Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/4e10c9-8652-4c84-b99f-e96f96cc9dbd/1/S82ODtYjpfgpV13OCduOaitlG4g.roa
File: S82ODtYjpfgpV13OCduOaitlG4g.roa (raw, json)
Hash identifier: II6swK+qXoSifjqdKZrG6psdMa08KwNLUKZyw+0WoHo=
Subject key identifier: 4B:CD:8E:0E:D6:23:A5:F8:29:57:5D:CE:09:DB:8E:6A:2B:65:1B:88
Certificate issuer: /CN=cde28f1f18099babf0a19088bea35ba084ec9297
Certificate serial: 0205B4
Authority key identifier: CD:E2:8F:1F:18:09:9B:AB:F0:A1:90:88:BE:A3:5B:A0:84:EC:92:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zeKPHxgJm6vwoZCIvqNboITskpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/4e10c9-8652-4c84-b99f-e96f96cc9dbd/1/S82ODtYjpfgpV13OCduOaitlG4g.roa
Signing time: Tue 25 Jan 2022 13:18:54 +0000
ROA not before: Tue 25 Jan 2022 13:18:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210751
IP address blocks: 185.238.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132532 (0x205b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cde28f1f18099babf0a19088bea35ba084ec9297
Validity
Not Before: Jan 25 13:18:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bcd8e0ed623a5f829575dce09db8e6a2b651b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a7:cc:23:c9:7b:7a:4c:37:f1:14:17:30:b5:
a9:ec:6f:71:69:bc:72:fd:0d:00:f1:c6:b2:fb:71:
73:81:64:7f:a5:de:7b:dd:40:e1:f6:57:ea:0c:25:
26:d8:5c:5a:a7:49:ab:5c:24:3f:81:3a:d7:a8:53:
0e:08:c5:a0:b1:95:99:85:17:cd:50:79:82:33:02:
f0:a3:a6:10:71:37:88:e0:f9:30:96:10:ce:53:82:
85:14:15:3d:09:00:ae:f5:a6:98:ef:14:ec:c1:d6:
ad:82:25:f6:50:20:32:51:3a:9b:5f:f2:74:b1:31:
7c:8f:16:61:d1:bf:87:48:56:2b:3b:0f:b4:a5:f7:
cf:1a:67:43:8e:b5:1f:fe:dc:e5:08:ad:62:00:b3:
ed:5b:78:b4:0d:26:38:04:07:e0:35:8f:f0:42:f6:
b8:f7:33:ac:9c:a1:e9:53:e9:c7:72:a3:ed:07:f1:
47:b1:bc:af:44:2b:f6:51:4d:12:90:7e:0d:e2:a3:
7c:74:38:b9:b8:67:c0:63:cd:7d:74:08:36:35:94:
4f:88:8e:11:fb:6a:36:16:6e:67:74:d0:65:c2:72:
33:ab:94:8f:46:e9:cb:2a:1d:d7:dc:d1:3b:a1:d9:
22:99:61:3b:9d:72:98:4b:3f:6f:bf:ed:c2:f9:8b:
23:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CD:8E:0E:D6:23:A5:F8:29:57:5D:CE:09:DB:8E:6A:2B:65:1B:88
X509v3 Authority Key Identifier:
keyid:CD:E2:8F:1F:18:09:9B:AB:F0:A1:90:88:BE:A3:5B:A0:84:EC:92:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zeKPHxgJm6vwoZCIvqNboITskpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4e10c9-8652-4c84-b99f-e96f96cc9dbd/1/S82ODtYjpfgpV13OCduOaitlG4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4e10c9-8652-4c84-b99f-e96f96cc9dbd/1/zeKPHxgJm6vwoZCIvqNboITskpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.113.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e6:af:22:37:ab:55:75:d0:1a:5f:60:cb:77:72:34:84:d1:
51:43:f8:98:71:2f:dc:94:24:de:18:ce:1f:8a:68:40:23:d8:
8d:94:91:20:af:43:fd:d0:98:89:46:3d:dc:ea:5a:90:0a:8c:
4e:43:7f:b0:7d:29:02:0c:26:45:2f:5e:1e:27:98:b1:97:63:
b0:90:5a:5c:51:8b:7f:08:f1:d6:23:20:13:b4:55:1b:6e:82:
2a:6e:50:f5:93:4d:60:93:bd:11:b6:f8:61:95:0f:bb:0e:a4:
4a:6b:0d:f7:10:6d:66:94:ca:9d:3a:73:d8:3f:ea:2a:6a:5d:
c0:bb:c9:34:e0:49:15:4c:8d:e7:11:bb:d0:05:90:a6:ae:c5:
14:9d:f6:fc:3b:42:ac:e0:cf:3d:9f:db:bf:5b:96:91:97:64:
d1:f4:91:cb:45:90:7e:97:00:35:22:ba:6c:29:33:b6:d6:d0:
ee:9b:c8:cc:89:25:70:64:f0:b9:57:9e:45:90:23:bc:4d:46:
cf:95:e8:4b:62:7e:9d:05:8e:3a:0f:09:1a:48:1b:0b:d2:81:
94:25:30:0a:99:0b:9c:5c:e7:c1:00:54:dc:94:fb:75:3e:cf:
cb:b6:e4:de:9a:a4:23:f1:62:de:f2:67:95:13:79:f4:cc:00:
f9:16:38:10
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAgW0MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNk
ZTI4ZjFmMTgwOTliYWJmMGExOTA4OGJlYTM1YmEwODRlYzkyOTcwHhcNMjIwMTI1
MTMxODU0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0YmNkOGUwZWQ2MjNh
NWY4Mjk1NzVkY2UwOWRiOGU2YTJiNjUxYjg4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAiqfMI8l7ekw38RQXMLWp7G9xabxy/Q0A8cay+3FzgWR/pd57
3UDh9lfqDCUm2Fxap0mrXCQ/gTrXqFMOCMWgsZWZhRfNUHmCMwLwo6YQcTeI4Pkw
lhDOU4KFFBU9CQCu9aaY7xTswdatgiX2UCAyUTqbX/J0sTF8jxZh0b+HSFYrOw+0
pffPGmdDjrUf/tzlCK1iALPtW3i0DSY4BAfgNY/wQva49zOsnKHpU+nHcqPtB/FH
sbyvRCv2UU0SkH4N4qN8dDi5uGfAY819dAg2NZRPiI4R+2o2Fm5ndNBlwnIzq5SP
RunLKh3X3NE7odkimWE7nXKYSz9vv+3C+YsjUQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEvNjg7WI6X4KVddzgnbjmorZRuIMB8GA1UdIwQYMBaAFM3ijx8YCZur8KGQ
iL6jW6CE7JKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
emVLUEh4Z0ptNnZ3b1pDSXZxTmJvSVRza3BjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lNi80ZTEwYzktODY1Mi00Yzg0LWI5OWYtZTk2Zjk2Y2M5ZGJkLzEv
UzgyT0R0WWpwZmdwVjEzT0NkdU9haXRsRzRnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi80
ZTEwYzktODY1Mi00Yzg0LWI5OWYtZTk2Zjk2Y2M5ZGJkLzEvemVLUEh4Z0ptNnZ3
b1pDSXZxTmJvSVRza3BjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue5xMA0GCSqGSIb3DQEBCwUAA4IB
AQAp5q8iN6tVddAaX2DLd3I0hNFRQ/iYcS/clCTeGM4fimhAI9iNlJEgr0P90JiJ
Rj3c6lqQCoxOQ3+wfSkCDCZFL14eJ5ixl2OwkFpcUYt/CPHWIyATtFUbboIqblD1
k01gk70RtvhhlQ+7DqRKaw33EG1mlMqdOnPYP+oqal3Au8k04EkVTI3nEbvQBZCm
rsUUnfb8O0Ks4M89n9u/W5aRl2TR9JHLRZB+lwA1IrpsKTO21tDum8jMiSVwZPC5
V55FkCO8TUbPlehLYn6dBY46DwkaSBsL0oGUJTAKmQucXOfBAFTclPt1Ps/LtuTe
mqQj8WLe8meVE3n0zAD5FjgQ
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:55 2023 by rpki-client on console.sobornost.net