Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/un7Bmu2BFSdOCsUfwE9pyw0Fsvk.roa
File: un7Bmu2BFSdOCsUfwE9pyw0Fsvk.roa (raw, json)
Hash identifier: Wxr4GtwKN8Khx07rxxIM0LnKDoDKMB/GMvsxXX7p+to=
Subject key identifier: BA:7E:C1:9A:ED:81:15:27:4E:0A:C5:1F:C0:4F:69:CB:0D:05:B2:F9
Certificate issuer: /CN=1ef3cb098d5285020c3be754f8c4ff777aa8a174
Certificate serial: 0A906484
Authority key identifier: 1E:F3:CB:09:8D:52:85:02:0C:3B:E7:54:F8:C4:FF:77:7A:A8:A1:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvPLCY1ShQIMO-dU-MT_d3qooXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/un7Bmu2BFSdOCsUfwE9pyw0Fsvk.roa
Signing time: Sat 01 Jan 2022 00:52:00 +0000
ROA not before: Sat 01 Jan 2022 00:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42013
IP address blocks: 2.58.132.0/24 maxlen: 24
2.58.132.0/23 maxlen: 23
2.58.132.0/22 maxlen: 22
185.99.44.0/24 maxlen: 24
185.99.44.0/22 maxlen: 22
185.99.44.0/23 maxlen: 23
185.99.47.0/24 maxlen: 24
185.99.46.0/24 maxlen: 24
185.99.45.0/24 maxlen: 24
185.99.46.0/23 maxlen: 23
2.58.133.0/24 maxlen: 24
2.58.135.0/24 maxlen: 24
2.58.134.0/23 maxlen: 23
2.58.134.0/24 maxlen: 24
185.61.22.0/23 maxlen: 23
185.61.23.0/24 maxlen: 24
185.61.22.0/24 maxlen: 24
185.61.20.0/22 maxlen: 22
185.61.21.0/24 maxlen: 24
185.61.20.0/23 maxlen: 23
185.61.20.0/24 maxlen: 24
185.209.111.0/24 maxlen: 24
185.209.110.0/24 maxlen: 24
185.209.110.0/23 maxlen: 23
185.209.109.0/24 maxlen: 24
185.209.108.0/24 maxlen: 24
185.209.108.0/22 maxlen: 22
185.209.108.0/23 maxlen: 23
2a0b:4d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177235076 (0xa906484)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef3cb098d5285020c3be754f8c4ff777aa8a174
Validity
Not Before: Jan 1 00:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba7ec19aed8115274e0ac51fc04f69cb0d05b2f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ef:d4:86:93:f7:fc:4f:da:7d:d7:3e:1e:1d:
05:b6:df:b0:66:97:7f:8f:4a:db:3b:a2:1a:f8:0a:
62:10:b4:6e:03:d7:12:b4:bf:52:86:d3:5f:fe:ed:
34:0a:d4:52:c8:2f:f7:f7:72:e2:61:bc:28:e4:f2:
57:4a:1a:18:b7:7f:68:03:0f:5c:e9:54:37:0f:20:
e6:a0:58:38:0d:3a:cb:31:d8:41:98:52:1c:ff:cf:
14:31:31:e3:d1:66:04:e6:8c:b8:dd:09:d3:ba:11:
0e:be:76:8c:44:c6:da:52:b6:8e:82:3d:6f:3f:40:
f4:1f:9c:d2:f6:08:ad:13:8d:d7:d0:6d:dc:b7:66:
28:2a:76:ca:c8:e6:49:bb:6a:ae:1f:f3:31:0b:da:
cd:70:81:0e:4d:1d:13:5d:a9:bc:06:f0:84:e9:e1:
07:82:61:8a:e7:6d:4d:ba:fb:1f:af:18:6a:12:e3:
c0:1d:4f:95:cd:9d:de:de:d8:e7:b0:50:07:99:e0:
0b:19:46:59:1f:0d:6a:b1:fe:c4:12:3f:f3:cd:34:
90:6b:d5:1b:d1:db:47:17:fb:2c:98:ea:ba:23:c9:
1b:9a:7d:4a:80:a6:ce:62:f2:0c:af:22:f2:0a:6e:
f8:8d:87:b9:7e:aa:70:a6:6c:32:f1:b8:03:ce:56:
5a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7E:C1:9A:ED:81:15:27:4E:0A:C5:1F:C0:4F:69:CB:0D:05:B2:F9
X509v3 Authority Key Identifier:
keyid:1E:F3:CB:09:8D:52:85:02:0C:3B:E7:54:F8:C4:FF:77:7A:A8:A1:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvPLCY1ShQIMO-dU-MT_d3qooXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/un7Bmu2BFSdOCsUfwE9pyw0Fsvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/HvPLCY1ShQIMO-dU-MT_d3qooXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.132.0/22
185.61.20.0/22
185.99.44.0/22
185.209.108.0/22
IPv6:
2a0b:4d40::/29
Signature Algorithm: sha256WithRSAEncryption
78:4e:ac:96:3a:5c:69:0d:58:99:11:a0:35:57:80:c9:a3:29:
5d:46:43:08:29:35:eb:9b:97:69:13:fe:5a:b5:01:25:2e:a9:
e2:d4:e7:4c:f3:26:ee:15:cc:86:34:ae:04:32:df:61:05:4e:
6c:80:b3:0a:8b:68:89:b9:39:aa:8e:14:69:d4:49:f9:fc:3f:
0c:17:1f:8f:92:f7:f4:e9:fd:30:d4:eb:d7:4c:f3:78:12:a7:
f5:98:44:86:1d:bd:17:4b:8e:91:3b:e6:75:23:54:d9:1b:a5:
ae:ab:12:bb:3c:5b:c3:88:3e:f1:ff:1b:bf:9f:3a:05:df:06:
cb:aa:b3:46:a8:4b:cf:d5:f8:b5:45:99:10:6e:15:74:92:9a:
d3:b3:2d:7b:ab:2a:14:04:7f:e4:2d:78:90:6e:c1:9f:b4:ef:
76:47:5c:11:97:7f:39:98:a6:7b:d2:c1:28:ed:ff:9c:3d:dd:
0b:ff:84:23:b7:da:34:af:35:a7:3b:38:9a:92:8c:75:ad:08:
24:90:89:c4:8a:4d:9d:cc:88:17:57:2d:5a:fd:e9:93:c9:d3:
de:81:38:57:77:b8:36:e0:95:f5:b6:b7:2d:30:6c:2a:df:b5:
26:f4:2a:12:a9:ce:87:3d:8e:d2:11:7d:d9:d8:cf:89:81:73:
1c:5a:59:23
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIECpBkhDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZWYzY2IwOThkNTI4NTAyMGMzYmU3NTRmOGM0ZmY3NzdhYThhMTc0MB4XDTIyMDEw
MTAwNTIwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmE3ZWMxOWFlZDgx
MTUyNzRlMGFjNTFmYzA0ZjY5Y2IwZDA1YjJmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANXv1IaT9/xP2n3XPh4dBbbfsGaXf49K2zuiGvgKYhC0bgPX
ErS/UobTX/7tNArUUsgv9/dy4mG8KOTyV0oaGLd/aAMPXOlUNw8g5qBYOA06yzHY
QZhSHP/PFDEx49FmBOaMuN0J07oRDr52jETG2lK2joI9bz9A9B+c0vYIrRON19Bt
3LdmKCp2ysjmSbtqrh/zMQvazXCBDk0dE12pvAbwhOnhB4JhiudtTbr7H68YahLj
wB1Plc2d3t7Y57BQB5ngCxlGWR8NarH+xBI/8800kGvVG9HbRxf7LJjquiPJG5p9
SoCmzmLyDK8i8gpu+I2HuX6qcKZsMvG4A85WWq8CAwEAAaOCAiowggImMB0GA1Ud
DgQWBBS6fsGa7YEVJ04KxR/AT2nLDQWy+TAfBgNVHSMEGDAWgBQe88sJjVKFAgw7
51T4xP93eqihdDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0h2UExDWTFTaFFJTU8tZFUtTVRfZDNxb29YUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmUvOTMzODE4LWE1YmItNGQxNi1iNTUxLWY5OTJiMDdmMzIzZi8x
L3VuN0JtdTJCRlNkT0NzVWZ3RTlweXcwRnN2ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmUv
OTMzODE4LWE1YmItNGQxNi1iNTUxLWY5OTJiMDdmMzIzZi8xL0h2UExDWTFTaFFJ
TU8tZFUtTVRfZDNxb29YUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBA
BggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAMEAgI6hAMEArk9FAMEArljLAMEArnR
bDANBAIAAjAHAwUDKgtNQDANBgkqhkiG9w0BAQsFAAOCAQEAeE6sljpcaQ1YmRGg
NVeAyaMpXUZDCCk165uXaRP+WrUBJS6p4tTnTPMm7hXMhjSuBDLfYQVObICzCoto
ibk5qo4UadRJ+fw/DBcfj5L39On9MNTr10zzeBKn9ZhEhh29F0uOkTvmdSNU2Rul
rqsSuzxbw4g+8f8bv586Bd8Gy6qzRqhLz9X4tUWZEG4VdJKa07Mte6sqFAR/5C14
kG7Bn7TvdkdcEZd/OZime9LBKO3/nD3dC/+EI7faNK81pzs4mpKMda0IJJCJxIpN
ncyIF1ctWv3pk8nT3oE4V3e4NuCV9ba3LTBsKt+1JvQqEqnOhz2O0hF92djPiYFz
HFpZIw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:38 2024 by rpki-client on console-ams.rpki-client.org