Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/6b9c7a-9dc7-4040-b29a-fc7a0ea6b0e2/1/eqhVkSpd-jMhdXvJufz0gZ5ifDQ.roa
File: eqhVkSpd-jMhdXvJufz0gZ5ifDQ.roa (raw, json)
Hash identifier: wY2VbTaNtsLYlGipQt//AzdKzY+aal1fCRz6lP0ezDE=
Subject key identifier: 7A:A8:55:91:2A:5D:FA:33:21:75:7B:C9:B9:FC:F4:81:9E:62:7C:34
Certificate issuer: /CN=34a63dc86120e87f4cff8c59af3261e6e1292fd9
Certificate serial: BE6FC5
Authority key identifier: 34:A6:3D:C8:61:20:E8:7F:4C:FF:8C:59:AF:32:61:E6:E1:29:2F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NKY9yGEg6H9M_4xZrzJh5uEpL9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/6b9c7a-9dc7-4040-b29a-fc7a0ea6b0e2/1/eqhVkSpd-jMhdXvJufz0gZ5ifDQ.roa
Signing time: Sat 01 Jan 2022 04:01:42 +0000
ROA not before: Sat 01 Jan 2022 04:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210966
IP address blocks: 185.25.106.0/24 maxlen: 24
2a11:540::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12480453 (0xbe6fc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34a63dc86120e87f4cff8c59af3261e6e1292fd9
Validity
Not Before: Jan 1 04:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7aa855912a5dfa3321757bc9b9fcf4819e627c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:03:76:3e:2f:01:a5:2f:09:86:b6:73:92:19:
c1:a9:2d:45:fe:e3:6c:07:ec:a0:f3:31:16:00:49:
35:48:62:8e:6b:34:36:8d:0d:5f:9e:03:0d:88:24:
c2:a1:cb:bb:d2:a4:e9:c9:1d:1a:dc:73:5a:93:cd:
84:ac:ec:a9:ba:ff:3d:6a:e8:62:de:7e:04:de:9f:
f5:bb:cc:e5:c8:10:c9:f5:ec:e4:c0:3a:c3:23:88:
fa:df:f6:55:da:0e:b0:a4:fe:9d:34:ec:68:bc:1c:
27:0b:ea:0d:0a:5a:5b:ec:23:6c:dd:ef:c1:77:8f:
6a:15:35:01:eb:e0:8d:13:71:d0:6b:22:ee:f5:e8:
df:4c:70:87:ba:f4:17:0e:46:5e:a6:3d:33:e8:27:
e8:2f:04:a5:55:0f:f7:b4:2d:bd:76:7c:ad:92:73:
7f:b7:4c:1d:05:c4:39:36:ea:93:95:e3:23:83:cf:
5c:4e:71:a6:5c:57:76:c5:7a:33:6f:1f:17:9c:39:
63:4f:ad:bf:d6:bf:82:d7:3d:73:51:d5:3f:bc:e8:
9e:c7:7c:dc:88:4a:11:8e:5a:79:19:72:fe:cd:15:
75:0c:fc:c1:03:26:e7:00:da:a5:41:b9:5c:d9:11:
5e:74:05:a9:e1:67:d9:4e:2f:23:b8:85:98:67:9a:
e3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A8:55:91:2A:5D:FA:33:21:75:7B:C9:B9:FC:F4:81:9E:62:7C:34
X509v3 Authority Key Identifier:
keyid:34:A6:3D:C8:61:20:E8:7F:4C:FF:8C:59:AF:32:61:E6:E1:29:2F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NKY9yGEg6H9M_4xZrzJh5uEpL9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6b9c7a-9dc7-4040-b29a-fc7a0ea6b0e2/1/eqhVkSpd-jMhdXvJufz0gZ5ifDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6b9c7a-9dc7-4040-b29a-fc7a0ea6b0e2/1/NKY9yGEg6H9M_4xZrzJh5uEpL9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.106.0/24
