Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9f379d-51dc-42a8-b2cc-1d1fe2784e24/1/JoHzRANhmNjyn-hXbJ03uCQWOaI.roa
File: JoHzRANhmNjyn-hXbJ03uCQWOaI.roa (raw, json)
Hash identifier: iyjzFEKcUC9S7Wa5jKa3qDErx7YdBfMi1D+BadVQ9vE=
Subject key identifier: 26:81:F3:44:03:61:98:D8:F2:9F:E8:57:6C:9D:37:B8:24:16:39:A2
Certificate issuer: /CN=1e2ecaec8a4865046594c6f7f2109520016f0eb7
Certificate serial: 03866D9B
Authority key identifier: 1E:2E:CA:EC:8A:48:65:04:65:94:C6:F7:F2:10:95:20:01:6F:0E:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hi7K7IpIZQRllMb38hCVIAFvDrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9f379d-51dc-42a8-b2cc-1d1fe2784e24/1/JoHzRANhmNjyn-hXbJ03uCQWOaI.roa
Signing time: Sat 01 Jan 2022 13:05:25 +0000
ROA not before: Sat 01 Jan 2022 13:05:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50980
IP address blocks: 185.133.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59141531 (0x3866d9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e2ecaec8a4865046594c6f7f2109520016f0eb7
Validity
Not Before: Jan 1 13:05:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2681f344036198d8f29fe8576c9d37b8241639a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1e:65:10:47:d1:bf:63:58:1f:0a:df:a9:09:
80:87:5b:69:a9:49:2e:35:f3:31:32:8e:19:3a:cf:
4d:bd:44:a2:01:df:de:ae:55:dc:95:e4:10:3b:54:
a8:44:c7:f6:c9:68:61:48:db:a8:61:0d:5b:64:97:
f8:e7:a4:df:33:22:c3:c1:c9:3f:6e:1f:69:b8:fe:
1d:9b:52:49:e5:20:8e:bf:4b:02:a4:8b:48:da:3b:
23:3d:fa:56:a9:2e:d3:84:d0:cb:fa:af:ac:c0:d1:
f5:18:ad:1e:83:fa:50:11:91:be:34:4c:3f:64:f8:
77:3f:d9:d5:99:3a:5e:d2:4e:8b:68:8c:13:16:3c:
db:10:20:19:2d:6b:5f:8f:a6:4f:f7:94:fa:9a:8c:
f3:07:4b:05:e7:13:f8:11:34:12:17:5e:4a:51:24:
16:31:4a:fa:d4:90:29:2f:be:65:5c:d2:b2:ff:69:
af:8c:ae:f4:83:c1:40:3a:85:6a:77:95:36:bc:64:
ef:17:0a:c3:77:9a:38:c6:af:d7:0f:e6:ea:48:b7:
c6:ed:30:84:78:cf:23:f8:c8:88:3a:f3:2d:67:15:
43:97:b1:f3:3a:c0:84:ad:99:fd:70:33:6a:ec:ee:
04:16:84:da:4a:68:0a:2b:32:88:ea:20:37:3a:90:
4d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:81:F3:44:03:61:98:D8:F2:9F:E8:57:6C:9D:37:B8:24:16:39:A2
X509v3 Authority Key Identifier:
keyid:1E:2E:CA:EC:8A:48:65:04:65:94:C6:F7:F2:10:95:20:01:6F:0E:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hi7K7IpIZQRllMb38hCVIAFvDrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9f379d-51dc-42a8-b2cc-1d1fe2784e24/1/JoHzRANhmNjyn-hXbJ03uCQWOaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9f379d-51dc-42a8-b2cc-1d1fe2784e24/1/Hi7K7IpIZQRllMb38hCVIAFvDrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.196.0/22
