Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/f0f2d0-2738-4ed4-8ad9-05b6c9c16441/1/hCz0izlzl52MOYdb2d3EgxFscik.roa
File: hCz0izlzl52MOYdb2d3EgxFscik.roa (raw, json)
Hash identifier: /t425Sz8KCGwdzaWPD/bloOHgbn+qbPIYuO4HJR0aLY=
Subject key identifier: 84:2C:F4:8B:39:73:97:9D:8C:39:87:5B:D9:DD:C4:83:11:6C:72:29
Certificate issuer: /CN=2433a86bbc5c2bab452ff03f45a9eaf0a610c40c
Certificate serial: 013A54E0
Authority key identifier: 24:33:A8:6B:BC:5C:2B:AB:45:2F:F0:3F:45:A9:EA:F0:A6:10:C4:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JDOoa7xcK6tFL_A_Ranq8KYQxAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/f0f2d0-2738-4ed4-8ad9-05b6c9c16441/1/hCz0izlzl52MOYdb2d3EgxFscik.roa
Signing time: Sat 01 Jan 2022 04:57:45 +0000
ROA not before: Sat 01 Jan 2022 04:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210909
IP address blocks: 185.205.69.0/24 maxlen: 24
2a10:e000:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20600032 (0x13a54e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2433a86bbc5c2bab452ff03f45a9eaf0a610c40c
Validity
Not Before: Jan 1 04:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=842cf48b3973979d8c39875bd9ddc483116c7229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:42:83:1c:b4:77:c2:f0:a1:ff:d6:ad:b0:b5:
54:f3:58:94:da:ff:7d:f6:c8:c8:a5:33:a7:06:23:
af:2c:80:86:36:d1:b2:c3:8a:18:18:c7:a7:6e:fb:
73:61:94:2c:2d:7e:6f:ee:42:7b:6e:b2:3b:47:f2:
b6:48:6a:62:3b:39:8f:d1:83:c8:33:51:9e:1c:af:
d6:ad:d5:ea:14:a9:a5:de:fe:11:6b:fc:f6:30:4c:
b9:57:d9:81:1d:ee:8a:d8:a4:85:d1:d2:56:0c:af:
92:26:53:4f:16:a4:c5:4e:d7:21:6e:21:b0:b6:66:
7a:a7:0a:21:b4:3a:a1:18:83:97:3f:1b:8f:ed:61:
4c:9c:cd:3c:7d:2a:22:ec:68:39:44:77:43:e0:2e:
4a:91:8a:ca:94:12:2f:c5:2c:59:91:e2:be:ac:fe:
dc:84:93:55:00:30:9f:a5:57:9d:ca:10:0a:fd:04:
bf:21:75:fa:ca:02:4b:04:f0:cd:aa:e3:44:0f:a3:
ce:d0:c7:62:32:91:56:a4:f4:ca:a3:eb:c7:01:36:
ec:74:35:19:8b:ef:b4:c5:1f:66:06:53:a4:26:7d:
15:b3:2b:07:e9:9a:74:9c:63:a4:bf:67:0f:49:e0:
b9:f2:a5:cd:8f:4d:43:c8:9a:ea:03:b5:bf:a3:8a:
85:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2C:F4:8B:39:73:97:9D:8C:39:87:5B:D9:DD:C4:83:11:6C:72:29
X509v3 Authority Key Identifier:
keyid:24:33:A8:6B:BC:5C:2B:AB:45:2F:F0:3F:45:A9:EA:F0:A6:10:C4:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JDOoa7xcK6tFL_A_Ranq8KYQxAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f0f2d0-2738-4ed4-8ad9-05b6c9c16441/1/hCz0izlzl52MOYdb2d3EgxFscik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f0f2d0-2738-4ed4-8ad9-05b6c9c16441/1/JDOoa7xcK6tFL_A_Ranq8KYQxAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.69.0/24
