Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/w52-pT7aSH_Hyx26IQwfUWUinzg.roa
File: w52-pT7aSH_Hyx26IQwfUWUinzg.roa (raw, json)
Hash identifier: 4S2BaQVu6NekN81jZwguwOh/STtyKZ1WZm0S5f1rQNE=
Subject key identifier: C3:9D:BE:A5:3E:DA:48:7F:C7:CB:1D:BA:21:0C:1F:51:65:22:9F:38
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0184BE03A565F8AA4D65A41016981A7A6CF7
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/w52-pT7aSH_Hyx26IQwfUWUinzg.roa
Signing time: Mon 28 Nov 2022 11:33:40 +0000
ROA not before: Mon 28 Nov 2022 11:33:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206375
IP address blocks: 188.132.132.0/24 maxlen: 24
188.132.139.0/24 maxlen: 24
188.132.138.0/24 maxlen: 24
188.132.136.0/24 maxlen: 24
188.132.137.0/24 maxlen: 24
188.132.133.0/24 maxlen: 24
188.132.145.0/24 maxlen: 24
188.132.143.0/24 maxlen: 24
188.132.144.0/24 maxlen: 24
188.132.140.0/24 maxlen: 24
78.135.94.0/24 maxlen: 24
78.135.95.0/24 maxlen: 24
188.132.247.0/24 maxlen: 24
188.132.248.0/24 maxlen: 24
188.132.162.0/24 maxlen: 24
78.135.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:03:a5:65:f8:aa:4d:65:a4:10:16:98:1a:7a:6c:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 28 11:33:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c39dbea53eda487fc7cb1dba210c1f5165229f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2e:1b:0c:d5:2c:35:46:37:df:b9:ac:8f:cc:
d2:3a:55:ae:e3:3e:45:d4:44:03:82:ef:46:da:e6:
b0:2c:c5:a9:6e:6b:eb:87:25:27:4c:d1:56:96:22:
19:f8:75:9d:cd:98:f2:8e:f7:2c:0c:5c:75:88:91:
39:37:c4:3f:fb:6f:1f:52:0e:39:b7:c6:5c:d3:2d:
35:55:46:ec:4d:ea:04:7b:85:e8:b5:a8:14:8a:38:
26:b6:52:6e:f3:f2:0b:7e:8b:97:e4:ed:d6:4f:61:
fe:2a:ef:9d:16:29:f7:76:bb:0b:27:3b:cb:72:e9:
ee:80:6a:a2:44:95:72:c1:68:8d:4d:aa:dc:d2:0e:
20:27:2b:49:47:02:62:ee:b9:f8:8c:66:59:7d:07:
7f:c0:1b:1f:c4:7a:1b:46:be:3e:07:63:d4:0d:01:
ec:60:1f:fa:d9:2e:a2:7e:c3:fb:d9:19:f5:aa:9b:
dc:42:8a:e4:49:8d:e6:51:d8:43:bf:a1:02:b6:57:
01:c1:5c:92:2e:a2:cb:05:6f:99:9f:06:f3:96:5a:
ca:45:21:e2:25:15:af:15:13:6b:c6:db:69:7b:c0:
c5:47:01:22:2f:5a:94:ec:c3:f5:75:ac:6e:e2:7f:
c4:e9:b4:41:e4:ed:4c:54:21:c3:07:ce:21:75:58:
c2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:9D:BE:A5:3E:DA:48:7F:C7:CB:1D:BA:21:0C:1F:51:65:22:9F:38
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/w52-pT7aSH_Hyx26IQwfUWUinzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.91.0/24
