Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/rj0tdfV2FQs8-7V96SNKP8SQqrs.roa
File: rj0tdfV2FQs8-7V96SNKP8SQqrs.roa (raw, json)
Hash identifier: jvBWydh28L7T+x8fgOB6/1hoWTs+VwjDOl5QmtlASGU=
Subject key identifier: AE:3D:2D:75:F5:76:15:0B:3C:FB:B5:7D:E9:23:4A:3F:C4:90:AA:BB
Certificate issuer: /CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Certificate serial: 37FBA04E
Authority key identifier: 92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/rj0tdfV2FQs8-7V96SNKP8SQqrs.roa
Signing time: Sat 01 Jan 2022 02:53:45 +0000
ROA not before: Sat 01 Jan 2022 02:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15418
IP address blocks: 185.132.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939237454 (0x37fba04e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Validity
Not Before: Jan 1 02:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae3d2d75f576150b3cfbb57de9234a3fc490aabb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:24:8d:c5:3f:f0:51:ac:00:72:46:1e:15:a7:
b4:17:93:5b:87:a5:f3:31:bc:f3:4f:09:cc:8f:eb:
c9:e7:e2:e1:44:36:a1:08:dd:e8:25:d4:f8:76:7f:
10:c3:d8:4f:51:49:94:8d:10:5c:0d:b4:73:29:2f:
6d:0e:86:83:83:80:ac:4a:bd:5d:33:56:8c:d8:c0:
15:08:02:da:c6:60:36:03:00:05:01:d3:b3:91:61:
bd:5a:2c:51:46:7e:63:74:dc:ea:8b:95:ac:7d:27:
67:ad:81:93:46:e0:b8:4e:5d:a3:2f:49:9e:30:ab:
4a:17:69:63:3b:05:fc:b9:86:d9:ac:9c:a4:6f:84:
16:72:e0:bf:7c:f6:e5:c5:31:17:0a:33:b7:a7:68:
88:36:b9:2e:bb:06:30:b2:3d:71:90:ab:6a:38:52:
2e:52:43:34:bc:7c:08:cf:be:a7:cb:5a:2e:f2:ae:
04:f0:1b:3f:84:6a:be:68:b1:60:77:64:0d:b5:11:
af:cf:a6:08:34:5a:57:05:cf:c4:66:24:63:c5:11:
a5:1a:f4:7f:03:ba:b3:72:44:79:2a:02:99:86:4f:
cd:07:0a:6e:7f:c8:b7:9a:d1:82:6a:a4:98:6b:ce:
a9:d9:66:c0:88:ee:c6:f2:aa:a3:7e:a1:37:cc:95:
41:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3D:2D:75:F5:76:15:0B:3C:FB:B5:7D:E9:23:4A:3F:C4:90:AA:BB
X509v3 Authority Key Identifier:
keyid:92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/rj0tdfV2FQs8-7V96SNKP8SQqrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/kpWx8dzY-mrB73iCeMSJ4V6srnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.32.0/22
Signature Algorithm: sha256WithRSAEncryption
97:59:3f:af:ef:16:33:dc:e3:fb:c8:04:ed:97:d9:51:81:65:
89:26:8a:32:fa:4d:4c:80:9d:30:75:36:6b:e7:b7:76:42:6b:
b4:e3:f8:85:8a:9d:4f:c8:04:9f:db:82:36:5f:5f:18:8c:ef:
1d:77:fb:48:30:c2:99:60:20:dc:74:b0:37:6c:5f:d0:4a:7e:
bd:0d:2d:f4:4c:b0:a5:1e:93:a4:d7:dd:02:f8:42:fb:d1:44:
a2:18:5f:4c:87:72:b2:e7:34:5f:fb:51:23:f7:db:e8:99:d8:
75:66:b3:2e:5c:40:94:34:2f:a6:9d:d8:bf:e9:4f:6d:f0:63:
7e:a7:52:c4:12:77:a5:ee:65:5e:db:17:84:0a:6e:85:68:69:
7c:5a:b8:8b:ee:c6:5b:d4:3c:78:1b:23:4e:0d:d5:a5:6d:f7:
f8:93:a6:be:80:02:99:e3:b4:34:fc:eb:47:62:4a:4d:62:31:
17:14:59:e6:60:09:4d:fc:cd:f5:c4:6f:a0:db:7a:79:09:2b:
a3:46:33:16:30:19:b5:23:16:d7:07:48:b1:79:78:57:26:ba:
3f:b7:23:50:f4:8e:eb:51:18:1b:5a:da:13:77:b2:e9:5e:53:
94:e7:40:23:83:53:2e:bd:d3:aa:b8:61:79:60:03:24:fd:f7:
1b:29:2a:03
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN/ugTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
Mjk1YjFmMWRjZDhmYTZhYzFlZjc4ODI3OGM0ODllMTVlYWNhZTcwMB4XDTIyMDEw
MTAyNTM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWUzZDJkNzVmNTc2
MTUwYjNjZmJiNTdkZTkyMzRhM2ZjNDkwYWFiYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALMkjcU/8FGsAHJGHhWntBeTW4el8zG8808JzI/ryefi4UQ2
oQjd6CXU+HZ/EMPYT1FJlI0QXA20cykvbQ6Gg4OArEq9XTNWjNjAFQgC2sZgNgMA
BQHTs5FhvVosUUZ+Y3Tc6ouVrH0nZ62Bk0bguE5doy9JnjCrShdpYzsF/LmG2ayc
pG+EFnLgv3z25cUxFwozt6doiDa5LrsGMLI9cZCrajhSLlJDNLx8CM++p8taLvKu
BPAbP4RqvmixYHdkDbURr8+mCDRaVwXPxGYkY8URpRr0fwO6s3JEeSoCmYZPzQcK
bn/It5rRgmqkmGvOqdlmwIjuxvKqo36hN8yVQTUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSuPS119XYVCzz7tX3pI0o/xJCquzAfBgNVHSMEGDAWgBSSlbHx3Nj6asHv
eIJ4xInhXqyucDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2twV3g4ZHpZLW1yQjczaUNlTVNKNFY2c3JuQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjIvMGZiYzJlLWZkODgtNGRmMi1hYWUzLTllYjQwY2M1ZjY4Yi8x
L3JqMHRkZlYyRlFzOC03Vjk2U05LUDhTUXFycy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIv
MGZiYzJlLWZkODgtNGRmMi1hYWUzLTllYjQwY2M1ZjY4Yi8xL2twV3g4ZHpZLW1y
QjczaUNlTVNKNFY2c3JuQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmEIDANBgkqhkiG9w0BAQsFAAOC
AQEAl1k/r+8WM9zj+8gE7ZfZUYFliSaKMvpNTICdMHU2a+e3dkJrtOP4hYqdT8gE
n9uCNl9fGIzvHXf7SDDCmWAg3HSwN2xf0Ep+vQ0t9EywpR6TpNfdAvhC+9FEohhf
TIdysuc0X/tRI/fb6JnYdWazLlxAlDQvpp3Yv+lPbfBjfqdSxBJ3pe5lXtsXhApu
hWhpfFq4i+7GW9Q8eBsjTg3VpW33+JOmvoACmeO0NPzrR2JKTWIxFxRZ5mAJTfzN
9cRvoNt6eQkro0YzFjAZtSMW1wdIsXl4Vya6P7cjUPSO61EYG1raE3ey6V5TlOdA
I4NTLr3TqrhheWADJP33GykqAw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:13 2024 by rpki-client on console-ams.rpki-client.org