Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/IEQe28Co9qWFS7xCwZvjrit6Sbg.roa
File: IEQe28Co9qWFS7xCwZvjrit6Sbg.roa (raw, json)
Hash identifier: 4BHtCDaWVysBpJFjQBa6/gcRML8h76dfJJKkAD6NCzM=
Subject key identifier: 20:44:1E:DB:C0:A8:F6:A5:85:4B:BC:42:C1:9B:E3:AE:2B:7A:49:B8
Certificate issuer: /CN=535a0905ad5684f414182c99e1ed998163093001
Certificate serial: 0DB1C3F5
Authority key identifier: 53:5A:09:05:AD:56:84:F4:14:18:2C:99:E1:ED:99:81:63:09:30:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1oJBa1WhPQUGCyZ4e2ZgWMJMAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/IEQe28Co9qWFS7xCwZvjrit6Sbg.roa
Signing time: Sat 01 Jan 2022 04:58:40 +0000
ROA not before: Sat 01 Jan 2022 04:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205265
IP address blocks: 185.222.16.0/22 maxlen: 24
2a0c:f000::/48 maxlen: 48
2a0c:f000:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229753845 (0xdb1c3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535a0905ad5684f414182c99e1ed998163093001
Validity
Not Before: Jan 1 04:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20441edbc0a8f6a5854bbc42c19be3ae2b7a49b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:08:54:de:ec:e9:b4:55:ff:6b:ac:80:17:58:
ce:59:f9:47:2e:17:13:9a:fe:71:94:2c:3d:82:0c:
f9:3a:55:43:e9:bf:ca:6d:2a:15:64:90:2d:f0:ac:
c1:9f:ab:e7:9f:2d:d3:44:6f:79:07:de:85:6c:f3:
96:aa:cf:83:93:3a:00:fa:46:93:fb:e1:4c:87:f5:
60:5d:a9:68:97:9f:fe:ef:3d:4f:e4:d4:80:58:10:
ef:85:78:e2:dd:a1:0d:9b:f0:82:56:44:30:a6:b3:
93:d0:d6:3e:89:c3:18:4b:42:22:a1:ad:48:1b:f8:
98:2d:e0:31:b0:21:d3:4e:2f:7c:07:9a:2d:b6:18:
52:10:38:a1:8b:43:b6:a4:08:16:41:a3:e5:c5:60:
50:3d:f9:31:0b:fa:88:8f:8b:01:68:a2:f9:8b:74:
ba:42:cf:24:c8:ad:e3:a0:e4:7e:11:3b:7b:57:4f:
ea:f5:ff:96:ad:d4:12:f8:3d:bd:93:3e:6e:eb:ef:
cd:8c:7c:06:ea:db:fe:a1:70:4c:c8:f8:ac:2d:12:
63:af:40:f9:c2:e6:ea:44:58:d1:42:9e:f5:25:8e:
a3:f0:b5:cf:22:1a:42:77:26:b5:0f:76:d5:1b:e8:
72:05:71:1b:32:97:f7:6c:1a:c6:e5:14:16:27:c8:
52:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:44:1E:DB:C0:A8:F6:A5:85:4B:BC:42:C1:9B:E3:AE:2B:7A:49:B8
X509v3 Authority Key Identifier:
keyid:53:5A:09:05:AD:56:84:F4:14:18:2C:99:E1:ED:99:81:63:09:30:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1oJBa1WhPQUGCyZ4e2ZgWMJMAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/IEQe28Co9qWFS7xCwZvjrit6Sbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/U1oJBa1WhPQUGCyZ4e2ZgWMJMAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.16.0/22
IPv6:
2a0c:f000::/48
2a0c:f000:2000::/48
Signature Algorithm: sha256WithRSAEncryption
