Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/AvGc2szcSf_mJPGAQutGb-Rke_Q.roa
File: AvGc2szcSf_mJPGAQutGb-Rke_Q.roa (raw, json)
Hash identifier: ROH6YBUJ/ARrTfa7hEkxm/5P64D/nwjEeLcXsf5i7PA=
Subject key identifier: 02:F1:9C:DA:CC:DC:49:FF:E6:24:F1:80:42:EB:46:6F:E4:64:7B:F4
Certificate issuer: /CN=0edda2c6074c56241f5c7e060caccb657f64e91c
Certificate serial: 0918B1DC
Authority key identifier: 0E:DD:A2:C6:07:4C:56:24:1F:5C:7E:06:0C:AC:CB:65:7F:64:E9:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/AvGc2szcSf_mJPGAQutGb-Rke_Q.roa
Signing time: Sat 01 Jan 2022 13:01:23 +0000
ROA not before: Sat 01 Jan 2022 13:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57112
IP address blocks: 185.242.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152613340 (0x918b1dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0edda2c6074c56241f5c7e060caccb657f64e91c
Validity
Not Before: Jan 1 13:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02f19cdaccdc49ffe624f18042eb466fe4647bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:29:68:fe:52:f6:43:3f:0a:a8:53:c2:bd:f8:
16:68:b3:55:1d:d9:9e:43:73:92:ac:cb:c3:27:0e:
f9:0b:bb:bf:44:4d:2f:4e:b6:f6:6c:eb:c5:ce:07:
f8:63:7b:0a:c6:19:c9:f2:72:bf:cc:73:4f:9a:84:
90:d2:23:dd:0b:55:50:90:66:7a:1f:62:c1:2b:94:
e6:51:0f:e9:9f:3f:8c:9c:11:c6:ea:a5:4d:57:a7:
55:75:f4:c7:75:55:df:7b:c1:03:28:d6:9d:e6:ad:
c3:2e:3c:4b:74:a5:3c:cb:0a:dd:09:4e:8a:09:a4:
5d:97:8a:52:ce:ff:b0:88:4e:60:69:3a:96:e3:c5:
20:79:23:2d:9a:69:dd:fa:e9:3c:63:57:17:34:d9:
76:13:66:a5:9d:d5:93:dd:55:82:82:a6:13:e6:af:
93:14:c0:70:24:e9:a5:5b:81:f6:e3:99:e7:96:66:
04:dc:f9:d6:45:08:d4:a7:9a:55:32:5d:5f:44:3f:
f9:33:dc:aa:0a:3c:95:cc:e0:d3:41:6d:5e:4b:29:
75:e5:e6:f0:6c:a7:19:f1:39:83:a9:36:b5:e0:62:
6c:01:fa:f7:9e:3b:55:d8:8d:0e:c5:68:3d:8d:95:
7d:cf:88:9b:ac:69:b3:4a:95:34:36:68:ea:c6:b6:
3c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F1:9C:DA:CC:DC:49:FF:E6:24:F1:80:42:EB:46:6F:E4:64:7B:F4
X509v3 Authority Key Identifier:
keyid:0E:DD:A2:C6:07:4C:56:24:1F:5C:7E:06:0C:AC:CB:65:7F:64:E9:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/AvGc2szcSf_mJPGAQutGb-Rke_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.52.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:97:2e:76:b5:68:9a:93:fc:5e:ef:7a:bc:60:47:ea:61:58:
17:d4:a8:16:96:16:4e:5d:3d:95:23:8d:32:20:34:ac:e2:0c:
25:26:35:b0:8e:3b:57:1f:34:2a:f1:50:a1:9c:8b:1e:ed:c2:
