Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/cloeeQtA5Qw-SmU_9MIs3Iutj38.roa
File: cloeeQtA5Qw-SmU_9MIs3Iutj38.roa (raw, json)
Hash identifier: ftMWBXfPzbxECRgT1CF/kM7UEU15XPYNAePFwoFvie4=
Subject key identifier: 72:5A:1E:79:0B:40:E5:0C:3E:4A:65:3F:F4:C2:2C:DC:8B:AD:8F:7F
Certificate issuer: /CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Certificate serial: 0B85A4E4
Authority key identifier: 52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/cloeeQtA5Qw-SmU_9MIs3Iutj38.roa
Signing time: Wed 09 Feb 2022 23:26:18 +0000
ROA not before: Wed 09 Feb 2022 23:26:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20902
IP address blocks: 80.88.64.0/20 maxlen: 24
194.0.184.0/24 maxlen: 24
46.229.0.0/20 maxlen: 24
185.76.40.0/22 maxlen: 24
109.239.160.0/20 maxlen: 24
80.73.96.0/19 maxlen: 24
2001:67c:2088::/48 maxlen: 48
2a00:1230::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193307876 (0xb85a4e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Validity
Not Before: Feb 9 23:26:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=725a1e790b40e50c3e4a653ff4c22cdc8bad8f7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6c:8e:8f:e5:65:0a:42:29:d2:b5:16:3d:d2:
29:3a:23:d4:e0:ff:fc:7c:3e:2b:2f:6b:45:33:0d:
7e:0d:43:7f:4b:6f:ec:a5:fd:59:a8:8a:a3:d3:2c:
76:cb:cc:4c:3e:83:a2:7e:6b:3a:8c:de:42:2d:83:
a0:48:ab:74:92:ae:d4:48:e6:b4:80:73:52:7f:63:
3e:33:04:56:39:9e:92:84:25:7f:62:59:74:4a:c6:
3e:9d:27:77:41:6b:ec:36:98:c7:8f:a9:e0:76:41:
f1:06:21:9e:50:b5:17:b6:a4:a8:0c:4b:e4:39:0f:
64:dd:f8:6d:d1:31:35:86:d5:8e:70:6a:fe:d8:33:
98:b1:a1:75:17:3c:86:d9:e9:bd:1b:33:1d:86:8f:
16:9f:b9:bb:66:04:0c:5d:d3:a3:5d:27:fe:17:54:
d5:a0:9f:e5:8d:a1:b0:f4:dc:7a:7a:12:ae:be:fb:
d3:87:61:ea:e6:ee:e7:5f:c0:f2:84:c1:06:04:32:
f1:e9:9d:ca:eb:4f:cc:ee:79:8d:ed:ec:57:6e:ea:
39:f5:ae:e0:c8:cb:18:d1:25:a8:4c:3d:14:e1:17:
63:8d:ed:45:27:a2:69:7b:61:fd:bb:87:7b:eb:ef:
e7:2d:c9:b4:d3:e4:cc:c2:29:26:af:61:e1:bc:6c:
c2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5A:1E:79:0B:40:E5:0C:3E:4A:65:3F:F4:C2:2C:DC:8B:AD:8F:7F
X509v3 Authority Key Identifier:
keyid:52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/cloeeQtA5Qw-SmU_9MIs3Iutj38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/UqXJDKkoMTvHDSaDuw9k1jKyc6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.0.0/20
80.73.96.0/19
80.88.64.0/20
109.239.160.0/20
185.76.40.0/22
194.0.184.0/24
IPv6:
2001:67c:2088::/48
2a00:1230::/29
Signature Algorithm: sha256WithRSAEncryption
6f:df:7a:d3:ac:02:0b:81:9c:5f:e7:d0:50:30:f7:f2:89:d3:
0a:55:7c:6b:5b:bd:f1:23:d9:8e:75:30:bb:3c:03:73:64:be:
b9:b1:de:c6:61:e0:fc:bd:ee:fa:85:07:5e:34:24:65:1d:e7:
da:3b:82:54:09:72:ad:d9:72:6e:82:0a:c8:3d:7c:52:00:c9:
81:2f:ae:31:82:58:72:bb:b6:e1:67:67:58:fd:f7:3f:f1:47:
54:24:d2:51:0b:28:84:b2:3e:10:fd:09:c5:34:49:71:cf:b2:
ff:94:29:8c:6e:9a:14:35:54:3d:e9:58:f4:1f:c5:21:0d:d5:
ca:fe:f3:b8:e8:55:38:e9:f0:e7:a8:32:2d:e6:e6:11:39:e0:
c6:4d:bc:23:4b:7d:ef:76:15:71:e1:89:a1:d2:b2:2b:04:9a:
d1:bc:39:eb:82:cf:46:8a:76:45:68:5f:da:0b:63:f6:fa:c8:
40:b3:2f:71:a8:d9:01:e3:f3:17:c4:b1:d4:3d:56:4e:ec:ff:
1b:c6:26:eb:ca:43:ac:fa:63:3c:1b:ad:1b:be:fe:84:06:43:
b9:61:4a:20:40:5c:c7:cb:71:f8:6e:19:1d:ec:f6:ad:20:8a:
28:34:81:4d:2b:36:fc:12:0f:4d:63:c8:e8:e2:e3:1e:e4:ef:
a1:97:81:36
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgIEC4Wk5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MmE1YzkwY2E5MjgzMTNiYzcwZDI2ODNiYjBmNjRkNjMyYjI3M2ExMB4XDTIyMDIw
OTIzMjYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzI1YTFlNzkwYjQw
ZTUwYzNlNGE2NTNmZjRjMjJjZGM4YmFkOGY3ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNsjo/lZQpCKdK1Fj3SKToj1OD//Hw+Ky9rRTMNfg1Df0tv
7KX9WaiKo9MsdsvMTD6Don5rOozeQi2DoEirdJKu1EjmtIBzUn9jPjMEVjmekoQl
f2JZdErGPp0nd0Fr7DaYx4+p4HZB8QYhnlC1F7akqAxL5DkPZN34bdExNYbVjnBq
/tgzmLGhdRc8htnpvRszHYaPFp+5u2YEDF3To10n/hdU1aCf5Y2hsPTcenoSrr77
04dh6ubu51/A8oTBBgQy8emdyutPzO55je3sV27qOfWu4MjLGNElqEw9FOEXY43t
RSeiaXth/buHe+vv5y3JtNPkzMIpJq9h4bxswqkCAwEAAaOCAj8wggI7MB0GA1Ud
DgQWBBRyWh55C0DlDD5KZT/0wizci62PfzAfBgNVHSMEGDAWgBRSpckMqSgxO8cN
JoO7D2TWMrJzoTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VxWEpES2tvTVR2SERTYUR1dzlrMWpLeWM2RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvYzRiN2EwLTFlNTAtNDAzYy1iMjRlLTEzZWQ2MzNmOTIyYS8x
L2Nsb2VlUXRBNVF3LVNtVV85TUlzM0l1dGozOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
YzRiN2EwLTFlNTAtNDAzYy1iMjRlLTEzZWQ2MzNmOTIyYS8xL1VxWEpES2tvTVR2
SERTYUR1dzlrMWpLeWM2RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBV
BggrBgEFBQcBBwEB/wRGMEQwKgQCAAEwJAMEBC7lAAMEBVBJYAMEBFBYQAMEBG3v
oAMEArlMKAMEAMIAuDAWBAIAAjAQAwcAIAEGfCCIAwUDKgASMDANBgkqhkiG9w0B
AQsFAAOCAQEAb99606wCC4GcX+fQUDD38onTClV8a1u98SPZjnUwuzwDc2S+ubHe
xmHg/L3u+oUHXjQkZR3n2juCVAlyrdlyboIKyD18UgDJgS+uMYJYcru24WdnWP33
P/FHVCTSUQsohLI+EP0JxTRJcc+y/5QpjG6aFDVUPelY9B/FIQ3Vyv7zuOhVOOnw
56gyLebmETngxk28I0t973YVceGJodKyKwSa0bw564LPRop2RWhf2gtj9vrIQLMv
cajZAePzF8Sx1D1WTuz/G8Ym68pDrPpjPButG77+hAZDuWFKIEBcx8tx+G4ZHez2
rSCKKDSBTSs2/BIPTWPI6OLjHuTvoZeBNg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org