Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/4U4T6z_otvgPq1nyzIR9zazcWPA.roa
File: 4U4T6z_otvgPq1nyzIR9zazcWPA.roa (raw, json)
Hash identifier: VcV02vUW+B447myzDl7NkZxTzgg2BepvnGSVIUFYzh4=
Subject key identifier: E1:4E:13:EB:3F:E8:B6:F8:0F:AB:59:F2:CC:84:7D:CD:AC:DC:58:F0
Certificate issuer: /CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Certificate serial: 018466AFBB1B4A895C24D1F927943930505D
Authority key identifier: 77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/4U4T6z_otvgPq1nyzIR9zazcWPA.roa
Signing time: Fri 11 Nov 2022 12:35:03 +0000
ROA not before: Fri 11 Nov 2022 12:35:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62336
IP address blocks: 185.99.56.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:af:bb:1b:4a:89:5c:24:d1:f9:27:94:39:30:50:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Validity
Not Before: Nov 11 12:35:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e14e13eb3fe8b6f80fab59f2cc847dcdacdc58f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9f:9b:0c:37:e3:44:6d:47:0e:d4:3a:f3:bb:
2f:31:fb:fb:a2:c7:20:41:9f:82:8c:4c:a9:f1:63:
f5:64:13:ee:67:ce:90:24:ec:0b:fd:07:89:b3:b7:
c4:19:4d:a0:ec:39:2b:c4:40:11:cf:bb:f9:1f:ea:
25:f2:49:d7:d5:48:24:c4:3d:4c:67:90:4f:7d:14:
71:66:06:63:65:2f:87:98:e7:07:d6:6f:6b:0d:94:
56:31:88:8a:40:12:87:0a:83:82:45:eb:39:8b:b8:
2a:1c:6d:03:ab:d7:cb:e7:44:14:01:e2:69:5d:c2:
78:98:48:93:af:66:ca:ed:82:c1:a8:81:f3:46:1d:
e9:20:c6:ed:35:75:99:d6:74:b0:e7:7c:6e:c4:37:
ab:87:ad:a6:d2:1f:28:42:84:bc:49:ca:90:0c:b0:
4b:73:e5:88:30:3e:f7:56:d9:a4:37:83:c7:93:23:
01:f5:af:e7:5c:e8:40:fb:c3:49:58:88:8e:ce:59:
56:bd:f2:15:c3:e2:85:cb:50:6d:86:82:dc:43:ff:
18:fe:06:74:ab:b6:89:7f:ad:d8:01:cf:b5:33:89:
f2:be:35:70:ac:cc:8c:0c:cf:98:29:b1:43:a7:30:
c5:55:8f:2e:59:bf:65:29:c5:bd:e0:ca:f3:0b:51:
2d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:4E:13:EB:3F:E8:B6:F8:0F:AB:59:F2:CC:84:7D:CD:AC:DC:58:F0
X509v3 Authority Key Identifier:
keyid:77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/4U4T6z_otvgPq1nyzIR9zazcWPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/d5LD_GkVSsfVFbysnaoH54vCKcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.56.0/22
Signature Algorithm: sha256WithRSAEncryption
99:74:45:f7:da:ff:d6:80:82:0d:52:68:49:45:de:0c:70:3c:
78:98:0b:58:83:d8:b7:61:1f:77:2c:13:e8:af:d9:9f:34:ef:
3e:68:d4:bf:5c:51:a3:fb:6e:90:ba:c5:9a:34:d3:f5:b5:46:
