Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/H5uIFpCn3CvRk4LofGZC1MZD3ys.roa
File: H5uIFpCn3CvRk4LofGZC1MZD3ys.roa (raw, json)
Hash identifier: YvDsAq/vye/uA0LAKlC9lmXxNuUKkcnfoI15taaGUWM=
Subject key identifier: 1F:9B:88:16:90:A7:DC:2B:D1:93:82:E8:7C:66:42:D4:C6:43:DF:2B
Certificate issuer: /CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Certificate serial: 05C2C3
Authority key identifier: E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/H5uIFpCn3CvRk4LofGZC1MZD3ys.roa
Signing time: Tue 21 Jun 2022 22:50:45 +0000
ROA not before: Tue 21 Jun 2022 22:50:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39686
IP address blocks: 185.222.233.0/24 maxlen: 24
185.222.232.0/22 maxlen: 22
185.222.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377539 (0x5c2c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Validity
Not Before: Jun 21 22:50:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f9b881690a7dc2bd19382e87c6642d4c643df2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:67:4b:06:7b:30:a6:4a:99:52:e6:94:ae:19:
5e:c8:4e:cd:20:82:25:d8:3e:74:02:c2:5c:b3:b6:
19:96:25:3a:1c:01:dd:1c:e1:7b:01:bb:b7:2f:16:
d2:41:cd:26:c4:c0:95:7d:ea:0c:74:e5:9c:e1:1e:
4b:2a:68:6d:ea:6a:dc:85:4f:6a:26:46:ee:e3:fd:
b7:cd:27:dd:ac:8c:0d:f4:74:38:5f:e6:56:b1:7e:
12:1a:32:33:08:e3:1d:a0:f8:95:4a:1a:73:c5:57:
ec:da:d4:59:fe:30:32:a2:69:0c:93:70:23:45:72:
a9:a8:e5:74:5f:3d:ae:b8:c5:14:b7:f1:ba:45:b3:
85:7f:52:48:f6:a9:b4:e0:4f:05:31:9a:0d:40:50:
bf:0e:16:81:56:ee:0f:4e:9e:a1:c0:a8:89:a5:54:
64:5f:82:41:3e:25:67:df:6a:01:c9:27:dd:7e:07:
2d:08:f6:80:a7:02:cb:49:5b:49:51:9f:dc:2e:7e:
1b:d2:67:42:ac:95:d9:fa:82:86:94:75:fe:f4:d7:
fe:ea:e0:5c:d3:36:6a:d4:cd:74:82:34:39:eb:e5:
1c:54:0d:a4:41:e1:31:26:d0:30:b2:dd:6f:cd:69:
70:8f:72:fa:80:14:b1:83:e6:8c:c6:8d:a3:0c:65:
82:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9B:88:16:90:A7:DC:2B:D1:93:82:E8:7C:66:42:D4:C6:43:DF:2B
X509v3 Authority Key Identifier:
keyid:E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/H5uIFpCn3CvRk4LofGZC1MZD3ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.232.0/22
Signature Algorithm: sha256WithRSAEncryption
17:9a:1f:48:fc:ec:c2:4b:16:d6:ec:8f:ca:8d:fb:99:66:31:
67:17:90:e1:4a:2b:3f:d9:a9:eb:9b:4e:03:0b:8f:e1:ae:79:
ee:7b:18:2b:76:7a:b4:bc:a9:db:56:c5:a2:44:03:e9:a6:f6:
68:d9:0a:07:27:ef:ad:70:55:63:ed:dd:05:9f:01:9e:ff:98:
ce:73:95:88:c8:38:14:e9:f4:1a:52:d6:d9:eb:ae:96:9b:ac:
28:88:eb:9e:86:0a:12:64:3f:ba:af:e6:95:da:c2:a8:52:2c:
45:70:b5:77:0d:28:c9:f3:7d:09:a4:6b:de:d0:cf:90:7a:9b:
c5:3d:6a:2e:50:04:fd:00:92:7a:b6:ab:76:04:e5:75:db:71:
ef:e2:93:ca:d1:88:6e:c0:7b:a1:c1:65:9c:29:5b:cd:3b:66:
76:e5:01:29:18:0f:15:c8:18:f9:b7:ed:cb:d6:4d:7d:9d:79:
08:5d:3c:24:35:7e:68:d3:ad:c7:ce:e9:7b:8d:9e:db:5e:44:
63:d8:03:51:fd:7a:17:8f:81:6f:bc:7d:d0:8c:77:4f:b7:2e:
08:e6:c4:a5:61:bd:41:d9:c3:72:6a:3b:d0:eb:fe:76:6f:15:
54:3b:47:de:a1:6f:c9:58:9b:f5:fc:92:eb:76:57:f2:54:d5:
22:ff:44:33
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDBcLDMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUy
YzEzNzEwNmMxYTQ2YWVhMDdjMjRiMTE3MjlmZDdkMjE2YTI0ZjUwHhcNMjIwNjIx
MjI1MDQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxZjliODgxNjkwYTdk
YzJiZDE5MzgyZTg3YzY2NDJkNGM2NDNkZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAoWdLBnswpkqZUuaUrhleyE7NIIIl2D50AsJcs7YZliU6HAHd
HOF7Abu3LxbSQc0mxMCVfeoMdOWc4R5LKmht6mrchU9qJkbu4/23zSfdrIwN9HQ4
X+ZWsX4SGjIzCOMdoPiVShpzxVfs2tRZ/jAyomkMk3AjRXKpqOV0Xz2uuMUUt/G6
RbOFf1JI9qm04E8FMZoNQFC/DhaBVu4PTp6hwKiJpVRkX4JBPiVn32oBySfdfgct
CPaApwLLSVtJUZ/cLn4b0mdCrJXZ+oKGlHX+9Nf+6uBc0zZq1M10gjQ56+UcVA2k
QeExJtAwst1vzWlwj3L6gBSxg+aMxo2jDGWCVQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFB+biBaQp9wr0ZOC6HxmQtTGQ98rMB8GA1UdIwQYMBaAFOLBNxBsGkauoHwk
sRcp/X0haiT1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NHNFM0VHd2FScTZnZkNTeEZ5bjlmU0ZxSlBVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xZC8yNDM1Y2MtNTUzMy00ZjcwLWJiODItOWNhZjI1YTQ5OWQ3LzEv
SDV1SUZwQ24zQ3ZSazRMb2ZHWkMxTVpEM3lzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8y
NDM1Y2MtNTUzMy00ZjcwLWJiODItOWNhZjI1YTQ5OWQ3LzEvNHNFM0VHd2FScTZn
ZkNTeEZ5bjlmU0ZxSlBVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCud7oMA0GCSqGSIb3DQEBCwUAA4IB
AQAXmh9I/OzCSxbW7I/KjfuZZjFnF5DhSis/2anrm04DC4/hrnnuexgrdnq0vKnb
VsWiRAPppvZo2QoHJ++tcFVj7d0FnwGe/5jOc5WIyDgU6fQaUtbZ666Wm6woiOue
hgoSZD+6r+aV2sKoUixFcLV3DSjJ830JpGve0M+QepvFPWouUAT9AJJ6tqt2BOV1
23Hv4pPK0YhuwHuhwWWcKVvNO2Z25QEpGA8VyBj5t+3L1k19nXkIXTwkNX5o063H
zul7jZ7bXkRj2ANR/XoXj4FvvH3QjHdPty4I5sSlYb1B2cNyajvQ6/52bxVUO0fe
oW/JWJv1/JLrdlfyVNUi/0Qz
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:49 2023 by rpki-client on console.sobornost.net