Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/03joDXvDrenACgByn2_UQt3-Yjw.roa
File: 03joDXvDrenACgByn2_UQt3-Yjw.roa (raw, json)
Hash identifier: XwOTziTiP9rk3qtvLLlRUc8IOIvQKynZ8kPQRfiXwT8=
Subject key identifier: D3:78:E8:0D:7B:C3:AD:E9:C0:0A:00:72:9F:6F:D4:42:DD:FE:62:3C
Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Certificate serial: 056246C1
Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/03joDXvDrenACgByn2_UQt3-Yjw.roa
Signing time: Sat 01 Jan 2022 10:55:09 +0000
ROA not before: Sat 01 Jan 2022 10:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202844
IP address blocks: 185.151.208.0/22 maxlen: 22
185.151.208.0/23 maxlen: 23
185.151.210.0/23 maxlen: 23
2a0e:e640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90326721 (0x56246c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Validity
Not Before: Jan 1 10:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d378e80d7bc3ade9c00a00729f6fd442ddfe623c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1c:49:60:4f:d7:ab:54:f5:0c:77:2d:f0:4a:
7b:94:2f:e5:c2:85:17:39:da:2b:61:cc:3d:98:5b:
9a:60:e7:6e:15:6f:e1:0d:32:91:e5:c6:60:a7:79:
38:5a:5c:5e:1b:51:c8:87:d7:70:69:3e:c5:ea:e3:
3a:7d:81:c2:78:9b:eb:46:d6:20:8d:06:bf:81:a5:
d3:17:00:ba:77:2d:27:73:51:0b:a7:f8:e6:03:58:
30:95:9b:be:9b:3c:5a:eb:27:58:5c:00:dc:b6:39:
3d:51:5e:82:0b:cc:de:a4:df:ab:3f:fa:d6:6b:b4:
d1:b4:42:ca:8d:7f:5c:44:9f:d3:19:bb:99:f3:fd:
62:fa:ff:25:eb:bd:70:67:9c:a0:49:8b:4c:12:73:
a3:3b:71:0d:bd:ea:7a:e5:1c:cb:92:0a:d1:30:b6:
d2:e9:b9:88:db:e8:59:39:22:e5:f8:ac:cf:9f:bf:
ed:63:21:90:9e:de:4f:9a:82:bf:05:34:7b:f5:a3:
83:b3:3b:7a:ca:51:a9:54:ab:83:04:6c:c8:4b:43:
c8:7b:2c:45:c5:c2:b7:43:94:2f:e6:04:22:88:b3:
a9:ae:cb:4b:9b:c4:90:6c:00:28:d4:dc:23:fd:0f:
4f:72:9a:d0:4f:df:70:43:2c:ae:3b:75:13:31:b5:
85:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:78:E8:0D:7B:C3:AD:E9:C0:0A:00:72:9F:6F:D4:42:DD:FE:62:3C
X509v3 Authority Key Identifier:
keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/03joDXvDrenACgByn2_UQt3-Yjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.208.0/22
IPv6:
2a0e:e640::/29
Signature Algorithm: sha256WithRSAEncryption
55:2e:f2:2e:43:d6:60:c4:3c:7d:8a:ca:2f:98:00:8f:b3:59:
87:81:e7:c2:2b:0e:12:db:0f:3d:88:24:dd:f7:e0:a1:ce:42:
2e:3b:b4:b0:d9:42:75:71:d7:7b:90:25:85:40:12:94:c3:45:
78:04:e6:4d:3b:8d:86:79:d7:12:89:21:92:3c:93:a7:3b:51:
e8:8d:10:07:41:e9:d3:83:b5:05:0e:ab:27:28:5c:57:4c:0f:
5b:1f:92:19:9b:6d:a7:a1:40:07:6f:28:7e:66:3a:0c:e2:cf:
3a:e2:f6:e2:9d:60:2a:45:79:18:75:9d:ca:ad:79:85:e6:ac:
f9:d6:7a:81:bf:90:47:b2:a4:64:82:b9:e7:b8:51:d0:9d:53:
b9:eb:30:80:c9:3a:d2:7c:68:2a:ec:ae:26:13:3d:ad:18:e5:
6f:ce:e6:56:7d:12:92:0f:2c:95:9e:f1:0b:65:a1:7d:c0:32:
6a:c4:79:f6:2a:0b:2b:99:73:61:9a:d9:3c:c0:e8:f4:14:70:
76:59:6d:37:73:91:e2:4b:bf:07:c0:6b:31:72:34:04:72:b0:
f3:51:0b:ee:4a:d3:40:90:fc:f8:14:1f:cb:18:98:22:e7:a3:
25:eb:3e:17:5f:2c:a2:54:43:4d:e0:3c:ec:20:ff:f4:5a:cc:
af:ee:97:4f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBWJGwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjYyNjFjMzM5YzVlZGY4ZDhjNDgzZjA4ZTQ2Yjg0ODBhODA1ZWYxMB4XDTIyMDEw
MTEwNTUwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDM3OGU4MGQ3YmMz
YWRlOWMwMGEwMDcyOWY2ZmQ0NDJkZGZlNjIzYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMAcSWBP16tU9Qx3LfBKe5Qv5cKFFznaK2HMPZhbmmDnbhVv
4Q0ykeXGYKd5OFpcXhtRyIfXcGk+xerjOn2Bwnib60bWII0Gv4Gl0xcAunctJ3NR
C6f45gNYMJWbvps8WusnWFwA3LY5PVFeggvM3qTfqz/61mu00bRCyo1/XESf0xm7
mfP9Yvr/Jeu9cGecoEmLTBJzoztxDb3qeuUcy5IK0TC20um5iNvoWTki5fisz5+/
7WMhkJ7eT5qCvwU0e/Wjg7M7espRqVSrgwRsyEtDyHssRcXCt0OUL+YEIoizqa7L
S5vEkGwAKNTcI/0PT3Ka0E/fcEMsrjt1EzG1hRkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTTeOgNe8Ot6cAKAHKfb9RC3f5iPDAfBgNVHSMEGDAWgBTGYmHDOcXt+NjE
g/CORrhICoBe8TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3htSmh3em5GN2ZqWXhJUHdqa2E0U0FxQVh2RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvNTI1OTUyLTdhZmItNDQzZC1hZjBhLTc3YzNlMWM4ZjZkZS8x
LzAzam9EWHZEcmVuQUNnQnluMl9VUXQzLVlqdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
NTI1OTUyLTdhZmItNDQzZC1hZjBhLTc3YzNlMWM4ZjZkZS8xL3htSmh3em5GN2Zq
WXhJUHdqa2E0U0FxQVh2RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmX0DANBAIAAjAHAwUDKg7mQDAN
BgkqhkiG9w0BAQsFAAOCAQEAVS7yLkPWYMQ8fYrKL5gAj7NZh4HnwisOEtsPPYgk
3ffgoc5CLju0sNlCdXHXe5AlhUASlMNFeATmTTuNhnnXEokhkjyTpztR6I0QB0Hp
04O1BQ6rJyhcV0wPWx+SGZttp6FAB28ofmY6DOLPOuL24p1gKkV5GHWdyq15heas
+dZ6gb+QR7KkZIK557hR0J1TueswgMk60nxoKuyuJhM9rRjlb87mVn0Skg8slZ7x
C2WhfcAyasR59ioLK5lzYZrZPMDo9BRwdlltN3OR4ku/B8BrMXI0BHKw81EL7krT
QJD8+BQfyxiYIuejJes+F18solRDTeA87CD/9FrMr+6XTw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:40 2025 by rpki-client