Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/4egtaEdYs7FGwOlBa5UK1pwDrig.roa
File: 4egtaEdYs7FGwOlBa5UK1pwDrig.roa (raw, json)
Hash identifier: B/knl5oDsKlNQEowwrehnV9gGqzb/P8ruBsyC//2+GM=
Subject key identifier: E1:E8:2D:68:47:58:B3:B1:46:C0:E9:41:6B:95:0A:D6:9C:03:AE:28
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 0125D2B9
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/4egtaEdYs7FGwOlBa5UK1pwDrig.roa
Signing time: Mon 13 Jun 2022 15:44:45 +0000
ROA not before: Mon 13 Jun 2022 15:44:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206961
IP address blocks: 185.197.140.0/24 maxlen: 24
185.197.141.0/24 maxlen: 24
185.197.142.0/24 maxlen: 24
185.197.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19255993 (0x125d2b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Jun 13 15:44:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1e82d684758b3b146c0e9416b950ad69c03ae28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:58:bd:d4:5a:2b:5e:54:c7:2c:6c:76:ae:77:
fc:e2:95:6b:23:e0:dd:e5:09:1c:8f:49:36:fa:80:
cc:8d:fd:c3:0e:9b:de:48:cc:68:40:9b:0d:0a:b7:
0d:1c:94:ca:6d:80:70:89:82:e4:39:9b:50:3c:6a:
e7:72:b7:2b:42:c3:f1:2f:2a:12:24:d8:fe:80:ee:
ab:45:1b:f8:a4:18:3f:80:f9:b3:80:49:48:cf:6c:
75:e4:21:8e:ac:f9:24:1d:b1:b5:b8:31:13:1e:09:
f6:a4:4d:90:77:c2:24:71:cf:e8:d3:01:17:e2:19:
9b:2c:f6:33:ec:73:df:6a:f9:45:86:52:b7:b4:3a:
5b:9f:36:e7:a2:7d:7d:de:f5:44:01:95:45:7a:b2:
12:de:8e:9c:d3:d1:3c:e7:db:8e:e9:e5:fa:7c:a2:
5d:b3:fa:96:b9:07:d2:57:30:33:d4:12:a7:96:b4:
78:dc:e7:2d:74:18:16:be:c4:e8:64:fb:15:80:0e:
0f:52:d6:66:7b:2d:1e:ba:6f:75:3e:9e:de:dd:51:
ee:11:8d:b7:38:16:d5:c8:90:9f:e5:49:d0:93:45:
d6:6d:28:9d:78:56:cd:7b:68:b4:dd:03:a4:47:9e:
1c:52:38:66:a9:7d:74:d0:0f:94:47:6c:96:b8:02:
84:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E8:2D:68:47:58:B3:B1:46:C0:E9:41:6B:95:0A:D6:9C:03:AE:28
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/4egtaEdYs7FGwOlBa5UK1pwDrig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.140.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:1f:15:34:08:be:d9:99:e1:42:68:bf:82:21:bc:d4:a8:10:
22:43:e7:8e:c3:1a:50:50:2f:1a:f5:35:4d:00:9c:79:1e:02:
23:9d:77:30:19:47:f6:92:09:a5:3a:ea:7c:2c:9c:1f:d8:f8:
47:15:a2:7e:13:1a:bd:fc:9a:ad:d8:b1:dd:55:93:0a:4d:3d:
67:2b:0c:81:ed:9b:0d:0a:15:5e:ac:d0:c4:f3:9f:9e:c5:16:
78:1d:94:68:4b:3f:b9:5f:ab:c6:cd:48:e8:df:ff:64:4d:f4:
4d:1d:85:8c:a8:1e:8d:92:90:ae:86:b1:42:82:bf:76:b4:62:
5e:1c:58:88:99:93:48:a6:91:fc:f7:39:f9:b3:17:82:01:8d:
82:74:a5:23:be:70:c1:78:ac:89:6d:19:bf:9c:c8:ae:f2:e4:
9c:39:a9:30:38:d4:63:dd:4d:28:f2:f8:d5:7e:f3:1d:95:6b:
9b:83:1f:b5:d1:63:84:09:b9:73:04:06:59:1d:31:e8:2d:ce:
89:6b:d0:f5:af:36:38:fb:8d:04:07:a7:8e:1b:7e:a5:0e:77:
6c:99:d1:1b:ac:03:ae:5e:51:c2:05:d9:83:37:a9:f0:de:d7:
b5:6b:79:7d:8c:55:cf:6e:9b:f3:15:4f:44:fc:dc:d0:7b:5b:
3d:9e:8c:f8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEASXSuTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ODUzMTBmNTAzMTM3YWU4YjM1ZDRmMzI5ZjQ2ZjA2OWRkNzAzODE1MB4XDTIyMDYx
MzE1NDQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTFlODJkNjg0NzU4
YjNiMTQ2YzBlOTQxNmI5NTBhZDY5YzAzYWUyODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANNYvdRaK15Uxyxsdq53/OKVayPg3eUJHI9JNvqAzI39ww6b
3kjMaECbDQq3DRyUym2AcImC5DmbUDxq53K3K0LD8S8qEiTY/oDuq0Ub+KQYP4D5
s4BJSM9sdeQhjqz5JB2xtbgxEx4J9qRNkHfCJHHP6NMBF+IZmyz2M+xz32r5RYZS
t7Q6W58256J9fd71RAGVRXqyEt6OnNPRPOfbjunl+nyiXbP6lrkH0lcwM9QSp5a0
eNznLXQYFr7E6GT7FYAOD1LWZnstHrpvdT6e3t1R7hGNtzgW1ciQn+VJ0JNF1m0o
nXhWzXtotN0DpEeeHFI4Zql9dNAPlEdslrgChPUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTh6C1oR1izsUbA6UFrlQrWnAOuKDAfBgNVHSMEGDAWgBSoUxD1AxN66LNd
TzKfRvBp3XA4FTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FGTVE5UU1UZXVpelhVOHluMGJ3YWQxd09CVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvYjQyOTQ5LWVlMGEtNDEyMy04N2JmLTMwMTg5YTVhNGViYS8x
LzRlZ3RhRWRZczdGR3dPbEJhNVVLMXB3RHJpZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
YjQyOTQ5LWVlMGEtNDEyMy04N2JmLTMwMTg5YTVhNGViYS8xL3FGTVE5UU1UZXVp
elhVOHluMGJ3YWQxd09CVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnFjDANBgkqhkiG9w0BAQsFAAOC
AQEApR8VNAi+2ZnhQmi/giG81KgQIkPnjsMaUFAvGvU1TQCceR4CI513MBlH9pIJ
pTrqfCycH9j4RxWifhMavfyardix3VWTCk09ZysMge2bDQoVXqzQxPOfnsUWeB2U
aEs/uV+rxs1I6N//ZE30TR2FjKgejZKQroaxQoK/drRiXhxYiJmTSKaR/Pc5+bMX
ggGNgnSlI75wwXisiW0Zv5zIrvLknDmpMDjUY91NKPL41X7zHZVrm4MftdFjhAm5
cwQGWR0x6C3OiWvQ9a82OPuNBAenjht+pQ53bJnRG6wDrl5RwgXZgzep8N7XtWt5
fYxVz26b8xVPRPzc0HtbPZ6M+A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:34 2023 by rpki-client on console-fra.rpki-client.org