Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/ea4e64-6d70-4bfd-909d-f0546cfab061/1/Midq1Cp2A8z7oZUyXSUBoDeDUxo.roa
File: Midq1Cp2A8z7oZUyXSUBoDeDUxo.roa (raw, json)
Hash identifier: YQbmPO93o/oIqTtAcDmCQ1WilpEnBNG4WtjhZnKVKjo=
Subject key identifier: 32:27:6A:D4:2A:76:03:CC:FB:A1:95:32:5D:25:01:A0:37:83:53:1A
Certificate issuer: /CN=bbc264b5a6494f890fa314f61fd7d27587e35830
Certificate serial: 10FD7D2D
Authority key identifier: BB:C2:64:B5:A6:49:4F:89:0F:A3:14:F6:1F:D7:D2:75:87:E3:58:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u8JktaZJT4kPoxT2H9fSdYfjWDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/ea4e64-6d70-4bfd-909d-f0546cfab061/1/Midq1Cp2A8z7oZUyXSUBoDeDUxo.roa
Signing time: Sat 01 Jan 2022 15:58:49 +0000
ROA not before: Sat 01 Jan 2022 15:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200026
IP address blocks: 185.40.52.0/22 maxlen: 22
145.14.248.0/21 maxlen: 21
153.92.112.0/21 maxlen: 21
2a00:f120::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285048109 (0x10fd7d2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbc264b5a6494f890fa314f61fd7d27587e35830
Validity
Not Before: Jan 1 15:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32276ad42a7603ccfba195325d2501a03783531a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1b:4f:91:07:20:e8:bf:ee:58:22:39:1a:3d:
04:b3:48:34:0b:12:4f:81:f6:53:40:6d:dc:82:5e:
40:7a:fa:61:31:3a:be:cf:69:49:0f:97:90:d7:94:
88:3a:ab:b5:10:50:d0:16:ed:0c:90:5c:97:59:a9:
16:ad:7e:20:04:d5:98:e7:73:0a:15:28:7e:f1:c9:
78:58:d8:dc:07:5f:8b:bb:62:8d:d9:25:95:e4:63:
31:8d:6b:fc:fe:27:1c:c3:6d:ca:bf:59:d0:a2:18:
d7:5a:d6:4a:28:16:71:30:f3:3e:98:fd:0a:6b:e4:
c8:04:04:0e:83:68:38:9e:75:03:df:4f:04:ae:d5:
e3:2d:9e:c2:1d:63:63:20:52:9a:43:8f:d2:f6:5f:
78:4f:49:58:b4:54:30:e4:84:06:53:dd:fb:be:1f:
7e:f9:d8:3d:63:1f:d1:46:2b:70:b7:2d:50:c8:a0:
be:c4:73:00:61:39:06:93:72:cd:88:fb:1b:d1:33:
f9:3a:c8:b6:99:ce:fd:bb:1e:31:e5:4b:a9:af:49:
fd:f7:b7:7a:36:02:b8:f3:9c:85:61:d8:54:14:fd:
48:4a:50:ac:95:ff:ec:25:60:d5:c2:d0:92:54:2b:
05:e8:13:e3:ed:fa:27:fa:24:8c:1d:e5:31:10:a1:
f3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:27:6A:D4:2A:76:03:CC:FB:A1:95:32:5D:25:01:A0:37:83:53:1A
X509v3 Authority Key Identifier:
keyid:BB:C2:64:B5:A6:49:4F:89:0F:A3:14:F6:1F:D7:D2:75:87:E3:58:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u8JktaZJT4kPoxT2H9fSdYfjWDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/ea4e64-6d70-4bfd-909d-f0546cfab061/1/Midq1Cp2A8z7oZUyXSUBoDeDUxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/ea4e64-6d70-4bfd-909d-f0546cfab061/1/u8JktaZJT4kPoxT2H9fSdYfjWDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.248.0/21
