Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/n6B6BS6QlLePQkM3WYLAHyGXgQE.roa
File: n6B6BS6QlLePQkM3WYLAHyGXgQE.roa (raw, json)
Hash identifier: Lq2QAgccanvef5pAvOmLjF/XtLPCHShLNkIztS7eyRs=
Subject key identifier: 9F:A0:7A:05:2E:90:94:B7:8F:42:43:37:59:82:C0:1F:21:97:81:01
Certificate issuer: /CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Certificate serial: 0876E5
Authority key identifier: E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/n6B6BS6QlLePQkM3WYLAHyGXgQE.roa
Signing time: Wed 22 Jun 2022 15:50:32 +0000
ROA not before: Wed 22 Jun 2022 15:50:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204456
IP address blocks: 185.222.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 554725 (0x876e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Validity
Not Before: Jun 22 15:50:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fa07a052e9094b78f4243375982c01f21978101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:91:4c:8a:62:33:87:b3:27:b7:05:be:a4:38:
80:a5:f6:f7:e5:55:59:e2:f4:e3:d8:41:81:4d:e6:
68:ee:62:84:bf:ab:ac:88:04:a4:6b:c8:5c:8e:4c:
05:5d:ba:8f:6c:ca:6d:33:f1:f9:7a:f6:35:95:6e:
47:45:66:5a:46:8c:3f:50:23:3f:cd:e5:dc:ec:68:
54:1c:65:77:49:10:a7:96:8d:ae:03:d1:f2:c4:62:
81:d6:33:cc:b2:df:89:33:12:4c:20:5e:df:f5:1e:
c1:0a:d0:c5:5a:d1:3c:b8:ad:77:92:32:65:79:4d:
5e:39:71:b2:f2:93:e1:54:80:07:c8:77:f6:49:2b:
31:fd:63:ce:0a:5a:5f:79:46:d3:8f:5b:3e:10:ad:
49:42:57:35:3e:ec:81:a2:eb:01:ad:f3:58:15:ed:
f3:25:fd:39:d8:98:ca:03:50:18:d9:ff:03:28:c7:
66:8c:54:44:a6:e6:bb:e6:3f:8b:f5:7f:a4:c6:f9:
da:05:45:f1:2e:43:22:57:39:58:98:1f:ba:d9:32:
f7:7a:fd:ca:dc:27:e6:d8:42:50:71:c5:19:3e:aa:
4c:59:dc:a0:82:27:7f:2b:8a:25:15:24:ed:8a:bf:
41:89:5e:75:cd:39:04:c0:ce:d3:a9:ca:ec:e7:6f:
48:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A0:7A:05:2E:90:94:B7:8F:42:43:37:59:82:C0:1F:21:97:81:01
X509v3 Authority Key Identifier:
keyid:E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/n6B6BS6QlLePQkM3WYLAHyGXgQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.235.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:21:e0:fe:db:7a:4f:2b:d0:41:b4:cf:90:dc:95:46:73:79:
0c:6c:91:ce:7a:13:9f:e4:90:d5:37:dc:95:f8:0c:30:92:84:
cc:4b:e5:d4:3c:e0:50:30:e1:23:ec:b7:05:a8:27:c6:7d:42:
cf:00:6e:13:24:ec:da:b2:9d:9b:d9:31:26:9f:49:8c:a3:d5:
8d:2f:2e:b4:8c:eb:96:43:79:78:4d:e5:d9:38:65:d6:20:39:
6b:f4:42:82:c2:ad:d1:19:68:d7:36:32:57:64:3f:29:3a:f5:
0f:07:1a:4a:ba:bf:f6:9a:29:31:1e:57:a3:fa:b2:97:d1:a6:
00:a8:be:9a:ed:77:5f:d6:b5:3c:80:ea:4e:ae:8e:79:22:1b:
be:eb:20:80:79:b5:62:45:7f:61:3a:ac:c5:9a:47:1a:ac:83:
a5:e2:dd:fe:27:28:77:3d:f1:04:4b:9f:8d:3f:bc:11:55:e5:
b0:53:e9:ae:b5:a4:7d:9f:cc:af:d9:6b:a8:b2:87:47:82:38:
f0:3f:91:e4:79:ec:b8:26:d4:ac:1a:dd:07:48:0d:17:c0:ce:
30:74:6f:08:fc:7a:d5:97:96:7c:32:82:1a:44:f2:dc:49:9b:
5f:30:18:92:3c:f5:af:e8:1d:1d:e7:79:71:ff:3c:83:df:2e:
0d:d8:ac:ae
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDCHblMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUy
YzEzNzEwNmMxYTQ2YWVhMDdjMjRiMTE3MjlmZDdkMjE2YTI0ZjUwHhcNMjIwNjIy
MTU1MDMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5ZmEwN2EwNTJlOTA5
NGI3OGY0MjQzMzc1OTgyYzAxZjIxOTc4MTAxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAxZFMimIzh7MntwW+pDiApfb35VVZ4vTj2EGBTeZo7mKEv6us
iASka8hcjkwFXbqPbMptM/H5evY1lW5HRWZaRow/UCM/zeXc7GhUHGV3SRCnlo2u
A9HyxGKB1jPMst+JMxJMIF7f9R7BCtDFWtE8uK13kjJleU1eOXGy8pPhVIAHyHf2
SSsx/WPOClpfeUbTj1s+EK1JQlc1PuyBousBrfNYFe3zJf052JjKA1AY2f8DKMdm
jFREpua75j+L9X+kxvnaBUXxLkMiVzlYmB+62TL3ev3K3Cfm2EJQccUZPqpMWdyg
gid/K4olFSTtir9BiV51zTkEwM7Tqcrs529IGwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJ+gegUukJS3j0JDN1mCwB8hl4EBMB8GA1UdIwQYMBaAFOLBNxBsGkauoHwk
sRcp/X0haiT1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NHNFM0VHd2FScTZnZkNTeEZ5bjlmU0ZxSlBVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xZC8yNDM1Y2MtNTUzMy00ZjcwLWJiODItOWNhZjI1YTQ5OWQ3LzEv
bjZCNkJTNlFsTGVQUWtNM1dZTEFIeUdYZ1FFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8y
NDM1Y2MtNTUzMy00ZjcwLWJiODItOWNhZjI1YTQ5OWQ3LzEvNHNFM0VHd2FScTZn
ZkNTeEZ5bjlmU0ZxSlBVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud7rMA0GCSqGSIb3DQEBCwUAA4IB
AQDBIeD+23pPK9BBtM+Q3JVGc3kMbJHOehOf5JDVN9yV+AwwkoTMS+XUPOBQMOEj
7LcFqCfGfULPAG4TJOzasp2b2TEmn0mMo9WNLy60jOuWQ3l4TeXZOGXWIDlr9EKC
wq3RGWjXNjJXZD8pOvUPBxpKur/2mikxHlej+rKX0aYAqL6a7Xdf1rU8gOpOro55
Ihu+6yCAebViRX9hOqzFmkcarIOl4t3+Jyh3PfEES5+NP7wRVeWwU+mutaR9n8yv
2WuosodHgjjwP5Hkeey4JtSsGt0HSA0XwM4wdG8I/HrVl5Z8MoIaRPLcSZtfMBiS
PPWv6B0d53lx/zyD3y4N2Kyu
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:49 2023 by rpki-client on console.sobornost.net