Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/cOgSxWBe9dpbdE5M4S0qY-2HiDc.roa
File: cOgSxWBe9dpbdE5M4S0qY-2HiDc.roa (raw, json)
Hash identifier: F6eDrXELZmPBFeY/ox1vIOjrDnquk/HfG9hMKymxy5E=
Subject key identifier: 70:E8:12:C5:60:5E:F5:DA:5B:74:4E:4C:E1:2D:2A:63:ED:87:88:37
Certificate issuer: /CN=1c233eee624c192c6c7dada1432de0b9e78b09ba
Certificate serial: 0DD7B658
Authority key identifier: 1C:23:3E:EE:62:4C:19:2C:6C:7D:AD:A1:43:2D:E0:B9:E7:8B:09:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCM-7mJMGSxsfa2hQy3gueeLCbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/cOgSxWBe9dpbdE5M4S0qY-2HiDc.roa
Signing time: Sat 01 Jan 2022 09:01:52 +0000
ROA not before: Sat 01 Jan 2022 09:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12931
IP address blocks: 185.146.204.0/22 maxlen: 32
185.74.216.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232240728 (0xdd7b658)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c233eee624c192c6c7dada1432de0b9e78b09ba
Validity
Not Before: Jan 1 09:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70e812c5605ef5da5b744e4ce12d2a63ed878837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:16:70:b4:2a:85:33:e1:06:4f:e1:5b:de:
0f:c9:8c:95:59:e9:dd:97:fd:2a:97:49:cb:7f:48:
de:5d:45:be:c9:09:cf:67:d9:b2:17:6e:6c:7e:53:
20:69:f6:dd:8f:b1:9a:22:d8:ad:68:77:7f:98:c6:
db:9e:e4:21:4a:96:21:1a:9c:ec:7b:59:20:c6:2d:
5a:83:11:17:25:91:a1:82:07:b6:dc:19:f2:b9:e4:
42:55:8b:59:9a:2f:e4:0b:10:8b:52:f7:a4:7d:58:
5f:17:66:e1:c9:d2:d6:be:de:5f:ec:4f:d7:32:5c:
0c:53:d0:ad:5f:68:24:ae:ed:f5:c9:0d:0d:6d:62:
dc:20:37:62:63:d7:56:da:99:ed:a5:8e:6d:76:45:
45:d4:7c:db:92:9c:aa:81:bc:d3:ba:b5:11:3c:a4:
19:d6:05:14:fb:5e:54:b9:a3:25:6b:a8:55:cf:4e:
12:7d:73:55:16:13:9f:bc:53:2e:89:38:41:5c:e0:
25:c3:5f:8a:80:fa:5c:9b:97:09:fb:82:85:bf:88:
08:79:20:22:bb:a7:50:b5:6b:cd:69:e4:ec:26:32:
37:48:83:87:68:59:e5:06:55:ae:39:65:5b:01:c6:
a9:f0:be:de:f1:7b:6b:0e:48:93:2d:fe:d4:50:75:
dd:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E8:12:C5:60:5E:F5:DA:5B:74:4E:4C:E1:2D:2A:63:ED:87:88:37
X509v3 Authority Key Identifier:
keyid:1C:23:3E:EE:62:4C:19:2C:6C:7D:AD:A1:43:2D:E0:B9:E7:8B:09:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCM-7mJMGSxsfa2hQy3gueeLCbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/cOgSxWBe9dpbdE5M4S0qY-2HiDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/HCM-7mJMGSxsfa2hQy3gueeLCbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.216.0/22
185.146.204.0/22
Signature Algorithm: sha256WithRSAEncryption
