Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/ca1cf4-acac-4555-bc40-e4322c9dde9c/1/KpB28hyz4dljGWsFF9juFN8iblA.roa
File: KpB28hyz4dljGWsFF9juFN8iblA.roa (raw, json)
Hash identifier: MjuKZbka8UQ4HczfUdF3gWxCV5twmYOpBAGxVl8Jg6Q=
Subject key identifier: 2A:90:76:F2:1C:B3:E1:D9:63:19:6B:05:17:D8:EE:14:DF:22:6E:50
Certificate issuer: /CN=e796ffbbdf44efc1e8e10200d49da8eed0a3b71e
Certificate serial: 061A88CB
Authority key identifier: E7:96:FF:BB:DF:44:EF:C1:E8:E1:02:00:D4:9D:A8:EE:D0:A3:B7:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/55b_u99E78Ho4QIA1J2o7tCjtx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/ca1cf4-acac-4555-bc40-e4322c9dde9c/1/KpB28hyz4dljGWsFF9juFN8iblA.roa
Signing time: Sat 01 Jan 2022 09:55:59 +0000
ROA not before: Sat 01 Jan 2022 09:55:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8560
IP address blocks: 185.132.36.0/22 maxlen: 22
185.132.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102402251 (0x61a88cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e796ffbbdf44efc1e8e10200d49da8eed0a3b71e
Validity
Not Before: Jan 1 09:55:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a9076f21cb3e1d963196b0517d8ee14df226e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:97:66:b3:d3:02:13:9c:f1:4f:12:62:0d:
a0:26:bf:6f:11:93:f6:e2:3d:ba:ec:db:da:e7:8e:
17:92:91:30:c9:e6:c3:1c:9a:73:5c:bd:72:52:37:
94:e5:09:24:0b:47:d4:5a:9f:43:fa:bf:2d:c0:5d:
7a:7c:73:2b:97:f2:1e:d7:73:78:38:19:20:3e:67:
da:26:4e:7f:b0:21:8d:46:55:f4:df:40:b0:e2:7e:
81:e1:9a:db:d9:0e:d9:72:43:85:f3:7e:92:b6:e3:
00:4b:4f:d2:0b:89:41:83:53:c1:ea:93:20:7f:0e:
37:55:e8:2d:87:29:ce:31:43:37:c6:23:6a:ec:45:
0c:fa:8d:c8:a9:2b:99:eb:e5:9a:10:cb:d5:ec:f5:
06:c0:a7:33:44:34:a5:5f:83:e6:73:aa:58:73:d8:
d1:70:08:c0:31:94:74:df:93:b0:bc:53:2c:89:0d:
09:d3:b4:db:9b:09:f1:0a:64:a1:28:86:35:e1:79:
e5:fe:1e:be:78:6a:29:c6:50:a7:3e:c8:fc:a7:26:
76:83:7e:43:40:df:f4:2b:4e:ab:9d:ff:e8:10:76:
04:49:8b:b6:04:eb:89:89:8b:fa:85:40:78:58:db:
3a:d6:66:c6:a5:db:1d:bf:37:95:34:ef:08:9f:c0:
20:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:90:76:F2:1C:B3:E1:D9:63:19:6B:05:17:D8:EE:14:DF:22:6E:50
X509v3 Authority Key Identifier:
keyid:E7:96:FF:BB:DF:44:EF:C1:E8:E1:02:00:D4:9D:A8:EE:D0:A3:B7:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/55b_u99E78Ho4QIA1J2o7tCjtx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/ca1cf4-acac-4555-bc40-e4322c9dde9c/1/KpB28hyz4dljGWsFF9juFN8iblA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/ca1cf4-acac-4555-bc40-e4322c9dde9c/1/55b_u99E78Ho4QIA1J2o7tCjtx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.36.0-185.132.43.255