61:4a:06:14:e2:4f:cb:c9:2c:df:f7:56:b2:36:fc:40:d4:33:
54:34:cb:80:ce:3c:0c:2f:3c:70:56:fb:97:97:41:80:0a:71:
aa:57:09:34:26:c3:98:45:e6:8f:b3:e2:aa:bd:f0:d5:3e:dd:
02:f2:38:20:87:93:1f:06:cb:90:87:94:7a:55:5d:f6:5d:55:
4f:04:cb:1a:92:ff:28:d8:ca:13:d8:fe:15:06:9b:56:b7:13:
74:cb:a2:c3:66:5a:7c:b1:a4:73:7e:a0:3a:6a:04:d3:f8:f1:
31:c0:5e:55:a3:b1:5e:33:e6:a8:61:54:27:19:36:86:cf:ee:
64:4c:0f:22:ac:de:ce:ba:7c:44:12:c0:03:20:3e:27:2b:ea:
f3:2d:87:62:a2:66:37:14:2e:d3:da:df:b1:79:bd:a9:9b:d0:
12:5f:5d:7d:ba:35:d0:58:63:a8:78:a1:3d:77:d9:9d:8b:8e:
54:c1:d8:c4:e4:8b:a3:c3:45:2c:54:db:b1:98:04:ba:c4:93:
80:55:7a:56
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECRix3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZWRkYTJjNjA3NGM1NjI0MWY1YzdlMDYwY2FjY2I2NTdmNjRlOTFjMB4XDTIyMDEw
MTEzMDEyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDJmMTljZGFjY2Rj
NDlmZmU2MjRmMTgwNDJlYjQ2NmZlNDY0N2JmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJspaP5S9kM/CqhTwr34FmizVR3ZnkNzkqzLwycO+Qu7v0RN
L0629mzrxc4H+GN7CsYZyfJyv8xzT5qEkNIj3QtVUJBmeh9iwSuU5lEP6Z8/jJwR
xuqlTVenVXX0x3VV33vBAyjWneatwy48S3SlPMsK3QlOigmkXZeKUs7/sIhOYGk6
luPFIHkjLZpp3frpPGNXFzTZdhNmpZ3Vk91VgoKmE+avkxTAcCTppVuB9uOZ55Zm
BNz51kUI1KeaVTJdX0Q/+TPcqgo8lczg00FtXkspdeXm8GynGfE5g6k2teBibAH6
9547VdiNDsVoPY2Vfc+Im6xps0qVNDZo6sa2PN0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQC8ZzazNxJ/+Yk8YBC60Zv5GR79DAfBgNVHSMEGDAWgBQO3aLGB0xWJB9c
fgYMrMtlf2TpHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0R0Mml4Z2RNVmlRZlhINEdES3pMWlg5azZSdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2QvYmE0NTlmLTg0NmYtNDdhOS1hNjI1LTY3MTE1OGE2M2MyMy8x
L0F2R2Myc3pjU2ZfbUpQR0FRdXRHYi1Sa2VfUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Qv
YmE0NTlmLTg0NmYtNDdhOS1hNjI1LTY3MTE1OGE2M2MyMy8xL0R0Mml4Z2RNVmlR
ZlhINEdES3pMWlg5azZSdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnyNDANBgkqhkiG9w0BAQsFAAOC
AQEADZcudrVompP8Xu96vGBH6mFYF9SoFpYWTl09lSONMiA0rOIMJSY1sI47Vx80
KvFQoZyLHu3CYUoGFOJPy8ks3/dWsjb8QNQzVDTLgM48DC88cFb7l5dBgApxqlcJ
NCbDmEXmj7Piqr3w1T7dAvI4IIeTHwbLkIeUelVd9l1VTwTLGpL/KNjKE9j+FQab
VrcTdMuiw2ZafLGkc36gOmoE0/jxMcBeVaOxXjPmqGFUJxk2hs/uZEwPIqzezrp8
RBLAAyA+Jyvq8y2HYqJmNxQu09rfsXm9qZvQEl9dfbo10FhjqHihPXfZnYuOVMHY
xOSLo8NFLFTbsZgEusSTgFV6Vg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:30 2023 by rpki-client on console.sobornost.net