Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/01lCH51tD4yJ_hQN0lVjnpM0wf0.roa
File: 01lCH51tD4yJ_hQN0lVjnpM0wf0.roa (raw, json)
Hash identifier: P4yCjjD3yv8TT/wqfM/N8nAJGK/DnshY+AJT8DV4cEc=
Subject key identifier: D3:59:42:1F:9D:6D:0F:8C:89:FE:14:0D:D2:55:63:9E:93:34:C1:FD
Certificate issuer: /CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582
Certificate serial: 04AB288D
Authority key identifier: FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/01lCH51tD4yJ_hQN0lVjnpM0wf0.roa
Signing time: Sat 01 Jan 2022 06:57:01 +0000
ROA not before: Sat 01 Jan 2022 06:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199927
IP address blocks: 185.42.56.0/22 maxlen: 22
2a04:8e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78325901 (0x4ab288d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582
Validity
Not Before: Jan 1 06:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d359421f9d6d0f8c89fe140dd255639e9334c1fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:36:66:fa:98:e1:c2:c9:2d:a3:81:93:b9:8c:
8f:9b:36:f1:f1:4a:4e:54:8f:df:db:d8:fe:d8:af:
38:74:13:f9:85:81:fc:7c:a4:bc:96:aa:89:31:0c:
d7:49:0d:3a:a9:e3:84:b4:84:3a:e3:61:65:52:5a:
5e:08:0c:6f:db:6c:46:4a:ff:68:36:ae:60:d0:1f:
00:13:f0:00:31:f1:2f:39:df:4c:d3:d7:db:90:98:
c7:3f:bf:87:17:0a:83:c6:f8:d2:4d:6c:db:6a:d7:
36:13:5e:fe:49:56:52:62:9b:55:ff:e3:a0:4a:c5:
63:6c:ac:93:fd:75:a2:49:a2:18:d7:29:a3:7f:92:
8f:1f:8d:65:f4:b8:4e:ec:71:1a:f2:67:f1:e1:93:
38:fe:ec:e5:76:0c:ef:8e:77:5c:a0:2d:4e:ce:3b:
fc:83:cf:2d:c2:ce:c6:e7:a2:97:87:fb:64:a1:5f:
c6:52:6b:13:4c:00:b7:23:c4:67:d0:41:18:87:40:
35:3a:08:3d:7c:d6:97:e5:3b:a0:69:86:e7:dc:97:
55:7c:55:db:09:b8:1f:48:0b:1c:31:02:f6:6b:e1:
4a:19:8e:34:01:6d:78:b5:cc:ff:eb:3f:e2:21:01:
0c:86:6b:61:e3:82:e5:de:be:e1:fc:03:85:de:3a:
eb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:59:42:1F:9D:6D:0F:8C:89:FE:14:0D:D2:55:63:9E:93:34:C1:FD
X509v3 Authority Key Identifier:
keyid:FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/01lCH51tD4yJ_hQN0lVjnpM0wf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/_DWHfMA4v_25e7PW6iFqtSs6BYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.56.0/22
IPv6:
2a04:8e40::/29
Signature Algorithm: sha256WithRSAEncryption
58:e9:1a:e6:61:9c:ea:fd:0a:17:e3:e7:1b:c5:5f:8b:7e:83:
11:2f:e7:97:8f:3b:87:8f:8f:56:54:1f:a0:d5:48:f6:dd:a8:
b0:86:9f:60:99:0e:59:e6:0b:a8:a1:c2:ec:ff:36:23:62:58:
