Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/abac14-6eab-4985-867a-c8e863c1a8d1/1/E36VzOUll2LMXesn2NZb41UxKJU.roa
File: E36VzOUll2LMXesn2NZb41UxKJU.roa (raw, json)
Hash identifier: 4FlAoswblpCF4XWPYCMeldWUOhs1pdDx/FNE0CgJKco=
Subject key identifier: 13:7E:95:CC:E5:25:97:62:CC:5D:EB:27:D8:D6:5B:E3:55:31:28:95
Certificate issuer: /CN=d2c2b0ee187928409065d19ee9c0858e8c17ea13
Certificate serial: 162B2516
Authority key identifier: D2:C2:B0:EE:18:79:28:40:90:65:D1:9E:E9:C0:85:8E:8C:17:EA:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0sKw7hh5KECQZdGe6cCFjowX6hM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/abac14-6eab-4985-867a-c8e863c1a8d1/1/E36VzOUll2LMXesn2NZb41UxKJU.roa
Signing time: Sat 01 Jan 2022 14:06:22 +0000
ROA not before: Sat 01 Jan 2022 14:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210004
IP address blocks: 194.0.5.0/24 maxlen: 24
2001:678:8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371926294 (0x162b2516)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2c2b0ee187928409065d19ee9c0858e8c17ea13
Validity
Not Before: Jan 1 14:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=137e95cce5259762cc5deb27d8d65be355312895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:a2:48:89:ea:ef:5f:61:81:b4:45:1f:52:
0b:1b:9b:b0:f9:2f:d1:8a:db:5c:b7:1b:52:2f:65:
92:b9:2f:fb:94:77:03:ed:6a:bf:be:c5:56:30:1a:
50:32:5b:12:cb:2d:fe:bd:6c:47:fa:71:63:1a:38:
50:f6:64:e6:92:58:e0:f3:4a:8e:f3:b4:ec:b9:e7:
1f:63:ed:0e:33:d0:cd:98:aa:c6:88:b5:1d:e6:29:
47:07:48:61:89:66:e4:89:a0:f5:e7:7b:b5:80:96:
ba:8a:07:4e:44:51:49:3b:cd:f2:9a:78:44:ec:22:
d6:80:d7:02:b1:c9:e2:7f:3e:7d:9c:9f:f9:12:ce:
0f:52:de:99:a0:e3:46:5c:8a:a4:10:dd:a4:b1:91:
15:25:1e:42:ec:9c:37:a6:4f:93:11:9a:cc:24:cd:
06:ee:54:61:8a:10:da:33:1e:26:06:7c:18:56:ef:
51:9c:42:67:47:60:18:37:1b:f7:ad:b7:52:0f:52:
9e:34:a0:4c:48:76:6b:be:66:c9:da:64:33:e9:61:
a8:c4:89:60:be:1a:4c:d7:27:64:e5:b5:8f:b2:dc:
43:30:f6:75:7b:8b:4f:aa:04:e1:93:93:8a:74:1e:
5d:d4:6d:a1:29:1b:f6:03:21:00:48:e4:dc:e6:cc:
55:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7E:95:CC:E5:25:97:62:CC:5D:EB:27:D8:D6:5B:E3:55:31:28:95
X509v3 Authority Key Identifier:
keyid:D2:C2:B0:EE:18:79:28:40:90:65:D1:9E:E9:C0:85:8E:8C:17:EA:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0sKw7hh5KECQZdGe6cCFjowX6hM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/abac14-6eab-4985-867a-c8e863c1a8d1/1/E36VzOUll2LMXesn2NZb41UxKJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/abac14-6eab-4985-867a-c8e863c1a8d1/1/0sKw7hh5KECQZdGe6cCFjowX6hM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.5.0/24
