Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/X8IQzm1lPo6PjSjvBISNvPXJE08.roa
File: X8IQzm1lPo6PjSjvBISNvPXJE08.roa (raw, json)
Hash identifier: Gl2/YsFjPva88MSDjbigsKwCL2DKZru812AFBFzDlaw=
Subject key identifier: 5F:C2:10:CE:6D:65:3E:8E:8F:8D:28:EF:04:84:8D:BC:F5:C9:13:4F
Certificate issuer: /CN=fc2a6347b531e30f55551d0b6edf60dc8b808b91
Certificate serial: 0BBF8C1D
Authority key identifier: FC:2A:63:47:B5:31:E3:0F:55:55:1D:0B:6E:DF:60:DC:8B:80:8B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/X8IQzm1lPo6PjSjvBISNvPXJE08.roa
Signing time: Mon 02 May 2022 12:34:50 +0000
ROA not before: Mon 02 May 2022 12:34:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200311
IP address blocks: 194.60.214.0/24 maxlen: 24
194.60.215.0/24 maxlen: 24
194.60.213.0/24 maxlen: 24
194.60.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197102621 (0xbbf8c1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc2a6347b531e30f55551d0b6edf60dc8b808b91
Validity
Not Before: May 2 12:34:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5fc210ce6d653e8e8f8d28ef04848dbcf5c9134f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:23:8f:91:e8:94:2e:61:c5:a4:7c:24:14:ec:
d5:00:6a:8e:86:9c:d7:ab:68:39:a3:35:27:7c:ea:
4b:01:41:0a:92:f8:a8:64:7b:22:c0:68:76:94:e3:
e0:bd:31:24:10:43:58:f9:22:95:b9:a8:dc:7c:0d:
d8:97:ba:71:8e:23:4e:65:5f:c5:89:51:ff:64:ae:
31:95:44:73:7c:02:99:e5:35:47:8f:a9:19:da:e5:
66:cc:a3:f3:43:64:69:d6:ca:5b:07:ba:68:f3:5a:
32:3f:4a:23:d0:26:68:7b:e1:ac:23:d6:b1:fa:a0:
a5:24:19:c0:c2:0d:dd:21:25:b4:88:1b:bb:a3:d9:
37:54:d9:ef:8e:79:b9:36:d2:47:27:dc:be:55:c4:
17:e2:4c:08:5b:af:af:cc:e6:23:28:89:db:f5:08:
66:91:f6:8c:dc:41:c3:f6:0e:56:37:03:62:95:83:
a3:e4:7c:04:b3:2d:41:07:d4:70:d5:b8:39:0c:6f:
72:0e:b0:76:45:6b:26:ab:dd:0b:f4:6d:36:3a:a3:
fd:c3:95:99:4d:0b:bd:21:e6:72:2b:ba:5c:83:6c:
78:80:80:a0:8b:6f:69:f1:66:6c:03:1c:80:ec:65:
da:57:04:c5:7d:3b:42:5f:88:b2:de:e6:cc:4c:17:
b8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C2:10:CE:6D:65:3E:8E:8F:8D:28:EF:04:84:8D:BC:F5:C9:13:4F
X509v3 Authority Key Identifier:
keyid:FC:2A:63:47:B5:31:E3:0F:55:55:1D:0B:6E:DF:60:DC:8B:80:8B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/X8IQzm1lPo6PjSjvBISNvPXJE08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.212.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:3d:b7:79:a1:d1:08:91:e1:29:37:f3:dc:40:19:04:78:ad:
27:9e:30:13:af:3b:ab:78:a9:c7:cf:bb:5a:1a:d2:27:f6:35:
