Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/4VYLUZutBnw-XQjrdtiPskPJav8.roa
File: 4VYLUZutBnw-XQjrdtiPskPJav8.roa (raw, json)
Hash identifier: fpHmP+WVLPMnODuvkUeZnb/RXg3HaAhsJX4fgd+Bpi8=
Subject key identifier: E1:56:0B:51:9B:AD:06:7C:3E:5D:08:EB:76:D8:8F:B2:43:C9:6A:FF
Certificate issuer: /CN=bd25f71ba4131483bb9b823dd88651d3afd44e7b
Certificate serial: 0383904C
Authority key identifier: BD:25:F7:1B:A4:13:14:83:BB:9B:82:3D:D8:86:51:D3:AF:D4:4E:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSX3G6QTFIO7m4I92IZR06_UTns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/4VYLUZutBnw-XQjrdtiPskPJav8.roa
Signing time: Sat 01 Jan 2022 06:57:54 +0000
ROA not before: Sat 01 Jan 2022 06:57:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35197
IP address blocks: 194.146.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58953804 (0x383904c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd25f71ba4131483bb9b823dd88651d3afd44e7b
Validity
Not Before: Jan 1 06:57:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1560b519bad067c3e5d08eb76d88fb243c96aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dd:f8:e6:8e:0e:1c:6d:0b:af:3f:23:a7:c0:
8b:95:ae:43:5e:4e:99:3a:2a:3e:fd:9c:c4:8f:84:
a4:14:45:e2:43:f0:51:bf:e7:e5:1e:d9:c9:05:3d:
73:06:bf:8a:bd:0b:7a:f2:02:5d:35:59:6a:1b:c0:
aa:a3:46:35:a7:9d:15:72:3b:da:67:a6:30:a3:19:
c5:8b:ac:5e:cd:bf:40:0d:b9:d0:2b:4a:2a:e3:38:
4b:d8:2e:e0:be:71:a0:c5:71:9e:05:73:8f:74:9a:
4b:f0:b3:b3:23:3e:aa:ad:2a:66:08:de:bf:bc:1f:
04:05:f1:b4:59:6b:25:11:63:d8:69:36:9d:db:96:
ae:a2:9d:f8:5a:b2:2b:63:d9:86:c1:a7:9e:72:66:
ff:a7:74:17:44:66:ec:15:e6:46:83:c3:01:f1:3b:
1a:6a:71:30:53:31:7b:8c:6e:f8:17:b8:a0:ce:e8:
e8:d6:57:11:bc:54:53:6b:89:df:7c:2a:f9:68:48:
b4:31:d2:0c:f4:86:00:95:e3:3c:75:67:f5:a4:91:
fd:b3:65:54:71:5b:56:88:75:5b:0a:2a:b1:b5:30:
7f:93:1c:0c:6a:00:07:9b:ac:ac:96:b7:2f:f0:d2:
6e:28:1f:b3:1d:7a:43:f6:b5:34:a7:28:53:bb:4d:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:56:0B:51:9B:AD:06:7C:3E:5D:08:EB:76:D8:8F:B2:43:C9:6A:FF
X509v3 Authority Key Identifier:
keyid:BD:25:F7:1B:A4:13:14:83:BB:9B:82:3D:D8:86:51:D3:AF:D4:4E:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSX3G6QTFIO7m4I92IZR06_UTns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/4VYLUZutBnw-XQjrdtiPskPJav8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/vSX3G6QTFIO7m4I92IZR06_UTns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.152.0/24
Signature Algorithm: sha256WithRSAEncryption