2a:9b:32:81:9e:10:85:90:54:91:88:49:41:8f:22:4a:16:de:
87:c3:9d:05:1d:cf:1f:24:00:83:31:ea:a8:fd:f5:df:b1:72:
d7:93:52:f5:ba:14:c8:5a:be:d6:a3:d4:01:9b:4e:fb:96:26:
ae:76:16:d1:af:58:b7:98:38:bd:fd:b8:6b:35:ef:44:2b:e3:
53:63:3e:3c:5d:be:d7:46:b6:a6:c3:f7:f5:14:66:32:ce:f6:
2d:da:d4:23:e5:a9:65:f9:5b:88:fc:30:fc:1c:f6:75:63:af:
6a:ce:f5:51:c6:d7:e6:2e:3a:04:2b:e4:03:26:16:54:5b:48:
71:33:ac:6f:3f:0f:78:b3:30:57:58:66:7a:d4:a2:de:d5:80:
7d:ff:98:df:51:d9:33:80:18:c2:ae:16:13:a6:6f:ae:9d:fc:
07:74:f5:a2:56:4a:38:c6:52:f1:55:01:9b:e3:1f:47:9f:de:
cb:34:d2:30:10:8a:54:5e:6b:dd:61:12:dc:5f:6b:da:18:72:
b1:7c:c4:06:c7:55:b2:22:d5:59:e5:56:35:67:18:32:98:f5:
58:4a:31:84:7e:9b:c9:6a:ac:00:32:88:65:56:5f:e4:18:db:
22:a2:18:b4:9d:b3:45:b3:a8:fb:5e:03:8b:fe:e6:03:61:8f:
b7:3b:7a:ce
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEDbHD9TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MzVhMDkwNWFkNTY4NGY0MTQxODJjOTllMWVkOTk4MTYzMDkzMDAxMB4XDTIyMDEw
MTA0NTg0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjA0NDFlZGJjMGE4
ZjZhNTg1NGJiYzQyYzE5YmUzYWUyYjdhNDliODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANoIVN7s6bRV/2usgBdYzln5Ry4XE5r+cZQsPYIM+TpVQ+m/
ym0qFWSQLfCswZ+r558t00RveQfehWzzlqrPg5M6APpGk/vhTIf1YF2paJef/u89
T+TUgFgQ74V44t2hDZvwglZEMKazk9DWPonDGEtCIqGtSBv4mC3gMbAh004vfAea
LbYYUhA4oYtDtqQIFkGj5cVgUD35MQv6iI+LAWii+Yt0ukLPJMit46DkfhE7e1dP
6vX/lq3UEvg9vZM+buvvzYx8Burb/qFwTMj4rC0SY69A+cLm6kRY0UKe9SWOo/C1
zyIaQncmtQ921RvocgVxGzKX92waxuUUFifIUucCAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBQgRB7bwKj2pYVLvELBm+OuK3pJuDAfBgNVHSMEGDAWgBRTWgkFrVaE9BQY
LJnh7ZmBYwkwATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Uxb0pCYTFXaFBRVUdDeVo0ZTJaZ1dNSk1BRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTUvYjI3YmFmLWU2ODEtNGFiNi1iOTAzLTZhMTBjNmUzMjIyZC8x
L0lFUWUyOENvOXFXRlM3eEN3WnZqcml0NlNiZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTUv
YjI3YmFmLWU2ODEtNGFiNi1iOTAzLTZhMTBjNmUzMjIyZC8xL1Uxb0pCYTFXaFBR
VUdDeVo0ZTJaZ1dNSk1BRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwDAQCAAEwBgMEArneEDAYBAIAAjASAwcAKgzwAAAA
AwcAKgzwACAAMA0GCSqGSIb3DQEBCwUAA4IBAQAqmzKBnhCFkFSRiElBjyJKFt6H
w50FHc8fJACDMeqo/fXfsXLXk1L1uhTIWr7Wo9QBm077liaudhbRr1i3mDi9/bhr
Ne9EK+NTYz48Xb7XRramw/f1FGYyzvYt2tQj5all+VuI/DD8HPZ1Y69qzvVRxtfm
LjoEK+QDJhZUW0hxM6xvPw94szBXWGZ61KLe1YB9/5jfUdkzgBjCrhYTpm+unfwH
dPWiVko4xlLxVQGb4x9Hn97LNNIwEIpUXmvdYRLcX2vaGHKxfMQGx1WyItVZ5VY1
ZxgymPVYSjGEfpvJaqwAMohlVl/kGNsiohi0nbNFs6j7XgOL/uYDYY+3O3rO
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:53 2023 by rpki-client on console.sobornost.net