:84:23:12:61:50
Certificate issuer: /CN=232af36b9c079da091827da3d07c9c8a5236cb54
Certificate serial: 035574
Authority key identifier: 23:2A:F3:6B:9C:07:9D:A0:91:82:7D:A3:D0:7C:9C:8A:52:36:CB:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyrza5wHnaCRgn2j0HycilI2y1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/vyoSd0WFDV6bk6GkMmgFhCMSYVA.roa
Signing time: Wed 12 Jan 2022 13:38:58 +0000
ROA not before: Wed 12 Jan 2022 13:38:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200984
IP address blocks: 185.89.180.0/22 maxlen: 22
2a05:da00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218484 (0x35574)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232af36b9c079da091827da3d07c9c8a5236cb54
Validity
Not Before: Jan 12 13:38:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf2a127745850d5e9b93a1a43268058423126150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:00:a7:0d:73:b5:aa:17:ac:92:ee:52:15:73:
1b:16:80:86:5a:97:32:0e:d9:10:8c:f6:4f:a1:b1:
c7:16:de:37:b9:f4:f5:43:c4:02:43:9e:58:18:2c:
ea:15:1e:d2:39:05:3e:e7:a8:2a:e7:4d:de:bd:4b:
b6:bc:ea:e8:b9:45:5b:43:77:67:29:fb:fe:09:47:
05:54:33:22:fd:c1:ab:f7:16:b9:86:12:4e:7a:cf:
a5:8b:70:f6:bc:e0:a0:44:ad:9b:d7:ef:64:c7:ff:
66:ae:03:d4:5d:79:45:8d:98:de:54:1f:e3:28:7a:
e8:22:f0:75:7c:59:ef:3b:ed:d8:1c:6b:91:bf:db:
6b:34:45:24:eb:18:b1:23:5a:33:ae:24:83:ee:16:
37:b0:d8:f9:b2:32:72:aa:f4:36:08:75:a2:01:04:
18:4e:a9:d9:db:78:98:c8:5e:ab:d6:70:75:2d:12:
f4:4e:c1:b6:72:10:2e:ec:5e:5f:d6:bd:5d:6a:14:
e3:cd:0e:2a:8d:7d:67:2a:83:d7:95:ee:33:96:c9:
be:15:19:bf:84:d4:1f:33:7f:8b:e5:9a:ea:fb:ed:
2d:03:ee:78:98:bb:a2:d8:8a:29:f9:02:33:ed:a1:
a7:b6:2a:40:d1:af:3a:87:47:23:ce:84:01:4a:a1:
38:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2A:12:77:45:85:0D:5E:9B:93:A1:A4:32:68:05:84:23:12:61:50
X509v3 Authority Key Identifier:
keyid:23:2A:F3:6B:9C:07:9D:A0:91:82:7D:A3:D0:7C:9C:8A:52:36:CB:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyrza5wHnaCRgn2j0HycilI2y1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/vyoSd0WFDV6bk6GkMmgFhCMSYVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/Iyrza5wHnaCRgn2j0HycilI2y1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.180.0/22
IPv6:
2a05:da00::/29
Signature Algorithm: sha256WithRSAEncryption
8c:41:e0:c5:dd:36:04:f1:d1:d6:72:5e:a2:60:2f:10:94:2c:
7c:92:7d:fa:67:fa:15:14:9b:a9:0d:da:78:be:97:49:00:7c:
e3:e7:18:49:08:10:c6:c1:b8:11:ca:3d:32:7a:c1:a3:71:e5:
