Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/JupdghMj2ZlO-TmNQCYd0FhzFeQ.roa
File: JupdghMj2ZlO-TmNQCYd0FhzFeQ.roa (raw, json)
Hash identifier: 75ZghwYqUFpT06VWdZJ8RaX13kIwyFjandc4S9t0U7Q=
Subject key identifier: 26:EA:5D:82:13:23:D9:99:4E:F9:39:8D:40:26:1D:D0:58:73:15:E4
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 037B113E
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/JupdghMj2ZlO-TmNQCYd0FhzFeQ.roa
Signing time: Sat 01 Jan 2022 01:59:18 +0000
ROA not before: Sat 01 Jan 2022 01:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58144
IP address blocks: 185.20.252.0/22 maxlen: 24
185.20.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58396990 (0x37b113e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: Jan 1 01:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26ea5d821323d9994ef9398d40261dd0587315e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:26:ea:a0:cc:e9:fb:ec:06:12:4a:36:ca:bc:
47:38:32:19:45:2e:a8:73:fe:90:7b:91:10:6a:d3:
41:53:5d:0f:62:08:ff:49:77:f1:07:bf:67:b0:13:
f3:08:06:70:2f:90:4f:a7:18:74:33:92:2b:91:11:
56:27:ca:6b:0f:59:e4:14:41:a2:1f:0f:e2:cb:6a:
3d:aa:02:59:bc:74:5a:6b:f3:7b:93:17:78:bd:83:
55:81:c2:b7:8d:fd:e9:66:15:80:54:f3:49:40:ba:
cd:7b:47:d5:6d:4b:61:ce:42:44:48:d6:95:e2:0b:
14:fb:fb:c5:eb:0c:b1:02:f2:85:99:b7:35:40:5b:
ee:c3:a0:30:21:ef:bf:53:49:97:8c:0d:67:1f:44:
3d:db:df:a3:79:f7:99:7d:4b:1e:e3:75:0f:07:27:
37:47:90:4f:d3:3b:39:ed:96:31:cf:d9:fe:ba:87:
73:24:79:e4:12:81:6a:8e:12:4b:56:f4:73:e8:9b:
ac:68:e5:65:10:bb:18:a5:79:19:9d:4c:c3:aa:db:
f0:4d:33:8a:83:7e:3b:52:d3:a8:f6:bc:52:fc:99:
40:07:66:f8:8a:98:93:bc:a6:6c:65:7b:42:eb:57:
1d:39:08:cc:33:d7:50:d4:51:be:8d:7c:cc:cd:c5:
c0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:EA:5D:82:13:23:D9:99:4E:F9:39:8D:40:26:1D:D0:58:73:15:E4
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/JupdghMj2ZlO-TmNQCYd0FhzFeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.252.0/22
Signature Algorithm: sha256WithRSAEncryption
40:f5:dc:da:b2:4c:f3:23:0b:42:01:2b:7e:9e:ec:7d:eb:8a:
7c:01:6a:6e:9e:c0:18:a7:07:22:bf:b7:28:dd:56:b9:f5:e6:
3c:d8:98:9e:03:9a:41:d3:a0:40:53:6a:01:8d:81:76:e3:e9:
fe:5a:8a:76:3b:c1:10:eb:41:20:99:fb:29:1c:46:3a:e2:f9:
a3:64:b8:3e:15:3c:c8:6e:c1:6f:12:a1:b1:19:d5:96:a2:23:
c8:ce:47:94:ea:d8:0d:00:46:11:73:4c:ab:73:ae:a7:01:1c:
dc:67:90:28:49:3e:2d:43:52:c7:ea:ed:31:2d:c9:6e:a7:64:
3a:3c:d6:f8:67:f7:fc:17:69:aa:66:7d:32:85:5c:31:42:0f:
81:d2:56:2a:f0:0e:b2:98:69:71:f4:c4:97:00:93:40:7f:5f:
2f:ed:13:8f:f8:b2:28:7d:4a:7d:22:28:23:20:0d:c0:1e:5e:
df:34:72:fc:f1:ff:07:25:3b:2e:5e:59:29:a8:7a:29:15:2a:
a1:8e:06:31:eb:d4:db:99:a1:98:bf:0d:15:78:c9:03:1b:c6:
40:15:16:27:de:9f:95:7b:1f:f1:a1:aa:da:96:e5:ff:39:91:
7b:c2:ac:27:fc:45:88:ff:bb:f5:39:40:ca:a1:48:38:f3:3e:
69:fb:e6:93
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA3sRPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YzA2YTgyYmIxMTVkNzM5M2UzOWZkNThiNzNiYmYyMGY2Y2QwYjFmMB4XDTIyMDEw
MTAxNTkxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjZlYTVkODIxMzIz
ZDk5OTRlZjkzOThkNDAyNjFkZDA1ODczMTVlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUm6qDM6fvsBhJKNsq8RzgyGUUuqHP+kHuREGrTQVNdD2II
/0l38Qe/Z7AT8wgGcC+QT6cYdDOSK5ERVifKaw9Z5BRBoh8P4stqPaoCWbx0Wmvz
e5MXeL2DVYHCt4396WYVgFTzSUC6zXtH1W1LYc5CREjWleILFPv7xesMsQLyhZm3
NUBb7sOgMCHvv1NJl4wNZx9EPdvfo3n3mX1LHuN1DwcnN0eQT9M7Oe2WMc/Z/rqH
cyR55BKBao4SS1b0c+ibrGjlZRC7GKV5GZ1Mw6rb8E0zioN+O1LTqPa8UvyZQAdm
+IqYk7ymbGV7QutXHTkIzDPXUNRRvo18zM3FwF8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQm6l2CEyPZmU75OY1AJh3QWHMV5DAfBgNVHSMEGDAWgBQcBqgrsRXXOT45
/Vi3O78g9s0LHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hBYW9LN0VWMXprLU9mMVl0enVfSVBiTkN4OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWMvMTJlYWFkLThhNDUtNDc4OS1iYWI1LTcyNjA1N2ExZjJhNC8x
L0p1cGRnaE1qMlpsTy1UbU5RQ1lkMEZoekZlUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMv
MTJlYWFkLThhNDUtNDc4OS1iYWI1LTcyNjA1N2ExZjJhNC8xL0hBYW9LN0VWMXpr
LU9mMVl0enVfSVBiTkN4OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkU/DANBgkqhkiG9w0BAQsFAAOC
AQEAQPXc2rJM8yMLQgErfp7sfeuKfAFqbp7AGKcHIr+3KN1WufXmPNiYngOaQdOg
QFNqAY2BduPp/lqKdjvBEOtBIJn7KRxGOuL5o2S4PhU8yG7BbxKhsRnVlqIjyM5H
lOrYDQBGEXNMq3OupwEc3GeQKEk+LUNSx+rtMS3JbqdkOjzW+Gf3/BdpqmZ9MoVc
MUIPgdJWKvAOsphpcfTElwCTQH9fL+0Tj/iyKH1KfSIoIyANwB5e3zRy/PH/ByU7
Ll5ZKah6KRUqoY4GMevU25mhmL8NFXjJAxvGQBUWJ96flXsf8aGq2pbl/zmRe8Ks
J/xFiP+79TlAyqFIOPM+afvmkw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:47 2024 by rpki-client on console-fra.rpki-client.org