23:91:55:ec:1c:66:41:77:db:1b:1d:1b:e2:61:33:48:08:44:
ac:f3:96:68:94:b5:72:50:4c:5d:78:3c:79:9f:af:8a:19:ba:
e2:50:f8:1e:2b:03:50:d6:38:d8:3c:87:a4:2b:57:b2:12:a9:
f6:af:03:b0:e9:20:3d:8a:4d:e2:36:d8:97:f8:e5:19:21:9e:
79:b4:62:0f:eb:36:7c:dd:12:16:ce:0d:99:06:e7:bc:f9:69:
51:05:77:fe:a4:11:3b:4f:c7:a3:88:bd:25:6d:a1:37:68:9d:
4a:5a:4a:76:88:3d:13:5e:13:93:a4:86:3f:9a:eb:fa:b6:1f:
2a:72:55:97:34:c3:25:af:58:05:8d:d2:b4:a6:35:50:d8:c7:
98:a1:17:fb:03:45:2b:72:92:64:7f:a4:4c:2d:e9:80:66:ae:
11:28:0b:4c:da:00:39:84:64:95:4d:e3:cc:38:4c:4b:c6:68:
60:27:ad:2e:fc:fb:2f:a6:1e:06:33:c4:77:20:9b:6e:6b:b2:
22:b2:f0:d4:1c:bc:09:12:6b:cc:50:c9:1c:bf:4d:ab:5d:15:
77:b2:e8:1b:d8:ed:16:c0:3e:bb:92:0d:9d:e5:5b:73:fc:c5:
49:5b:10:f5:5f:f4:1b:28:ad:24:23:f1:ed:45:69:89:b9:1f:
71:18:2e:e8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA4OQTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZDI1ZjcxYmE0MTMxNDgzYmI5YjgyM2RkODg2NTFkM2FmZDQ0ZTdiMB4XDTIyMDEw
MTA2NTc1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTE1NjBiNTE5YmFk
MDY3YzNlNWQwOGViNzZkODhmYjI0M2M5NmFmZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALDd+OaODhxtC68/I6fAi5WuQ15OmToqPv2cxI+EpBRF4kPw
Ub/n5R7ZyQU9cwa/ir0LevICXTVZahvAqqNGNaedFXI72memMKMZxYusXs2/QA25
0CtKKuM4S9gu4L5xoMVxngVzj3SaS/CzsyM+qq0qZgjev7wfBAXxtFlrJRFj2Gk2
nduWrqKd+FqyK2PZhsGnnnJm/6d0F0Rm7BXmRoPDAfE7GmpxMFMxe4xu+Be4oM7o
6NZXEbxUU2uJ33wq+WhItDHSDPSGAJXjPHVn9aSR/bNlVHFbVoh1WwoqsbUwf5Mc
DGoAB5usrJa3L/DSbigfsx16Q/a1NKcoU7tNYQsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBThVgtRm60GfD5dCOt22I+yQ8lq/zAfBgNVHSMEGDAWgBS9JfcbpBMUg7ub
gj3YhlHTr9ROezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZTWDNHNlFURklPN200STkySVpSMDZfVVRucy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDUvMjAwMzY2LWQ4ODEtNDAzMC04MjgwLWI1ZTBlNGMzMzE1Yy8x
LzRWWUxVWnV0Qm53LVhRanJkdGlQc2tQSmF2OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUv
MjAwMzY2LWQ4ODEtNDAzMC04MjgwLWI1ZTBlNGMzMzE1Yy8xL3ZTWDNHNlFURklP
N200STkySVpSMDZfVVRucy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMKSmDANBgkqhkiG9w0BAQsFAAOC
AQEAI5FV7BxmQXfbGx0b4mEzSAhErPOWaJS1clBMXXg8eZ+vihm64lD4HisDUNY4
2DyHpCtXshKp9q8DsOkgPYpN4jbYl/jlGSGeebRiD+s2fN0SFs4NmQbnvPlpUQV3
/qQRO0/Ho4i9JW2hN2idSlpKdog9E14Tk6SGP5rr+rYfKnJVlzTDJa9YBY3StKY1
UNjHmKEX+wNFK3KSZH+kTC3pgGauESgLTNoAOYRklU3jzDhMS8ZoYCetLvz7L6Ye
BjPEdyCbbmuyIrLw1By8CRJrzFDJHL9Nq10Vd7LoG9jtFsA+u5INneVbc/zFSVsQ
9V/0GyitJCPx7UVpibkfcRgu6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:33 2024 by rpki-client on console-fra.rpki-client.org