Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/EP-Gzi4APgQfQooxIxGJ2oMmsDs.roa
File: EP-Gzi4APgQfQooxIxGJ2oMmsDs.roa (raw, json)
Hash identifier: yLSGnIU/nnSuow0FMMuBgAA8J9wH5gyyKvR4E1ln1g4=
Subject key identifier: 10:FF:86:CE:2E:00:3E:04:1F:42:8A:31:23:11:89:DA:83:26:B0:3B
Certificate issuer: /CN=af935603e52e831537716d458b360192f99a3689
Certificate serial: 03A037
Authority key identifier: AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/EP-Gzi4APgQfQooxIxGJ2oMmsDs.roa
Signing time: Wed 26 Jan 2022 12:01:09 +0000
ROA not before: Wed 26 Jan 2022 12:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12552
IP address blocks: 185.49.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237623 (0x3a037)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af935603e52e831537716d458b360192f99a3689
Validity
Not Before: Jan 26 12:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10ff86ce2e003e041f428a31231189da8326b03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:30:e2:36:df:fa:09:74:59:1f:21:51:60:87:
4b:97:af:f0:c6:95:f1:60:0f:36:09:93:49:ce:9d:
05:df:93:98:f7:df:e1:96:f9:ef:35:e8:e6:aa:24:
db:6f:41:97:e6:a4:ed:3c:39:69:38:83:c8:c4:69:
c6:e1:f8:70:9a:7d:c5:ee:ef:16:53:95:34:cc:dd:
ce:62:8c:81:7c:7d:e4:b5:67:a3:98:8b:b1:27:60:
b1:df:e8:e6:c4:b7:f9:0d:8e:62:d2:47:e7:17:b4:
59:22:2a:1c:28:f2:f1:ce:8b:25:36:53:df:77:60:
85:b8:f7:b8:67:82:29:df:25:a5:7d:48:6b:ba:d8:
18:2e:af:ca:3c:04:7d:82:60:8c:c6:4f:c1:f9:4c:
97:b9:24:c1:96:42:45:38:ea:71:f3:03:01:a3:e2:
0d:41:04:e3:8d:f1:9f:77:f1:2a:76:69:a2:dd:bb:
a6:46:8b:b7:84:9b:ed:8f:5a:25:1d:a3:0e:56:70:
fa:d9:a2:f9:09:11:9f:19:85:da:95:bd:e0:f2:39:
2d:4f:ce:2e:43:1e:16:34:a5:f2:9d:4a:dd:5f:58:
a8:f2:53:63:8b:8c:28:3d:ec:db:d8:c6:e3:8c:77:
62:bd:a3:31:dc:c7:1d:2f:9f:77:9f:35:87:e7:94:
1c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FF:86:CE:2E:00:3E:04:1F:42:8A:31:23:11:89:DA:83:26:B0:3B
X509v3 Authority Key Identifier:
keyid:AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/EP-Gzi4APgQfQooxIxGJ2oMmsDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/r5NWA-UugxU3cW1FizYBkvmaNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.132.0/23
Signature Algorithm: sha256WithRSAEncryption
33:2a:c1:dc:38:c0:57:78:6b:78:be:b0:7a:67:8c:e8:a5:8b:
e2:1e:a3:99:94:13:6c:a7:5f:38:b9:b9:eb:80:05:6f:5f:0b:
01:28:ab:1b:4a:a4:87:a6:91:d8:dc:e3:5d:21:58:4b:8b:5f:
82:de:46:e2:8c:05:fa:ce:e7:aa:cd:54:ae:ea:d8:e6:37:11:
3b:d8:9a:8a:69:97:0f:01:78:c6:4f:82:05:dc:13:a1:d5:f7:
50:c4:f1:df:0a:3f:00:75:93:b0:ce:9d:d0:6c:cb:52:99:c7:
de:e1:91:d6:4d:56:4f:a1:7f:15:e6:29:2a:b4:61:bf:9a:08:
e6:41:9b:2e:7e:3c:d9:49:79:0b:1e:15:f0:d7:c2:da:3e:7f:
0a:3e:a3:94:3b:2c:d3:ce:9c:4c:8c:98:e7:e8:df:1c:5c:54:
57:0f:a7:04:66:e5:20:24:d1:66:de:4d:9f:48:2e:57:87:94:
c5:68:26:db:ab:d2:d3:fd:4e:b7:8f:00:0d:50:b2:46:2a:bc:
5a:4d:06:55:81:d6:45:03:b4:fb:19:60:7f:46:ee:96:26:eb:
b8:99:ae:0e:dd:07:58:03:c4:dd:51:c6:d7:18:e8:51:e7:5f:
45:68:6e:9f:f6:5b:46:65:cc:28:9b:45:cc:00:76:4f:a1:84:
4e:13:62:69
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDA6A3MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGFm
OTM1NjAzZTUyZTgzMTUzNzcxNmQ0NThiMzYwMTkyZjk5YTM2ODkwHhcNMjIwMTI2
MTIwMTA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxMGZmODZjZTJlMDAz
ZTA0MWY0MjhhMzEyMzExODlkYTgzMjZiMDNiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqDDiNt/6CXRZHyFRYIdLl6/wxpXxYA82CZNJzp0F35OY99/h
lvnvNejmqiTbb0GX5qTtPDlpOIPIxGnG4fhwmn3F7u8WU5U0zN3OYoyBfH3ktWej
mIuxJ2Cx3+jmxLf5DY5i0kfnF7RZIiocKPLxzoslNlPfd2CFuPe4Z4Ip3yWlfUhr
utgYLq/KPAR9gmCMxk/B+UyXuSTBlkJFOOpx8wMBo+INQQTjjfGfd/Eqdmmi3bum
Rou3hJvtj1olHaMOVnD62aL5CRGfGYXalb3g8jktT84uQx4WNKXynUrdX1io8lNj
i4woPezb2MbjjHdivaMx3McdL593nzWH55QchwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFBD/hs4uAD4EH0KKMSMRidqDJrA7MB8GA1UdIwQYMBaAFK+TVgPlLoMVN3Ft
RYs2AZL5mjaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cjVOV0EtVXVneFUzY1cxRml6WUJrdm1hTm9rLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mYy8zMDAxYWQtZGU5MC00MzYwLTgxMWYtMGEwZDA1ZWQwYzZiLzEv
RVAtR3ppNEFQZ1FmUW9veEl4R0oyb01tc0RzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8z
MDAxYWQtZGU5MC00MzYwLTgxMWYtMGEwZDA1ZWQwYzZiLzEvcjVOV0EtVXVneFUz
Y1cxRml6WUJrdm1hTm9rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuTGEMA0GCSqGSIb3DQEBCwUAA4IB
AQAzKsHcOMBXeGt4vrB6Z4zopYviHqOZlBNsp184ubnrgAVvXwsBKKsbSqSHppHY
3ONdIVhLi1+C3kbijAX6zueqzVSu6tjmNxE72JqKaZcPAXjGT4IF3BOh1fdQxPHf
Cj8AdZOwzp3QbMtSmcfe4ZHWTVZPoX8V5ikqtGG/mgjmQZsufjzZSXkLHhXw18La
Pn8KPqOUOyzTzpxMjJjn6N8cXFRXD6cEZuUgJNFm3k2fSC5Xh5TFaCbbq9LT/U63
jwANULJGKrxaTQZVgdZFA7T7GWB/Ru6WJuu4ma4O3QdYA8TdUcbXGOhR519FaG6f
9ltGZcwom0XMAHZPoYROE2Jp
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:43 2024 by rpki-client on console-fra.rpki-client.org