Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/So0EftbqSSeplDhNxZvj5hg_wYY.roa
File: So0EftbqSSeplDhNxZvj5hg_wYY.roa (raw, json)
Hash identifier: raC4139I4aNHWZc2FQpI9m2VWJflFq6SM0NPfApK+vU=
Subject key identifier: 4A:8D:04:7E:D6:EA:49:27:A9:94:38:4D:C5:9B:E3:E6:18:3F:C1:86
Certificate issuer: /CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Certificate serial: 0F909B
Authority key identifier: E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/So0EftbqSSeplDhNxZvj5hg_wYY.roa
Signing time: Fri 24 Jun 2022 11:34:58 +0000
ROA not before: Fri 24 Jun 2022 11:34:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39686
IP address blocks: 185.222.233.0/24 maxlen: 24
185.222.232.0/22 maxlen: 22
185.222.234.0/24 maxlen: 24
2a0d:800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1020059 (0xf909b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Validity
Not Before: Jun 24 11:34:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a8d047ed6ea4927a994384dc59be3e6183fc186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:63:15:08:21:8a:b4:f3:41:f9:f1:52:6a:9e:
95:5d:08:49:a6:b2:fc:1e:33:2b:e4:dc:d6:a0:a6:
2f:94:b3:b2:d8:94:71:4f:49:60:2f:0f:fe:31:eb:
1c:65:12:d6:43:21:31:06:1d:4f:ca:43:1d:e0:ee:
78:5a:d7:70:f7:6f:76:50:35:21:bc:35:99:3c:c0:
11:98:22:eb:9e:ce:da:04:22:5e:30:00:f6:e5:0e:
e9:3e:b4:4e:be:7d:b1:a5:6e:9a:cb:59:2c:f9:a1:
e5:b7:ac:2c:c5:5d:9e:11:78:51:0f:0a:e7:3d:08:
92:03:7a:67:7d:04:a0:5c:8d:68:69:02:61:b4:95:
39:e6:e7:79:ab:05:9e:67:ef:ef:a1:07:38:96:14:
e6:79:45:ae:be:6b:51:f1:17:07:f7:35:e0:2d:64:
00:42:8d:99:15:61:80:28:2c:ca:82:12:9c:d9:49:
6f:31:ce:ff:74:bd:88:e3:1b:ed:db:32:d8:b2:e7:
4f:14:ae:0d:f0:32:a4:80:83:7a:4a:3b:df:79:88:
9c:43:0c:30:d0:77:64:d6:e1:73:87:53:29:31:fa:
83:ec:b0:80:b0:dc:ae:f6:54:4e:33:27:f8:bc:56:
11:d9:16:8c:9b:d1:70:39:cd:81:e5:78:f8:f8:e7:
a5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:8D:04:7E:D6:EA:49:27:A9:94:38:4D:C5:9B:E3:E6:18:3F:C1:86
X509v3 Authority Key Identifier:
keyid:E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/So0EftbqSSeplDhNxZvj5hg_wYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.232.0/22
IPv6:
2a0d:800::/29
Signature Algorithm: sha256WithRSAEncryption
ca:02:1c:d5:d5:3a:6a:27:d2:8b:1a:d6:47:11:1a:a7:1a:7c:
d6:62:db:08:e2:e3:27:e3:92:bc:f0:f5:6b:ef:e9:71:ff:b0:
9c:a8:65:ef:2f:f9:77:41:c9:32:6e:c7:70:db:a2:33:bb:59:
