Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/1cxw4Il6DkpMsnpfRGKv5hz7fKg.roa
File: 1cxw4Il6DkpMsnpfRGKv5hz7fKg.roa (raw, json)
Hash identifier: nPJytDDrZIp7A0pTrjPE2ZtGA9KvTTT/vf4E569V39c=
Subject key identifier: D5:CC:70:E0:89:7A:0E:4A:4C:B2:7A:5F:44:62:AF:E6:1C:FB:7C:A8
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 088C529F
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/1cxw4Il6DkpMsnpfRGKv5hz7fKg.roa
Signing time: Sat 01 Jan 2022 03:50:58 +0000
ROA not before: Sat 01 Jan 2022 03:50:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48473
IP address blocks: 85.248.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143413919 (0x88c529f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5cc70e0897a0e4a4cb27a5f4462afe61cfb7ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3e:59:98:13:5b:62:aa:90:7a:8f:66:a9:00:
49:aa:6d:49:8b:78:31:72:90:59:04:de:1e:6e:73:
1e:65:59:cb:10:ce:d7:bb:70:f7:dc:c1:61:8e:b0:
67:61:6f:f1:c3:8b:f1:a3:ad:d2:60:e4:e4:a7:e4:
06:8a:14:52:5f:ca:18:c2:2e:7c:44:ae:f6:50:ef:
2a:89:45:b3:2a:fd:9f:25:cd:e0:dc:29:44:1a:db:
26:0e:e7:b2:21:a1:1e:88:2c:27:04:73:51:b2:8e:
70:e2:1a:7f:69:ba:0c:a9:59:62:46:f8:d3:2a:be:
3f:eb:79:21:4e:af:ad:7d:87:77:91:dc:5c:25:f0:
93:06:ce:35:88:0a:93:55:89:71:66:96:ae:45:37:
ab:f5:d8:15:1b:ea:aa:26:5a:75:e5:83:0c:f5:e0:
72:f8:a8:52:5f:8f:20:04:f6:c5:4e:4a:23:1a:43:
25:ca:80:84:3e:97:6c:39:14:d4:54:e6:be:19:6f:
13:a0:97:6b:78:79:a5:a1:a6:cc:ba:90:87:2f:11:
dc:51:31:ef:3b:22:54:ec:c4:29:a5:57:6c:34:4b:
aa:24:c5:13:1a:db:de:56:ab:ce:f2:84:00:a8:df:
b8:4e:06:62:0d:22:a3:3d:b3:94:ed:45:89:ad:05:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CC:70:E0:89:7A:0E:4A:4C:B2:7A:5F:44:62:AF:E6:1C:FB:7C:A8
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/1cxw4Il6DkpMsnpfRGKv5hz7fKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.248.152.0/22
Signature Algorithm: sha256WithRSAEncryption
01:a5:43:41:15:14:ff:43:80:d8:0e:4c:ba:56:8a:97:ed:5c:
80:4f:b3:10:70:c7:13:cd:99:ce:09:32:56:35:91:37:cd:8a:
fc:a9:76:c6:01:39:2b:7d:77:32:f0:3a:71:96:dd:b5:f6:d4:
56:ad:24:4e:9b:a0:e0:a4:d2:b5:f5:ce:6e:76:58:95:cd:42:
cb:e5:47:37:7c:26:81:d9:52:db:e7:28:96:0a:e6:7b:fe:fa:
9f:26:eb:b1:51:ad:80:12:a7:0b:d8:63:cc:b0:23:3e:c1:b5:
30:6f:ff:71:24:57:43:62:d5:d0:d9:7d:55:2b:8f:12:33:5f:
9e:ff:e7:f2:7e:32:25:6c:0b:17:66:73:43:8a:01:ab:83:dd:
98:f6:57:b9:45:44:9a:40:18:07:cb:f7:39:16:37:b6:5b:10:
bf:ca:31:b7:05:9e:4e:5d:f3:dd:09:87:be:79:91:18:20:60:
74:3c:ec:83:f5:7a:e2:15:84:d8:ae:97:4b:68:79:92:f1:ec:
8d:78:ba:01:a6:4b:fa:70:c6:d4:81:4e:2c:6d:ad:7b:36:43:
45:f4:48:a0:db:a8:e3:12:43:c8:60:59:a1:3a:14:b9:3a:ad:
7b:c7:00:28:3d:cf:98:c5:a9:d6:83:54:45:b6:01:55:82:46:
ff:ef:61:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECIxSnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
N2Y4ODE0MDFhYmFjYzg4Yzk0MWZkZjc0MGYxYWIxNTM2ZjA1ZGJhMB4XDTIyMDEw
MTAzNTA1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDVjYzcwZTA4OTdh
MGU0YTRjYjI3YTVmNDQ2MmFmZTYxY2ZiN2NhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK8+WZgTW2KqkHqPZqkASaptSYt4MXKQWQTeHm5zHmVZyxDO
17tw99zBYY6wZ2Fv8cOL8aOt0mDk5KfkBooUUl/KGMIufESu9lDvKolFsyr9nyXN
4NwpRBrbJg7nsiGhHogsJwRzUbKOcOIaf2m6DKlZYkb40yq+P+t5IU6vrX2Hd5Hc
XCXwkwbONYgKk1WJcWaWrkU3q/XYFRvqqiZadeWDDPXgcvioUl+PIAT2xU5KIxpD
JcqAhD6XbDkU1FTmvhlvE6CXa3h5paGmzLqQhy8R3FEx7zsiVOzEKaVXbDRLqiTF
Exrb3larzvKEAKjfuE4GYg0ioz2zlO1Fia0FzMsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTVzHDgiXoOSkyyel9EYq/mHPt8qDAfBgNVHSMEGDAWgBTn+IFAGrrMiMlB
/fdA8asVNvBdujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVfaUJRQnE2eklqSlFmMzNRUEdyRlRid1hiby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvZjU1MzRhLWE2MTMtNDdiZS1iNDJiLWUyZmJjM2E2ODgwMC8x
LzFjeHc0SWw2RGtwTXNucGZSR0t2NWh6N2ZLZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
ZjU1MzRhLWE2MTMtNDdiZS1iNDJiLWUyZmJjM2E2ODgwMC8xLzVfaUJRQnE2eklq
SlFmMzNRUEdyRlRid1hiby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlX4mDANBgkqhkiG9w0BAQsFAAOC
AQEAAaVDQRUU/0OA2A5MulaKl+1cgE+zEHDHE82ZzgkyVjWRN82K/Kl2xgE5K313
MvA6cZbdtfbUVq0kTpug4KTStfXObnZYlc1Cy+VHN3wmgdlS2+colgrme/76nybr
sVGtgBKnC9hjzLAjPsG1MG//cSRXQ2LV0Nl9VSuPEjNfnv/n8n4yJWwLF2ZzQ4oB
q4PdmPZXuUVEmkAYB8v3ORY3tlsQv8oxtwWeTl3z3QmHvnmRGCBgdDzsg/V64hWE
2K6XS2h5kvHsjXi6AaZL+nDG1IFOLG2tezZDRfRIoNuo4xJDyGBZoToUuTqte8cA
KD3PmMWp1oNURbYBVYJG/+9h8g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:36 2024 by rpki-client on console-fra.rpki-client.org