Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/09aa61-87d7-4f53-9818-dec21eefa38b/1/u1dlBMKpj6EFJe4rXI1hUBX-5bQ.roa
File: u1dlBMKpj6EFJe4rXI1hUBX-5bQ.roa (raw, json)
Hash identifier: aZa4XTshBC8o86NrofQYgF7IrtvcMuY24pGnqGw6RAg=
Subject key identifier: BB:57:65:04:C2:A9:8F:A1:05:25:EE:2B:5C:8D:61:50:15:FE:E5:B4
Certificate issuer: /CN=d73492e4d25c3bbd0c5e20c5a85ecb22ec97360a
Certificate serial: 934776
Authority key identifier: D7:34:92:E4:D2:5C:3B:BD:0C:5E:20:C5:A8:5E:CB:22:EC:97:36:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zSS5NJcO70MXiDFqF7LIuyXNgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/09aa61-87d7-4f53-9818-dec21eefa38b/1/u1dlBMKpj6EFJe4rXI1hUBX-5bQ.roa
Signing time: Sat 01 Jan 2022 02:52:13 +0000
ROA not before: Sat 01 Jan 2022 02:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208715
IP address blocks: 37.140.252.0/24 maxlen: 25
185.200.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9652086 (0x934776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d73492e4d25c3bbd0c5e20c5a85ecb22ec97360a
Validity
Not Before: Jan 1 02:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb576504c2a98fa10525ee2b5c8d615015fee5b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:42:b2:f9:6b:9d:cf:b0:5f:45:e3:9a:61:b7:
0f:2c:a9:1d:52:38:13:5a:bd:f7:4f:43:1a:89:41:
01:78:36:49:51:36:b6:d6:51:dd:b9:8e:11:24:f6:
66:17:49:72:2b:b6:87:02:67:ee:05:92:76:37:9b:
fd:93:c7:df:e6:37:aa:5b:ff:9b:b4:67:74:db:1b:
54:12:05:96:f6:4f:bd:34:59:3c:f5:d6:85:c4:45:
92:f0:55:84:d2:8c:75:ad:84:e1:ed:58:70:1f:d6:
0a:c7:0b:36:40:30:28:6d:24:be:dc:df:23:31:7b:
21:bc:dd:79:12:cd:70:f2:0e:98:b6:fb:93:be:de:
57:05:6b:db:f4:45:27:fb:d5:e6:57:74:aa:93:82:
37:7b:12:fb:74:82:0e:08:65:89:70:59:d7:5b:45:
fe:7f:b1:e7:9e:d6:7f:54:56:27:fc:3c:b9:11:59:
9a:dd:b2:2a:5d:ab:1f:a7:53:e9:13:50:85:83:6e:
8e:49:76:30:3a:5a:2c:61:2f:fd:12:5c:7d:3a:30:
70:4a:61:25:6d:a5:b7:b2:fc:71:30:8b:94:0f:a9:
6d:bc:f5:f9:ca:69:37:e2:1e:f1:2c:3c:32:4a:0f:
2a:96:26:20:c8:e7:50:a6:6d:c0:6c:c0:d5:cc:08:
77:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:57:65:04:C2:A9:8F:A1:05:25:EE:2B:5C:8D:61:50:15:FE:E5:B4
X509v3 Authority Key Identifier:
keyid:D7:34:92:E4:D2:5C:3B:BD:0C:5E:20:C5:A8:5E:CB:22:EC:97:36:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zSS5NJcO70MXiDFqF7LIuyXNgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/09aa61-87d7-4f53-9818-dec21eefa38b/1/u1dlBMKpj6EFJe4rXI1hUBX-5bQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/09aa61-87d7-4f53-9818-dec21eefa38b/1/1zSS5NJcO70MXiDFqF7LIuyXNgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.252.0/24
