Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/v5uBItkmwTbDb-blpBMoRjjjmvE.roa
File: v5uBItkmwTbDb-blpBMoRjjjmvE.roa (raw, json)
Hash identifier: CLn1sJVOiJbNtx24xEv1Byu8xGIGNETWLN1Dt5SVA6Y=
Subject key identifier: BF:9B:81:22:D9:26:C1:36:C3:6F:E6:E5:A4:13:28:46:38:E3:9A:F1
Certificate issuer: /CN=c1aaf043fe209c0345362205f8cc7cd61951c27e
Certificate serial: 745D9A
Authority key identifier: C1:AA:F0:43:FE:20:9C:03:45:36:22:05:F8:CC:7C:D6:19:51:C2:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/warwQ_4gnANFNiIF-Mx81hlRwn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/v5uBItkmwTbDb-blpBMoRjjjmvE.roa
Signing time: Wed 02 Feb 2022 22:12:55 +0000
ROA not before: Wed 02 Feb 2022 22:12:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210664
IP address blocks: 185.150.90.0/24 maxlen: 24
185.150.88.0/22 maxlen: 22
2a05:4b40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7626138 (0x745d9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1aaf043fe209c0345362205f8cc7cd61951c27e
Validity
Not Before: Feb 2 22:12:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf9b8122d926c136c36fe6e5a413284638e39af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:38:50:c2:1e:d9:95:55:c9:4e:7e:79:ef:5f:
57:7c:d7:37:64:3d:63:77:81:44:68:f8:fe:64:07:
1c:98:1e:ed:ba:7f:17:9c:64:fa:8f:6c:cb:6c:90:
67:9c:9e:05:30:40:9e:1f:f9:82:bf:44:60:d9:71:
0f:fd:99:77:eb:cf:8a:34:a1:32:9a:78:c4:ac:e8:
98:e3:32:c1:e4:34:50:6d:75:a7:0b:6c:44:4a:6b:
3b:4a:ce:11:13:3d:97:20:e5:98:12:fb:2b:ea:c7:
e1:3b:61:ff:8e:a8:9b:e3:87:23:b4:53:11:9a:23:
71:d1:ef:89:f6:61:8a:09:cf:b5:cb:f4:bf:f5:29:
75:0d:f7:b4:1f:dd:57:00:1c:1b:73:b6:37:9c:0e:
d9:d3:fe:b3:c4:67:9b:38:09:a9:f3:bc:5d:08:68:
e6:44:cf:8a:27:ac:ee:8c:e3:2a:81:33:03:39:f0:
39:6e:70:6f:c6:d8:63:04:d5:22:d2:b7:b8:45:0a:
b5:e5:d8:d6:3e:da:55:21:f7:fe:54:7a:63:de:32:
c2:bc:eb:50:bc:5c:97:b5:95:52:63:f0:95:a0:29:
2c:4c:70:93:07:4f:30:59:69:2e:2c:01:03:f9:bd:
d1:55:30:70:6e:12:df:94:a3:54:fd:72:79:df:c9:
45:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9B:81:22:D9:26:C1:36:C3:6F:E6:E5:A4:13:28:46:38:E3:9A:F1
X509v3 Authority Key Identifier:
keyid:C1:AA:F0:43:FE:20:9C:03:45:36:22:05:F8:CC:7C:D6:19:51:C2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/warwQ_4gnANFNiIF-Mx81hlRwn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/v5uBItkmwTbDb-blpBMoRjjjmvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/warwQ_4gnANFNiIF-Mx81hlRwn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.88.0/22
IPv6:
2a05:4b40::/32
Signature Algorithm: sha256WithRSAEncryption