153.92.112.0/21
185.40.52.0/22
IPv6:
2a00:f120::/32
Signature Algorithm: sha256WithRSAEncryption
30:90:11:22:27:1d:08:72:f4:81:5c:24:9e:86:42:f7:8b:f3:
2d:3c:03:ce:d2:f1:8c:1e:c0:dd:a4:c0:de:73:cd:c2:f5:61:
7f:db:6b:d4:df:61:7b:d0:28:7f:a7:8e:01:d9:ca:3c:d8:5a:
d1:c4:f8:30:ae:d7:d2:1f:8a:2f:29:5c:c4:9c:86:6b:59:ee:
6e:98:ee:7f:ca:8f:8f:80:bd:63:1d:6a:39:51:37:e4:06:28:
b8:42:5a:6b:ae:7f:bf:3f:f8:f1:2d:b9:40:a3:fe:25:b3:09:
54:22:13:f2:6c:64:d2:dd:b6:7a:ce:34:89:c1:d8:6d:8d:5f:
65:ae:02:75:e4:ba:6d:c3:c6:59:7e:be:c2:dc:3d:87:7e:b0:
ca:69:4c:66:d3:d6:ff:f6:61:1d:42:73:66:b1:2e:e3:09:60:
e3:ab:5c:14:72:ef:ec:f4:ee:50:d5:9e:61:2b:f7:c6:2c:1d:
f2:74:27:97:f6:ff:b3:3e:86:7c:5a:a9:38:ca:73:60:7f:24:
02:33:76:68:f3:73:af:9f:6e:10:a3:66:37:d4:24:5d:37:22:
9d:19:23:d7:e2:6f:fe:4b:c4:ca:70:3e:12:da:0d:fe:e0:49:
6d:13:5a:57:e4:af:c6:47:c8:d4:9d:5d:b4:20:06:fa:18:a6:
82:73:2b:46
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEEP19LTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YmMyNjRiNWE2NDk0Zjg5MGZhMzE0ZjYxZmQ3ZDI3NTg3ZTM1ODMwMB4XDTIyMDEw
MTE1NTg0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzIyNzZhZDQyYTc2
MDNjY2ZiYTE5NTMyNWQyNTAxYTAzNzgzNTMxYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALIbT5EHIOi/7lgiORo9BLNINAsST4H2U0Bt3IJeQHr6YTE6
vs9pSQ+XkNeUiDqrtRBQ0BbtDJBcl1mpFq1+IATVmOdzChUofvHJeFjY3Adfi7ti
jdklleRjMY1r/P4nHMNtyr9Z0KIY11rWSigWcTDzPpj9CmvkyAQEDoNoOJ51A99P
BK7V4y2ewh1jYyBSmkOP0vZfeE9JWLRUMOSEBlPd+74ffvnYPWMf0UYrcLctUMig
vsRzAGE5BpNyzYj7G9Ez+TrItpnO/bseMeVLqa9J/fe3ejYCuPOchWHYVBT9SEpQ
rJX/7CVg1cLQklQrBegT4+36J/okjB3lMRCh8+UCAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBQyJ2rUKnYDzPuhlTJdJQGgN4NTGjAfBgNVHSMEGDAWgBS7wmS1pklPiQ+j
FPYf19J1h+NYMDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3U4Smt0YVpKVDRrUG94VDJIOWZTZFlmaldEQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTAvZWE0ZTY0LTZkNzAtNGJmZC05MDlkLWYwNTQ2Y2ZhYjA2MS8x
L01pZHExQ3AyQTh6N29aVXlYU1VCb0RlRFV4by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAv
ZWE0ZTY0LTZkNzAtNGJmZC05MDlkLWYwNTQ2Y2ZhYjA2MS8xL3U4Smt0YVpKVDRr
UG94VDJIOWZTZFlmaldEQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEA5EO+AMEA5lccAMEArkoNDANBAIA
AjAHAwUAKgDxIDANBgkqhkiG9w0BAQsFAAOCAQEAMJARIicdCHL0gVwknoZC94vz
LTwDztLxjB7A3aTA3nPNwvVhf9tr1N9he9Aof6eOAdnKPNha0cT4MK7X0h+KLylc
xJyGa1nubpjuf8qPj4C9Yx1qOVE35AYouEJaa65/vz/48S25QKP+JbMJVCIT8mxk
0t22es40icHYbY1fZa4CdeS6bcPGWX6+wtw9h36wymlMZtPW//ZhHUJzZrEu4wlg
46tcFHLv7PTuUNWeYSv3xiwd8nQnl/b/sz6GfFqpOMpzYH8kAjN2aPNzr59uEKNm
N9QkXTcinRkj1+Jv/kvEynA+EtoN/uBJbRNaV+SvxkfI1J1dtCAG+himgnMrRg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:44 2024 by rpki-client on console-ams.rpki-client.org