Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/52io3LXwpgLnrZIDf6Qld-5g1_M.roa
File: 52io3LXwpgLnrZIDf6Qld-5g1_M.roa (raw, json)
Hash identifier: L9/gGnh+v+iUpuWoVmMeRXAGRZwCBMoDvp5YR+UOylU=
Subject key identifier: E7:68:A8:DC:B5:F0:A6:02:E7:AD:92:03:7F:A4:25:77:EE:60:D7:F3
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01847D0535051ECF37ED5BD734E00E4C239E
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/52io3LXwpgLnrZIDf6Qld-5g1_M.roa
Signing time: Tue 15 Nov 2022 20:40:04 +0000
ROA not before: Tue 15 Nov 2022 20:40:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 195.178.132.0/22 maxlen: 24
77.47.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7d:05:35:05:1e:cf:37:ed:5b:d7:34:e0:0e:4c:23:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Nov 15 20:40:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e768a8dcb5f0a602e7ad92037fa42577ee60d7f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ec:bb:e8:dd:f5:d9:a7:38:59:d5:70:35:c4:
9d:25:71:c0:99:97:6b:a7:6c:bb:1c:e5:40:f2:00:
01:e1:62:81:52:0a:80:ff:28:18:0e:99:00:46:67:
24:5e:83:02:45:97:ef:f4:2c:e8:6f:6f:36:bf:5d:
95:ea:e9:96:3c:67:5b:54:dd:45:32:a6:61:7a:f4:
b9:8f:9f:b0:9a:cc:a9:49:4a:b7:7d:d9:16:ea:18:
66:04:67:0a:4e:4a:0b:23:2c:dc:98:63:95:90:ec:
2a:d4:d3:2a:76:07:d7:30:5f:b3:ea:8c:28:f8:8f:
65:0e:78:c7:32:00:a5:21:af:a7:4a:8e:76:ca:35:
9d:3c:53:f2:4c:3a:a0:f1:7a:b1:fb:e8:f7:9a:2b:
30:22:2b:88:b7:15:08:94:34:44:b3:f4:ae:2b:61:
f7:37:5e:04:bf:9a:37:e2:80:ad:67:6e:c1:04:6e:
7c:fc:6c:ec:b2:be:d7:9e:8c:7a:12:e4:1b:fc:27:
8f:bc:30:ef:50:1f:e3:2e:bb:e7:a2:70:b2:52:e8:
94:f0:84:58:05:03:81:18:7b:e5:07:d3:01:f2:ec:
4f:55:17:4e:db:44:cc:ca:0e:54:ca:2a:fb:eb:46:
6e:5b:bb:03:da:8f:17:d7:63:e6:0f:08:09:9d:54:
ae:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:68:A8:DC:B5:F0:A6:02:E7:AD:92:03:7F:A4:25:77:EE:60:D7:F3
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/52io3LXwpgLnrZIDf6Qld-5g1_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.152.0/22
195.178.132.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:08:df:d6:9c:2a:e1:32:9a:f9:13:50:66:d3:46:48:c3:dc:
96:bb:ff:e0:c7:88:4d:fe:ba:41:eb:86:1c:5b:09:7f:29:9f:
23:21:c2:a4:c0:d0:8d:96:f5:54:af:df:c1:74:30:cd:27:6d:
9b:03:3c:da:eb:94:d1:18:2e:d2:64:27:16:55:f9:35:7a:f9:
68:36:3b:c1:c5:a4:f1:9a:a1:67:95:1c:a0:13:e7:a0:d4:23:
2f:42:73:fa:a8:38:5a:ff:8a:54:5d:a3:9c:d3:bd:e6:f3:bc:
5c:53:33:14:8d:b5:80:4f:44:a3:ec:db:71:29:68:18:37:84:
6e:c2:45:02:23:1f:07:d1:13:27:cc:bb:43:6d:0c:53:cf:1a:
63:36:6a:12:2c:4e:e2:11:94:89:65:82:10:cf:90:0c:1d:c6:
63:f2:53:d3:11:3a:2a:6f:93:7e:d8:25:67:49:d2:4e:9e:2d:
e9:bb:6e:26:9f:df:4c:4c:b4:11:fd:ac:fa:78:bf:b8:fe:8a:
91:2c:b3:fb:92:c4:b8:50:40:ec:b2:17:aa:6b:4e:d0:44:f8:
35:b6:d7:c2:ae:89:24:b1:06:8e:05:59:bd:ea:82:76:fc:15:
06:9f:50:b5:de:4d:6c:52:a4:97:c7:e4:d8:da:05:6a:1d:06:
48:34:03:31
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYR9BTUFHs837VvXNOAOTCOeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjIxMTE1MjA0MDA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzY4YThkY2I1ZjBhNjAyZTdhZDkyMDM3ZmE0MjU3N2VlNjBkN2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+y76N312ac4WdVwNcSdJXHAmZdr
p2y7HOVA8gAB4WKBUgqA/ygYDpkARmckXoMCRZfv9Czob282v12V6umWPGdbVN1F
MqZhevS5j5+wmsypSUq3fdkW6hhmBGcKTkoLIyzcmGOVkOwq1NMqdgfXMF+z6owo
+I9lDnjHMgClIa+nSo52yjWdPFPyTDqg8Xqx++j3miswIiuItxUIlDREs/SuK2H3
N14Ev5o34oCtZ27BBG58/Gzssr7Xnox6EuQb/CePvDDvUB/jLrvnonCyUuiU8IRY
BQOBGHvlB9MB8uxPVRdO20TMyg5Uyir760ZuW7sD2o8X12PmDwgJnVSufQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOdoqNy18KYC562SA3+kJXfuYNfzMB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvNTJpbzNMWHdwZ0xuclpJRGY2UWxkLTVnMV9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCTS+YAwQC
w7KEMA0GCSqGSIb3DQEBCwUAA4IBAQArCN/WnCrhMpr5E1Bm00ZIw9yWu//gx4hN
/rpB64YcWwl/KZ8jIcKkwNCNlvVUr9/BdDDNJ22bAzza65TRGC7SZCcWVfk1evlo
NjvBxaTxmqFnlRygE+eg1CMvQnP6qDha/4pUXaOc073m87xcUzMUjbWAT0Sj7Ntx
KWgYN4RuwkUCIx8H0RMnzLtDbQxTzxpjNmoSLE7iEZSJZYIQz5AMHcZj8lPTEToq
b5N+2CVnSdJOni3pu24mn99MTLQR/az6eL+4/oqRLLP7ksS4UEDssheqa07QRPg1
ttfCrokksQaOBVm96oJ2/BUGn1C13k1sUqSXx+TY2gVqHQZINAMx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org