Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/1-UNdniVLv60DLyxYo_MYPb8FvHo.roa
File: 1-UNdniVLv60DLyxYo_MYPb8FvHo.roa (raw, json)
Hash identifier: f35xcF0yHBC2I/JsI1S1EB9TqxF0R5ONoZSFK3kfUwY=
Subject key identifier: F9:43:5D:9E:25:4B:BF:AD:03:2F:2C:58:A3:F3:18:3D:BF:05:BC:7A
Certificate issuer: /CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Certificate serial: 0889ED48
Authority key identifier: C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/1-UNdniVLv60DLyxYo_MYPb8FvHo.roa
Signing time: Sat 01 Jan 2022 08:58:19 +0000
ROA not before: Sat 01 Jan 2022 08:58:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43045
IP address blocks: 5.182.52.0/22 maxlen: 22
46.17.48.0/21 maxlen: 21
89.221.48.0/20 maxlen: 20
2a02:22c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143256904 (0x889ed48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Validity
Not Before: Jan 1 08:58:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9435d9e254bbfad032f2c58a3f3183dbf05bc7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1b:30:36:20:1d:f2:08:35:4d:f6:78:5e:57:
55:b6:2d:d2:9f:b7:e5:05:79:9f:38:35:f0:cd:67:
ca:04:20:5c:7e:93:e0:57:71:64:8e:d8:bb:33:c2:
44:3b:3b:42:cb:22:bd:c0:d6:e7:81:c1:88:9f:5b:
1c:5f:51:ae:fc:51:81:9f:b9:f6:a8:22:4e:fc:ec:
d9:fe:03:82:73:8d:f8:84:50:e0:58:77:7d:d8:ca:
a3:2f:c3:9d:37:4a:c9:38:29:78:54:7f:bb:60:ac:
66:e9:78:14:27:d5:b8:3f:8e:ec:8b:91:ea:38:38:
69:da:5e:20:59:6c:fe:17:e3:bd:d4:5c:a6:29:f8:
54:1e:2c:20:62:82:36:bb:4a:05:d2:4b:f4:44:1d:
4d:9b:d2:4c:dc:41:55:97:e7:38:88:da:b3:ca:f9:
27:03:1f:44:d5:b9:5a:5f:26:77:78:f3:6e:72:5c:
99:2d:42:dd:f4:e2:8b:a6:d9:a8:7d:77:00:e3:61:
b5:28:7d:79:f5:88:3d:ff:70:b0:4a:c7:10:31:59:
bb:26:39:fe:9d:a4:f6:25:8c:f5:a1:a4:70:d5:e8:
a3:34:44:1e:3e:10:c6:9c:f8:48:20:fb:7d:52:a4:
ec:10:f0:5f:36:51:6b:a0:e4:0b:17:6f:e8:a3:31:
65:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:43:5D:9E:25:4B:BF:AD:03:2F:2C:58:A3:F3:18:3D:BF:05:BC:7A
X509v3 Authority Key Identifier:
keyid:C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/1-UNdniVLv60DLyxYo_MYPb8FvHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.52.0/22
46.17.48.0/21
89.221.48.0/20
IPv6:
2a02:22c0::/32
Signature Algorithm: sha256WithRSAEncryption
3a:e3:93:86:6e:67:6e:ad:63:94:19:08:35:28:5f:cc:56:29:
60:02:50:0a:5e:8d:70:39:6a:70:f0:ee:c2:7e:0e:ec:1a:60:
ff:06:da:cd:d2:c6:62:65:87:e8:53:0e:a2:35:e0:d3:c3:53:
