Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/_e7zxcv43lu9JzU_jBjX4z_C1qg.roa
File: _e7zxcv43lu9JzU_jBjX4z_C1qg.roa (raw, json)
Hash identifier: lN7XYiL9nORxRep++uETIcHuPqSjt2T+9XJSPYzcRSs=
Subject key identifier: FD:EE:F3:C5:CB:F8:DE:5B:BD:27:35:3F:8C:18:D7:E3:3F:C2:D6:A8
Certificate issuer: /CN=4364fe73419bc86d5f2e72b414b6b4d4379d5bf5
Certificate serial: 01857246CAD59A330A83A23BD0956D9B83DD
Authority key identifier: 43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2T-c0GbyG1fLnK0FLa01DedW_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/_e7zxcv43lu9JzU_jBjX4z_C1qg.roa
Signing time: Mon 02 Jan 2023 11:38:39 +0000
ROA not before: Mon 02 Jan 2023 11:38:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206898
IP address blocks: 185.172.110.0/23 maxlen: 24
185.172.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ca:d5:9a:33:0a:83:a2:3b:d0:95:6d:9b:83:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4364fe73419bc86d5f2e72b414b6b4d4379d5bf5
Validity
Not Before: Jan 2 11:38:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdeef3c5cbf8de5bbd27353f8c18d7e33fc2d6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:76:4e:22:1b:bc:63:0d:e4:66:9e:94:3a:a6:
8d:d7:d6:f5:b9:76:87:3f:dd:03:6b:3c:94:56:2a:
a9:89:ea:d2:e2:8b:9c:66:a8:33:39:df:c6:74:90:
f4:24:dd:fc:4e:6e:c5:5b:ab:cd:38:69:53:ce:c6:
e8:9e:e8:46:62:73:93:83:37:72:fe:82:45:4e:91:
6a:ff:59:6a:fa:12:15:dc:39:60:5b:a6:40:8a:27:
a5:7b:9c:b1:43:fd:04:4a:12:3e:2f:b9:b7:f5:61:
54:03:40:d1:fa:da:47:10:46:bd:6c:ce:5a:e1:dc:
a1:ef:67:80:f0:56:58:04:6e:7a:a1:dc:00:ab:73:
c3:c7:a1:ef:6f:1a:8c:d9:60:0c:77:5c:7d:07:1a:
82:97:61:9b:c7:5e:d7:80:8d:10:5a:d5:17:f6:17:
91:8a:11:0e:24:40:9d:21:65:75:d2:0a:fe:29:68:
e5:e5:da:92:fa:d4:2f:c6:28:d9:4e:b7:a7:b6:ef:
39:54:1e:b0:2d:85:f7:d4:62:77:2b:4f:44:5d:56:
36:e0:a4:cb:4b:af:7a:ca:8c:e8:b4:e6:0e:d3:88:
94:96:b9:8c:4c:0e:76:9d:9c:e7:14:c0:ad:d5:a5:
f5:58:ca:90:42:ba:13:8f:c0:c0:69:aa:ea:1a:0a:
9b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:EE:F3:C5:CB:F8:DE:5B:BD:27:35:3F:8C:18:D7:E3:3F:C2:D6:A8
X509v3 Authority Key Identifier:
keyid:43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2T-c0GbyG1fLnK0FLa01DedW_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/_e7zxcv43lu9JzU_jBjX4z_C1qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/Q2T-c0GbyG1fLnK0FLa01DedW_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.110.0/23
Signature Algorithm: sha256WithRSAEncryption
