Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/399271-5d4a-4320-82ed-aad61639d9d6/1/ehZQ1aqpDYgG8u_F22AhF4nFgw4.roa
File: ehZQ1aqpDYgG8u_F22AhF4nFgw4.roa (raw, json)
Hash identifier: fpHDZ5MQT6oLSDgqIkvaHLN9C5IGM7d/LaDgsWS7tHs=
Subject key identifier: 7A:16:50:D5:AA:A9:0D:88:06:F2:EF:C5:DB:60:21:17:89:C5:83:0E
Certificate issuer: /CN=4be1298a215e5e4b7d1e05a85fbc591c389f9ddd
Certificate serial: 0397C32C
Authority key identifier: 4B:E1:29:8A:21:5E:5E:4B:7D:1E:05:A8:5F:BC:59:1C:38:9F:9D:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-EpiiFeXkt9HgWoX7xZHDifnd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/399271-5d4a-4320-82ed-aad61639d9d6/1/ehZQ1aqpDYgG8u_F22AhF4nFgw4.roa
Signing time: Sat 01 Jan 2022 00:53:11 +0000
ROA not before: Sat 01 Jan 2022 00:53:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212282
IP address blocks: 185.220.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60277548 (0x397c32c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4be1298a215e5e4b7d1e05a85fbc591c389f9ddd
Validity
Not Before: Jan 1 00:53:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a1650d5aaa90d8806f2efc5db60211789c5830e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:9e:2f:da:37:8e:d4:9f:7d:70:47:3d:6e:
a2:1b:a3:9a:7b:de:ac:80:c1:5e:a8:84:17:59:f5:
73:85:c9:5d:3f:15:be:6a:71:a4:73:8e:a7:ec:af:
9c:74:fb:e8:2a:f9:ae:a4:ad:6d:df:14:89:d9:6d:
58:c7:5f:a0:e4:3e:18:b0:6b:da:1d:61:0d:01:40:
6c:1e:01:8c:04:99:80:a0:e3:e6:37:20:d8:6b:79:
87:45:22:b2:55:70:29:2e:ce:03:ed:26:30:62:60:
a4:39:0c:f6:6a:07:26:28:6a:17:7c:22:55:2a:38:
fa:01:53:26:38:b8:1a:44:7f:1b:d5:be:f0:56:b5:
76:01:e9:aa:d7:0f:d2:67:d0:28:7d:a0:db:81:27:
44:f6:a7:2c:d4:36:5c:fb:9f:05:63:85:2c:2f:f6:
8b:82:02:1d:dc:ef:b6:a7:02:fd:33:e9:c2:1d:45:
52:0f:e2:7a:05:6c:69:96:e9:09:53:93:52:6e:00:
fb:16:6f:ab:fe:6e:a9:04:84:0d:7f:00:e9:5e:0a:
28:99:55:a9:ac:74:b7:2e:25:a1:df:cc:3f:7e:ae:
49:ba:42:a9:c6:83:48:df:8e:68:9d:b4:12:69:38:
f2:f7:05:3f:d2:c4:12:ca:a0:e9:60:02:d0:68:d4:
cc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:16:50:D5:AA:A9:0D:88:06:F2:EF:C5:DB:60:21:17:89:C5:83:0E
X509v3 Authority Key Identifier:
keyid:4B:E1:29:8A:21:5E:5E:4B:7D:1E:05:A8:5F:BC:59:1C:38:9F:9D:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-EpiiFeXkt9HgWoX7xZHDifnd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/399271-5d4a-4320-82ed-aad61639d9d6/1/ehZQ1aqpDYgG8u_F22AhF4nFgw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/399271-5d4a-4320-82ed-aad61639d9d6/1/S-EpiiFeXkt9HgWoX7xZHDifnd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.82.0/24