35:d2:e5:d3:7d:29:93:33:58:bc:9b:c1:26:62:7b:4b:72:07:
1f:70:96:e5:46:45:b3:01:f9:1c:07:6e:07:91:74:80:f7:54:
1a:85:3f:86:26:26:40:65:50:08:2b:22:b5:86:b6:f8:ba:97:
18:7b:ee:16:b2:e8:be:26:26:d7:a0:97:8f:79:39:f4:d8:da:
f8:fc:cb:74:32:19:6a:3b:f8:ae:c3:5f:ba:ec:64:ab:93:42:
0f:56:4e:db:07:24:ab:c4:25:13:72:e0:67:df:21:75:57:98:
c7:86:d5:2f:04:58:c0:7f:89:22:5c:4e:15:97:dd:93:6f:24:
ab:49:0b:4f:9e:fe:93:91:42:09:f4:4d:86:ff:e3:f2:a7:bb:
2e:4b:42:f2:06:4f:f1:b5:82:24:95:80:e7:49:3d:98:99:31:
0a:8b:6e:00:88:cc:80:73:e0:81:e7:5f:ab:e6:1d:f6:6b:5c:
63:c4:0d:b8:1b:e9:2f:b8:c9:c9:aa:2d:9f:cb:8c:28:39:77:
b0:3a:00:b5:f1:35:18:25:67:65:a8:90:d2:4e:28:b1:b8:f8:
36:e8:cc:3f:4d:06:0b:b2:6b:22:a1:65:95:3c:08:bd:44:67:
7b:eb:58:c3:af:63:f0:69:83:17:d2:fd:63:25:1c:c2:3a:0a:
99:06:65:b6
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEDde2WDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YzIzM2VlZTYyNGMxOTJjNmM3ZGFkYTE0MzJkZTBiOWU3OGIwOWJhMB4XDTIyMDEw
MTA5MDE1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzBlODEyYzU2MDVl
ZjVkYTViNzQ0ZTRjZTEyZDJhNjNlZDg3ODgzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKZ0FnC0KoUz4QZP4VveD8mMlVnp3Zf9KpdJy39I3l1FvskJ
z2fZshdubH5TIGn23Y+xmiLYrWh3f5jG257kIUqWIRqc7HtZIMYtWoMRFyWRoYIH
ttwZ8rnkQlWLWZov5AsQi1L3pH1YXxdm4cnS1r7eX+xP1zJcDFPQrV9oJK7t9ckN
DW1i3CA3YmPXVtqZ7aWObXZFRdR825KcqoG807q1ETykGdYFFPteVLmjJWuoVc9O
En1zVRYTn7xTLok4QVzgJcNfioD6XJuXCfuChb+ICHkgIrunULVrzWnk7CYyN0iD
h2hZ5QZVrjllWwHGqfC+3vF7aw5Iky3+1FB13WMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRw6BLFYF712lt0TkzhLSpj7YeINzAfBgNVHSMEGDAWgBQcIz7uYkwZLGx9
raFDLeC554sJujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hDTS03bUpNR1N4c2ZhMmhReTNndWVlTENiby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTYvYzViZWY3LTI1YjMtNDQ2My1iM2JmLTU3YTk1MWY0OTkzMC8x
L2NPZ1N4V0JlOWRwYmRFNU00UzBxWS0ySGlEYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYv
YzViZWY3LTI1YjMtNDQ2My1iM2JmLTU3YTk1MWY0OTkzMC8xL0hDTS03bUpNR1N4
c2ZhMmhReTNndWVlTENiby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArlK2AMEArmSzDANBgkqhkiG9w0B
AQsFAAOCAQEANdLl030pkzNYvJvBJmJ7S3IHH3CW5UZFswH5HAduB5F0gPdUGoU/
hiYmQGVQCCsitYa2+LqXGHvuFrLoviYm16CXj3k59Nja+PzLdDIZajv4rsNfuuxk
q5NCD1ZO2wckq8QlE3LgZ98hdVeYx4bVLwRYwH+JIlxOFZfdk28kq0kLT57+k5FC
CfRNhv/j8qe7LktC8gZP8bWCJJWA50k9mJkxCotuAIjMgHPggedfq+Yd9mtcY8QN
uBvpL7jJyaotn8uMKDl3sDoAtfE1GCVnZaiQ0k4osbj4NujMP00GC7JrIqFllTwI
vURne+tYw69j8GmDF9L9YyUcwjoKmQZltg==
-----END CERTIFICATE-----
Generated at Fri Mar 14 12:08:23 2025 by rpki-client