Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/69da98-84d6-4081-83da-d2b7230a3df8/1/P2iwd4bCaE8ZqP1Bg7UyAbTn2Tk.roa
File: P2iwd4bCaE8ZqP1Bg7UyAbTn2Tk.roa (raw, json)
Hash identifier: j2wyqfzymEyAJ0U/fgxwWyr2psO8TjOVuM/Q0LBT6ws=
Subject key identifier: 3F:68:B0:77:86:C2:68:4F:19:A8:FD:41:83:B5:32:01:B4:E7:D9:39
Certificate issuer: /CN=2ab2530cbea4d43cb3761b42dadfead7e5172228
Certificate serial: 04517508
Authority key identifier: 2A:B2:53:0C:BE:A4:D4:3C:B3:76:1B:42:DA:DF:EA:D7:E5:17:22:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrJTDL6k1DyzdhtC2t_q1-UXIig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/69da98-84d6-4081-83da-d2b7230a3df8/1/P2iwd4bCaE8ZqP1Bg7UyAbTn2Tk.roa
Signing time: Sat 01 Jan 2022 03:52:00 +0000
ROA not before: Sat 01 Jan 2022 03:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12552
IP address blocks: 185.18.84.0/22 maxlen: 22
2a03:f440::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72447240 (0x4517508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ab2530cbea4d43cb3761b42dadfead7e5172228
Validity
Not Before: Jan 1 03:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f68b07786c2684f19a8fd4183b53201b4e7d939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:60:18:4c:fe:46:a0:30:3d:fb:c6:92:76:99:
e7:f5:b2:34:e6:15:47:4a:c7:8a:a4:45:85:37:c0:
8c:1b:c5:05:b0:6b:31:76:d8:2c:67:66:75:59:e3:
51:92:00:09:36:3d:c0:d8:95:82:7f:2d:c0:b0:18:
de:12:ce:ea:3a:f6:0b:28:da:99:ef:8f:b8:87:53:
b2:da:cf:6b:da:48:e8:01:83:e1:c3:a4:54:05:c4:
a3:62:fc:7a:5e:3b:34:f0:5c:8d:1c:8c:ec:bb:a0:
e2:1c:93:8d:23:58:e9:3b:18:ca:43:cd:68:32:f4:
12:e4:10:fb:04:a7:e8:d6:af:8d:d4:58:9a:27:ee:
29:e3:73:53:88:64:ff:17:f4:4e:22:f7:9d:a0:03:
89:fd:34:37:d1:53:d4:2d:35:18:ad:29:30:9f:04:
84:c0:b5:09:92:03:d5:fc:1f:f5:07:f6:73:1d:06:
02:24:12:71:a8:3c:7f:9b:7d:60:a0:85:70:4b:1b:
c1:26:4e:06:d3:88:63:b3:e5:19:84:6f:ce:a3:7b:
32:a6:bd:3b:ed:54:98:90:e2:09:68:b6:f0:e0:45:
1a:ca:13:b5:1e:1b:c2:80:9c:af:ca:81:19:87:18:
fd:9c:e3:91:f4:3f:91:1a:08:c9:a1:5a:b0:5f:a7:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:68:B0:77:86:C2:68:4F:19:A8:FD:41:83:B5:32:01:B4:E7:D9:39
X509v3 Authority Key Identifier:
keyid:2A:B2:53:0C:BE:A4:D4:3C:B3:76:1B:42:DA:DF:EA:D7:E5:17:22:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrJTDL6k1DyzdhtC2t_q1-UXIig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/69da98-84d6-4081-83da-d2b7230a3df8/1/P2iwd4bCaE8ZqP1Bg7UyAbTn2Tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/69da98-84d6-4081-83da-d2b7230a3df8/1/KrJTDL6k1DyzdhtC2t_q1-UXIig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.84.0/22