185.200.132.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:ac:82:4e:60:d9:a8:09:6e:11:b9:77:92:80:80:cc:f5:5e:
3b:79:d2:e0:3b:26:fb:47:41:1f:94:2f:b2:14:cf:56:32:b1:
55:1f:81:ed:51:be:a4:41:49:5a:4e:0d:e3:43:6f:13:0a:10:
ef:f5:64:7e:e1:c9:73:42:0f:64:fa:ff:95:c6:99:61:73:a7:
f7:71:2b:a0:d0:44:67:15:22:e5:fb:fd:37:27:ef:e1:2a:3c:
7b:38:17:19:b0:98:4f:a8:c7:f7:bc:1d:84:08:14:36:e0:dc:
9d:33:65:82:08:90:52:2a:25:d1:55:bf:c0:60:f4:14:9f:7d:
fa:56:0c:4b:33:8c:5a:d9:b6:d3:e3:cb:d8:2f:34:44:8c:1f:
2e:cb:b7:fd:34:56:50:d8:86:f9:4e:59:57:69:07:de:54:c9:
71:9d:2a:88:8a:ad:34:b2:b8:b2:82:52:c9:6a:17:ca:ec:8f:
62:71:45:39:34:8b:f2:f4:e8:0b:8c:6d:75:65:37:4f:ae:f1:
9b:76:ed:c8:b5:6a:78:29:32:b5:bb:0a:be:04:59:36:56:e4:
f9:20:dd:26:35:30:ed:92:e4:82:d7:94:d1:d9:d8:14:ef:2c:
ec:70:e0:8c:a7:75:c4:ca:28:f6:98:eb:01:72:cd:5e:3f:c6:
e2:e1:e6:e0
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAJNHdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzM0OTJlNGQyNWMzYmJkMGM1ZTIwYzVhODVlY2IyMmVjOTczNjBhMB4XDTIyMDEw
MTAyNTIxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmI1NzY1MDRjMmE5
OGZhMTA1MjVlZTJiNWM4ZDYxNTAxNWZlZTViNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMtCsvlrnc+wX0XjmmG3DyypHVI4E1q9909DGolBAXg2SVE2
ttZR3bmOEST2ZhdJciu2hwJn7gWSdjeb/ZPH3+Y3qlv/m7RndNsbVBIFlvZPvTRZ
PPXWhcRFkvBVhNKMda2E4e1YcB/WCscLNkAwKG0kvtzfIzF7IbzdeRLNcPIOmLb7
k77eVwVr2/RFJ/vV5ld0qpOCN3sS+3SCDghliXBZ11tF/n+x557Wf1RWJ/w8uRFZ
mt2yKl2rH6dT6RNQhYNujkl2MDpaLGEv/RJcfTowcEphJW2lt7L8cTCLlA+pbbz1
+cppN+Ie8Sw8MkoPKpYmIMjnUKZtwGzA1cwId2MCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBS7V2UEwqmPoQUl7itcjWFQFf7ltDAfBgNVHSMEGDAWgBTXNJLk0lw7vQxe
IMWoXssi7Jc2CjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzF6U1M1TkpjTzcwTVhpREZxRjdMSXV5WE5nby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvMDlhYTYxLTg3ZDctNGY1My05ODE4LWRlYzIxZWVmYTM4Yi8x
L3UxZGxCTUtwajZFRkplNHJYSTFoVUJYLTViUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
MDlhYTYxLTg3ZDctNGY1My05ODE4LWRlYzIxZWVmYTM4Yi8xLzF6U1M1TkpjTzcw
TVhpREZxRjdMSXV5WE5nby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEACWM/AMEArnIhDANBgkqhkiG9w0B
AQsFAAOCAQEAyayCTmDZqAluEbl3koCAzPVeO3nS4Dsm+0dBH5QvshTPVjKxVR+B
7VG+pEFJWk4N40NvEwoQ7/VkfuHJc0IPZPr/lcaZYXOn93EroNBEZxUi5fv9Nyfv
4So8ezgXGbCYT6jH97wdhAgUNuDcnTNlggiQUiol0VW/wGD0FJ99+lYMSzOMWtm2
0+PL2C80RIwfLsu3/TRWUNiG+U5ZV2kH3lTJcZ0qiIqtNLK4soJSyWoXyuyPYnFF
OTSL8vToC4xtdWU3T67xm3btyLVqeCkytbsKvgRZNlbk+SDdJjUw7ZLkgteU0dnY
FO8s7HDgjKd1xMoo9pjrAXLNXj/G4uHm4A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:58 2024 by rpki-client on console-fra.rpki-client.org