Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/3490f8-7e9b-4e8e-b8ed-9d3e59da5ad1/1/Sm294TmEUds5O4wmyMfzVg-GJVM.roa
File: Sm294TmEUds5O4wmyMfzVg-GJVM.roa (raw, json)
Hash identifier: s4M9IDjwZRWRVkUi+k+tSjcYu6YowKhtgQkrOFW7B0k=
Subject key identifier: 4A:6D:BD:E1:39:84:51:DB:39:3B:8C:26:C8:C7:F3:56:0F:86:25:53
Certificate issuer: /CN=5c4b777d6a0175febba05b48b47cdf0a6b89d7fb
Certificate serial: 10481D6A
Authority key identifier: 5C:4B:77:7D:6A:01:75:FE:BB:A0:5B:48:B4:7C:DF:0A:6B:89:D7:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEt3fWoBdf67oFtItHzfCmuJ1_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/3490f8-7e9b-4e8e-b8ed-9d3e59da5ad1/1/Sm294TmEUds5O4wmyMfzVg-GJVM.roa
Signing time: Sat 01 Jan 2022 15:02:10 +0000
ROA not before: Sat 01 Jan 2022 15:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.42.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273161578 (0x10481d6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4b777d6a0175febba05b48b47cdf0a6b89d7fb
Validity
Not Before: Jan 1 15:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a6dbde1398451db393b8c26c8c7f3560f862553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:97:1a:a4:5d:d2:eb:94:4f:df:19:cf:9f:cb:
90:f9:cd:ae:64:0c:46:ef:71:72:18:53:79:d0:95:
11:db:f1:4f:5e:59:35:66:c6:e4:63:9b:dc:83:e9:
a5:95:b9:11:84:6b:80:b4:d8:7d:99:37:79:a4:e4:
01:07:8f:c3:fc:a9:25:a9:21:27:ea:8d:e6:e9:c7:
a2:2e:11:4e:60:13:85:c4:98:a3:73:0b:11:de:dc:
3a:59:0c:5f:ba:a0:70:ba:f5:32:07:cd:f7:7c:56:
c8:41:d8:75:38:b2:a0:ec:92:f4:5b:f1:8f:47:b0:
a9:b2:0f:e3:46:df:40:4a:f7:a2:8a:d5:e4:75:70:
91:b4:7f:4e:a6:3d:2b:0f:5d:28:48:4a:88:1d:2a:
6f:f2:e8:07:99:c7:49:47:03:ac:ee:af:f4:dd:76:
7b:0f:b6:6a:1a:7e:9e:b3:f0:3f:99:cf:ab:88:4f:
24:28:f2:92:ca:58:f9:4f:ed:b8:46:a3:07:e9:25:
41:29:07:af:e9:4c:c8:90:63:5b:3b:19:1b:c3:38:
f5:36:c7:f9:c0:14:0c:99:09:1b:76:c6:d1:63:8c:
33:6d:9a:ca:b2:d8:eb:ab:d0:15:f1:24:52:99:e5:
71:b1:0b:1f:b4:31:e2:db:43:4a:0a:88:65:5d:f4:
ea:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:6D:BD:E1:39:84:51:DB:39:3B:8C:26:C8:C7:F3:56:0F:86:25:53
X509v3 Authority Key Identifier:
keyid:5C:4B:77:7D:6A:01:75:FE:BB:A0:5B:48:B4:7C:DF:0A:6B:89:D7:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEt3fWoBdf67oFtItHzfCmuJ1_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3490f8-7e9b-4e8e-b8ed-9d3e59da5ad1/1/Sm294TmEUds5O4wmyMfzVg-GJVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3490f8-7e9b-4e8e-b8ed-9d3e59da5ad1/1/XEt3fWoBdf67oFtItHzfCmuJ1_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.42.0.0/16