46:e3:cf:e6:eb:de:24:53:d0:cf:67:0a:31:d1:d3:20:8f:78:
cd:02:19:f6:38:66:93:12:4e:3a:28:1b:38:73:9f:77:3c:97:
c0:f7:a5:ac:2a:03:7d:7a:f9:bf:a0:e9:a6:1c:43:5b:9d:a9:
14:51:35:fc:cc:68:52:7a:45:09:2c:46:30:de:b5:67:ea:fa:
aa:5d:70:2a:9d:b5:c4:1f:82:ea:ce:bc:d5:bd:99:89:97:ee:
36:a9:7b:f4:8d:7c:9c:25:3f:31:13:d7:d6:fc:95:9c:19:66:
6b:80:24:e1:81:e5:93:f5:7e:b8:4b:59:fe:dc:8b:da:37:3b:
f4:6c:c1:c1:34:86:bd:f5:47:16:12:dc:8b:97:f8:17:44:ae:
f8:44:c3:29:b2:fb:62:37:09:33:f1:ad:62:4d:0f:4b:99:a2:
36:26:77:55:f0:11:c0:39:a8:82:73:cc:e8:93:ca:8b:e2:73:
4a:06:6f:3f:97:fd:64:9b:07:d6:af:8a:e6:07:a6:7d:88:b6:
1b:45:bb:fc:a2:29:f0:2f:9b:89:f4:36:0d:de:e3:10:79:89:
0a:b4:ad:86:ab:99:5a:4d:e0:ea:7e:0a:da:35:ca:09:9e:5c:
23:9f:04:a6:e1:ed:df:35:09:c9:0a:a1:9c:2d:33:44:3b:dd:
ef:ac:70:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyRsrVmjMKg6I70JVtm4PdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNjRmZTczNDE5YmM4NmQ1ZjJlNzJiNDE0YjZiNGQ0Mzc5
ZDViZjUwHhcNMjMwMTAyMTEzODM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGVlZjNjNWNiZjhkZTViYmQyNzM1M2Y4YzE4ZDdlMzNmYzJkNmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiHZOIhu8Yw3kZp6UOqaN19b1uXaH
P90DazyUViqpierS4oucZqgzOd/GdJD0JN38Tm7FW6vNOGlTzsbonuhGYnOTgzdy
/oJFTpFq/1lq+hIV3DlgW6ZAiiele5yxQ/0EShI+L7m39WFUA0DR+tpHEEa9bM5a
4dyh72eA8FZYBG56odwAq3PDx6HvbxqM2WAMd1x9BxqCl2Gbx17XgI0QWtUX9heR
ihEOJECdIWV10gr+KWjl5dqS+tQvxijZTrentu85VB6wLYX31GJ3K09EXVY24KTL
S696yozotOYO04iUlrmMTA52nZznFMCt1aX1WMqQQroTj8DAaarqGgqbTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP3u88XL+N5bvSc1P4wY1+M/wtaoMB8GA1UdIwQY
MBaAFENk/nNBm8htXy5ytBS2tNQ3nVv1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTJULWMwR2J5RzFmTG5LMEZMYTAxRGVkV19VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wYjE4MTUtNTNkNy00NTZkLTlmYjQt
NjcwMzA4ZDFlYzlkLzEvX2U3enhjdjQzbHU5SnpVX2pCalg0el9DMXFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8wYjE4MTUtNTNkNy00NTZkLTlmYjQtNjcwMzA4ZDFlYzlk
LzEvUTJULWMwR2J5RzFmTG5LMEZMYTAxRGVkV19VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuaxuMA0G
CSqGSIb3DQEBCwUAA4IBAQBG48/m694kU9DPZwox0dMgj3jNAhn2OGaTEk46KBs4
c593PJfA96WsKgN9evm/oOmmHENbnakUUTX8zGhSekUJLEYw3rVn6vqqXXAqnbXE
H4LqzrzVvZmJl+42qXv0jXycJT8xE9fW/JWcGWZrgCThgeWT9X64S1n+3IvaNzv0
bMHBNIa99UcWEtyLl/gXRK74RMMpsvtiNwkz8a1iTQ9LmaI2JndV8BHAOaiCc8zo
k8qL4nNKBm8/l/1kmwfWr4rmB6Z9iLYbRbv8oinwL5uJ9DYN3uMQeYkKtK2Gq5la
TeDqfgraNcoJnlwjnwSm4e3fNQnJCqGcLTNEO93vrHDB
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:59 2025 by rpki-client