9d:82:fd:f8:d8:b0:da:97:d5:b7:2b:84:1c:2c:16:86:1f:ec:
97:1e:dd:c5:2f:7c:f2:b2:14:c4:92:d8:2b:e0:ed:b9:44:de:
2c:40:1e:07:dc:be:da:ff:f4:00:30:43:a8:b7:8c:c8:e9:50:
fd:49:c3:27:03:9a:70:35:e4:5e:7b:fe:df:1e:9e:db:d7:ac:
69:b0:70:06:ce:5c:0d:eb:5b:66:6a:b3:55:48:45:1d:d8:b1:
39:3b:b3:e0:a8:c3:f7:6f:b3:c8:db:79:43:7e:e6:24:c1:b9:
74:15:00:b3:9a:0c:de:f1:a8:a8:68:26:1d:62:d9:a6:05:dd:
d4:1e:12:fc:d3:4c:0c:11:01:c9:de:e9:3d:79:72:ff:c4:05:
bf:20:a4:2d:3f:05:2d:32:05:f6:f4:2f:8e:2e:61:04:28:6c:
03:74:3d:5d:4a:4e:76:7e:cc:27:a3:21:08:cf:b1:20:33:78:
7b:a8:14:7c:49:8f:b6:a3:f4:33:70:7e:94:e4:f8:9c:4d:9f:
fb:73:b5:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRmr7sbSolcJNH5J5Q5MFBdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3OTJjM2ZjNjkxNTRhYzdkNTE1YmNhYzlkYWEwN2U3OGJj
MjI5Y2MwHhcNMjIxMTExMTIzNTAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTRlMTNlYjNmZThiNmY4MGZhYjU5ZjJjYzg0N2RjZGFjZGM1OGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZ+bDDfjRG1HDtQ687svMfv7oscg
QZ+CjEyp8WP1ZBPuZ86QJOwL/QeJs7fEGU2g7DkrxEARz7v5H+ol8knX1UgkxD1M
Z5BPfRRxZgZjZS+HmOcH1m9rDZRWMYiKQBKHCoOCRes5i7gqHG0Dq9fL50QUAeJp
XcJ4mEiTr2bK7YLBqIHzRh3pIMbtNXWZ1nSw53xuxDerh62m0h8oQoS8ScqQDLBL
c+WIMD73VtmkN4PHkyMB9a/nXOhA+8NJWIiOzllWvfIVw+KFy1BthoLcQ/8Y/gZ0
q7aJf63YAc+1M4nyvjVwrMyMDM+YKbFDpzDFVY8uWb9lKcW94MrzC1EtJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOFOE+s/6Lb4D6tZ8syEfc2s3FjwMB8GA1UdIwQY
MBaAFHeSw/xpFUrH1RW8rJ2qB+eLwinMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDVMRF9Ha1ZTc2ZWRmJ5c25hb0g1NHZDS2N3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC81MmI0OGQtMjhhOC00OGY1LWE0ZGYt
NGRiNDBhMzY1NjNlLzEvNFU0VDZ6X290dmdQcTFueXpJUjl6YXpjV1BBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC81MmI0OGQtMjhhOC00OGY1LWE0ZGYtNGRiNDBhMzY1NjNl
LzEvZDVMRF9Ha1ZTc2ZWRmJ5c25hb0g1NHZDS2N3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWM4MA0G
CSqGSIb3DQEBCwUAA4IBAQCZdEX32v/WgIINUmhJRd4McDx4mAtYg9i3YR93LBPo
r9mfNO8+aNS/XFGj+26QusWaNNP1tUadgv342LDal9W3K4QcLBaGH+yXHt3FL3zy
shTEktgr4O25RN4sQB4H3L7a//QAMEOot4zI6VD9ScMnA5pwNeRee/7fHp7b16xp
sHAGzlwN61tmarNVSEUd2LE5O7PgqMP3b7PI23lDfuYkwbl0FQCzmgze8aioaCYd
YtmmBd3UHhL800wMEQHJ3uk9eXL/xAW/IKQtPwUtMgX29C+OLmEEKGwDdD1dSk52
fswnoyEIz7EgM3h7qBR8SY+2o/QzcH6U5PicTZ/7c7XM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:44 2024 by rpki-client on console-fra.rpki-client.org