87:3d:91:72:31:7a:07:b9:a5:4f:64:2d:9e:93:60:05:8d:8e:
d6:b2:d7:15:62:08:ae:90:df:24:e2:0b:99:d1:74:5f:db:82:
ed:de:95:c8:18:44:25:36:63:e7:60:4d:44:88:46:c9:72:9c:
6e:45:d1:2d:3b:27:56:5f:3f:7e:a8:62:21:1b:5b:ee:d4:46:
06:af:ec:6b:41:ab:97:ca:64:a8:7d:8c:73:ec:ce:f5:ec:6d:
1d:68:99:29:e8:8f:19:ba:9b:fd:57:92:8d:03:ed:0b:a5:7d:
5f:3e:78:f7:de:03:61:f5:3e:11:cc:40:b0:67:ed:56:55:e3:
26:42:25:c6:d5:cb:2c:86:06:5a:d1:ee:29:d0:ce:6f:f4:79:
b0:e7:8b:fa:b4:ca:66:dd:31:14:1f:e8:86:3a:53:3f:b5:28:
7e:84:96:b4:51:07:51:3e:9c:95:d8:db:8d:05:d4:1d:7f:db:
f7:20:e3:ef:01:55:f5:71:09:a5:ae:8a:80:3e:18:1a:b2:40:
00:53:25:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDA1V0MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDIz
MmFmMzZiOWMwNzlkYTA5MTgyN2RhM2QwN2M5YzhhNTIzNmNiNTQwHhcNMjIwMTEy
MTMzODU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiZjJhMTI3NzQ1ODUw
ZDVlOWI5M2ExYTQzMjY4MDU4NDIzMTI2MTUwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzgCnDXO1qhesku5SFXMbFoCGWpcyDtkQjPZPobHHFt43ufT1
Q8QCQ55YGCzqFR7SOQU+56gq503evUu2vOrouUVbQ3dnKfv+CUcFVDMi/cGr9xa5
hhJOes+li3D2vOCgRK2b1+9kx/9mrgPUXXlFjZjeVB/jKHroIvB1fFnvO+3YHGuR
v9trNEUk6xixI1ozriSD7hY3sNj5sjJyqvQ2CHWiAQQYTqnZ23iYyF6r1nB1LRL0
TsG2chAu7F5f1r1dahTjzQ4qjX1nKoPXle4zlsm+FRm/hNQfM3+L5Zrq++0tA+54
mLui2Iop+QIz7aGntipA0a86h0cjzoQBSqE4xQIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFL8qEndFhQ1em5OhpDJoBYQjEmFQMB8GA1UdIwQYMBaAFCMq82ucB52gkYJ9
o9B8nIpSNstUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SXlyemE1d0huYUNSZ24yajBIeWNpbEkyeTFRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lNS9jMmZkMzMtZmQ0NC00ZTA4LWI0MjQtYWExMDQ1MjIwYjViLzEv
dnlvU2QwV0ZEVjZiazZHa01tZ0ZoQ01TWVZBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9j
MmZkMzMtZmQ0NC00ZTA4LWI0MjQtYWExMDQ1MjIwYjViLzEvSXlyemE1d0huYUNS
Z24yajBIeWNpbEkyeTFRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuVm0MA0EAgACMAcDBQMqBdoAMA0G
CSqGSIb3DQEBCwUAA4IBAQCMQeDF3TYE8dHWcl6iYC8QlCx8kn36Z/oVFJupDdp4
vpdJAHzj5xhJCBDGwbgRyj0yesGjceWHPZFyMXoHuaVPZC2ek2AFjY7WstcVYgiu
kN8k4guZ0XRf24Lt3pXIGEQlNmPnYE1EiEbJcpxuRdEtOydWXz9+qGIhG1vu1EYG
r+xrQauXymSofYxz7M717G0daJkp6I8Zupv9V5KNA+0LpX1fPnj33gNh9T4RzECw
Z+1WVeMmQiXG1csshgZa0e4p0M5v9Hmw54v6tMpm3TEUH+iGOlM/tSh+hJa0UQdR
PpyV2NuNBdQdf9v3IOPvAVX1cQmlroqAPhgaskAAUyXs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:36 2024 by rpki-client on console-fra.rpki-client.org