Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/2faeb5-6a1d-4a13-ba1f-4663bc9da964/1/Q7maqfU2kTfJl3EqifJisIXuSH0.roa
File: Q7maqfU2kTfJl3EqifJisIXuSH0.roa (raw, json)
Hash identifier: qBjmmKyPPv09jHGHJY0iQe+3OvJM2oG4y02W8R0zAm0=
Subject key identifier: 43:B9:9A:A9:F5:36:91:37:C9:97:71:2A:89:F2:62:B0:85:EE:48:7D
Certificate issuer: /CN=2182cd3ac5c4db67ea731a6b7198b7d6e4ff115c
Certificate serial: 01ACD16A
Authority key identifier: 21:82:CD:3A:C5:C4:DB:67:EA:73:1A:6B:71:98:B7:D6:E4:FF:11:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYLNOsXE22fqcxprcZi31uT_EVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/2faeb5-6a1d-4a13-ba1f-4663bc9da964/1/Q7maqfU2kTfJl3EqifJisIXuSH0.roa
Signing time: Sat 01 Jan 2022 10:02:26 +0000
ROA not before: Sat 01 Jan 2022 10:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211262
IP address blocks: 37.252.220.0/24 maxlen: 24
2a05:5180::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28103018 (0x1acd16a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2182cd3ac5c4db67ea731a6b7198b7d6e4ff115c
Validity
Not Before: Jan 1 10:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43b99aa9f5369137c997712a89f262b085ee487d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:05:d4:6f:c4:54:b9:36:5d:07:80:01:43:
ce:64:08:5d:87:a1:cf:a3:67:cf:4a:a5:4a:33:a5:
fe:72:ac:12:51:ba:cf:cb:57:52:f9:ef:09:5c:74:
d7:b1:38:39:6f:55:d8:76:d4:ea:ba:93:d6:d0:e4:
5b:26:76:06:bf:f9:6f:cc:ec:db:61:a1:de:7d:0b:
5c:06:24:6a:6b:e2:d1:67:8b:1c:89:e1:04:5b:69:
ef:7c:4e:6e:77:87:89:e8:f1:d9:3c:d1:9d:da:83:
d6:56:64:3d:86:a3:87:32:c2:fd:dc:6a:a9:e7:c3:
b4:ca:eb:38:cc:92:c0:fa:77:f8:e7:2b:af:2d:82:
e8:94:97:35:1b:bf:28:03:ea:4c:99:b4:90:48:68:
77:c8:65:85:a8:5b:76:3e:3d:14:cf:3b:c2:8b:71:
37:a0:a0:bc:a8:fe:30:06:e8:ab:20:49:71:61:4f:
ed:c6:d4:77:64:0f:72:f2:4f:e5:6c:f3:6e:e3:38:
8e:98:ab:8c:a2:37:da:3d:7d:4e:77:35:cb:bc:0a:
a8:59:c9:ef:32:92:b3:e0:45:3d:74:f5:7f:c0:74:
79:da:3d:b5:b5:7d:91:56:c0:40:f3:38:1e:f1:38:
4a:dd:08:91:07:8d:bf:bc:ab:0a:cd:a6:e7:10:bd:
b9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B9:9A:A9:F5:36:91:37:C9:97:71:2A:89:F2:62:B0:85:EE:48:7D
X509v3 Authority Key Identifier:
keyid:21:82:CD:3A:C5:C4:DB:67:EA:73:1A:6B:71:98:B7:D6:E4:FF:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYLNOsXE22fqcxprcZi31uT_EVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2faeb5-6a1d-4a13-ba1f-4663bc9da964/1/Q7maqfU2kTfJl3EqifJisIXuSH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2faeb5-6a1d-4a13-ba1f-4663bc9da964/1/IYLNOsXE22fqcxprcZi31uT_EVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.220.0/24
IPv6:
2a05:5180::/29
Signature Algorithm: sha256WithRSAEncryption
41:dd:bb:bb:a1:dc:df:b7:0b:96:da:c3:69:3e:4c:3f:fc:1a:
bd:0c:f1:2c:f4:5b:12:25:35:51:82:22:8f:2f:fd:67:9b:c6:
85:26:7c:41:fa:23:82:55:b4:70:6d:4b:1a:5e:7e:fc:72:ff:
59:56:eb:4d:68:50:1d:fa:dd:6c:21:45:d0:64:d1:97:42:d8:
2c:8a:b7:4c:b2:5e:6a:45:73:89:20:a8:4a:ea:18:c3:1b:58:
d4:c4:11:b5:80:83:a4:3a:f7:46:aa:e0:7b:af:5d:42:a8:b0:
b6:eb:b7:79:26:b4:90:ba:d9:e5:6c:09:fc:72:f7:0e:3a:2c:
4e:44:2e:ee:c6:d8:10:5b:95:df:62:23:80:b1:e3:df:a3:31:
a7:6d:ec:d7:6f:53:f5:ce:92:2b:af:f1:6f:70:dc:a5:6c:eb:
28:83:ba:df:e2:67:b8:b0:fe:25:30:bb:f4:fb:75:63:a5:68:
a7:29:bd:cd:92:06:69:c1:a1:3b:04:be:2b:da:71:12:bb:91:
60:77:73:d3:4d:ef:52:3f:51:92:bc:d7:5e:70:2c:29:1e:ac:
ac:3a:35:a9:5b:79:c1:1c:0e:e7:4e:68:06:c4:94:7b:e2:dd:
a7:87:91:f8:ed:c1:2d:d8:a5:91:02:9b:b5:4c:ab:1d:a9:e8:
43:6c:e0:94
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAazRajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTgyY2QzYWM1YzRkYjY3ZWE3MzFhNmI3MTk4YjdkNmU0ZmYxMTVjMB4XDTIyMDEw
MTEwMDIyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDNiOTlhYTlmNTM2
OTEzN2M5OTc3MTJhODlmMjYyYjA4NWVlNDg3ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKYnBdRvxFS5Nl0HgAFDzmQIXYehz6Nnz0qlSjOl/nKsElG6
z8tXUvnvCVx017E4OW9V2HbU6rqT1tDkWyZ2Br/5b8zs22Gh3n0LXAYkamvi0WeL
HInhBFtp73xObneHiejx2TzRndqD1lZkPYajhzLC/dxqqefDtMrrOMySwPp3+Ocr
ry2C6JSXNRu/KAPqTJm0kEhod8hlhahbdj49FM87wotxN6CgvKj+MAboqyBJcWFP
7cbUd2QPcvJP5WzzbuM4jpirjKI32j19Tnc1y7wKqFnJ7zKSs+BFPXT1f8B0edo9
tbV9kVbAQPM4HvE4St0IkQeNv7yrCs2m5xC9ubUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRDuZqp9TaRN8mXcSqJ8mKwhe5IfTAfBgNVHSMEGDAWgBQhgs06xcTbZ+pz
GmtxmLfW5P8RXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lZTE5Pc1hFMjJmcWN4cHJjWmkzMXVUX0VWdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTIvMmZhZWI1LTZhMWQtNGExMy1iYTFmLTQ2NjNiYzlkYTk2NC8x
L1E3bWFxZlUya1RmSmwzRXFpZkppc0lYdVNIMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIv
MmZhZWI1LTZhMWQtNGExMy1iYTFmLTQ2NjNiYzlkYTk2NC8xL0lZTE5Pc1hFMjJm
cWN4cHJjWmkzMXVUX0VWdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEACX83DANBAIAAjAHAwUDKgVRgDAN
BgkqhkiG9w0BAQsFAAOCAQEAQd27u6Hc37cLltrDaT5MP/wavQzxLPRbEiU1UYIi
jy/9Z5vGhSZ8QfojglW0cG1LGl5+/HL/WVbrTWhQHfrdbCFF0GTRl0LYLIq3TLJe
akVziSCoSuoYwxtY1MQRtYCDpDr3Rqrge69dQqiwtuu3eSa0kLrZ5WwJ/HL3Djos
TkQu7sbYEFuV32IjgLHj36Mxp23s129T9c6SK6/xb3DcpWzrKIO63+JnuLD+JTC7
9Pt1Y6Vopym9zZIGacGhOwS+K9pxEruRYHdz003vUj9RkrzXXnAsKR6srDo1qVt5
wRwO505oBsSUe+Ldp4eR+O3BLdilkQKbtUyrHanoQ2zglA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:05 2024 by rpki-client on console-ams.rpki-client.org