Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/sp4VJY897B1We6UQLx9cRs3KR_M.roa
File: sp4VJY897B1We6UQLx9cRs3KR_M.roa (raw, json)
Hash identifier: VtePsWEFsH+u3xIY16q2XrdySpPHSOrawuzUOJ+hFnw=
Subject key identifier: B2:9E:15:25:8F:3D:EC:1D:56:7B:A5:10:2F:1F:5C:46:CD:CA:47:F3
Certificate issuer: /CN=1c233eee624c192c6c7dada1432de0b9e78b09ba
Certificate serial: 01823E88202B0E4096B6CDC3C74838B33B93
Authority key identifier: 1C:23:3E:EE:62:4C:19:2C:6C:7D:AD:A1:43:2D:E0:B9:E7:8B:09:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCM-7mJMGSxsfa2hQy3gueeLCbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/sp4VJY897B1We6UQLx9cRs3KR_M.roa
Signing time: Wed 27 Jul 2022 07:21:24 +0000
ROA not before: Wed 27 Jul 2022 07:21:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209551
IP address blocks: 185.146.204.0/22 maxlen: 32
185.74.216.0/22 maxlen: 32
5.154.160.0/21 maxlen: 32
185.192.28.0/22 maxlen: 32
2a11:8040::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3e:88:20:2b:0e:40:96:b6:cd:c3:c7:48:38:b3:3b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c233eee624c192c6c7dada1432de0b9e78b09ba
Validity
Not Before: Jul 27 07:21:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b29e15258f3dec1d567ba5102f1f5c46cdca47f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:1e:73:3f:99:59:d1:eb:c8:02:a6:a2:e4:
df:85:a6:8b:72:72:b1:5d:e7:92:db:33:59:27:0d:
3d:87:0f:5d:e9:3f:7f:90:a8:35:e8:b4:26:da:ee:
90:22:cd:7f:a0:77:cd:74:8e:19:fe:8e:81:fe:94:
e7:68:92:20:99:b8:0f:1f:87:63:c9:3c:ae:1c:67:
97:3b:63:9a:dc:45:70:d3:d6:78:21:e4:b0:44:b1:
e7:88:c7:17:b9:36:aa:8a:60:44:3b:5c:54:c2:5d:
d2:48:16:f6:89:c9:08:50:26:08:26:81:97:87:f4:
62:cf:0a:eb:68:e8:9f:87:b2:b0:34:79:8d:38:49:
05:64:31:11:6f:36:dd:8d:cd:84:22:e8:26:58:46:
43:7e:e7:aa:8d:5c:9a:fb:c8:5c:cc:a3:82:32:36:
2f:b1:10:fd:18:60:16:ad:6e:a7:b4:20:66:6e:58:
25:23:f8:2d:9d:a7:6b:b6:a2:71:26:6e:f8:89:56:
5d:f9:21:20:8f:cd:52:37:80:75:c7:01:18:1c:84:
67:35:96:52:c9:a7:5b:ee:e7:2a:d8:a5:93:bf:88:
b8:e9:6d:92:51:71:f2:84:0a:15:71:25:88:8e:79:
6c:4c:2a:da:40:e1:da:d4:fb:87:95:8c:3c:62:49:
78:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9E:15:25:8F:3D:EC:1D:56:7B:A5:10:2F:1F:5C:46:CD:CA:47:F3
X509v3 Authority Key Identifier:
keyid:1C:23:3E:EE:62:4C:19:2C:6C:7D:AD:A1:43:2D:E0:B9:E7:8B:09:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCM-7mJMGSxsfa2hQy3gueeLCbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/sp4VJY897B1We6UQLx9cRs3KR_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c5bef7-25b3-4463-b3bf-57a951f49930/1/HCM-7mJMGSxsfa2hQy3gueeLCbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.160.0/21
185.74.216.0/22
