Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bdcbc4-63b7-4ae5-8684-60e7e45399e6/1/IW4UDmOjDrIyzDXfwNv21BLaW1Y.roa
File: IW4UDmOjDrIyzDXfwNv21BLaW1Y.roa (raw, json)
Hash identifier: oKRG6o/6gGV5jV5I/zNenx+xMF5GfrUPM4BiWjSu78I=
Subject key identifier: 21:6E:14:0E:63:A3:0E:B2:32:CC:35:DF:C0:DB:F6:D4:12:DA:5B:56
Certificate issuer: /CN=bd9c80cbe5d57972345f5fa5eba35c86889e55ca
Certificate serial: F5031E
Authority key identifier: BD:9C:80:CB:E5:D5:79:72:34:5F:5F:A5:EB:A3:5C:86:88:9E:55:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZyAy-XVeXI0X1-l66NchoieVco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bdcbc4-63b7-4ae5-8684-60e7e45399e6/1/IW4UDmOjDrIyzDXfwNv21BLaW1Y.roa
Signing time: Sat 01 Jan 2022 06:03:13 +0000
ROA not before: Sat 01 Jan 2022 06:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61006
IP address blocks: 185.39.200.0/22 maxlen: 22
37.252.112.0/21 maxlen: 21
2a00:d740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16057118 (0xf5031e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd9c80cbe5d57972345f5fa5eba35c86889e55ca
Validity
Not Before: Jan 1 06:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=216e140e63a30eb232cc35dfc0dbf6d412da5b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:91:3b:e2:06:db:d1:d6:0d:be:bc:0b:12:57:
9d:b1:24:ca:fa:fb:ae:c2:eb:4b:be:8a:c0:5a:8b:
14:69:4e:ad:5b:bb:ba:dd:b7:39:36:28:ca:09:a6:
17:97:de:5b:89:2c:6e:6c:57:ed:ba:9c:1c:6b:b2:
94:58:8c:18:09:a7:05:b4:0b:2d:87:bb:61:fa:3f:
f9:1c:c1:5d:e2:a3:6c:80:f1:a3:a4:ef:4e:cf:4c:
21:6a:fb:35:8d:5f:e0:86:32:13:b4:24:4e:78:ee:
e5:9c:76:6e:02:75:d3:48:1c:dd:56:8c:26:e5:79:
55:0d:00:d2:46:b3:c3:d2:cb:57:09:55:56:d2:67:
33:07:78:0b:08:67:fd:c4:04:3d:58:bd:9c:48:5f:
01:74:93:59:38:56:d3:29:1b:38:1b:d1:69:4b:b9:
be:2b:31:bc:e9:39:ea:7d:3a:67:6d:ec:69:69:55:
ba:8c:e3:3c:98:ee:ba:83:3c:65:06:10:ea:e2:af:
75:b4:bd:3e:d8:6e:74:5d:2f:ed:47:cb:bf:1e:39:
0e:79:78:65:eb:8a:1e:e6:7a:7e:7b:4c:a0:3f:0b:
11:f0:6e:ed:d9:18:61:2a:4d:c6:f8:66:8d:a1:e3:
b9:13:e5:52:d2:af:da:32:bf:7e:51:23:cd:43:29:
d6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6E:14:0E:63:A3:0E:B2:32:CC:35:DF:C0:DB:F6:D4:12:DA:5B:56
X509v3 Authority Key Identifier:
keyid:BD:9C:80:CB:E5:D5:79:72:34:5F:5F:A5:EB:A3:5C:86:88:9E:55:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZyAy-XVeXI0X1-l66NchoieVco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bdcbc4-63b7-4ae5-8684-60e7e45399e6/1/IW4UDmOjDrIyzDXfwNv21BLaW1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bdcbc4-63b7-4ae5-8684-60e7e45399e6/1/vZyAy-XVeXI0X1-l66NchoieVco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.112.0/21
