Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/5S_xv9Jdqf-Y_Gn4FV-p1WgIdcg.roa
File: 5S_xv9Jdqf-Y_Gn4FV-p1WgIdcg.roa (raw, json)
Hash identifier: vFuM4DmSoIzgjMdUugBl50SDUBHCCLIXj8A1zCRQB6Y=
Subject key identifier: E5:2F:F1:BF:D2:5D:A9:FF:98:FC:69:F8:15:5F:A9:D5:68:08:75:C8
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AF57C57
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/5S_xv9Jdqf-Y_Gn4FV-p1WgIdcg.roa
Signing time: Sat 01 Jan 2022 13:57:56 +0000
ROA not before: Sat 01 Jan 2022 13:57:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57321
IP address blocks: 85.202.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 720731223 (0x2af57c57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e52ff1bfd25da9ff98fc69f8155fa9d5680875c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:48:6d:88:b7:04:e2:b6:49:18:06:fb:9f:97:
e2:39:87:ec:36:7a:0e:a7:d5:0f:8a:be:01:3e:59:
1c:05:ae:fd:71:b3:a4:27:05:0b:b1:ff:66:ef:80:
c5:19:1c:d0:26:aa:52:59:6b:6c:af:e4:90:65:9e:
5e:4c:23:2e:13:13:17:2a:1a:38:7b:d4:42:be:fc:
2a:0f:64:7c:f2:3c:6c:fe:ff:0d:0c:76:af:5c:cb:
ab:b3:43:f6:12:f3:91:bd:a2:9a:5c:b9:93:b1:92:
d3:bb:67:d5:2d:9e:91:b2:05:18:92:0f:84:7e:0e:
73:e3:e8:13:a9:07:88:48:19:c1:ec:9e:2e:0d:7f:
67:2e:a7:db:2b:77:73:09:50:36:9e:4c:5b:df:4e:
44:76:c3:d9:b1:f7:b2:d8:7d:19:30:09:92:19:56:
09:af:17:8e:d2:e1:b0:f2:b7:48:19:eb:47:d7:42:
d3:8a:4f:61:60:71:59:03:93:a3:54:4c:02:c7:71:
28:3e:a5:fd:15:89:ab:2e:07:d3:09:21:0c:d6:a5:
0a:6d:61:f4:ee:44:85:52:c5:f0:44:bf:08:14:ed:
a4:20:bd:9c:cd:a9:80:ae:79:ad:52:d5:89:f4:d8:
7e:45:ee:a5:67:2f:8c:84:f9:b3:68:5c:02:0e:30:
4e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2F:F1:BF:D2:5D:A9:FF:98:FC:69:F8:15:5F:A9:D5:68:08:75:C8
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/5S_xv9Jdqf-Y_Gn4FV-p1WgIdcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.52.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:11:79:eb:fa:e7:65:ae:50:18:49:ff:a4:18:fc:44:02:97:
27:c3:f3:12:fb:c1:7c:9f:68:b9:0c:12:4b:53:f8:5a:a7:ee:
84:26:44:f5:80:ea:6e:e1:5c:47:93:5c:1c:42:3e:cc:3c:93:
97:59:67:04:0b:5f:87:6c:65:99:67:95:b8:83:a0:c2:29:5a:
2b:a3:c1:4d:36:ee:87:37:39:de:52:21:3d:ba:60:f5:71:67:
a7:60:97:cd:53:2c:7f:f5:03:3c:50:9c:f7:be:3f:f3:3d:26:
ee:a9:ac:9e:57:c2:6f:b4:86:a6:1f:5b:b1:a3:51:63:e7:4c:
e2:fd:0d:bb:76:62:1a:a7:8b:82:20:d7:23:48:69:b6:c0:ce:
89:12:8c:e5:2d:dc:cb:b4:6d:59:26:cc:1b:3d:6d:19:90:69:
83:e6:9c:5f:2b:ce:a9:a7:81:e9:59:85:ff:2e:57:07:93:88:
79:ec:f7:cf:f9:a6:08:4b:b5:e3:f2:f5:93:08:b5:d2:73:eb:
57:15:0c:cc:64:e2:25:27:8a:c3:d2:bd:11:4b:c3:7f:77:52:
ec:ac:ba:a8:cd:48:6c:92:5a:c8:d3:9a:ad:7f:3c:6d:68:b3:
06:6f:65:72:f6:bf:4f:31:53:05:ff:a9:30:9d:be:72:5e:97:
a7:31:05:82
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKvV8VzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTk1NDQ5OTk3NzI3OGE3NTU3MGIzNDAzZjRkM2FhMDBiMWIzNmU4MB4XDTIyMDEw
MTEzNTc1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTUyZmYxYmZkMjVk
YTlmZjk4ZmM2OWY4MTU1ZmE5ZDU2ODA4NzVjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANRIbYi3BOK2SRgG+5+X4jmH7DZ6DqfVD4q+AT5ZHAWu/XGz
pCcFC7H/Zu+AxRkc0CaqUllrbK/kkGWeXkwjLhMTFyoaOHvUQr78Kg9kfPI8bP7/
DQx2r1zLq7ND9hLzkb2imly5k7GS07tn1S2ekbIFGJIPhH4Oc+PoE6kHiEgZweye
Lg1/Zy6n2yt3cwlQNp5MW99ORHbD2bH3sth9GTAJkhlWCa8XjtLhsPK3SBnrR9dC
04pPYWBxWQOTo1RMAsdxKD6l/RWJqy4H0wkhDNalCm1h9O5EhVLF8ES/CBTtpCC9
nM2pgK55rVLVifTYfkXupWcvjIT5s2hcAg4wThECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTlL/G/0l2p/5j8afgVX6nVaAh1yDAfBgNVHSMEGDAWgBS5lUSZl3J4p1Vw
s0A/TTqgCxs26DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8x
LzVTX3h2OUpkcWYtWV9HbjRGVi1wMVdnSWRjZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Nzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8xL3VaVkVtWmR5ZUtk
VmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXKNDANBgkqhkiG9w0BAQsFAAOC
AQEAHhF56/rnZa5QGEn/pBj8RAKXJ8PzEvvBfJ9ouQwSS1P4WqfuhCZE9YDqbuFc
R5NcHEI+zDyTl1lnBAtfh2xlmWeVuIOgwilaK6PBTTbuhzc53lIhPbpg9XFnp2CX
zVMsf/UDPFCc974/8z0m7qmsnlfCb7SGph9bsaNRY+dM4v0Nu3ZiGqeLgiDXI0hp
tsDOiRKM5S3cy7RtWSbMGz1tGZBpg+acXyvOqaeB6VmF/y5XB5OIeez3z/mmCEu1
4/L1kwi10nPrVxUMzGTiJSeKw9K9EUvDf3dS7Ky6qM1IbJJayNOarX88bWizBm9l
cva/TzFTBf+pMJ2+cl6XpzEFgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org