185.146.204.0/22
185.192.28.0/22
IPv6:
2a11:8040::/29
Signature Algorithm: sha256WithRSAEncryption
67:10:d7:80:77:46:60:60:6b:8c:cb:74:29:ca:2b:c0:32:91:
14:64:4e:ee:1c:38:21:da:ca:56:77:fa:46:2c:5a:ea:25:d0:
a4:f0:53:3d:6c:aa:14:37:cd:d3:9d:64:75:34:08:e9:4d:7e:
74:40:c7:7e:2b:56:fd:85:17:46:69:47:3c:e3:f6:2d:d5:ad:
d2:99:bc:c1:b7:39:0f:0f:de:02:74:05:48:7c:a9:ff:46:95:
05:90:c6:1f:5c:e5:ac:25:5c:8a:73:3d:9f:6d:6f:b0:30:6b:
47:6a:3b:c8:1a:ff:33:fa:f4:ce:a2:69:47:61:c5:a1:85:27:
ca:86:0d:92:2a:1f:11:ad:16:24:a5:20:68:ee:a9:b3:22:b7:
33:79:5f:f6:0d:b7:c4:94:9a:c0:df:79:08:f7:85:48:8e:00:
a5:0d:e8:65:fa:a2:09:d2:92:ab:91:50:9f:4a:aa:93:ee:6b:
fc:a9:1c:9d:71:5d:ac:fc:76:19:c3:81:c8:f2:43:dd:7c:9a:
8c:d9:25:58:8c:51:a1:9a:dd:d5:5c:fd:30:db:96:5b:61:26:
6d:61:fb:ce:b6:44:cc:68:ac:e7:a4:85:fd:fa:64:7b:dc:56:
ec:7f:88:50:7d:99:cd:0d:93:3a:47:d0:6b:5c:8a:8c:68:7c:
2b:83:98:bd
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYI+iCArDkCWts3Dx0g4szuTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjMzZWVlNjI0YzE5MmM2YzdkYWRhMTQzMmRlMGI5ZTc4
YjA5YmEwHhcNMjIwNzI3MDcyMTI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjllMTUyNThmM2RlYzFkNTY3YmE1MTAyZjFmNWM0NmNkY2E0N2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQIecz+ZWdHryAKmouTfhaaLcnKx
XeeS2zNZJw09hw9d6T9/kKg16LQm2u6QIs1/oHfNdI4Z/o6B/pTnaJIgmbgPH4dj
yTyuHGeXO2Oa3EVw09Z4IeSwRLHniMcXuTaqimBEO1xUwl3SSBb2ickIUCYIJoGX
h/RizwrraOifh7KwNHmNOEkFZDERbzbdjc2EIugmWEZDfueqjVya+8hczKOCMjYv
sRD9GGAWrW6ntCBmblglI/gtnadrtqJxJm74iVZd+SEgj81SN4B1xwEYHIRnNZZS
yadb7ucq2KWTv4i46W2SUXHyhAoVcSWIjnlsTCraQOHa1PuHlYw8Ykl47wIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFLKeFSWPPewdVnulEC8fXEbNykfzMB8GA1UdIwQY
MBaAFBwjPu5iTBksbH2toUMt4Lnniwm6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENNLTdtSk1HU3hzZmEyaFF5M2d1ZWVMQ2JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9jNWJlZjctMjViMy00NDYzLWIzYmYt
NTdhOTUxZjQ5OTMwLzEvc3A0VkpZODk3QjFXZTZVUUx4OWNSczNLUl9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9jNWJlZjctMjViMy00NDYzLWIzYmYtNTdhOTUxZjQ5OTMw
LzEvSENNLTdtSk1HU3hzZmEyaFF5M2d1ZWVMQ2JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDBZqgAwQC
uUrYAwQCuZLMAwQCucAcMA0EAgACMAcDBQMqEYBAMA0GCSqGSIb3DQEBCwUAA4IB
AQBnENeAd0ZgYGuMy3QpyivAMpEUZE7uHDgh2spWd/pGLFrqJdCk8FM9bKoUN83T
nWR1NAjpTX50QMd+K1b9hRdGaUc84/Yt1a3SmbzBtzkPD94CdAVIfKn/RpUFkMYf
XOWsJVyKcz2fbW+wMGtHajvIGv8z+vTOomlHYcWhhSfKhg2SKh8RrRYkpSBo7qmz
IrczeV/2DbfElJrA33kI94VIjgClDehl+qIJ0pKrkVCfSqqT7mv8qRydcV2s/HYZ
w4HI8kPdfJqM2SVYjFGhmt3VXP0w25ZbYSZtYfvOtkTMaKznpIX9+mR73Fbsf4hQ
fZnNDZM6R9BrXIqMaHwrg5i9
-----END CERTIFICATE-----
Generated at Tue Apr 29 03:39:20 2025 by rpki-client