Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/353338-9efb-40bd-98a9-a7bf9e50af0b/1/1x7Gpgrdv-WWonPIg0CxhM3fYdg.roa
File: 1x7Gpgrdv-WWonPIg0CxhM3fYdg.roa (raw, json)
Hash identifier: sq5uVCt87GwQCNtCqWS8K3n7qrbOjPgKCXjzcoCpwNM=
Subject key identifier: D7:1E:C6:A6:0A:DD:BF:E5:96:A2:73:C8:83:40:B1:84:CD:DF:61:D8
Certificate issuer: /CN=c78de7ab3f1e7fc1bca3520eacfe0e1a7e6a55fe
Certificate serial: 16C4A01E
Authority key identifier: C7:8D:E7:AB:3F:1E:7F:C1:BC:A3:52:0E:AC:FE:0E:1A:7E:6A:55:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x43nqz8ef8G8o1IOrP4OGn5qVf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/353338-9efb-40bd-98a9-a7bf9e50af0b/1/1x7Gpgrdv-WWonPIg0CxhM3fYdg.roa
Signing time: Sat 01 Jan 2022 10:56:21 +0000
ROA not before: Sat 01 Jan 2022 10:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201939
IP address blocks: 185.57.52.0/22 maxlen: 24
2a02:5820::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381984798 (0x16c4a01e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c78de7ab3f1e7fc1bca3520eacfe0e1a7e6a55fe
Validity
Not Before: Jan 1 10:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d71ec6a60addbfe596a273c88340b184cddf61d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:b9:1d:70:69:f4:98:6b:d5:77:38:0d:ad:
37:ee:72:8c:e7:47:5f:65:7e:9e:88:ca:14:34:fb:
5a:56:56:e9:d7:ed:e6:b0:5e:56:57:9e:df:ac:fc:
ef:68:86:30:ae:e0:e8:cd:07:c0:b5:f6:cf:10:07:
56:f6:1f:b0:ed:30:87:55:c1:54:52:47:67:54:ac:
a6:ad:d7:49:44:7f:4a:26:2e:fb:8d:75:7b:7a:49:
77:c6:c7:70:2b:a9:3b:e1:49:80:dc:2a:26:e6:09:
2e:53:26:2a:fc:57:49:cb:7a:d7:39:55:bc:2b:96:
a1:88:29:42:00:13:f7:cf:91:8a:ca:8e:c9:41:66:
0a:d7:43:fc:97:03:23:e3:82:2c:80:97:1f:d0:1e:
93:49:f6:eb:a8:6f:b6:da:51:33:20:a5:d2:33:46:
61:6c:3d:c9:47:5c:09:c5:9d:90:6c:5f:48:f9:83:
bd:20:14:97:57:c0:7a:8b:22:60:94:7d:2d:0f:1e:
ec:fb:9a:90:f4:e4:1d:4b:0b:22:68:01:6f:9d:f4:
18:c8:32:1a:e6:2e:6f:83:0d:13:7f:a1:15:54:a0:
d8:93:c4:e1:80:dc:74:9f:cf:6f:4d:74:80:a2:c9:
5f:69:0d:de:89:5a:66:9e:8f:7b:01:37:92:1c:95:
08:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1E:C6:A6:0A:DD:BF:E5:96:A2:73:C8:83:40:B1:84:CD:DF:61:D8
X509v3 Authority Key Identifier:
keyid:C7:8D:E7:AB:3F:1E:7F:C1:BC:A3:52:0E:AC:FE:0E:1A:7E:6A:55:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x43nqz8ef8G8o1IOrP4OGn5qVf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/353338-9efb-40bd-98a9-a7bf9e50af0b/1/1x7Gpgrdv-WWonPIg0CxhM3fYdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/353338-9efb-40bd-98a9-a7bf9e50af0b/1/x43nqz8ef8G8o1IOrP4OGn5qVf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.52.0/22