Signature Algorithm: sha256WithRSAEncryption
46:9f:e0:23:c8:44:77:51:d9:cc:c2:d9:86:64:46:8f:95:92:
cc:59:68:99:26:6b:f3:7b:d8:49:c6:4a:9d:d7:3b:4d:cd:6f:
16:1a:84:28:a6:e9:85:44:60:07:5a:36:af:df:b3:5a:74:46:
5e:2d:3f:01:a6:a7:48:f0:37:a0:f8:12:93:c6:e5:2a:43:52:
f1:eb:fb:23:5c:2b:c4:7d:b1:e3:e0:da:d3:2b:33:7f:49:e4:
f4:1e:2d:35:31:84:d3:62:a5:42:14:08:9b:63:6e:d0:4e:fa:
d7:46:b3:db:95:83:a7:e7:f0:bd:8f:c1:c9:16:04:e1:42:7c:
64:17:d2:de:22:52:4f:4a:c2:58:07:60:86:a4:13:7f:ba:b3:
a0:84:ee:42:ab:f1:22:63:eb:d9:d2:ce:dc:cd:7b:8a:60:f2:
50:91:cf:e2:4f:ad:34:3c:e3:36:7f:a8:f7:0e:71:0f:8d:ea:
19:34:a8:2b:36:49:56:9c:c8:09:38:30:80:05:bc:ab:be:4d:
ab:38:58:96:19:53:bc:16:ed:f8:7d:88:94:07:3f:05:0d:7b:
65:86:2d:33:55:6e:2d:18:55:51:73:9c:50:8e:57:a6:4b:cd:
90:1f:d7:fd:2e:73:31:66:89:01:e5:8f:9b:47:e6:df:64:87:
87:e3:ac:0d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA5fDLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YmUxMjk4YTIxNWU1ZTRiN2QxZTA1YTg1ZmJjNTkxYzM4OWY5ZGRkMB4XDTIyMDEw
MTAwNTMxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2ExNjUwZDVhYWE5
MGQ4ODA2ZjJlZmM1ZGI2MDIxMTc4OWM1ODMwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUEni/aN47Un31wRz1uohujmnverIDBXqiEF1n1c4XJXT8V
vmpxpHOOp+yvnHT76Cr5rqStbd8UidltWMdfoOQ+GLBr2h1hDQFAbB4BjASZgKDj
5jcg2Gt5h0UislVwKS7OA+0mMGJgpDkM9moHJihqF3wiVSo4+gFTJji4GkR/G9W+
8Fa1dgHpqtcP0mfQKH2g24EnRPanLNQ2XPufBWOFLC/2i4ICHdzvtqcC/TPpwh1F
Ug/iegVsaZbpCVOTUm4A+xZvq/5uqQSEDX8A6V4KKJlVqax0ty4lod/MP36uSbpC
qcaDSN+OaJ20Emk48vcFP9LEEsqg6WAC0GjUzAMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR6FlDVqqkNiAby78XbYCEXicWDDjAfBgNVHSMEGDAWgBRL4SmKIV5eS30e
BahfvFkcOJ+d3TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1MtRXBpaUZlWGt0OUhnV29YN3haSERpZm5kMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2YvMzk5MjcxLTVkNGEtNDMyMC04MmVkLWFhZDYxNjM5ZDlkNi8x
L2VoWlExYXFwRFlnRzh1X0YyMkFoRjRuRmd3NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Yv
Mzk5MjcxLTVkNGEtNDMyMC04MmVkLWFhZDYxNjM5ZDlkNi8xL1MtRXBpaUZlWGt0
OUhnV29YN3haSERpZm5kMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALncUjANBgkqhkiG9w0BAQsFAAOC
AQEARp/gI8hEd1HZzMLZhmRGj5WSzFlomSZr83vYScZKndc7Tc1vFhqEKKbphURg
B1o2r9+zWnRGXi0/AaanSPA3oPgSk8blKkNS8ev7I1wrxH2x4+Da0yszf0nk9B4t
NTGE02KlQhQIm2Nu0E7610az25WDp+fwvY/ByRYE4UJ8ZBfS3iJST0rCWAdghqQT
f7qzoITuQqvxImPr2dLO3M17imDyUJHP4k+tNDzjNn+o9w5xD43qGTSoKzZJVpzI
CTgwgAW8q75NqzhYlhlTvBbt+H2IlAc/BQ17ZYYtM1VuLRhVUXOcUI5XpkvNkB/X
/S5zMWaJAeWPm0fm32SHh+OsDQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:11 2023 by rpki-client on console.sobornost.net