Signature Algorithm: sha256WithRSAEncryption
5a:66:db:e3:04:2d:a8:42:2c:bf:3d:cb:04:24:37:06:a1:50:
73:34:b1:c0:9a:f4:2c:41:5e:95:77:a7:fa:ec:33:12:2c:e0:
4c:0a:8c:88:34:08:2f:43:45:fa:ee:9b:86:b4:dd:07:c1:e5:
db:c2:d5:c0:a8:03:71:c9:3c:4b:1f:d1:78:d8:f9:18:89:85:
38:83:bc:31:e5:c1:d8:e1:c5:b6:67:c5:03:1a:12:29:46:5f:
0f:d8:e3:94:49:57:5e:96:e0:ec:3a:77:45:91:9e:41:c6:e3:
cd:08:75:b1:d9:63:44:0b:66:1e:b3:e4:e4:53:48:e1:57:3e:
8f:7f:28:14:46:64:ec:9f:43:dd:44:e3:92:c3:f3:f6:88:0e:
54:18:3d:49:84:f1:7e:61:5e:3a:b8:db:6d:bd:cc:a5:1a:fe:
90:5d:57:05:63:dc:5e:d7:5e:6c:cf:6a:e5:22:b4:b4:ea:c1:
a5:f2:32:5a:94:07:45:6d:a3:40:0f:5c:6c:ce:e9:5a:f2:36:
77:4c:f6:d0:3c:60:70:66:5b:2f:dd:85:ee:b6:ad:57:28:4e:
14:70:e1:39:90:23:23:43:75:bb:fd:57:53:71:59:38:76:ac:
69:da:9d:ab:2c:65:e6:71:80:e0:cf:52:a9:ac:f9:62:26:18:
2a:6f:f4:e3
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBhqIyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
Nzk2ZmZiYmRmNDRlZmMxZThlMTAyMDBkNDlkYThlZWQwYTNiNzFlMB4XDTIyMDEw
MTA5NTU1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmE5MDc2ZjIxY2Iz
ZTFkOTYzMTk2YjA1MTdkOGVlMTRkZjIyNmU1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVgl2az0wITnPFPEmINoCa/bxGT9uI9uuzb2ueOF5KRMMnm
wxyac1y9clI3lOUJJAtH1FqfQ/q/LcBdenxzK5fyHtdzeDgZID5n2iZOf7AhjUZV
9N9AsOJ+geGa29kO2XJDhfN+krbjAEtP0guJQYNTweqTIH8ON1XoLYcpzjFDN8Yj
auxFDPqNyKkrmevlmhDL1ez1BsCnM0Q0pV+D5nOqWHPY0XAIwDGUdN+TsLxTLIkN
CdO025sJ8QpkoSiGNeF55f4evnhqKcZQpz7I/KcmdoN+Q0Df9CtOq53/6BB2BEmL
tgTriYmL+oVAeFjbOtZmxqXbHb83lTTvCJ/AIFcCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQqkHbyHLPh2WMZawUX2O4U3yJuUDAfBgNVHSMEGDAWgBTnlv+730Tvwejh
AgDUnaju0KO3HjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzU1Yl91OTlFNzhIbzRRSUExSjJvN3RDanR4NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjAvY2ExY2Y0LWFjYWMtNDU1NS1iYzQwLWU0MzIyYzlkZGU5Yy8x
L0twQjI4aHl6NGRsakdXc0ZGOWp1Rk44aWJsQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAv
Y2ExY2Y0LWFjYWMtNDU1NS1iYzQwLWU0MzIyYzlkZGU5Yy8xLzU1Yl91OTlFNzhI
bzRRSUExSjJvN3RDanR4NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQCuYQkAwQCuYQoMA0GCSqGSIb3
DQEBCwUAA4IBAQBaZtvjBC2oQiy/PcsEJDcGoVBzNLHAmvQsQV6Vd6f67DMSLOBM
CoyINAgvQ0X67puGtN0HweXbwtXAqANxyTxLH9F42PkYiYU4g7wx5cHY4cW2Z8UD
GhIpRl8P2OOUSVdeluDsOndFkZ5BxuPNCHWx2WNEC2Yes+TkU0jhVz6PfygURmTs
n0PdROOSw/P2iA5UGD1JhPF+YV46uNttvcylGv6QXVcFY9xe115sz2rlIrS06sGl
8jJalAdFbaNAD1xszula8jZ3TPbQPGBwZlsv3YXutq1XKE4UcOE5kCMjQ3W7/VdT
cVk4dqxp2p2rLGXmcYDgz1KprPliJhgqb/Tj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:08 2024 by rpki-client on console-fra.rpki-client.org