IPv6:
2a02:5820::/32
Signature Algorithm: sha256WithRSAEncryption
2a:36:bc:da:fe:94:6f:11:55:81:39:05:d5:79:8a:c8:64:97:
bc:5e:a4:ea:a7:81:f4:47:6f:ae:e2:e4:fa:31:bb:66:28:b4:
75:7f:a6:ca:32:e4:7b:ce:0d:75:72:23:66:13:f7:f6:fc:82:
5f:d6:fd:3e:bc:5a:46:44:6b:bf:f4:de:bc:a4:b8:69:fc:7c:
1f:44:ee:88:b5:3e:fc:7d:71:7d:81:5a:34:ca:2e:e0:47:fd:
52:c2:da:60:6c:95:76:09:bf:92:8d:72:3b:7a:af:bc:6d:d7:
90:45:d4:49:4b:42:bc:af:ab:4f:9a:9d:77:88:f5:44:a4:b2:
b8:c2:97:a2:df:a6:69:33:f7:a1:87:f7:f4:cd:36:78:3c:cf:
e6:7e:82:4c:21:28:45:96:4d:9d:40:c1:d8:98:d0:e2:f9:9f:
10:55:1a:1f:52:3f:bb:60:33:7c:d3:8c:c1:26:8a:a9:8e:88:
73:c2:e7:af:00:6d:9f:e2:13:df:b3:aa:fc:a2:66:48:93:c4:
ab:b1:a0:f7:ba:14:15:f0:ab:a8:26:0b:8e:73:7a:e6:73:22:
6f:2a:1a:d3:93:8d:32:78:48:4c:7b:6a:ee:72:9a:36:17:90:
83:e7:8a:28:3a:5a:77:9f:15:aa:29:31:f2:b4:e9:3e:71:34:
04:82:4c:f6
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFsSgHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NzhkZTdhYjNmMWU3ZmMxYmNhMzUyMGVhY2ZlMGUxYTdlNmE1NWZlMB4XDTIyMDEw
MTEwNTYyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDcxZWM2YTYwYWRk
YmZlNTk2YTI3M2M4ODM0MGIxODRjZGRmNjFkODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzguR1wafSYa9V3OA2tN+5yjOdHX2V+nojKFDT7WlZW6dft
5rBeVlee36z872iGMK7g6M0HwLX2zxAHVvYfsO0wh1XBVFJHZ1Sspq3XSUR/SiYu
+411e3pJd8bHcCupO+FJgNwqJuYJLlMmKvxXSct61zlVvCuWoYgpQgAT98+RisqO
yUFmCtdD/JcDI+OCLICXH9Aek0n266hvttpRMyCl0jNGYWw9yUdcCcWdkGxfSPmD
vSAUl1fAeosiYJR9LQ8e7PuakPTkHUsLImgBb530GMgyGuYub4MNE3+hFVSg2JPE
4YDcdJ/Pb010gKLJX2kN3olaZp6PewE3khyVCJ0CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTXHsamCt2/5Zaic8iDQLGEzd9h2DAfBgNVHSMEGDAWgBTHjeerPx5/wbyj
Ug6s/g4afmpV/jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3g0M25xejhlZjhHOG8xSU9yUDRPR241cVZmNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvMzUzMzM4LTllZmItNDBiZC05OGE5LWE3YmY5ZTUwYWYwYi8x
LzF4N0dwZ3Jkdi1XV29uUElnMEN4aE0zZllkZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
MzUzMzM4LTllZmItNDBiZC05OGE5LWE3YmY5ZTUwYWYwYi8xL3g0M25xejhlZjhH
OG8xSU9yUDRPR241cVZmNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArk5NDANBAIAAjAHAwUAKgJYIDAN
BgkqhkiG9w0BAQsFAAOCAQEAKja82v6UbxFVgTkF1XmKyGSXvF6k6qeB9EdvruLk
+jG7Zii0dX+myjLke84NdXIjZhP39vyCX9b9PrxaRkRrv/TevKS4afx8H0TuiLU+
/H1xfYFaNMou4Ef9UsLaYGyVdgm/ko1yO3qvvG3XkEXUSUtCvK+rT5qdd4j1RKSy
uMKXot+maTP3oYf39M02eDzP5n6CTCEoRZZNnUDB2JjQ4vmfEFUaH1I/u2AzfNOM
wSaKqY6Ic8LnrwBtn+IT37Oq/KJmSJPEq7Gg97oUFfCrqCYLjnN65nMibyoa05ON
MnhITHtq7nKaNheQg+eKKDpad58Vqikx8rTpPnE0BIJM9g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:55 2024 by rpki-client on console-ams.rpki-client.org