IPv6:
2a10:e000:1::/48
Signature Algorithm: sha256WithRSAEncryption
5a:fd:d2:1c:14:95:09:62:1b:04:aa:e3:a0:4e:e7:98:f8:7e:
8c:ce:1b:b4:29:2a:44:2d:0f:34:6f:66:4b:8e:d2:45:6c:a1:
ea:22:db:e7:fd:2c:b7:ae:04:9b:0c:f5:35:00:ce:7f:c3:b7:
06:18:c0:1c:ff:41:b3:4d:f3:3e:2d:7c:6c:50:ef:fd:a8:e8:
cd:c7:0f:14:16:a4:26:10:1f:4b:5e:bb:ef:b2:11:70:6e:fd:
d8:3f:21:59:1d:08:2b:3c:27:0e:d4:2f:a5:02:4a:e4:0e:aa:
15:9f:c1:27:63:c6:ec:b3:6e:5d:1f:c9:ad:15:a1:6c:28:55:
d5:c2:7a:c1:15:56:c3:a9:5c:f9:b1:e7:c7:a2:ca:21:a2:f2:
5b:07:53:54:60:3d:c4:6f:0d:a0:b6:62:96:04:d5:93:79:9b:
3d:69:ea:d3:cf:ab:62:cd:2e:85:9a:2d:64:17:2a:06:6c:3b:
03:57:de:6a:ad:61:4f:c0:52:31:42:21:c4:8b:a6:74:3f:b1:
21:00:b0:a3:bc:26:26:8f:55:b2:6c:c2:b5:ee:73:9a:22:0a:
90:36:fe:5f:f9:42:7d:5f:55:83:a7:e2:ba:71:94:f1:39:42:
43:6d:a5:da:c5:08:ca:e0:35:9a:71:4a:9f:27:3e:5e:94:1a:
d6:bc:81:10
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEATpU4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NDMzYTg2YmJjNWMyYmFiNDUyZmYwM2Y0NWE5ZWFmMGE2MTBjNDBjMB4XDTIyMDEw
MTA0NTc0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQyY2Y0OGIzOTcz
OTc5ZDhjMzk4NzViZDlkZGM0ODMxMTZjNzIyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANpCgxy0d8Lwof/WrbC1VPNYlNr/ffbIyKUzpwYjryyAhjbR
ssOKGBjHp277c2GULC1+b+5Ce26yO0fytkhqYjs5j9GDyDNRnhyv1q3V6hSppd7+
EWv89jBMuVfZgR3uitikhdHSVgyvkiZTTxakxU7XIW4hsLZmeqcKIbQ6oRiDlz8b
j+1hTJzNPH0qIuxoOUR3Q+AuSpGKypQSL8UsWZHivqz+3ISTVQAwn6VXncoQCv0E
vyF1+soCSwTwzarjRA+jztDHYjKRVqT0yqPrxwE27HQ1GYvvtMUfZgZTpCZ9FbMr
B+madJxjpL9nD0ngufKlzY9NQ8ia6gO1v6OKhfECAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSELPSLOXOXnYw5h1vZ3cSDEWxyKTAfBgNVHSMEGDAWgBQkM6hrvFwrq0Uv
8D9FqerwphDEDDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pET29hN3hjSzZ0RkxfQV9SYW5xOEtZUXhBdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTkvZjBmMmQwLTI3MzgtNGVkNC04YWQ5LTA1YjZjOWMxNjQ0MS8x
L2hDejBpemx6bDUyTU9ZZGIyZDNFZ3hGc2Npay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTkv
ZjBmMmQwLTI3MzgtNGVkNC04YWQ5LTA1YjZjOWMxNjQ0MS8xL0pET29hN3hjSzZ0
RkxfQV9SYW5xOEtZUXhBdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALnNRTAPBAIAAjAJAwcAKhDgAAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQBa/dIcFJUJYhsEquOgTueY+H6Mzhu0KSpELQ80
b2ZLjtJFbKHqItvn/Sy3rgSbDPU1AM5/w7cGGMAc/0GzTfM+LXxsUO/9qOjNxw8U
FqQmEB9LXrvvshFwbv3YPyFZHQgrPCcO1C+lAkrkDqoVn8EnY8bss25dH8mtFaFs
KFXVwnrBFVbDqVz5sefHosohovJbB1NUYD3Ebw2gtmKWBNWTeZs9aerTz6tizS6F
mi1kFyoGbDsDV95qrWFPwFIxQiHEi6Z0P7EhALCjvCYmj1WybMK17nOaIgqQNv5f
+UJ9X1WDp+K6cZTxOUJDbaXaxQjK4DWacUqfJz5elBrWvIEQ
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:07 2025 by rpki-client