78.135.94.0/23
188.132.132.0/23
188.132.136.0-188.132.140.255
188.132.143.0-188.132.145.255
188.132.162.0/24
188.132.247.0-188.132.248.255
Signature Algorithm: sha256WithRSAEncryption
7b:5f:08:0c:8f:93:58:9b:c8:07:ea:1d:78:60:61:e9:99:7d:
e9:12:90:21:fe:43:12:48:a4:7e:b9:0c:ea:9c:84:c1:7d:23:
1f:93:8e:4d:c5:49:80:5c:8b:75:fa:ac:7c:2d:16:77:1c:5e:
f8:e7:9b:a9:d5:a6:66:14:9c:f6:60:bf:ae:50:b3:fe:8e:28:
d5:af:3f:fc:59:48:68:8d:44:82:45:b4:62:a3:a5:99:b6:7e:
09:7b:5e:b3:75:77:d1:e4:c3:62:b2:02:d2:f4:5d:44:4f:91:
b4:47:95:93:df:32:34:5f:4f:74:a7:2c:c3:cc:5f:f7:79:0c:
76:dd:dc:e4:b1:6e:70:48:23:cf:51:83:f1:ad:17:00:ab:19:
c0:6c:02:7d:da:68:9b:b8:13:06:0d:e1:21:d6:a9:c2:7d:27:
ea:41:ab:33:80:dd:2b:11:f8:a5:35:b5:18:d9:b3:aa:33:bc:
2b:26:d8:49:2e:b4:5f:ac:0e:6e:e1:d9:e8:fc:19:ca:88:8c:
9c:a8:e0:4a:60:06:8c:ab:98:43:e0:4d:74:a2:ab:85:b0:37:
72:21:f0:2c:75:2d:db:5b:8c:b6:1a:54:75:35:5d:a8:8c:47:
c3:ff:0c:22:a4:42:a1:a9:72:8f:62:da:23:20:4f:44:f7:f9:
f3:e3:5d:25
-----BEGIN CERTIFICATE-----
MIIFOTCCBCGgAwIBAgISAYS+A6Vl+KpNZaQQFpgaemz3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjIxMTI4MTEzMzQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzlkYmVhNTNlZGE0ODdmYzdjYjFkYmEyMTBjMWY1MTY1MjI5ZjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnS4bDNUsNUY337msj8zSOlWu4z5F
1EQDgu9G2uawLMWpbmvrhyUnTNFWliIZ+HWdzZjyjvcsDFx1iJE5N8Q/+28fUg45
t8Zc0y01VUbsTeoEe4XotagUijgmtlJu8/ILfouX5O3WT2H+Ku+dFin3drsLJzvL
cunugGqiRJVywWiNTarc0g4gJytJRwJi7rn4jGZZfQd/wBsfxHobRr4+B2PUDQHs
YB/62S6ifsP72Rn1qpvcQorkSY3mUdhDv6ECtlcBwVySLqLLBW+ZnwbzllrKRSHi
JRWvFRNrxttpe8DFRwEiL1qU7MP1daxu4n/E6bRB5O1MVCHDB84hdVjC9wIDAQAB
o4ICRTCCAkEwHQYDVR0OBBYEFMOdvqU+2kh/x8sduiEMH1FlIp84MB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvdzUyLXBUN2FTSF9IeXgyNklRd2ZVV1VpbnpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQATodbAwQB
TodeAwQBvISEMAwDBAO8hIgDBAC8hIwwDAMEALyEjwMEAbyEkAMEALyEojAMAwQA
vIT3AwQAvIT4MA0GCSqGSIb3DQEBCwUAA4IBAQB7XwgMj5NYm8gH6h14YGHpmX3p
EpAh/kMSSKR+uQzqnITBfSMfk45NxUmAXIt1+qx8LRZ3HF7455up1aZmFJz2YL+u
ULP+jijVrz/8WUhojUSCRbRio6WZtn4Je16zdXfR5MNisgLS9F1ET5G0R5WT3zI0
X090pyzDzF/3eQx23dzksW5wSCPPUYPxrRcAqxnAbAJ92mibuBMGDeEh1qnCfSfq
QaszgN0rEfilNbUY2bOqM7wrJthJLrRfrA5u4dno/BnKiIycqOBKYAaMq5hD4E10
oquFsDdyIfAsdS3bW4y2GlR1NV2ojEfD/wwipEKhqXKPYtojIE9E9/nz410l
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org