IPv6:
2a11:540::/30
Signature Algorithm: sha256WithRSAEncryption
6f:ca:da:28:f0:fa:70:60:92:b5:a8:9e:5e:5b:91:24:51:1d:
86:09:dd:07:41:02:57:59:6a:5f:0a:5e:8e:b7:cf:57:d8:17:
35:a2:f6:e9:1b:d0:2d:24:34:43:47:f7:db:09:02:33:63:88:
c3:80:b1:0c:64:dd:4b:b4:51:c8:e8:43:d3:0f:fa:a6:21:13:
71:d5:76:df:82:59:8a:69:87:8f:a3:7b:ec:88:70:16:29:1c:
6e:49:30:4d:af:ee:30:f7:25:ce:4d:58:b1:68:c2:b7:8d:3b:
f0:38:17:10:24:c9:ed:e3:95:5b:6d:6f:1e:c7:5f:c8:bb:94:
af:67:f5:10:c5:79:a1:f5:9d:e5:1c:7d:a1:75:42:b3:76:60:
0f:e0:0f:d9:60:4c:5b:3d:fe:ac:6f:98:f8:23:58:f2:52:9a:
9d:a6:59:24:63:67:47:24:0a:ac:ef:11:be:18:07:81:f6:75:
a1:83:bd:95:db:7e:04:1b:40:33:85:b6:7d:41:b0:c4:d3:44:
25:69:4c:e3:7b:f9:9b:e2:db:ad:5b:46:5e:9d:92:7d:69:61:
aa:b1:0e:6f:1f:7e:fb:69:0e:fa:74:38:2b:a9:24:74:26:02:
bb:9d:26:66:99:be:94:ed:44:73:06:ff:d4:2d:d3:99:48:77:
43:ee:bc:a4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAL5vxTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NGE2M2RjODYxMjBlODdmNGNmZjhjNTlhZjMyNjFlNmUxMjkyZmQ5MB4XDTIyMDEw
MTA0MDE0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2FhODU1OTEyYTVk
ZmEzMzIxNzU3YmM5YjlmY2Y0ODE5ZTYyN2MzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMIDdj4vAaUvCYa2c5IZwaktRf7jbAfsoPMxFgBJNUhijms0
No0NX54DDYgkwqHLu9Kk6ckdGtxzWpPNhKzsqbr/PWroYt5+BN6f9bvM5cgQyfXs
5MA6wyOI+t/2VdoOsKT+nTTsaLwcJwvqDQpaW+wjbN3vwXePahU1AevgjRNx0Gsi
7vXo30xwh7r0Fw5GXqY9M+gn6C8EpVUP97QtvXZ8rZJzf7dMHQXEOTbqk5XjI4PP
XE5xplxXdsV6M28fF5w5Y0+tv9a/gtc9c1HVP7zonsd83IhKEY5aeRly/s0VdQz8
wQMm5wDapUG5XNkRXnQFqeFn2U4vI7iFmGea46cCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBR6qFWRKl36MyF1e8m5/PSBnmJ8NDAfBgNVHSMEGDAWgBQ0pj3IYSDof0z/
jFmvMmHm4Skv2TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05LWTl5R0VnNkg5TV80eFpyekpoNXVFcEw5ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvNmI5YzdhLTlkYzctNDA0MC1iMjlhLWZjN2EwZWE2YjBlMi8x
L2VxaFZrU3BkLWpNaGRYdkp1ZnowZ1o1aWZEUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
NmI5YzdhLTlkYzctNDA0MC1iMjlhLWZjN2EwZWE2YjBlMi8xL05LWTl5R0VnNkg5
TV80eFpyekpoNXVFcEw5ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALkZajANBAIAAjAHAwUCKhEFQDAN
BgkqhkiG9w0BAQsFAAOCAQEAb8raKPD6cGCStaieXluRJFEdhgndB0ECV1lqXwpe
jrfPV9gXNaL26RvQLSQ0Q0f32wkCM2OIw4CxDGTdS7RRyOhD0w/6piETcdV234JZ
immHj6N77IhwFikcbkkwTa/uMPclzk1YsWjCt4078DgXECTJ7eOVW21vHsdfyLuU
r2f1EMV5ofWd5Rx9oXVCs3ZgD+AP2WBMWz3+rG+Y+CNY8lKanaZZJGNnRyQKrO8R
vhgHgfZ1oYO9ldt+BBtAM4W2fUGwxNNEJWlM43v5m+LbrVtGXp2SfWlhqrEObx9+
+2kO+nQ4K6kkdCYCu50mZpm+lO1Ecwb/1C3TmUh3Q+68pA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:22 2023 by rpki-client on console-fra.rpki-client.org