Signature Algorithm: sha256WithRSAEncryption
60:fa:61:79:40:ea:1e:17:04:b1:dd:6e:77:83:14:20:c0:b3:
0a:f6:6e:1a:0e:63:0f:96:d4:7d:e4:84:21:fb:16:2b:c8:b7:
1e:b1:b5:3f:6a:89:c8:3d:64:0a:bc:9e:0a:a9:58:68:13:fd:
58:02:11:aa:54:46:4a:94:7f:d5:f5:70:d9:49:4a:11:9e:ca:
71:b4:8b:60:5f:d0:ff:f3:cd:66:e3:cd:66:af:5c:6f:78:18:
58:8f:dd:48:89:96:3e:ee:6c:db:70:7a:9c:d6:78:93:65:93:
5b:53:4a:e3:59:d8:87:65:6f:c0:01:8d:8d:bb:ce:91:7f:2e:
7c:42:5f:b4:60:21:df:39:df:f3:21:4a:72:23:e9:c1:08:2e:
0f:c2:59:a6:c8:53:c2:0d:31:a9:62:33:73:50:74:7c:f4:5a:
09:a3:3e:d7:20:c2:b4:4a:cb:a0:c4:de:ac:90:f5:05:26:42:
5e:82:de:13:a6:a9:fd:1d:18:3e:00:4e:d2:c8:39:25:e0:85:
f2:d7:38:60:11:52:85:f9:07:0c:e3:b2:34:de:1f:f5:21:a5:
af:08:a0:c0:2a:c6:d7:8b:bd:df:e2:7e:b4:1c:8a:75:88:7e:
8b:41:8f:79:3d:f2:be:8a:3e:94:5e:e0:25:12:7d:41:53:80:
66:04:ef:53
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEEEgdajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YzRiNzc3ZDZhMDE3NWZlYmJhMDViNDhiNDdjZGYwYTZiODlkN2ZiMB4XDTIyMDEw
MTE1MDIxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGE2ZGJkZTEzOTg0
NTFkYjM5M2I4YzI2YzhjN2YzNTYwZjg2MjU1MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL6XGqRd0uuUT98Zz5/LkPnNrmQMRu9xchhTedCVEdvxT15Z
NWbG5GOb3IPppZW5EYRrgLTYfZk3eaTkAQePw/ypJakhJ+qN5unHoi4RTmAThcSY
o3MLEd7cOlkMX7qgcLr1MgfN93xWyEHYdTiyoOyS9Fvxj0ewqbIP40bfQEr3oorV
5HVwkbR/TqY9Kw9dKEhKiB0qb/LoB5nHSUcDrO6v9N12ew+2ahp+nrPwP5nPq4hP
JCjykspY+U/tuEajB+klQSkHr+lMyJBjWzsZG8M49TbH+cAUDJkJG3bG0WOMM22a
yrLY66vQFfEkUpnlcbELH7Qx4ttDSgqIZV306v0CAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRKbb3hOYRR2zk7jCbIx/NWD4YlUzAfBgNVHSMEGDAWgBRcS3d9agF1/rug
W0i0fN8Ka4nX+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hFdDNmV29CZGY2N29GdEl0SHpmQ211SjFfcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvMzQ5MGY4LTdlOWItNGU4ZS1iOGVkLTlkM2U1OWRhNWFkMS8x
L1NtMjk0VG1FVWRzNU80d215TWZ6VmctR0pWTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
MzQ5MGY4LTdlOWItNGU4ZS1iOGVkLTlkM2U1OWRhNWFkMS8xL1hFdDNmV29CZGY2
N29GdEl0SHpmQ211SjFfcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAI0qMA0GCSqGSIb3DQEBCwUAA4IB
AQBg+mF5QOoeFwSx3W53gxQgwLMK9m4aDmMPltR95IQh+xYryLcesbU/aonIPWQK
vJ4KqVhoE/1YAhGqVEZKlH/V9XDZSUoRnspxtItgX9D/881m481mr1xveBhYj91I
iZY+7mzbcHqc1niTZZNbU0rjWdiHZW/AAY2Nu86Rfy58Ql+0YCHfOd/zIUpyI+nB
CC4PwlmmyFPCDTGpYjNzUHR89FoJoz7XIMK0SsugxN6skPUFJkJegt4Tpqn9HRg+
AE7SyDkl4IXy1zhgEVKF+QcM47I03h/1IaWvCKDAKsbXi73f4n60HIp1iH6LQY95
PfK+ij6UXuAlEn1BU4BmBO9T
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org