Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/ssoabwETO5r1x0cPh7uvxTl9pcs.roa
File: ssoabwETO5r1x0cPh7uvxTl9pcs.roa (raw, json)
Hash identifier: US6BgeQKDCyO+vg3Wemx4JMxIwECqslzzU5uki9hNHk=
Subject key identifier: B2:CA:1A:6F:01:13:3B:9A:F5:C7:47:0F:87:BB:AF:C5:39:7D:A5:CB
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 051DF2ED
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/ssoabwETO5r1x0cPh7uvxTl9pcs.roa
Signing time: Sat 01 Jan 2022 09:01:49 +0000
ROA not before: Sat 01 Jan 2022 09:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48430
IP address blocks: 5.252.20.0/22 maxlen: 22
92.118.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85848813 (0x51df2ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 1 09:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2ca1a6f01133b9af5c7470f87bbafc5397da5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9f:5e:bc:7c:f3:a0:6f:a8:35:63:aa:73:7a:
45:a1:a8:c9:76:ab:c8:78:61:f7:d5:bd:b2:89:ba:
01:9d:b3:db:17:c7:f8:cc:b4:3d:a1:b9:d5:d8:37:
58:2a:40:da:9a:e8:f8:4d:3e:a9:dc:c5:a7:b9:b8:
c2:7f:f8:18:f3:77:86:07:c7:3d:7e:d3:86:9f:f4:
98:59:9c:ca:a4:7a:6b:9f:06:69:15:79:76:59:85:
88:33:36:59:f7:d5:e8:8d:1c:80:15:94:24:27:ab:
e0:66:38:f5:72:d4:00:03:c8:41:d4:80:13:63:48:
6a:ea:81:08:06:4b:12:8f:36:7d:4a:c0:7a:4c:c6:
83:0d:79:d0:8e:28:60:06:9e:56:ed:0c:d1:6b:3a:
e1:cd:86:f6:09:9e:9a:7d:cc:e5:27:65:46:cd:0c:
b1:65:79:67:31:a4:3f:64:9f:52:a4:5c:55:88:b1:
f9:e8:4d:68:e7:b7:96:04:ef:c7:63:6f:c6:c1:6e:
c8:65:b0:51:44:2d:e2:6f:17:28:e1:76:1a:dd:43:
10:f6:e4:2c:3f:42:00:54:e6:ae:d3:d0:7d:1a:7b:
0c:f8:7d:d2:37:0f:57:4a:83:d4:5c:3d:75:33:51:
51:7d:42:a1:bf:80:3d:ad:87:49:12:40:80:82:27:
87:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CA:1A:6F:01:13:3B:9A:F5:C7:47:0F:87:BB:AF:C5:39:7D:A5:CB
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/ssoabwETO5r1x0cPh7uvxTl9pcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.20.0/22
92.118.124.0/22
Signature Algorithm: sha256WithRSAEncryption
04:40:17:5c:ff:aa:89:bc:27:5d:1c:3a:1a:df:f2:65:1e:f8:
8a:36:61:69:e2:ae:a6:21:75:42:73:91:9e:78:53:02:a4:f0:
91:00:f5:2f:85:c8:30:76:83:cd:54:61:d3:52:f7:e8:2e:1a:
42:bd:8b:19:58:b9:e1:86:88:c2:a2:e3:29:54:c4:3a:39:94:
e9:a9:a2:b9:0b:a5:03:1c:86:47:05:22:38:1e:a9:c4:6f:a5:
d2:f2:c4:e2:ed:d2:8e:4d:08:5f:69:d8:47:aa:a1:ee:b1:db:
a1:3c:ef:21:89:a8:bb:1c:3b:72:51:4f:08:fd:a8:a1:0c:3f:
18:82:d1:b8:b7:85:ef:7d:fb:0d:62:fe:f6:65:36:5d:f8:4a:
71:27:e0:97:56:cc:00:64:df:c7:f8:81:5c:59:d9:4d:8c:42:
1f:20:6b:d2:c2:d9:61:f8:f4:d4:e2:95:ec:bf:8e:55:6e:cc:
be:3e:19:77:79:f2:86:83:3d:05:51:34:b7:5e:5e:e7:75:8c:
f8:e0:0a:58:29:03:60:d0:2e:e4:f1:94:5c:75:e4:e5:7e:ec:
71:70:0c:f4:5d:11:a4:80:ab:04:e8:bb:13:b8:3e:45:85:71:
ae:32:67:b8:a9:b0:ae:a7:5c:cc:83:9c:27:24:08:a2:cf:7d:
bd:6e:45:a5
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBR3y7TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZDIwZGRkMzk4ZGFjOGY2MmNjMTI1MjYzMjVmMTgyMWZiNzI0Zjc1MB4XDTIyMDEw
MTA5MDE0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjJjYTFhNmYwMTEz
M2I5YWY1Yzc0NzBmODdiYmFmYzUzOTdkYTVjYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJOfXrx886BvqDVjqnN6RaGoyXaryHhh99W9som6AZ2z2xfH
+My0PaG51dg3WCpA2pro+E0+qdzFp7m4wn/4GPN3hgfHPX7Thp/0mFmcyqR6a58G
aRV5dlmFiDM2WffV6I0cgBWUJCer4GY49XLUAAPIQdSAE2NIauqBCAZLEo82fUrA
ekzGgw150I4oYAaeVu0M0Ws64c2G9gmemn3M5SdlRs0MsWV5ZzGkP2SfUqRcVYix
+ehNaOe3lgTvx2NvxsFuyGWwUUQt4m8XKOF2Gt1DEPbkLD9CAFTmrtPQfRp7DPh9
0jcPV0qD1Fw9dTNRUX1Cob+APa2HSRJAgIInh0cCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSyyhpvARM7mvXHRw+Hu6/FOX2lyzAfBgNVHSMEGDAWgBRtIN3TmNrI9izB
JSYyXxgh+3JPdTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JTRGQwNWpheVBZc3dTVW1NbDhZSWZ0eVQzVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDEvYTFhODhmLTFkZmYtNGVmZi04MjZiLTM2ZGU2NTcyMzJiZS8x
L3Nzb2Fid0VUTzVyMXgwY1BoN3V2eFRsOXBjcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEv
YTFhODhmLTFkZmYtNGVmZi04MjZiLTM2ZGU2NTcyMzJiZS8xL2JTRGQwNWpheVBZ
c3dTVW1NbDhZSWZ0eVQzVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAgX8FAMEAlx2fDANBgkqhkiG9w0B
AQsFAAOCAQEABEAXXP+qibwnXRw6Gt/yZR74ijZhaeKupiF1QnORnnhTAqTwkQD1
L4XIMHaDzVRh01L36C4aQr2LGVi54YaIwqLjKVTEOjmU6amiuQulAxyGRwUiOB6p
xG+l0vLE4u3Sjk0IX2nYR6qh7rHboTzvIYmouxw7clFPCP2ooQw/GILRuLeF7337
DWL+9mU2XfhKcSfgl1bMAGTfx/iBXFnZTYxCHyBr0sLZYfj01OKV7L+OVW7Mvj4Z
d3nyhoM9BVE0t15e53WM+OAKWCkDYNAu5PGUXHXk5X7scXAM9F0RpICrBOi7E7g+
RYVxrjJnuKmwrqdczIOcJyQIos99vW5FpQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org