IPv6:
2a03:f440::/32
Signature Algorithm: sha256WithRSAEncryption
58:26:93:d7:43:9a:8e:20:a1:4d:3f:34:00:6b:f7:83:87:fd:
09:16:15:3b:65:e7:4f:11:03:f9:ba:a8:73:20:6d:0f:55:5b:
15:4f:45:82:b5:8e:87:08:ac:fe:29:ec:e6:55:63:b2:77:bc:
fd:88:c1:23:99:de:ae:f8:1e:54:f2:59:8b:c2:eb:cc:cd:fe:
79:01:76:c5:4c:b4:c3:03:d7:fc:fc:66:a4:0d:23:13:ca:23:
67:2b:16:ff:0a:96:76:06:8b:c1:be:4e:94:69:66:f2:79:00:
08:71:2c:56:e4:3c:8f:6c:a6:40:78:1e:7b:76:d4:e3:20:b9:
9e:45:8b:36:2a:d7:5e:60:2a:34:9f:1f:f2:c3:30:79:ca:68:
9a:01:ec:d8:63:ab:af:2e:a1:db:8d:c6:d6:e5:9c:cc:30:05:
0f:5b:4c:67:fc:a7:ec:80:93:64:ae:ef:01:cb:f1:24:82:30:
1a:73:20:ba:35:47:68:89:81:74:93:97:fa:37:ae:e0:35:7a:
b5:d8:10:15:4a:1a:99:a3:c4:47:a9:3f:b8:bc:d8:b4:79:97:
86:29:63:6e:8f:f7:06:55:c1:f0:ec:b2:ca:68:15:c3:b3:7b:
83:cb:a1:3c:d0:ca:0b:4c:59:27:e9:b0:b5:8d:17:1c:91:b0:
d8:b8:cd:f0
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBFF1CDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWIyNTMwY2JlYTRkNDNjYjM3NjFiNDJkYWRmZWFkN2U1MTcyMjI4MB4XDTIyMDEw
MTAzNTIwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2Y2OGIwNzc4NmMy
Njg0ZjE5YThmZDQxODNiNTMyMDFiNGU3ZDkzOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMlgGEz+RqAwPfvGknaZ5/WyNOYVR0rHiqRFhTfAjBvFBbBr
MXbYLGdmdVnjUZIACTY9wNiVgn8twLAY3hLO6jr2Cyjame+PuIdTstrPa9pI6AGD
4cOkVAXEo2L8el47NPBcjRyM7Lug4hyTjSNY6TsYykPNaDL0EuQQ+wSn6NavjdRY
mifuKeNzU4hk/xf0TiL3naADif00N9FT1C01GK0pMJ8EhMC1CZID1fwf9Qf2cx0G
AiQScag8f5t9YKCFcEsbwSZOBtOIY7PlGYRvzqN7Mqa9O+1UmJDiCWi28OBFGsoT
tR4bwoCcr8qBGYcY/ZzjkfQ/kRoIyaFasF+nD2UCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQ/aLB3hsJoTxmo/UGDtTIBtOfZOTAfBgNVHSMEGDAWgBQqslMMvqTUPLN2
G0La3+rX5RciKDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tySlRETDZrMUR5emRodEMydF9xMS1VWElpZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzEvNjlkYTk4LTg0ZDYtNDA4MS04M2RhLWQyYjcyMzBhM2RmOC8x
L1AyaXdkNGJDYUU4WnFQMUJnN1V5QWJUbjJUay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzEv
NjlkYTk4LTg0ZDYtNDA4MS04M2RhLWQyYjcyMzBhM2RmOC8xL0tySlRETDZrMUR5
emRodEMydF9xMS1VWElpZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkSVDANBAIAAjAHAwUAKgP0QDAN
BgkqhkiG9w0BAQsFAAOCAQEAWCaT10OajiChTT80AGv3g4f9CRYVO2XnTxED+bqo
cyBtD1VbFU9FgrWOhwis/ins5lVjsne8/YjBI5nervgeVPJZi8LrzM3+eQF2xUy0
wwPX/PxmpA0jE8ojZysW/wqWdgaLwb5OlGlm8nkACHEsVuQ8j2ymQHgee3bU4yC5
nkWLNirXXmAqNJ8f8sMwecpomgHs2GOrry6h243G1uWczDAFD1tMZ/yn7ICTZK7v
AcvxJIIwGnMgujVHaImBdJOX+jeu4DV6tdgQFUoamaPER6k/uLzYtHmXhiljbo/3
BlXB8OyyymgVw7N7g8uhPNDKC0xZJ+mwtY0XHJGw2LjN8A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org