Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/08af22-ffc9-4c1b-a9d7-94bedb5d0334/1/vIa0o-kzdBJx70dAFbfjLj4DlYM.roa
File: vIa0o-kzdBJx70dAFbfjLj4DlYM.roa (raw, json)
Hash identifier: Ho/ikDHnP8GVJJIGJ4kLbWtNAdZA2mDhXcWkeo1Li0I=
Subject key identifier: BC:86:B4:A3:E9:33:74:12:71:EF:47:40:15:B7:E3:2E:3E:03:95:83
Certificate issuer: /CN=7c45672fc42bdd33e545338a7417e8171a04ee3f
Certificate serial: 018486EB630DA054887A7B5317C3A6538FD2
Authority key identifier: 7C:45:67:2F:C4:2B:DD:33:E5:45:33:8A:74:17:E8:17:1A:04:EE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fEVnL8Qr3TPlRTOKdBfoFxoE7j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/08af22-ffc9-4c1b-a9d7-94bedb5d0334/1/vIa0o-kzdBJx70dAFbfjLj4DlYM.roa
Signing time: Thu 17 Nov 2022 18:48:04 +0000
ROA not before: Thu 17 Nov 2022 18:48:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25400
IP address blocks: 185.197.211.0/24 maxlen: 24
2a0c:1bc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:eb:63:0d:a0:54:88:7a:7b:53:17:c3:a6:53:8f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c45672fc42bdd33e545338a7417e8171a04ee3f
Validity
Not Before: Nov 17 18:48:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc86b4a3e933741271ef474015b7e32e3e039583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b9:e1:2a:80:63:3f:be:a5:50:d9:0a:e4:01:
aa:ea:12:20:91:97:c4:25:96:2e:ca:35:46:e2:18:
c1:47:f4:cf:13:d8:f8:ae:35:3e:e7:29:3a:82:57:
40:fd:61:00:81:cb:5d:86:dd:80:4b:7f:d7:90:93:
37:dc:9d:42:18:8b:de:1e:e2:b5:00:e7:5b:94:ab:
6e:c6:bf:22:8d:76:23:c2:c2:da:bf:a0:3c:d0:66:
36:e5:9c:80:cd:f3:a9:f9:70:36:6f:07:b0:65:51:
27:99:87:04:c2:16:06:3b:c1:61:8e:d1:70:84:c9:
a9:8a:4d:38:7b:8e:4b:cd:84:cd:75:64:73:c0:9a:
29:5d:66:08:f6:7a:d7:b4:29:cb:69:01:c9:a5:10:
be:b1:a7:96:81:13:cf:58:c2:3e:4c:fe:24:71:47:
5d:38:7a:89:18:bb:0c:07:59:a3:50:ad:47:fc:cb:
7a:90:5e:e8:0f:9a:dc:54:bc:f9:b9:da:52:b9:ee:
31:e2:98:35:b7:07:8f:10:a8:89:d4:06:df:21:f4:
9e:2d:47:a5:a1:48:2a:29:16:0c:f9:35:29:aa:3b:
e2:ea:11:4b:10:16:5e:e0:79:01:99:8f:91:61:d0:
2d:48:a4:47:ec:1b:9f:95:90:fd:9d:d8:ae:0a:e6:
ae:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:86:B4:A3:E9:33:74:12:71:EF:47:40:15:B7:E3:2E:3E:03:95:83
X509v3 Authority Key Identifier:
keyid:7C:45:67:2F:C4:2B:DD:33:E5:45:33:8A:74:17:E8:17:1A:04:EE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fEVnL8Qr3TPlRTOKdBfoFxoE7j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/08af22-ffc9-4c1b-a9d7-94bedb5d0334/1/vIa0o-kzdBJx70dAFbfjLj4DlYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/08af22-ffc9-4c1b-a9d7-94bedb5d0334/1/fEVnL8Qr3TPlRTOKdBfoFxoE7j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.211.0/24