ca:84:f9:b1:86:e4:5b:11:22:65:ee:dd:6a:b7:0e:48:8c:40:
43:41:ac:17:6c:1b:7e:d4:3e:69:96:89:e1:a1:be:c6:00:9f:
d2:b8:0a:91:a4:90:0e:fe:00:cb:9b:4e:bb:7b:6e:b0:48:38:
48:10:88:c4:11:fb:93:cd:ee:9d:22:bb:7c:f6:9c:ca:52:14:
a3:56:fe:f9:72:15:71:9e:7f:b3:6e:3b:e8:09:bb:7c:af:cb:
9f:8a:b2:d6:d4:c6:61:2d:4a:14:71:e3:b3:aa:83:08:6d:b3:
bd:ad:96:37:a3:6b:67:56:21:30:11:44:a1:cd:9e:bd:1e:b4:
29:e1:43:02:8a:61:8f:76:cd:0a:49:68:39:77:40:d2:44:39:
3c:89:9b:98:97:da:80:40:ed:be:3d:13:17:cc:95:a9:63:50:
91:9b:75:a0:40:02:a6:98:bd:88:23:e2:d8:9f:40:1d:f2:8c:
1b:48:37:b8:20:d4:9c:ee:02:70:da:e4:f8:f7:fe:be:d7:f6:
2a:a6:e9:02
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIECIntSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjEzMzNkMGU4MTA3ODg2ZDAzMDVjN2JkODFiZGQzNTQ4OTUyN2FlMB4XDTIyMDEw
MTA4NTgxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjk0MzVkOWUyNTRi
YmZhZDAzMmYyYzU4YTNmMzE4M2RiZjA1YmM3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMMbMDYgHfIINU32eF5XVbYt0p+35QV5nzg18M1nygQgXH6T
4FdxZI7YuzPCRDs7QssivcDW54HBiJ9bHF9RrvxRgZ+59qgiTvzs2f4DgnON+IRQ
4Fh3fdjKoy/DnTdKyTgpeFR/u2CsZul4FCfVuD+O7IuR6jg4adpeIFls/hfjvdRc
pin4VB4sIGKCNrtKBdJL9EQdTZvSTNxBVZfnOIjas8r5JwMfRNW5Wl8md3jzbnJc
mS1C3fTii6bZqH13AONhtSh9efWIPf9wsErHEDFZuyY5/p2k9iWM9aGkcNXoozRE
Hj4Qxpz4SCD7fVKk7BDwXzZRa6DkCxdv6KMxZUcCAwEAAaOCAiUwggIhMB0GA1Ud
DgQWBBT5Q12eJUu/rQMvLFij8xg9vwW8ejAfBgNVHSMEGDAWgBTGEzPQ6BB4htAw
XHvYG901SJUnrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hoTXowT2dRZUliUU1GeDcyQnZkTlVpVko2NC5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzMvZGQzMmMzLWZlOGYtNDA0Ny1iNjhhLThlYzVmMGVlYTA0NS8x
LzEtVU5kbmlWTHY2MERMeXhZb19NWVBiOEZ2SG8ucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcz
L2RkMzJjMy1mZThmLTQwNDctYjY4YS04ZWM1ZjBlZWEwNDUvMS94aE16ME9nUWVJ
YlFNRng3MkJ2ZE5VaVZKNjQuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
OgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBIDBAIFtjQDBAMuETADBARZ3TAwDQQC
AAIwBwMFACoCIsAwDQYJKoZIhvcNAQELBQADggEBADrjk4ZuZ26tY5QZCDUoX8xW
KWACUApejXA5anDw7sJ+DuwaYP8G2s3SxmJlh+hTDqI14NPDU8qE+bGG5FsRImXu
3Wq3DkiMQENBrBdsG37UPmmWieGhvsYAn9K4CpGkkA7+AMubTrt7brBIOEgQiMQR
+5PN7p0iu3z2nMpSFKNW/vlyFXGef7NuO+gJu3yvy5+KstbUxmEtShRx47Oqgwht
s72tljeja2dWITARRKHNnr0etCnhQwKKYY92zQpJaDl3QNJEOTyJm5iX2oBA7b49
ExfMlaljUJGbdaBAAqaYvYgj4tifQB3yjBtIN7gg1JzuAnDa5Pj3/r7X9iqm6QI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:35 2023 by rpki-client on console-ams.rpki-client.org