Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/VGUewjpJ6vivfjSPwu9d6W7hmFA.roa
File: VGUewjpJ6vivfjSPwu9d6W7hmFA.roa (raw, json)
Hash identifier: A8kLfBZEzGtv931mPHZd6N0jS8GID/6Ohr4+FbYktAU=
Subject key identifier: 54:65:1E:C2:3A:49:EA:F8:AF:7E:34:8F:C2:EF:5D:E9:6E:E1:98:50
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0475B055
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/VGUewjpJ6vivfjSPwu9d6W7hmFA.roa
Signing time: Sat 01 Jan 2022 08:57:37 +0000
ROA not before: Sat 01 Jan 2022 08:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59627
IP address blocks: 37.252.2.0/24 maxlen: 24
37.252.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74821717 (0x475b055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jan 1 08:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54651ec23a49eaf8af7e348fc2ef5de96ee19850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:19:0f:a5:9f:9f:4d:c7:4b:7a:b9:ed:3f:f7:
58:1e:44:77:e1:f6:cc:21:ef:f4:22:1b:df:98:fd:
33:09:06:85:23:7a:ca:f5:e8:1b:17:35:c2:54:ce:
1c:7d:86:cb:f4:4d:10:c4:3a:0c:fc:b6:b2:69:5a:
c2:2c:bf:b4:21:9d:ca:1e:af:75:96:7a:4e:03:f2:
c2:de:88:76:c1:a9:43:50:2d:91:52:80:94:a0:7e:
13:45:87:16:fd:ed:0b:45:6b:75:6f:10:df:c2:18:
17:29:a1:c6:19:ed:9c:5c:4f:b9:b4:0a:1d:cf:54:
3f:b7:d6:75:45:09:c3:31:f6:22:66:bf:39:23:4d:
e9:de:84:79:7a:40:8e:28:7b:15:e2:01:71:7c:c0:
3b:d6:06:a0:52:3a:61:d7:5f:ec:b4:96:f1:94:dc:
8e:08:05:23:bd:53:a0:29:06:b9:74:59:f2:95:14:
82:e4:2b:73:0d:d5:a4:1a:2c:dd:c6:58:69:3a:c1:
11:35:b6:98:b8:34:97:19:8d:ef:c4:4d:3e:a7:ce:
14:cb:dc:20:43:1b:d8:26:55:8d:75:7d:56:fb:2e:
4b:89:be:93:64:68:59:e8:f2:1d:05:c1:b3:de:e4:
48:e4:81:1c:05:c2:45:4e:6b:b1:18:a5:02:91:a5:
00:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:65:1E:C2:3A:49:EA:F8:AF:7E:34:8F:C2:EF:5D:E9:6E:E1:98:50
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/VGUewjpJ6vivfjSPwu9d6W7hmFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.2.0/24
37.252.12.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ee:f4:4d:d5:c0:d5:78:4d:8c:4b:53:f3:83:ff:c3:33:7b:
9a:56:3e:5d:73:bb:2b:00:6b:7b:56:c7:4e:9c:f7:61:41:c3:
b1:97:cc:35:9e:24:24:95:43:66:82:6f:b0:9b:35:00:f9:6a:
c6:3f:90:a3:cc:36:bd:5c:6a:07:03:c3:fa:79:5d:9b:b7:ea:
0f:58:50:49:b2:e8:fe:7b:6e:e1:09:18:d8:81:7b:dc:55:47:
19:50:57:b8:8a:db:ca:b2:a7:02:80:95:c9:8c:9a:2a:c6:95:
f6:1b:33:2f:da:72:bc:03:b4:e2:08:7f:85:68:8d:ab:9d:3c:
2f:71:8c:6d:6d:88:ac:62:c3:23:b6:65:4f:8f:4e:57:b6:35:
ca:96:b8:5c:99:31:a5:5a:31:7b:2f:57:79:63:0a:93:e4:c0:
96:96:cb:d9:fb:cd:0d:20:6e:d1:82:27:9e:27:ac:43:ed:b7:
a1:af:d8:75:b4:36:07:22:e7:13:e9:3a:bd:c1:34:fd:bc:1a:
2c:a3:36:a6:8d:4d:7a:60:f5:4f:ff:1b:53:4f:fa:c8:13:55:
e5:39:63:11:24:5e:fd:71:5d:f0:84:e4:6b:ad:ce:45:dc:8c:
a6:60:7f:2d:2f:19:01:09:5d:49:1b:c0:7d:9d:ec:f9:31:8c:
ac:ee:43:7a
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBHWwVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZWY1Y2IyZjU5MGQwNDE2NTRmNGRmZGI2MGEyOGY5YTE1NDRmNDQ0MB4XDTIyMDEw
MTA4NTczN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTQ2NTFlYzIzYTQ5
ZWFmOGFmN2UzNDhmYzJlZjVkZTk2ZWUxOTg1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUZD6Wfn03HS3q57T/3WB5Ed+H2zCHv9CIb35j9MwkGhSN6
yvXoGxc1wlTOHH2Gy/RNEMQ6DPy2smlawiy/tCGdyh6vdZZ6TgPywt6IdsGpQ1At
kVKAlKB+E0WHFv3tC0VrdW8Q38IYFymhxhntnFxPubQKHc9UP7fWdUUJwzH2Ima/
OSNN6d6EeXpAjih7FeIBcXzAO9YGoFI6Yddf7LSW8ZTcjggFI71ToCkGuXRZ8pUU
guQrcw3VpBos3cZYaTrBETW2mLg0lxmN78RNPqfOFMvcIEMb2CZVjXV9VvsuS4m+
k2RoWejyHQXBs97kSOSBHAXCRU5rsRilApGlAPECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRUZR7COknq+K9+NI/C713pbuGYUDAfBgNVHSMEGDAWgBQO9csvWQ0EFlT0
39tgoo+aFUT0RDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0R2WExMMWtOQkJaVTlOX2JZS0tQbWhWRTlFUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvMjI2ZjA0LWY3ZGItNDkxYS1iYWZiLWVlNDM1ZDNjZDU4NS8x
L1ZHVWV3anBKNnZpdmZqU1B3dTlkNlc3aG1GQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
MjI2ZjA0LWY3ZGItNDkxYS1iYWZiLWVlNDM1ZDNjZDU4NS8xL0R2WExMMWtOQkJa
VTlOX2JZS0tQbWhWRTlFUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEACX8AgMEACX8DDANBgkqhkiG9w0B
AQsFAAOCAQEAlu70TdXA1XhNjEtT84P/wzN7mlY+XXO7KwBre1bHTpz3YUHDsZfM
NZ4kJJVDZoJvsJs1APlqxj+Qo8w2vVxqBwPD+nldm7fqD1hQSbLo/ntu4QkY2IF7
3FVHGVBXuIrbyrKnAoCVyYyaKsaV9hszL9pyvAO04gh/hWiNq508L3GMbW2IrGLD
I7ZlT49OV7Y1ypa4XJkxpVoxey9XeWMKk+TAlpbL2fvNDSBu0YInniesQ+23oa/Y
dbQ2ByLnE+k6vcE0/bwaLKM2po1NemD1T/8bU0/6yBNV5TljESRe/XFd8ITka63O
RdyMpmB/LS8ZAQldSRvAfZ3s+TGMrO5Deg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:44 2024 by rpki-client on console-fra.rpki-client.org