Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/LwKkyeRtMZdQbK-xagtid2d3pRQ.roa
File: LwKkyeRtMZdQbK-xagtid2d3pRQ.roa (raw, json)
Hash identifier: oA8MMEZGzOPGISesqs1DqIsULG+Jc+p+dIOQeRuzuxo=
Subject key identifier: 2F:02:A4:C9:E4:6D:31:97:50:6C:AF:B1:6A:0B:62:77:67:77:A5:14
Certificate issuer: /CN=97668547a433343dde9bb36595bc903b4f149604
Certificate serial: 09BAE4CF
Authority key identifier: 97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/LwKkyeRtMZdQbK-xagtid2d3pRQ.roa
Signing time: Sat 01 Jan 2022 01:58:50 +0000
ROA not before: Sat 01 Jan 2022 01:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25400
IP address blocks: 194.54.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163243215 (0x9bae4cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97668547a433343dde9bb36595bc903b4f149604
Validity
Not Before: Jan 1 01:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f02a4c9e46d3197506cafb16a0b62776777a514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c5:a5:a1:61:26:d3:45:5b:3f:3d:ae:3d:ce:
a5:ec:b9:9f:7b:75:69:98:96:71:cb:65:4c:16:aa:
4c:4e:59:43:d7:2f:78:ab:77:d3:55:31:4b:c2:0d:
5e:38:d6:9a:ad:eb:18:f8:da:fe:68:a2:e9:d2:e2:
eb:8d:e4:15:42:49:8c:01:e1:63:53:3a:30:a5:d2:
d2:61:cd:92:1c:2f:46:7f:40:85:f9:3c:17:24:a1:
90:e1:ac:9c:e6:5c:6d:31:69:90:30:b1:19:ec:98:
d4:4b:fb:ea:76:27:57:2f:ce:ef:f5:9b:53:59:fa:
54:c8:3e:ee:b6:bd:73:b7:52:22:25:35:08:bd:34:
3e:94:07:ed:1d:e3:db:93:0b:4d:b0:3a:13:16:13:
70:fa:4f:6d:84:d6:1d:8b:60:c6:7d:f1:c2:8b:ad:
65:23:43:3f:2f:61:df:af:b0:49:a8:71:13:1a:58:
ba:8b:04:2e:7e:11:af:51:3c:b7:b1:17:a8:0c:09:
7d:7d:70:87:5b:89:27:6a:ad:05:49:16:95:d3:f3:
b1:79:c4:26:4b:f3:56:5c:08:96:53:a6:50:0d:d5:
d9:0d:84:58:61:fb:f5:68:4d:fa:8f:c7:90:fd:02:
95:5f:46:49:1a:e5:15:bf:e6:f0:b0:21:a6:b1:71:
f6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:02:A4:C9:E4:6D:31:97:50:6C:AF:B1:6A:0B:62:77:67:77:A5:14
X509v3 Authority Key Identifier:
keyid:97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/LwKkyeRtMZdQbK-xagtid2d3pRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.68.0/22
Signature Algorithm: sha256WithRSAEncryption
10:96:eb:36:ae:0b:0c:d3:2f:de:69:0d:8f:4d:42:7d:20:1d:
3b:7a:16:79:eb:b6:9e:f8:da:d9:01:79:1e:01:7f:71:3a:80:
5c:e8:61:e2:94:29:f2:37:22:4e:4a:41:7c:fe:26:88:d7:59:
71:fa:aa:b7:cd:82:1f:32:18:8e:4b:5e:f8:db:e3:c8:7b:73:
d7:3a:03:43:ad:ca:00:31:18:f8:a8:40:b0:4b:34:f8:53:f5:
b3:48:1d:5c:67:29:d9:2b:40:c9:7b:3f:08:4c:f9:cd:6f:a4:
4d:3c:3b:1f:9b:8a:e0:dc:a1:9b:48:fb:c6:e8:cc:76:9f:8c:
bd:0b:61:71:4d:81:d3:f0:ce:2c:58:33:4e:fc:15:06:be:3a:
e9:8a:f7:5b:b4:e4:92:7b:9f:f9:02:d6:da:0b:10:d1:fc:02:
9f:72:7d:78:78:97:c7:bd:8d:fb:55:bb:38:89:06:c9:4b:53:
06:61:0d:39:89:a0:35:17:63:00:e4:13:92:75:43:1b:8a:5d:
48:c9:59:5d:5a:52:24:16:e8:5d:e9:12:96:d7:8a:41:2a:59:
1e:3d:15:5c:a8:7c:27:11:34:7b:bd:a5:56:ac:0f:28:68:8d:
17:b6:d5:89:b0:3f:d0:68:ef:46:55:62:b0:8f:1d:78:f5:8f:
0d:30:68:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECbrkzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzY2ODU0N2E0MzMzNDNkZGU5YmIzNjU5NWJjOTAzYjRmMTQ5NjA0MB4XDTIyMDEw
MTAxNTg1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmYwMmE0YzllNDZk
MzE5NzUwNmNhZmIxNmEwYjYyNzc2Nzc3YTUxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKHFpaFhJtNFWz89rj3Opey5n3t1aZiWcctlTBaqTE5ZQ9cv
eKt301UxS8INXjjWmq3rGPja/mii6dLi643kFUJJjAHhY1M6MKXS0mHNkhwvRn9A
hfk8FyShkOGsnOZcbTFpkDCxGeyY1Ev76nYnVy/O7/WbU1n6VMg+7ra9c7dSIiU1
CL00PpQH7R3j25MLTbA6ExYTcPpPbYTWHYtgxn3xwoutZSNDPy9h36+wSahxExpY
uosELn4Rr1E8t7EXqAwJfX1wh1uJJ2qtBUkWldPzsXnEJkvzVlwIllOmUA3V2Q2E
WGH79WhN+o/HkP0ClV9GSRrlFb/m8LAhprFx9okCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQvAqTJ5G0xl1Bsr7FqC2J3Z3elFDAfBgNVHSMEGDAWgBSXZoVHpDM0Pd6b
s2WVvJA7TxSWBDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2wyYUZSNlF6TkQzZW03TmxsYnlRTzA4VWxnUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvOTc4YzJlLTFiNzYtNDhiMC1hNjAzLTY0YzFjMjc5Y2NjMC8x
L0x3S2t5ZVJ0TVpkUWJLLXhhZ3RpZDJkM3BSUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
OTc4YzJlLTFiNzYtNDhiMC1hNjAzLTY0YzFjMjc5Y2NjMC8xL2wyYUZSNlF6TkQz
ZW03TmxsYnlRTzA4VWxnUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsI2RDANBgkqhkiG9w0BAQsFAAOC
AQEAEJbrNq4LDNMv3mkNj01CfSAdO3oWeeu2nvja2QF5HgF/cTqAXOhh4pQp8jci
TkpBfP4miNdZcfqqt82CHzIYjkte+NvjyHtz1zoDQ63KADEY+KhAsEs0+FP1s0gd
XGcp2StAyXs/CEz5zW+kTTw7H5uK4Nyhm0j7xujMdp+MvQthcU2B0/DOLFgzTvwV
Br466Yr3W7Tkknuf+QLW2gsQ0fwCn3J9eHiXx72N+1W7OIkGyUtTBmENOYmgNRdj
AOQTknVDG4pdSMlZXVpSJBboXekSlteKQSpZHj0VXKh8JxE0e72lVqwPKGiNF7bV
ibA/0GjvRlVisI8dePWPDTBoLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:07 2024 by rpki-client on console-ams.rpki-client.org