Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Ke4Y0e6CX1zj636lmiAQmbRPSaU.roa
File: Ke4Y0e6CX1zj636lmiAQmbRPSaU.roa (raw, json)
Hash identifier: dfIK0XBbC3mEe4xcN8RWhO7vpvsm1tpIQb1EUJZYLwI=
Subject key identifier: 29:EE:18:D1:EE:82:5F:5C:E3:EB:7E:A5:9A:20:10:99:B4:4F:49:A5
Certificate issuer: /CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Certificate serial: 07E7939F
Authority key identifier: 52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Ke4Y0e6CX1zj636lmiAQmbRPSaU.roa
Signing time: Sat 01 Jan 2022 09:06:11 +0000
ROA not before: Sat 01 Jan 2022 09:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60200
IP address blocks: 185.34.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132617119 (0x7e7939f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Validity
Not Before: Jan 1 09:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29ee18d1ee825f5ce3eb7ea59a201099b44f49a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5a:ad:db:5c:80:10:3a:66:17:6e:6d:db:04:
aa:91:df:03:69:48:2f:42:c1:a1:09:4f:e4:37:84:
bb:5e:1a:bf:b4:05:14:9d:3e:69:85:e3:ac:b2:71:
42:5d:20:d3:3d:51:a0:44:35:a2:3a:af:08:6e:61:
55:94:d6:35:e8:37:d2:16:f4:db:56:17:ae:ba:d2:
0a:35:bd:7e:0e:3f:5a:cd:dd:a3:da:9a:3c:38:c7:
b1:74:d5:f1:7e:81:92:08:9d:64:9a:b0:67:e3:db:
85:8b:a4:ae:3d:40:08:9c:3c:fa:10:fc:38:ca:ee:
8b:0c:2a:72:d1:61:57:3d:5d:0d:f2:fe:91:6c:ab:
e3:46:12:f2:f3:dd:4d:13:60:b4:72:91:cd:56:d4:
fd:c3:1e:53:01:b2:48:2c:be:a6:6c:d1:76:8a:96:
35:52:7b:66:b4:11:65:d5:34:b8:29:03:f6:34:21:
b7:fe:cf:e3:c2:0c:04:1a:34:2f:82:36:53:c9:d1:
76:9d:08:14:3b:bb:39:48:19:d8:81:b6:5c:28:07:
c1:65:29:39:2e:ca:14:f8:e6:68:03:49:40:f7:36:
c8:ce:fa:08:05:79:e0:1f:8c:2d:ed:4f:fd:ca:87:
c3:25:6b:f6:ad:c9:6c:13:0b:44:ee:0c:6a:87:4a:
b5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EE:18:D1:EE:82:5F:5C:E3:EB:7E:A5:9A:20:10:99:B4:4F:49:A5
X509v3 Authority Key Identifier:
keyid:52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Ke4Y0e6CX1zj636lmiAQmbRPSaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.172.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:47:3c:5d:48:09:b7:a4:3c:0c:f3:cc:12:7c:20:02:c9:76:
39:01:fa:33:e1:83:96:2a:01:df:88:34:af:2d:64:c1:ee:35:
23:96:1e:73:2a:6d:7d:14:9c:7a:10:f0:2b:d9:70:89:28:95:
1d:2f:26:2a:55:82:49:aa:1b:7a:8d:f9:43:c5:69:59:22:17:
52:91:ac:52:73:49:58:b6:1f:37:ad:47:9a:15:e0:c7:e4:3d:
ea:e5:fc:5f:74:4f:f1:5c:5e:9b:8d:2e:d1:86:f9:20:2f:ec:
ee:b8:d1:ab:10:fa:ea:a2:78:bb:15:32:a4:f4:b2:9e:86:21:
f9:3c:23:2f:2a:8a:bc:38:32:74:ba:10:20:eb:b9:21:d2:8b:
ad:f5:ba:a4:b6:86:de:1c:f1:c0:72:6d:f4:c0:41:2b:cc:2f:
86:ae:97:4e:2e:ef:a9:f9:d6:2e:e5:bb:81:4c:ac:23:38:4c:
9a:03:0b:e3:68:0f:6c:82:fb:a8:15:26:90:5d:05:92:b3:cc:
40:53:a7:5a:cf:da:57:90:f2:64:11:8c:70:ac:9a:50:49:79:
12:e0:92:ea:d6:9b:a5:f2:e1:ff:31:5f:2d:7b:6c:61:dc:7e:
e4:e2:47:54:69:bc:cc:eb:19:b6:d0:75:d9:85:fd:71:82:79:
9a:bd:dc:02
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+eTnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MmVjYjBlODVkMGI3ZmVlYTRhODJhYzk0NDhkNDdjM2VjMGFmMDUzMB4XDTIyMDEw
MTA5MDYxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjllZTE4ZDFlZTgy
NWY1Y2UzZWI3ZWE1OWEyMDEwOTliNDRmNDlhNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVardtcgBA6ZhdubdsEqpHfA2lIL0LBoQlP5DeEu14av7QF
FJ0+aYXjrLJxQl0g0z1RoEQ1ojqvCG5hVZTWNeg30hb021YXrrrSCjW9fg4/Ws3d
o9qaPDjHsXTV8X6BkgidZJqwZ+PbhYukrj1ACJw8+hD8OMruiwwqctFhVz1dDfL+
kWyr40YS8vPdTRNgtHKRzVbU/cMeUwGySCy+pmzRdoqWNVJ7ZrQRZdU0uCkD9jQh
t/7P48IMBBo0L4I2U8nRdp0IFDu7OUgZ2IG2XCgHwWUpOS7KFPjmaANJQPc2yM76
CAV54B+MLe1P/cqHwyVr9q3JbBMLRO4MaodKtZ8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQp7hjR7oJfXOPrfqWaIBCZtE9JpTAfBgNVHSMEGDAWgBRS7LDoXQt/7qSo
KslEjUfD7ArwUzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1V1eXc2RjBMZi02a3FDckpSSTFIdy13SzhGTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDgvZGIzZTU2LWU4MzItNDkxZC1iNTMwLWNhNGY2NmIwOTA2OC8x
L0tlNFkwZTZDWDF6ajYzNmxtaUFRbWJSUFNhVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgv
ZGIzZTU2LWU4MzItNDkxZC1iNTMwLWNhNGY2NmIwOTA2OC8xL1V1eXc2RjBMZi02
a3FDckpSSTFIdy13SzhGTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkirDANBgkqhkiG9w0BAQsFAAOC
AQEAi0c8XUgJt6Q8DPPMEnwgAsl2OQH6M+GDlioB34g0ry1kwe41I5YecyptfRSc
ehDwK9lwiSiVHS8mKlWCSaobeo35Q8VpWSIXUpGsUnNJWLYfN61HmhXgx+Q96uX8
X3RP8Vxem40u0Yb5IC/s7rjRqxD66qJ4uxUypPSynoYh+TwjLyqKvDgydLoQIOu5
IdKLrfW6pLaG3hzxwHJt9MBBK8wvhq6XTi7vqfnWLuW7gUysIzhMmgML42gPbIL7
qBUmkF0FkrPMQFOnWs/aV5DyZBGMcKyaUEl5EuCS6tabpfLh/zFfLXtsYdx+5OJH
VGm8zOsZttB12YX9cYJ5mr3cAg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:57 2024 by rpki-client on console-fra.rpki-client.org