59:2c:eb:2e:cf:e3:45:7f:a0:6a:9f:c2:c1:82:af:1b:b4:53:
a0:51:49:a5:11:36:22:2d:9b:7c:e5:a4:27:2f:ba:30:6d:0e:
72:82:3b:95:2e:91:9e:63:70:6c:3c:dd:2a:8f:78:79:da:a9:
61:b4:a5:23:99:f0:01:ba:99:ec:9b:d5:1a:10:b9:92:7a:c0:
62:3f:cc:ec:d2:3b:b6:10:e4:cd:24:fc:15:19:4d:b7:79:4f:
d2:3d:68:61:8d:c1:79:36:26:05:cf:5f:d1:6c:a7:da:ee:fa:
e5:f0:9f:68:13:d2:91:28:35:e3:7a:98:5f:7d:f7:fb:2e:20:
bb:fb:3d:5f:a9:be:42:87:d0:5f:59:2f:1c:af:05:cb:df:a4:
88:fb:d1:41:5c:10:52:db:30:85:ef:67:71:d5:2f:1a:5a:52:
2d:2d:7f:b7:e6:cd:d0:3e:b4:20:e0:4d:f7:16:a5:1d:1d:1c:
28:93:9a:b0:d9:ce:06:2a:c4:94:3c:96:a0:b9:a4:79:ea:39:
4e:b4:68:f6:8a:6f:79:10:71:f3:cb:94:fb:5a:67:5f:30:ec:
6b:44:89:ab
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC7+MHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YzJhNjM0N2I1MzFlMzBmNTU1NTFkMGI2ZWRmNjBkYzhiODA4YjkxMB4XDTIyMDUw
MjEyMzQ1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWZjMjEwY2U2ZDY1
M2U4ZThmOGQyOGVmMDQ4NDhkYmNmNWM5MTM0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMAjj5HolC5hxaR8JBTs1QBqjoac16toOaM1J3zqSwFBCpL4
qGR7IsBodpTj4L0xJBBDWPkilbmo3HwN2Je6cY4jTmVfxYlR/2SuMZVEc3wCmeU1
R4+pGdrlZsyj80NkadbKWwe6aPNaMj9KI9AmaHvhrCPWsfqgpSQZwMIN3SEltIgb
u6PZN1TZ7455uTbSRyfcvlXEF+JMCFuvr8zmIyiJ2/UIZpH2jNxBw/YOVjcDYpWD
o+R8BLMtQQfUcNW4OQxvcg6wdkVrJqvdC/RtNjqj/cOVmU0LvSHmciu6XINseICA
oItvafFmbAMcgOxl2lcExX07Ql+Ist7mzEwXuEUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRfwhDObWU+jo+NKO8EhI289ckTTzAfBgNVHSMEGDAWgBT8KmNHtTHjD1VV
HQtu32Dci4CLkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19DcGpSN1V4NHc5VlZSMExidDlnM0l1QWk1RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvMzU0NWU2LThjZGUtNDUzMy05NjA1LWZhZjJiOWYwNGRlZi8x
L1g4SVF6bTFsUG82UGpTanZCSVNOdlBYSkUwOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
MzU0NWU2LThjZGUtNDUzMy05NjA1LWZhZjJiOWYwNGRlZi8xL19DcGpSN1V4NHc5
VlZSMExidDlnM0l1QWk1RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsI81DANBgkqhkiG9w0BAQsFAAOC
AQEAwT23eaHRCJHhKTfz3EAZBHitJ54wE687q3ipx8+7WhrSJ/Y1WSzrLs/jRX+g
ap/CwYKvG7RToFFJpRE2Ii2bfOWkJy+6MG0OcoI7lS6RnmNwbDzdKo94edqpYbSl
I5nwAbqZ7JvVGhC5knrAYj/M7NI7thDkzST8FRlNt3lP0j1oYY3BeTYmBc9f0Wyn
2u765fCfaBPSkSg143qYX333+y4gu/s9X6m+QofQX1kvHK8Fy9+kiPvRQVwQUtsw
he9ncdUvGlpSLS1/t+bN0D60IOBN9xalHR0cKJOasNnOBirElDyWoLmkeeo5TrRo
9opveRBx88uU+1pnXzDsa0SJqw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:54 2024 by rpki-client on console-ams.rpki-client.org