185.39.200.0/22
IPv6:
2a00:d740::/29
Signature Algorithm: sha256WithRSAEncryption
60:92:8b:20:a6:40:ac:36:f6:d5:8d:1f:87:3d:f0:5e:73:05:
42:e7:cb:de:b1:96:a1:48:f5:70:6a:9f:25:b7:62:f5:36:a4:
63:0a:33:12:9d:ef:cf:14:09:90:57:9c:4e:32:d6:9c:32:02:
0e:86:83:e0:b0:3d:a5:28:45:ea:91:75:ee:bd:a1:30:4e:17:
66:58:71:c6:05:76:23:38:e6:4f:5f:3b:59:8b:ef:64:38:56:
c2:af:90:7e:2c:46:86:c7:dd:9e:4f:97:5b:4e:97:7b:5c:59:
ab:c1:0f:d4:67:e5:82:84:1f:33:50:8d:98:dd:cb:69:31:5a:
69:7c:ed:30:4a:49:dc:54:f8:20:5f:07:e7:62:b2:0a:a7:9c:
f3:6a:36:ea:d8:81:56:ba:ba:46:25:22:6b:ac:7b:ab:30:c7:
10:38:a0:9f:a6:af:6c:1d:59:ff:ce:c6:e3:3f:fe:89:96:3d:
e8:9b:ac:a8:13:83:19:85:c9:68:1b:59:21:aa:c1:60:d8:be:
20:15:f3:04:32:c0:cb:ed:4c:c2:72:23:c9:4f:e7:72:ce:66:
47:2b:62:b9:00:8e:fe:3c:61:17:0a:94:1e:be:eb:72:3b:94:
12:14:b6:32:c1:32:35:72:3e:aa:54:35:43:c2:ba:42:30:80:
d8:7e:2b:18
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEAPUDHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZDljODBjYmU1ZDU3OTcyMzQ1ZjVmYTVlYmEzNWM4Njg4OWU1NWNhMB4XDTIyMDEw
MTA2MDMxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjE2ZTE0MGU2M2Ez
MGViMjMyY2MzNWRmYzBkYmY2ZDQxMmRhNWI1NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKSRO+IG29HWDb68CxJXnbEkyvr7rsLrS76KwFqLFGlOrVu7
ut23OTYoygmmF5feW4ksbmxX7bqcHGuylFiMGAmnBbQLLYe7Yfo/+RzBXeKjbIDx
o6TvTs9MIWr7NY1f4IYyE7QkTnju5Zx2bgJ100gc3VaMJuV5VQ0A0kazw9LLVwlV
VtJnMwd4Cwhn/cQEPVi9nEhfAXSTWThW0ykbOBvRaUu5visxvOk56n06Z23saWlV
uozjPJjuuoM8ZQYQ6uKvdbS9PthudF0v7UfLvx45Dnl4ZeuKHuZ6fntMoD8LEfBu
7dkYYSpNxvhmjaHjuRPlUtKv2jK/flEjzUMp1t8CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQhbhQOY6MOsjLMNd/A2/bUEtpbVjAfBgNVHSMEGDAWgBS9nIDL5dV5cjRf
X6Xro1yGiJ5VyjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZaeUF5LVhWZVhJMFgxLWw2Nk5jaG9pZVZjby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvYmRjYmM0LTYzYjctNGFlNS04Njg0LTYwZTdlNDUzOTllNi8x
L0lXNFVEbU9qRHJJeXpEWGZ3TnYyMUJMYVcxWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
YmRjYmM0LTYzYjctNGFlNS04Njg0LTYwZTdlNDUzOTllNi8xL3ZaeUF5LVhWZVhJ
MFgxLWw2Nk5jaG9pZVZjby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAyX8cAMEArknyDANBAIAAjAHAwUD
KgDXQDANBgkqhkiG9w0BAQsFAAOCAQEAYJKLIKZArDb21Y0fhz3wXnMFQufL3rGW
oUj1cGqfJbdi9TakYwozEp3vzxQJkFecTjLWnDICDoaD4LA9pShF6pF17r2hME4X
ZlhxxgV2IzjmT187WYvvZDhWwq+QfixGhsfdnk+XW06Xe1xZq8EP1GflgoQfM1CN
mN3LaTFaaXztMEpJ3FT4IF8H52KyCqec82o26tiBVrq6RiUia6x7qzDHEDign6av
bB1Z/87G4z/+iZY96JusqBODGYXJaBtZIarBYNi+IBXzBDLAy+1MwnIjyU/ncs5m
RytiuQCO/jxhFwqUHr7rcjuUEhS2MsEyNXI+qlQ1Q8K6QjCA2H4rGA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:46 2024 by rpki-client on console-fra.rpki-client.org