0f:20:f6:a8:a5:82:d2:aa:1e:62:46:68:3d:2f:02:c8:97:4f:
33:84:db:d0:77:ac:20:b2:74:c0:65:ce:09:05:4e:ad:da:da:
3e:51:d6:0c:fd:70:24:ef:65:21:ec:a1:df:88:fa:ea:3c:4d:
96:38:92:9c:df:d5:c4:2f:c8:21:ca:f0:d0:b2:5c:c2:2a:9c:
74:56:70:3e:14:36:bc:35:25:d1:cc:13:fa:1d:98:ee:1f:9e:
67:5a:55:22:d7:ff:c4:86:cf:88:de:8d:58:bc:17:7f:72:95:
2f:d6:10:75:1a:00:81:1d:5b:e6:ec:b3:96:38:7e:c0:80:39:
c2:95:8e:3b:6d:8e:4c:ad:f0:2a:a2:30:20:7c:79:fb:4b:0a:
41:f1:93:d1:31:ec:3b:e3:02:8e:00:87:b1:ef:d3:f7:ac:d8:
c9:f7:b8:fe:c0:5b:12:e1:a5:66:ef:68:05:0e:b3:c6:8d:c7:
8c:17:28:c0:26:ce:ba:87:3b:aa:2d:13:53:d0:f1:01:52:c8:
f3:d0:fb:e7:c2:0c:70:e2:cd:40:2e:74:05:33:31:ed:47:b1:
d0:75:ef:08:15:61:79:58:d7:3b:8a:19:d9:07:29:ce:bc:d0:
05:4c:e2:37:6b:d3:0d:bb:13:b6:9c:d6:ab:78:28:b9:56:42:
88:c7:c9:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDdF2aMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMx
YWFmMDQzZmUyMDljMDM0NTM2MjIwNWY4Y2M3Y2Q2MTk1MWMyN2UwHhcNMjIwMjAy
MjIxMjU1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiZjliODEyMmQ5MjZj
MTM2YzM2ZmU2ZTVhNDEzMjg0NjM4ZTM5YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqzhQwh7ZlVXJTn55719XfNc3ZD1jd4FEaPj+ZAccmB7tun8X
nGT6j2zLbJBnnJ4FMECeH/mCv0Rg2XEP/Zl368+KNKEymnjErOiY4zLB5DRQbXWn
C2xESms7Ss4REz2XIOWYEvsr6sfhO2H/jqib44cjtFMRmiNx0e+J9mGKCc+1y/S/
9Sl1Dfe0H91XABwbc7Y3nA7Z0/6zxGebOAmp87xdCGjmRM+KJ6zujOMqgTMDOfA5
bnBvxthjBNUi0re4RQq15djWPtpVIff+VHpj3jLCvOtQvFyXtZVSY/CVoCksTHCT
B08wWWkuLAED+b3RVTBwbhLflKNU/XJ538lFWQIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFL+bgSLZJsE2w2/m5aQTKEY445rxMB8GA1UdIwQYMBaAFMGq8EP+IJwDRTYi
BfjMfNYZUcJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
d2Fyd1FfNGduQU5GTmlJRi1NeDgxaGxSd240LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zNC82YzI3ZjAtMTM3ZC00NzFiLTlkMWQtYjc1NzhiMTBiYTdlLzEv
djV1Qkl0a213VGJEYi1ibHBCTW9SampqbXZFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82
YzI3ZjAtMTM3ZC00NzFiLTlkMWQtYjc1NzhiMTBiYTdlLzEvd2Fyd1FfNGduQU5G
TmlJRi1NeDgxaGxSd240LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZZYMA0EAgACMAcDBQAqBUtAMA0G
CSqGSIb3DQEBCwUAA4IBAQAPIPaopYLSqh5iRmg9LwLIl08zhNvQd6wgsnTAZc4J
BU6t2to+UdYM/XAk72Uh7KHfiPrqPE2WOJKc39XEL8ghyvDQslzCKpx0VnA+FDa8
NSXRzBP6HZjuH55nWlUi1//Ehs+I3o1YvBd/cpUv1hB1GgCBHVvm7LOWOH7AgDnC
lY47bY5MrfAqojAgfHn7SwpB8ZPRMew74wKOAIex79P3rNjJ97j+wFsS4aVm72gF
DrPGjceMFyjAJs66hzuqLRNT0PEBUsjz0Pvnwgxw4s1ALnQFMzHtR7HQde8IFWF5
WNc7ihnZBynOvNAFTOI3a9MNuxO2nNareCi5VkKIx8m3
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:12 2023 by rpki-client on console.sobornost.net