IPv6:
2001:678:8::/48
Signature Algorithm: sha256WithRSAEncryption
61:a1:44:9f:d2:ab:bb:0c:15:05:df:0c:81:09:ba:bd:e5:8b:
13:62:40:07:64:32:94:0b:99:b2:35:de:8b:aa:6a:56:63:f1:
7f:cd:34:c5:c0:3e:41:7f:4f:53:36:59:e7:c7:7b:27:61:8a:
52:66:06:c1:aa:22:56:bb:34:fe:c4:06:2e:78:1e:d0:ef:94:
fd:45:e9:81:51:bb:b4:97:4b:6e:2a:22:dd:a6:3f:43:ac:0c:
56:72:64:96:3c:d6:dc:a3:16:f8:c5:93:0d:47:38:68:8a:5c:
5e:87:11:ef:69:50:71:8d:2c:0e:b9:be:9a:b5:97:71:f3:0c:
ce:15:2e:3f:4b:2c:23:79:ea:77:f2:7b:da:f1:e7:94:1c:63:
b9:f9:71:29:d3:32:d7:c0:6d:11:3e:f5:8b:96:a6:bb:96:4a:
25:0d:50:9b:4f:ce:04:78:f4:e1:57:4d:81:08:89:de:b6:0c:
96:d1:3c:49:6b:f0:2f:07:5d:b2:4a:1d:b7:81:7f:02:4e:ca:
82:22:ca:72:8b:48:17:88:fa:1b:eb:25:06:f7:2d:87:d7:ba:
58:f6:77:6e:ae:28:7b:64:ea:5d:89:bf:da:c9:79:71:5f:90:
90:47:02:5b:2a:6c:88:05:65:3b:9b:56:77:71:09:fc:ec:fd:
b8:0a:3a:79
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEFislFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MmMyYjBlZTE4NzkyODQwOTA2NWQxOWVlOWMwODU4ZThjMTdlYTEzMB4XDTIyMDEw
MTE0MDYyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTM3ZTk1Y2NlNTI1
OTc2MmNjNWRlYjI3ZDhkNjViZTM1NTMxMjg5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKTZokiJ6u9fYYG0RR9SCxubsPkv0YrbXLcbUi9lkrkv+5R3
A+1qv77FVjAaUDJbEsst/r1sR/pxYxo4UPZk5pJY4PNKjvO07LnnH2PtDjPQzZiq
xoi1HeYpRwdIYYlm5Img9ed7tYCWuooHTkRRSTvN8pp4ROwi1oDXArHJ4n8+fZyf
+RLOD1LemaDjRlyKpBDdpLGRFSUeQuycN6ZPkxGazCTNBu5UYYoQ2jMeJgZ8GFbv
UZxCZ0dgGDcb9623Ug9SnjSgTEh2a75mydpkM+lhqMSJYL4aTNcnZOW1j7LcQzD2
dXuLT6oE4ZOTinQeXdRtoSkb9gMhAEjk3ObMVYcCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQTfpXM5SWXYsxd6yfY1lvjVTEolTAfBgNVHSMEGDAWgBTSwrDuGHkoQJBl
0Z7pwIWOjBfqEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBzS3c3aGg1S0VDUVpkR2U2Y0NGam93WDZoTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvYWJhYzE0LTZlYWItNDk4NS04NjdhLWM4ZTg2M2MxYThkMS8x
L0UzNlZ6T1VsbDJMTVhlc24yTlpiNDFVeEtKVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
YWJhYzE0LTZlYWItNDk4NS04NjdhLWM4ZTg2M2MxYThkMS8xLzBzS3c3aGg1S0VD
UVpkR2U2Y0NGam93WDZoTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMIABTAPBAIAAjAJAwcAIAEGeAAI
MA0GCSqGSIb3DQEBCwUAA4IBAQBhoUSf0qu7DBUF3wyBCbq95YsTYkAHZDKUC5my
Nd6LqmpWY/F/zTTFwD5Bf09TNlnnx3snYYpSZgbBqiJWuzT+xAYueB7Q75T9RemB
Ubu0l0tuKiLdpj9DrAxWcmSWPNbcoxb4xZMNRzhoilxehxHvaVBxjSwOub6atZdx
8wzOFS4/Sywjeep38nva8eeUHGO5+XEp0zLXwG0RPvWLlqa7lkolDVCbT84EePTh
V02BCInetgyW0TxJa/AvB12ySh23gX8CTsqCIspyi0gXiPob6yUG9y2H17pY9ndu
rih7ZOpdib/ayXlxX5CQRwJbKmyIBWU7m1Z3cQn87P24Cjp5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:34 2024 by rpki-client on console-fra.rpki-client.org