IPv6:
2a0c:1bc0::/32
Signature Algorithm: sha256WithRSAEncryption
68:7b:76:d9:03:b1:2d:ce:d6:5e:fe:2f:27:c0:ed:df:8d:a2:
2a:73:34:d0:a6:1c:21:af:01:5b:af:c9:9b:cd:3f:b5:b9:6e:
46:f7:fc:f7:26:f9:4e:25:15:f9:22:f7:70:d2:ac:82:62:ce:
66:7d:21:56:1b:5e:b6:00:10:0b:a6:df:62:d9:30:cd:d0:7d:
d5:4f:25:7f:b4:6b:5f:53:20:31:41:22:ba:fd:49:91:c2:63:
7c:b6:07:ee:c4:61:b1:c3:86:12:5b:29:92:19:e3:24:5a:8a:
ed:8d:b0:cb:28:03:e2:e1:1f:f9:95:11:14:5b:ed:58:8e:92:
3f:4a:d7:2b:83:e0:2f:78:45:51:d4:3d:63:fa:13:1f:a5:2c:
41:21:4f:40:f7:a7:01:f7:76:46:1c:0d:73:36:21:42:e0:90:
cb:12:b5:e3:0f:82:1e:c9:56:9f:4d:ac:94:0a:ec:56:d4:da:
55:05:af:96:cc:11:43:38:ad:97:99:ff:c9:d7:1a:07:ac:e8:
3d:5c:cb:ca:0c:d7:4b:b9:5c:ad:bd:22:8f:f1:3f:8c:a7:c2:
14:fc:4e:ac:53:8e:20:76:e2:87:6c:aa:11:b7:c2:9a:11:6b:
cb:a2:ee:c7:74:46:90:ea:f7:95:19:e2:75:94:e1:fa:48:fd:
67:15:29:d5
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYSG62MNoFSIentTF8OmU4/SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjNDU2NzJmYzQyYmRkMzNlNTQ1MzM4YTc0MTdlODE3MWEw
NGVlM2YwHhcNMjIxMTE3MTg0ODA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzg2YjRhM2U5MzM3NDEyNzFlZjQ3NDAxNWI3ZTMyZTNlMDM5NTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7nhKoBjP76lUNkK5AGq6hIgkZfE
JZYuyjVG4hjBR/TPE9j4rjU+5yk6gldA/WEAgctdht2AS3/XkJM33J1CGIveHuK1
AOdblKtuxr8ijXYjwsLav6A80GY25ZyAzfOp+XA2bwewZVEnmYcEwhYGO8FhjtFw
hMmpik04e45LzYTNdWRzwJopXWYI9nrXtCnLaQHJpRC+saeWgRPPWMI+TP4kcUdd
OHqJGLsMB1mjUK1H/Mt6kF7oD5rcVLz5udpSue4x4pg1twePEKiJ1AbfIfSeLUel
oUgqKRYM+TUpqjvi6hFLEBZe4HkBmY+RYdAtSKRH7BuflZD9ndiuCuau6wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLyGtKPpM3QSce9HQBW34y4+A5WDMB8GA1UdIwQY
MBaAFHxFZy/EK90z5UUzinQX6BcaBO4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkVWbkw4UXIzVFBsUlRPS2RCZm9GeG9FN2o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8wOGFmMjItZmZjOS00YzFiLWE5ZDct
OTRiZWRiNWQwMzM0LzEvdklhMG8ta3pkQkp4NzBkQUZiZmpMajREbFlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC8wOGFmMjItZmZjOS00YzFiLWE5ZDctOTRiZWRiNWQwMzM0
LzEvZkVWbkw4UXIzVFBsUlRPS2RCZm9GeG9FN2o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAucXTMA0E
AgACMAcDBQAqDBvAMA0GCSqGSIb3DQEBCwUAA4IBAQBoe3bZA7EtztZe/i8nwO3f
jaIqczTQphwhrwFbr8mbzT+1uW5G9/z3JvlOJRX5Ivdw0qyCYs5mfSFWG162ABAL
pt9i2TDN0H3VTyV/tGtfUyAxQSK6/UmRwmN8tgfuxGGxw4YSWymSGeMkWortjbDL
KAPi4R/5lREUW+1YjpI/Stcrg+AveEVR1D1j+hMfpSxBIU9A96cB93ZGHA1zNiFC
4JDLErXjD4IeyVafTayUCuxW1NpVBa+WzBFDOK2Xmf/J1xoHrOg9XMvKDNdLuVyt
vSKP8T+Mp8IU/E6sU44gduKHbKoRt8KaEWvLou7HdEaQ6veVGeJ1lOH6SP1nFSnV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:56 2024 by rpki-client on console-fra.rpki-client.org