bf:c4:bc:74:87:0c:da:3a:4e:45:95:47:80:df:69:77:18:b7:
58:76:c5:0c:39:54:c4:7b:95:a2:48:cb:fe:c7:fb:68:1d:9d:
b0:af:78:8c:a8:8c:8f:4b:ea:ab:ba:b6:28:21:65:6f:ff:8e:
6f:0a:c9:06:66:59:c7:3c:b0:63:64:a5:98:59:d0:79:9d:e0:
a2:08:fa:36:d9:3d:d5:07:81:eb:fd:b6:db:02:a8:36:99:c0:
ec:0b:2e:99:96:ec:c4:62:30:89:17:e4:c0:33:ef:ca:f0:15:
3b:3e:08:fe:01:0f:fa:c1:c8:d8:8b:5c:81:d9:af:b5:c9:27:
b9:b9:c6:89:62:f2:85:1f:43:9d:1c:fd:db:97:b1:20:7c:16:
e3:99:88:7e:a1:5a:5e:24:fb:f9:a7:cd:f2:2f:b6:71:70:c8:
6e:15:62:2e:86:eb:b1:49:9f:b9:e4:ac:2a:64:e6:b3:cf:a3:
c6:d8:58:91:53:82:ed:61:cb:67:9f:fb:0b:90:da:52:7e:09:
90:4b:52:4b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBKsojTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YzM1ODc3Y2MwMzhiZmZkYjk3YmIzZDZlYTIxNmFiNTJiM2EwNTgyMB4XDTIyMDEw
MTA2NTcwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDM1OTQyMWY5ZDZk
MGY4Yzg5ZmUxNDBkZDI1NTYzOWU5MzM0YzFmZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPg2ZvqY4cLJLaOBk7mMj5s28fFKTlSP39vY/tivOHQT+YWB
/HykvJaqiTEM10kNOqnjhLSEOuNhZVJaXggMb9tsRkr/aDauYNAfABPwADHxLznf
TNPX25CYxz+/hxcKg8b40k1s22rXNhNe/klWUmKbVf/joErFY2ysk/11okmiGNcp
o3+Sjx+NZfS4TuxxGvJn8eGTOP7s5XYM7453XKAtTs47/IPPLcLOxueil4f7ZKFf
xlJrE0wAtyPEZ9BBGIdANToIPXzWl+U7oGmG59yXVXxV2wm4H0gLHDEC9mvhShmO
NAFteLXM/+s/4iEBDIZrYeOC5d6+4fwDhd4668sCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTTWUIfnW0PjIn+FA3SVWOekzTB/TAfBgNVHSMEGDAWgBT8NYd8wDi//bl7
s9bqIWq1KzoFgjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19EV0hmTUE0dl8yNWU3UFc2aUZxdFNzNkJZSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTEvZTgwNzJhLTYwMTctNGVkNS1iZWUzLThlNjViMzQ3ZjIxOC8x
LzAxbENINTF0RDR5Sl9oUU4wbFZqbnBNMHdmMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTEv
ZTgwNzJhLTYwMTctNGVkNS1iZWUzLThlNjViMzQ3ZjIxOC8xL19EV0hmTUE0dl8y
NWU3UFc2aUZxdFNzNkJZSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkqODANBAIAAjAHAwUDKgSOQDAN
BgkqhkiG9w0BAQsFAAOCAQEAWOka5mGc6v0KF+PnG8Vfi36DES/nl487h4+PVlQf
oNVI9t2osIafYJkOWeYLqKHC7P82I2JYv8S8dIcM2jpORZVHgN9pdxi3WHbFDDlU
xHuVokjL/sf7aB2dsK94jKiMj0vqq7q2KCFlb/+ObwrJBmZZxzywY2SlmFnQeZ3g
ogj6Ntk91QeB6/222wKoNpnA7AsumZbsxGIwiRfkwDPvyvAVOz4I/gEP+sHI2Itc
gdmvtcknubnGiWLyhR9DnRz925exIHwW45mIfqFaXiT7+afN8i+2cXDIbhViLobr
sUmfueSsKmTms8+jxthYkVOC7WHLZ5/7C5DaUn4JkEtSSw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:54 2024 by rpki-client on console-ams.rpki-client.org