dc:45:50:68:de:31:fc:6a:b9:a7:6e:3b:49:77:18:fa:4b:2f:
ed:a2:50:af:c6:97:18:81:87:e7:ec:b4:76:5a:5b:89:f0:75:
ea:e8:48:48:ce:65:d0:2e:00:6a:2d:12:11:70:38:59:84:87:
03:d0:11:91:2d:bb:3a:2f:e5:8a:3c:9c:6b:d3:e0:5d:f8:8e:
7a:34:dc:ad:7d:0f:49:e2:9a:8a:3a:36:f8:50:0f:85:29:48:
db:87:ca:75:ce:7b:78:40:f4:c2:9c:53:9a:28:b5:e7:31:65:
a1:f5:74:c6:32:bd:8a:a4:59:b3:43:1a:76:2d:7d:c1:3f:29:
60:62:7a:c3:19:72:8d:dd:31:6d:71:0f:21:15:7e:84:81:74:
71:78:b0:85:c3:fa:da:8e:a9:b0:7c:1c:77:c7:df:68:77:4a:
e7:8d:09:72:61:be:8f:62:f7:b1:b6:7e:50:c1:8f:03:b1:a6:
be:ec:81:ea:83:a4:91:8d:93:25:de:d2:e0:00:b1:23:68:86:
52:69:b3:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDD5CbMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUy
YzEzNzEwNmMxYTQ2YWVhMDdjMjRiMTE3MjlmZDdkMjE2YTI0ZjUwHhcNMjIwNjI0
MTEzNDU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0YThkMDQ3ZWQ2ZWE0
OTI3YTk5NDM4NGRjNTliZTNlNjE4M2ZjMTg2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAt2MVCCGKtPNB+fFSap6VXQhJprL8HjMr5NzWoKYvlLOy2JRx
T0lgLw/+MescZRLWQyExBh1PykMd4O54Wtdw9292UDUhvDWZPMARmCLrns7aBCJe
MAD25Q7pPrROvn2xpW6ay1ks+aHlt6wsxV2eEXhRDwrnPQiSA3pnfQSgXI1oaQJh
tJU55ud5qwWeZ+/voQc4lhTmeUWuvmtR8RcH9zXgLWQAQo2ZFWGAKCzKghKc2Ulv
Mc7/dL2I4xvt2zLYsudPFK4N8DKkgIN6SjvfeYicQwww0Hdk1uFzh1MpMfqD7LCA
sNyu9lROMyf4vFYR2RaMm9FwOc2B5Xj4+OelLQIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFEqNBH7W6kknqZQ4TcWb4+YYP8GGMB8GA1UdIwQYMBaAFOLBNxBsGkauoHwk
sRcp/X0haiT1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NHNFM0VHd2FScTZnZkNTeEZ5bjlmU0ZxSlBVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xZC8yNDM1Y2MtNTUzMy00ZjcwLWJiODItOWNhZjI1YTQ5OWQ3LzEv
U28wRWZ0YnFTU2VwbERoTnhadmo1aGdfd1lZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8y
NDM1Y2MtNTUzMy00ZjcwLWJiODItOWNhZjI1YTQ5OWQ3LzEvNHNFM0VHd2FScTZn
ZkNTeEZ5bjlmU0ZxSlBVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCud7oMA0EAgACMAcDBQMqDQgAMA0G
CSqGSIb3DQEBCwUAA4IBAQDKAhzV1TpqJ9KLGtZHERqnGnzWYtsI4uMn45K88PVr
7+lx/7CcqGXvL/l3Qckybsdw26Izu1ncRVBo3jH8armnbjtJdxj6Sy/tolCvxpcY
gYfn7LR2WluJ8HXq6EhIzmXQLgBqLRIRcDhZhIcD0BGRLbs6L+WKPJxr0+Bd+I56
NNytfQ9J4pqKOjb4UA+FKUjbh8p1znt4QPTCnFOaKLXnMWWh9XTGMr2KpFmzQxp2
LX3BPylgYnrDGXKN3TFtcQ8hFX6EgXRxeLCFw/rajqmwfBx3x99od0rnjQlyYb6P
Yvextn5QwY8Dsaa+7IHqg6SRjZMl3tLgALEjaIZSabPy
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:49 2023 by rpki-client on console.sobornost.net