Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/_-q5b0zu9fcpGn4lS1WcjgPhnls.roa
File: _-q5b0zu9fcpGn4lS1WcjgPhnls.roa (raw, json)
Hash identifier: ShXF9OrbhuTvNMwboc+WG8JO3NWGy8k+exrW+NTOyMU=
Subject key identifier: FF:EA:B9:6F:4C:EE:F5:F7:29:1A:7E:25:4B:55:9C:8E:03:E1:9E:5B
Certificate issuer: /CN=e2f68414fcaca07c813555e53691dba84e3988c8
Certificate serial: 0B928846
Authority key identifier: E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/_-q5b0zu9fcpGn4lS1WcjgPhnls.roa
Signing time: Sat 01 Jan 2022 00:58:36 +0000
ROA not before: Sat 01 Jan 2022 00:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206476
IP address blocks: 185.255.185.0/24 maxlen: 24
185.255.184.0/24 maxlen: 24
185.255.187.0/24 maxlen: 24
185.137.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194152518 (0xb928846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2f68414fcaca07c813555e53691dba84e3988c8
Validity
Not Before: Jan 1 00:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffeab96f4ceef5f7291a7e254b559c8e03e19e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:af:56:ee:7a:3c:e9:67:f6:79:7a:42:64:b5:
e8:87:3d:99:fc:01:2f:c2:5a:3a:84:42:1f:1c:ce:
79:83:d9:a6:1b:05:30:d9:e3:44:48:85:f3:76:ed:
59:38:1d:e4:4b:ec:54:6e:3a:6b:2b:a8:55:81:3f:
a5:12:46:74:62:f2:b7:49:ae:e4:c6:06:6d:38:1b:
1d:08:be:ce:18:aa:dd:45:e0:f6:fa:c5:51:28:88:
14:ea:15:1d:50:73:a7:b4:3e:e2:47:9c:e5:9d:4f:
86:7c:a2:75:f9:ca:31:55:9a:89:63:78:77:e8:47:
73:12:64:36:63:67:12:e2:ca:b6:bc:e7:48:23:cb:
59:6c:9c:24:8b:28:f2:61:99:d4:13:ac:3d:d0:7f:
40:91:c1:2a:4f:aa:f8:ba:c7:b9:19:f6:e1:7f:a1:
7b:73:c0:95:5c:37:d8:f7:db:b6:8e:e5:5e:f7:b6:
9d:cd:c6:32:f1:11:5a:80:75:aa:89:c4:0c:77:0a:
75:71:6b:62:c8:92:f0:ad:1a:73:2a:75:97:00:a9:
73:88:e7:83:11:85:40:6c:8e:84:dc:88:20:8e:ce:
a9:fa:a8:16:b5:6b:2b:9a:cc:d1:59:93:a6:70:e3:
54:2f:bf:9c:c7:f6:f7:f8:0d:63:9e:95:23:7e:fb:
dc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:EA:B9:6F:4C:EE:F5:F7:29:1A:7E:25:4B:55:9C:8E:03:E1:9E:5B
X509v3 Authority Key Identifier:
keyid:E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/_-q5b0zu9fcpGn4lS1WcjgPhnls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.225.0/24
185.255.184.0/23
185.255.187.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ff:df:7d:3b:ec:bf:e9:19:66:b8:7b:3d:0f:4a:a5:95:93:
4e:26:ce:34:a0:f3:69:44:4e:c9:4c:c7:db:92:bc:e6:d3:37:
7e:b7:39:09:d9:2a:f3:8f:ab:8f:a3:51:72:68:d0:9e:d6:95:
c8:8d:a6:93:7d:69:7c:8b:32:e6:5f:0b:82:a1:91:66:0c:5d:
69:d2:73:39:03:a0:4e:51:24:8a:ea:a7:b6:27:0f:c0:2d:18:
7f:d6:d0:6e:d6:1a:ef:bd:b0:cb:d4:2d:65:85:aa:bb:a4:6f:
79:f1:19:46:cc:d8:93:7c:0e:21:40:04:e7:77:0f:17:ce:6e:
cd:6e:90:82:b3:a3:42:cf:08:24:2b:46:03:29:89:bc:bc:0f:
1f:c3:da:b3:85:62:03:29:cd:e6:ac:c0:02:7a:93:70:4c:fc:
7e:83:70:63:bb:13:9f:fb:eb:bb:10:b2:18:fe:e3:9a:0a:33:
9c:6e:40:ab:18:b7:74:0b:3b:3e:96:af:6f:dc:b7:0b:6f:96:
9e:e9:e6:5f:c5:8f:0d:f7:43:fc:7b:ee:c8:24:a5:da:d4:3f:
e5:52:77:e0:2e:01:72:18:25:f5:3f:aa:f0:c0:6c:5c:74:86:
54:e0:59:5c:22:9a:a0:c3:14:19:f8:1e:aa:67:b8:18:e7:67:
1a:85:27:55
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEC5KIRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MmY2ODQxNGZjYWNhMDdjODEzNTU1ZTUzNjkxZGJhODRlMzk4OGM4MB4XDTIyMDEw
MTAwNTgzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmZlYWI5NmY0Y2Vl
ZjVmNzI5MWE3ZTI1NGI1NTljOGUwM2UxOWU1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALOvVu56POln9nl6QmS16Ic9mfwBL8JaOoRCHxzOeYPZphsF
MNnjREiF83btWTgd5EvsVG46ayuoVYE/pRJGdGLyt0mu5MYGbTgbHQi+zhiq3UXg
9vrFUSiIFOoVHVBzp7Q+4kec5Z1PhnyidfnKMVWaiWN4d+hHcxJkNmNnEuLKtrzn
SCPLWWycJIso8mGZ1BOsPdB/QJHBKk+q+LrHuRn24X+he3PAlVw32Pfbto7lXve2
nc3GMvERWoB1qonEDHcKdXFrYsiS8K0acyp1lwCpc4jngxGFQGyOhNyIII7Oqfqo
FrVrK5rM0VmTpnDjVC+/nMf29/gNY56VI3773IUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBT/6rlvTO719ykafiVLVZyOA+GeWzAfBgNVHSMEGDAWgBTi9oQU/KygfIE1
VeU2kduoTjmIyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR2YUVGUHlzb0h5Qk5WWGxOcEhicUU0NWlNZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWEvMjczNDg3LTg4OWEtNDNmZS1hNTZlLTRiNDhmNTllYzE1NS8x
L18tcTViMHp1OWZjcEduNGxTMVdjamdQaG5scy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWEv
MjczNDg3LTg4OWEtNDNmZS1hNTZlLTRiNDhmNTllYzE1NS8xLzR2YUVGUHlzb0h5
Qk5WWGxOcEhicUU0NWlNZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEALmJ4QMEAbn/uAMEALn/uzANBgkq
hkiG9w0BAQsFAAOCAQEAMf/ffTvsv+kZZrh7PQ9KpZWTTibONKDzaUROyUzH25K8
5tM3frc5Cdkq84+rj6NRcmjQntaVyI2mk31pfIsy5l8LgqGRZgxdadJzOQOgTlEk
iuqnticPwC0Yf9bQbtYa772wy9QtZYWqu6RvefEZRszYk3wOIUAE53cPF85uzW6Q
grOjQs8IJCtGAymJvLwPH8Pas4ViAynN5qzAAnqTcEz8foNwY7sTn/vruxCyGP7j
mgoznG5Aqxi3dAs7Ppavb9y3C2+WnunmX8WPDfdD/HvuyCSl2tQ/5VJ34C4Bchgl
9T+q8MBsXHSGVOBZXCKaoMMUGfgeqme4GOdnGoUnVQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:42 2023 by rpki-client on console-ams.rpki-client.org