Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/e8f0VzoS5Xu7IMDp52aSjWtiYhs.roa
File: e8f0VzoS5Xu7IMDp52aSjWtiYhs.roa (raw, json)
Hash identifier: FZhYaGVxDIuEwqgwkX1buDOruU9iLa2Ox2RkbDZRf/Q=
Subject key identifier: 7B:C7:F4:57:3A:12:E5:7B:BB:20:C0:E9:E7:66:92:8D:6B:62:62:1B
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01824A697FF0BC46B685A1B315979571A4CF
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/e8f0VzoS5Xu7IMDp52aSjWtiYhs.roa
Signing time: Fri 29 Jul 2022 14:43:24 +0000
ROA not before: Fri 29 Jul 2022 14:43:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207107
IP address blocks: 92.52.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:69:7f:f0:bc:46:b6:85:a1:b3:15:97:95:71:a4:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 29 14:43:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bc7f4573a12e57bbb20c0e9e766928d6b62621b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:05:a5:75:92:16:8c:3d:66:74:64:0c:64:e2:
7f:0e:5f:6c:b8:b1:77:28:6c:db:55:16:59:30:19:
b8:45:1d:3f:4d:d3:9c:b5:2a:eb:f7:77:07:6c:a5:
3b:03:23:ea:09:92:76:b8:51:3d:02:50:88:17:2d:
8e:06:82:4f:f3:f7:6c:ee:6e:a3:5b:9e:f4:48:ef:
2d:13:c5:4b:bb:5f:c9:86:02:a9:2e:20:ab:5d:d3:
a5:97:7a:0a:46:51:9b:ae:ab:95:3f:69:ad:22:59:
c2:19:a0:56:f1:6f:11:50:80:f9:90:32:26:7a:51:
01:0a:f6:9b:68:b3:3f:9d:d6:bb:e2:c8:c0:f8:95:
06:71:62:23:4d:61:47:7b:23:a1:e3:b6:ed:7f:2c:
6e:dc:d8:b6:b8:f3:15:22:cb:9e:d8:fb:66:c4:80:
57:8d:12:9b:e0:d9:df:d7:ae:f2:c4:3b:8b:3a:d9:
2f:96:9b:41:06:72:08:32:10:04:1a:08:18:45:16:
df:7c:05:59:62:98:c4:eb:57:e0:39:05:79:99:3f:
59:76:f1:0f:ee:3c:30:28:ce:e7:be:0d:6d:76:07:
a8:e6:d8:1c:39:a8:4a:ef:49:33:6e:83:0b:e7:12:
64:1b:3b:98:55:28:0f:ad:8d:d5:88:ff:0a:e5:25:
9b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C7:F4:57:3A:12:E5:7B:BB:20:C0:E9:E7:66:92:8D:6B:62:62:1B
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/e8f0VzoS5Xu7IMDp52aSjWtiYhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.52.222.0/24
Signature Algorithm: sha256WithRSAEncryption
78:c1:cf:1b:0c:be:c6:60:9d:e5:84:f8:4c:fb:fa:0d:eb:34:
0f:99:1f:42:4c:cc:ed:b8:bd:ed:8b:0f:4a:4a:f0:73:f1:70:
6f:31:35:21:d6:fc:d7:01:55:da:12:a3:fa:c0:70:38:d9:ea:
52:36:07:ee:96:f1:99:da:fb:a8:4b:e1:70:c4:4a:e7:42:52:
3b:db:a3:1f:47:ce:9f:55:af:8b:45:d3:b1:d8:4b:3f:3d:45:
39:27:79:2a:79:1a:5e:68:28:38:04:78:84:2d:22:d9:a0:1e:
67:e0:76:34:08:97:12:45:4e:a5:99:7c:06:30:47:1f:d9:bd:
1c:b9:ad:1c:f3:30:0e:88:f0:ba:8d:13:44:5d:13:81:07:91:
9c:33:0a:6e:3a:cf:6e:ab:02:94:77:52:6d:29:4f:8a:a4:6a:
53:42:00:5c:22:01:02:4f:6d:7e:99:3b:b2:9b:5d:44:f0:49:
6f:d3:81:fc:fe:96:47:12:d0:22:03:83:89:cb:fa:f7:70:68:
7f:45:69:ab:3e:da:e5:8f:f1:84:00:e8:9a:5a:ff:cc:e6:3b:
31:09:d0:11:1d:a8:4f:9c:67:6b:46:b8:12:7e:d8:b8:0b:11:
9c:ca:08:b6:05:16:7e:24:f7:43:82:91:bc:39:8e:58:1d:e4:
85:09:05:6c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJKaX/wvEa2haGzFZeVcaTPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjIwNzI5MTQ0MzI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YmM3ZjQ1NzNhMTJlNTdiYmIyMGMwZTllNzY2OTI4ZDZiNjI2MjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAWldZIWjD1mdGQMZOJ/Dl9suLF3
KGzbVRZZMBm4RR0/TdOctSrr93cHbKU7AyPqCZJ2uFE9AlCIFy2OBoJP8/ds7m6j
W570SO8tE8VLu1/JhgKpLiCrXdOll3oKRlGbrquVP2mtIlnCGaBW8W8RUID5kDIm
elEBCvabaLM/nda74sjA+JUGcWIjTWFHeyOh47btfyxu3Ni2uPMVIsue2PtmxIBX
jRKb4Nnf167yxDuLOtkvlptBBnIIMhAEGggYRRbffAVZYpjE61fgOQV5mT9ZdvEP
7jwwKM7nvg1tdgeo5tgcOahK70kzboML5xJkGzuYVSgPrY3ViP8K5SWbCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHvH9Fc6EuV7uyDA6edmko1rYmIbMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvZThmMFZ6b1M1WHU3SU1EcDUyYVNqV3RpWWhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXDTeMA0G
CSqGSIb3DQEBCwUAA4IBAQB4wc8bDL7GYJ3lhPhM+/oN6zQPmR9CTMztuL3tiw9K
SvBz8XBvMTUh1vzXAVXaEqP6wHA42epSNgfulvGZ2vuoS+FwxErnQlI726MfR86f
Va+LRdOx2Es/PUU5J3kqeRpeaCg4BHiELSLZoB5n4HY0CJcSRU6lmXwGMEcf2b0c
ua0c8zAOiPC6jRNEXROBB5GcMwpuOs9uqwKUd1JtKU+KpGpTQgBcIgECT21+mTuy
m11E8Elv04H8/pZHEtAiA4OJy/r3cGh/RWmrPtrlj/GEAOiaWv/M5jsxCdARHahP
nGdrRrgSfti4CxGcygi2BRZ+JPdDgpG8OY5YHeSFCQVs
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:51 2023 by rpki-client on console-ams.rpki-client.org