Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/wdqtRFmrDaXHdfdBKNRCmdzj1U4.roa
File: wdqtRFmrDaXHdfdBKNRCmdzj1U4.roa (raw, json)
Hash identifier: nfR3im1CQ9+m/nRR4/HHcYuiGZbE0KIRjZQhEhlHxJ8=
Subject key identifier: C1:DA:AD:44:59:AB:0D:A5:C7:75:F7:41:28:D4:42:99:DC:E3:D5:4E
Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Certificate serial: 37EFD62E
Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/wdqtRFmrDaXHdfdBKNRCmdzj1U4.roa
Signing time: Sat 01 Jan 2022 05:53:44 +0000
ROA not before: Sat 01 Jan 2022 05:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35766
IP address blocks: 37.130.206.0/23 maxlen: 24
37.130.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938464814 (0x37efd62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Validity
Not Before: Jan 1 05:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1daad4459ab0da5c775f74128d44299dce3d54e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:1a:8f:70:2b:eb:86:61:32:4e:93:2b:ba:
4b:22:c1:af:de:ae:27:c2:6c:3a:fe:3b:7b:6a:78:
99:69:ad:e5:28:9b:99:c7:3c:c7:7a:65:97:b2:f1:
48:bf:b5:f0:4a:b5:bc:5f:49:58:b2:e7:42:3c:96:
0c:6b:33:87:4f:f9:7f:4f:78:d7:6c:d1:b8:93:7f:
15:1a:f1:93:19:a6:28:0b:c2:82:0a:1b:d2:bc:24:
c6:65:05:a1:85:82:db:75:13:1c:76:2b:cb:fd:f2:
44:bd:3f:96:94:c9:85:61:1d:f9:84:68:fa:a7:fa:
d5:e2:82:8e:9f:7c:4f:48:7b:41:e8:b5:5e:7d:86:
bf:06:26:6a:87:82:fb:f9:be:a5:5f:cb:54:95:cc:
5a:28:26:85:85:be:5c:49:90:7a:c8:ad:2b:14:80:
81:8c:c1:49:5d:a9:2d:8f:fd:99:e2:72:6b:17:fa:
89:3b:c9:09:2d:fa:b4:4d:fe:62:0d:71:a9:06:87:
93:0f:74:92:00:51:e9:6f:ce:2c:79:de:e0:84:2a:
d7:ba:e5:e3:19:ec:03:a2:f4:fa:44:03:8d:3a:15:
d6:bf:4d:f4:e7:87:c3:16:9c:cf:bd:15:92:16:a5:
28:8b:6e:ac:38:b2:62:f6:e6:45:d4:88:12:ec:c1:
74:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DA:AD:44:59:AB:0D:A5:C7:75:F7:41:28:D4:42:99:DC:E3:D5:4E
X509v3 Authority Key Identifier:
keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/wdqtRFmrDaXHdfdBKNRCmdzj1U4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.205.0-37.130.207.255
Signature Algorithm: sha256WithRSAEncryption
2d:51:9f:58:00:a2:2e:85:9b:cd:4b:40:88:45:80:bd:2e:3d:
23:b0:82:a6:53:7d:3d:78:9a:1a:76:35:16:49:a0:3f:b3:9c:
fb:4a:01:28:69:03:e7:c3:d8:d8:32:e9:ae:b9:52:cd:50:14:
a7:3a:06:68:7e:fe:af:ae:0a:09:e9:71:de:0d:72:10:5b:a7:
ad:b3:dc:44:74:3f:46:78:de:0e:e8:59:5a:ac:db:5b:8d:d4:
9b:23:50:6a:b8:a2:13:86:30:cf:65:48:3d:77:2c:02:40:6e:
11:0d:2c:e9:0e:9a:4f:82:18:c2:7d:c4:cb:be:b0:af:cf:1b:
0b:47:0b:ad:9d:6e:b0:72:1e:db:1d:ff:9d:21:34:17:88:10:
dc:7e:22:75:1b:e8:06:fd:93:d8:53:7b:84:23:c9:b3:69:6a:
62:8d:a8:05:0e:21:2a:3d:e8:9e:70:6b:46:89:4e:a7:34:e2:
5c:f9:f6:a8:0b:20:48:30:31:e4:30:d4:da:cd:2f:2d:60:a0:
ae:63:42:18:19:11:a5:a4:c8:c6:b4:bf:bb:92:88:76:d6:6e:
33:9f:a8:77:1c:8f:81:fd:36:d0:56:43:35:7d:88:1b:07:4f:
9c:0e:04:0b:f9:0b:78:ab:c3:aa:ae:89:55:1c:e2:9a:60:8d:
13:55:c2:11
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEN+/WLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YWZiNjQ1ZjEzNGY0ZmRhZGE0NWU3MGJjZmNkOTNiODk3ZGJkNzI1MB4XDTIyMDEw
MTA1NTM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzFkYWFkNDQ1OWFi
MGRhNWM3NzVmNzQxMjhkNDQyOTlkY2UzZDU0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3CGo9wK+uGYTJOkyu6SyLBr96uJ8JsOv47e2p4mWmt5Sib
mcc8x3pll7LxSL+18Eq1vF9JWLLnQjyWDGszh0/5f09412zRuJN/FRrxkxmmKAvC
ggob0rwkxmUFoYWC23UTHHYry/3yRL0/lpTJhWEd+YRo+qf61eKCjp98T0h7Qei1
Xn2GvwYmaoeC+/m+pV/LVJXMWigmhYW+XEmQesitKxSAgYzBSV2pLY/9meJyaxf6
iTvJCS36tE3+Yg1xqQaHkw90kgBR6W/OLHne4IQq17rl4xnsA6L0+kQDjToV1r9N
9OeHwxacz70VkhalKIturDiyYvbmRdSIEuzBdCkCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTB2q1EWasNpcd190Eo1EKZ3OPVTjAfBgNVHSMEGDAWgBTa+2RfE09P2tpF
5wvPzZO4l9vXJTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJ2dGtYeE5QVDlyYVJlY0x6ODJUdUpmYjF5VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvN2E0OGY1LWJkMjQtNGRjNC04Y2NhLTZiYTBhMGNlMDFlZC8x
L3dkcXRSRm1yRGFYSGRmZEJLTlJDbWR6ajFVNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
N2E0OGY1LWJkMjQtNGRjNC04Y2NhLTZiYTBhMGNlMDFlZC8xLzJ2dGtYeE5QVDly
YVJlY0x6ODJUdUpmYjF5VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAJYLNAwQEJYLAMA0GCSqGSIb3
DQEBCwUAA4IBAQAtUZ9YAKIuhZvNS0CIRYC9Lj0jsIKmU309eJoadjUWSaA/s5z7
SgEoaQPnw9jYMumuuVLNUBSnOgZofv6vrgoJ6XHeDXIQW6ets9xEdD9GeN4O6Fla
rNtbjdSbI1BquKIThjDPZUg9dywCQG4RDSzpDppPghjCfcTLvrCvzxsLRwutnW6w
ch7bHf+dITQXiBDcfiJ1G+gG/ZPYU3uEI8mzaWpijagFDiEqPeiecGtGiU6nNOJc
+faoCyBIMDHkMNTazS8tYKCuY0IYGRGlpMjGtL+7koh21m4zn6h3HI+B/TbQVkM1
fYgbB0+cDgQL+Qt4q8OqrolVHOKaYI0TVcIR
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:09 2023 by rpki-client on console-ams.rpki-client.org