Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/9Sy4USTVBS5AWYyF-05qkrwIosU.roa
File: 9Sy4USTVBS5AWYyF-05qkrwIosU.roa (raw, json)
Hash identifier: CjKId7QaxmCeJjaQcMSmQKA9pdE78FFI8PhhgkGDl8c=
Subject key identifier: F5:2C:B8:51:24:D5:05:2E:40:59:8C:85:FB:4E:6A:92:BC:08:A2:C5
Certificate issuer: /CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Certificate serial: 07E84B70
Authority key identifier: 52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/9Sy4USTVBS5AWYyF-05qkrwIosU.roa
Signing time: Sat 01 Jan 2022 09:06:11 +0000
ROA not before: Sat 01 Jan 2022 09:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200418
IP address blocks: 185.107.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132664176 (0x7e84b70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Validity
Not Before: Jan 1 09:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f52cb85124d5052e40598c85fb4e6a92bc08a2c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7a:5b:9a:91:72:74:29:ee:a1:08:9e:dc:70:
65:6e:af:d8:d4:e1:44:94:ea:51:38:24:0d:c1:90:
4a:44:a1:66:78:aa:b2:db:b4:41:94:f3:61:53:7a:
f0:a9:55:3f:bc:4c:24:86:7c:f5:ee:2d:01:08:ed:
a4:05:cf:43:48:bd:59:90:ce:3c:5e:a5:61:5f:89:
39:7f:5e:34:a9:3d:69:47:0b:dc:6f:76:32:2c:f7:
df:64:2d:27:6a:12:82:98:37:b3:43:a4:c9:6e:7a:
c8:9e:34:88:23:c7:82:d2:8e:a9:26:9c:64:d4:94:
90:85:d4:6c:0d:19:82:8d:f5:21:08:b0:58:aa:e3:
48:b5:6e:fe:cc:01:c6:d5:aa:7e:78:2a:6c:7f:38:
27:03:91:d9:98:00:eb:21:8e:41:02:38:f0:0f:54:
ea:fb:cb:d9:4d:e7:fb:de:10:b8:e0:5d:7c:0c:a7:
1a:dd:2c:49:3d:ad:10:8e:16:fb:19:e5:4a:15:11:
20:0d:c3:f2:86:03:99:04:0c:76:fb:4a:12:11:bd:
38:b1:a7:53:91:6c:ca:20:c1:06:d5:b5:53:7d:4d:
c1:92:64:82:81:c7:fa:48:27:b4:c2:d6:64:a2:a3:
f7:6c:5d:4c:d1:eb:55:cd:89:55:80:d9:10:5e:4d:
ef:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2C:B8:51:24:D5:05:2E:40:59:8C:85:FB:4E:6A:92:BC:08:A2:C5
X509v3 Authority Key Identifier:
keyid:52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/9Sy4USTVBS5AWYyF-05qkrwIosU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.228.0/22
Signature Algorithm: sha256WithRSAEncryption
34:69:72:5d:37:f7:7f:6c:6a:08:b7:70:f7:9e:bf:63:40:86:
f1:7a:2c:41:36:90:1a:b5:46:16:1f:df:ed:c5:8f:58:22:cd:
c5:9c:b2:fb:75:62:d9:d5:d1:03:12:f1:3a:5a:9c:f0:1e:1b:
e9:e5:4f:41:0a:f0:89:03:75:42:69:45:20:a9:9c:22:29:e1:
84:54:17:ae:7e:ae:6d:d2:5b:d8:f9:30:8c:95:e4:28:44:ff:
47:8e:22:01:83:bd:7d:68:89:f2:56:d3:b1:5e:5e:64:60:1f:
7c:a1:05:f0:59:12:d7:2c:76:46:2f:dd:86:45:6e:a1:69:47:
79:74:fa:5c:2b:20:cb:36:6b:fb:fb:4d:3e:17:f2:2c:5b:59:
03:32:f9:2e:6b:7a:11:c1:81:65:b7:c5:b1:4d:c4:90:f3:91:
30:b7:ca:ad:77:c9:55:69:73:32:38:48:70:93:a2:99:b5:43:
19:c2:c3:9c:4e:a9:05:ec:74:2c:b1:17:70:18:4c:c3:4e:40:
ab:a4:84:a6:ef:cd:f7:f4:57:3e:f5:6a:3f:f6:e7:c5:65:b0:
85:85:1f:56:b8:99:a8:f8:8b:9c:c2:82:dc:51:f4:13:37:ec:
0e:a9:05:9b:db:ab:01:5b:c9:bc:53:f1:2c:8a:16:d2:8c:68:
c7:f5:d0:8c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+hLcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MmVjYjBlODVkMGI3ZmVlYTRhODJhYzk0NDhkNDdjM2VjMGFmMDUzMB4XDTIyMDEw
MTA5MDYxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjUyY2I4NTEyNGQ1
MDUyZTQwNTk4Yzg1ZmI0ZTZhOTJiYzA4YTJjNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALR6W5qRcnQp7qEIntxwZW6v2NThRJTqUTgkDcGQSkShZniq
stu0QZTzYVN68KlVP7xMJIZ89e4tAQjtpAXPQ0i9WZDOPF6lYV+JOX9eNKk9aUcL
3G92Miz332QtJ2oSgpg3s0OkyW56yJ40iCPHgtKOqSacZNSUkIXUbA0Zgo31IQiw
WKrjSLVu/swBxtWqfngqbH84JwOR2ZgA6yGOQQI48A9U6vvL2U3n+94QuOBdfAyn
Gt0sST2tEI4W+xnlShURIA3D8oYDmQQMdvtKEhG9OLGnU5FsyiDBBtW1U31NwZJk
goHH+kgntMLWZKKj92xdTNHrVc2JVYDZEF5N710CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT1LLhRJNUFLkBZjIX7TmqSvAiixTAfBgNVHSMEGDAWgBRS7LDoXQt/7qSo
KslEjUfD7ArwUzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1V1eXc2RjBMZi02a3FDckpSSTFIdy13SzhGTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDgvZGIzZTU2LWU4MzItNDkxZC1iNTMwLWNhNGY2NmIwOTA2OC8x
LzlTeTRVU1RWQlM1QVdZeUYtMDVxa3J3SW9zVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgv
ZGIzZTU2LWU4MzItNDkxZC1iNTMwLWNhNGY2NmIwOTA2OC8xL1V1eXc2RjBMZi02
a3FDckpSSTFIdy13SzhGTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlr5DANBgkqhkiG9w0BAQsFAAOC
AQEANGlyXTf3f2xqCLdw956/Y0CG8XosQTaQGrVGFh/f7cWPWCLNxZyy+3Vi2dXR
AxLxOlqc8B4b6eVPQQrwiQN1QmlFIKmcIinhhFQXrn6ubdJb2PkwjJXkKET/R44i
AYO9fWiJ8lbTsV5eZGAffKEF8FkS1yx2Ri/dhkVuoWlHeXT6XCsgyzZr+/tNPhfy
LFtZAzL5Lmt6EcGBZbfFsU3EkPORMLfKrXfJVWlzMjhIcJOimbVDGcLDnE6pBex0
LLEXcBhMw05Aq6SEpu/N9/RXPvVqP/bnxWWwhYUfVriZqPiLnMKC3FH0EzfsDqkF
m9urAVvJvFPxLIoW0oxox/XQjA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:57 2024 by rpki-client on console-fra.rpki-client.org