Signature Algorithm: sha256WithRSAEncryption
49:d6:dc:58:2b:9d:6e:b6:f8:a3:17:37:df:e7:63:95:99:86:
6b:e4:35:0a:8b:6a:c0:f9:ed:75:64:80:16:74:13:f2:d4:c1:
f9:5c:26:74:1f:f1:23:d1:12:b3:c4:c9:05:51:b5:fc:73:de:
53:bb:13:e7:61:46:86:91:bb:b3:26:19:1d:c7:52:ba:4f:df:
e5:91:28:3e:a9:82:94:45:44:cc:87:50:2c:0e:ac:cd:fb:7e:
0a:b0:6b:1e:bb:5e:93:ee:8d:1e:68:57:11:9a:8f:5e:bb:aa:
73:ba:eb:4c:e1:09:18:ae:9c:50:f7:48:7c:e9:37:ca:3c:f1:
66:2f:41:08:d6:86:11:a5:4c:bf:be:67:5e:ab:d6:cc:ec:6c:
35:a3:7a:f9:8a:23:42:ed:0d:42:e6:de:30:d9:9d:14:54:00:
0a:33:0f:96:17:d0:f4:fa:d8:68:87:84:5f:dd:7e:6b:c9:93:
4f:07:de:a3:41:13:45:ed:c5:95:41:a6:3e:91:94:ae:80:72:
56:1f:c0:e4:1a:74:25:92:d8:62:1d:9a:d4:0c:43:a5:97:fa:
f6:b0:b8:24:1b:e0:18:57:f6:8b:9f:a6:3f:02:53:d5:87:3d:
1a:95:a3:21:af:ff:1a:53:bc:11:86:c0:bf:3d:06:23:29:ca:
23:c6:df:6b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA4ZtmzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTJlY2FlYzhhNDg2NTA0NjU5NGM2ZjdmMjEwOTUyMDAxNmYwZWI3MB4XDTIyMDEw
MTEzMDUyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjY4MWYzNDQwMzYx
OThkOGYyOWZlODU3NmM5ZDM3YjgyNDE2MzlhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMUeZRBH0b9jWB8K36kJgIdbaalJLjXzMTKOGTrPTb1EogHf
3q5V3JXkEDtUqETH9sloYUjbqGENW2SX+Oek3zMiw8HJP24fabj+HZtSSeUgjr9L
AqSLSNo7Iz36Vqku04TQy/qvrMDR9RitHoP6UBGRvjRMP2T4dz/Z1Zk6XtJOi2iM
ExY82xAgGS1rX4+mT/eU+pqM8wdLBecT+BE0EhdeSlEkFjFK+tSQKS++ZVzSsv9p
r4yu9IPBQDqFaneVNrxk7xcKw3eaOMav1w/m6ki3xu0whHjPI/jIiDrzLWcVQ5ex
8zrAhK2Z/XAzauzuBBaE2kpoCisyiOogNzqQTesCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQmgfNEA2GY2PKf6FdsnTe4JBY5ojAfBgNVHSMEGDAWgBQeLsrsikhlBGWU
xvfyEJUgAW8OtzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hpN0s3SXBJWlFSbGxNYjM4aENWSUFGdkRyYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmMvOWYzNzlkLTUxZGMtNDJhOC1iMmNjLTFkMWZlMjc4NGUyNC8x
L0pvSHpSQU5obU5qeW4taFhiSjAzdUNRV09hSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMv
OWYzNzlkLTUxZGMtNDJhOC1iMmNjLTFkMWZlMjc4NGUyNC8xL0hpN0s3SXBJWlFS
bGxNYjM4aENWSUFGdkRyYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmFxDANBgkqhkiG9w0BAQsFAAOC
AQEASdbcWCudbrb4oxc33+djlZmGa+Q1CotqwPntdWSAFnQT8tTB+VwmdB/xI9ES
s8TJBVG1/HPeU7sT52FGhpG7syYZHcdSuk/f5ZEoPqmClEVEzIdQLA6szft+CrBr
Hrtek+6NHmhXEZqPXruqc7rrTOEJGK6cUPdIfOk3yjzxZi9BCNaGEaVMv75nXqvW
zOxsNaN6+YojQu0NQubeMNmdFFQACjMPlhfQ9PrYaIeEX91+a8mTTwfeo0ETRe3F
lUGmPpGUroByVh/A5Bp0JZLYYh2a1AxDpZf69rC4JBvgGFf2i5+mPwJT1Yc9GpWj
Ia//GlO8EYbAvz0GIynKI8bfaw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:36 2023 by rpki-client on console.sobornost.net