Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/4Vtx0b-iinY5yAfqn-OpAQ7923I.roa
File: 4Vtx0b-iinY5yAfqn-OpAQ7923I.roa (raw, json)
Hash identifier: PDiUEVj2cTi1c89BRKe385n9exceyXhJDKN/NmMaADM=
Subject key identifier: E1:5B:71:D1:BF:A2:8A:76:39:C8:07:EA:9F:E3:A9:01:0E:FD:DB:72
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 098DB879
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/4Vtx0b-iinY5yAfqn-OpAQ7923I.roa
Signing time: Sun 13 Mar 2022 06:36:08 +0000
ROA not before: Sun 13 Mar 2022 06:36:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 146961
IP address blocks: 194.53.201.0/24 maxlen: 24
194.53.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160282745 (0x98db879)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Mar 13 06:36:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e15b71d1bfa28a7639c807ea9fe3a9010efddb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:01:89:6b:ad:93:15:95:4c:f2:9b:1b:25:f2:
3b:5d:a3:2e:7e:bb:bb:cc:a9:70:f7:a7:39:66:46:
b2:0d:54:b1:85:b8:1f:ed:5e:92:03:f9:69:de:64:
b0:ae:bf:d0:52:34:ce:b9:92:7b:8d:3c:ba:ed:9d:
6d:2c:c4:1d:dd:df:8f:7f:a8:3b:73:f8:67:58:2a:
ec:a8:ce:5c:b5:3f:a2:04:50:9f:11:d4:34:8b:9a:
70:17:e7:2b:70:60:ef:b2:ad:40:c9:be:b0:5e:ca:
1e:61:73:e6:29:7e:12:48:0e:fc:c2:1c:12:e8:c8:
25:df:df:08:df:6c:cd:37:11:a9:36:1c:7f:f2:ad:
6b:02:57:d6:dd:7e:91:05:b6:45:e4:0d:18:a6:de:
a0:2b:48:fe:6b:36:4a:69:d2:bb:aa:c4:c4:c7:0a:
06:5c:9c:57:d4:d7:1c:e1:9d:72:aa:77:ca:62:88:
ee:34:62:45:a6:03:20:3d:94:8a:5c:76:eb:f5:e1:
09:2f:01:22:01:d0:c4:a8:82:f5:a8:ce:5c:43:a0:
9a:13:4e:f2:a5:e4:13:ad:27:ae:14:4d:df:f4:f7:
d8:61:4b:0c:6b:38:ac:a2:a3:bc:c6:c6:f0:df:3b:
23:f6:f5:8e:e5:20:88:5b:4c:34:5e:71:28:a1:b9:
bd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5B:71:D1:BF:A2:8A:76:39:C8:07:EA:9F:E3:A9:01:0E:FD:DB:72
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/4Vtx0b-iinY5yAfqn-OpAQ7923I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.201.0-194.53.202.255
Signature Algorithm: sha256WithRSAEncryption
21:ff:c7:6b:83:89:af:da:62:aa:6d:ac:e8:9b:97:10:62:74:
0f:7d:9b:39:82:e3:14:e3:4d:aa:b6:ee:11:ad:36:5c:67:3b:
f8:ef:c3:6d:e1:7a:73:f7:04:d5:ad:88:b5:e3:63:d9:e9:d7:
04:16:46:1c:be:da:38:d7:ec:0d:10:61:7c:4a:77:73:53:01:
0a:44:8e:d0:b9:6a:93:3c:50:36:5a:2b:b9:26:4f:3f:17:77:
4e:42:ad:a4:ab:c0:e7:3a:40:45:3f:62:03:83:38:c9:dd:a0:
15:19:a8:de:82:e7:94:0a:93:cf:b9:30:95:db:1a:0d:6c:00:
f0:51:6d:de:d5:08:fa:31:54:c3:1f:35:24:41:ea:56:56:71:
65:83:da:00:36:7b:54:c0:51:6a:6f:d2:9b:70:ef:c1:60:7e:
bc:5c:c9:6c:93:98:d4:4f:65:1f:cf:5b:88:d3:af:c6:59:37:
57:f5:b8:d9:cb:28:7c:ca:a3:dd:fe:bf:16:b8:d0:86:c2:d8:
6c:68:3b:59:80:db:e1:68:bc:48:6e:09:14:94:ae:83:65:f2:
69:cd:03:19:d5:21:ee:0a:79:d8:c2:5f:ec:b0:8c:ed:05:ce:
a0:92:3b:b2:55:6b:67:d2:19:6e:29:2a:8e:67:21:40:54:8d:
44:b7:84:12
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIECY24eTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MmNlNzU5MzIwMTk1YjljYzE4Y2NmY2IxYjUzMmFlYTk0OTI1OGYxMB4XDTIyMDMx
MzA2MzYwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTE1YjcxZDFiZmEy
OGE3NjM5YzgwN2VhOWZlM2E5MDEwZWZkZGI3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALYBiWutkxWVTPKbGyXyO12jLn67u8ypcPenOWZGsg1UsYW4
H+1ekgP5ad5ksK6/0FI0zrmSe408uu2dbSzEHd3fj3+oO3P4Z1gq7KjOXLU/ogRQ
nxHUNIuacBfnK3Bg77KtQMm+sF7KHmFz5il+EkgO/MIcEujIJd/fCN9szTcRqTYc
f/KtawJX1t1+kQW2ReQNGKbeoCtI/ms2SmnSu6rExMcKBlycV9TXHOGdcqp3ymKI
7jRiRaYDID2Uilx26/XhCS8BIgHQxKiC9ajOXEOgmhNO8qXkE60nrhRN3/T32GFL
DGs4rKKjvMbG8N87I/b1juUgiFtMNF5xKKG5vZ8CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBThW3HRv6KKdjnIB+qf46kBDv3bcjAfBgNVHSMEGDAWgBRCznWTIBlbnMGM
z8sbUyrqlJJY8TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FzNTFreUFaVzV6QmpNX0xHMU1xNnBTU1dQRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvYTUyMDQ4LTEyY2EtNGEwMy05NWJlLTY5Nzk0OGVhNzFmNS8x
LzRWdHgwYi1paW5ZNXlBZnFuLU9wQVE3OTIzSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
YTUyMDQ4LTEyY2EtNGEwMy05NWJlLTY5Nzk0OGVhNzFmNS8xL1FzNTFreUFaVzV6
QmpNX0xHMU1xNnBTU1dQRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAwjXJAwQAwjXKMA0GCSqGSIb3
DQEBCwUAA4IBAQAh/8drg4mv2mKqbazom5cQYnQPfZs5guMU402qtu4RrTZcZzv4
78Nt4Xpz9wTVrYi142PZ6dcEFkYcvto41+wNEGF8SndzUwEKRI7QuWqTPFA2Wiu5
Jk8/F3dOQq2kq8DnOkBFP2IDgzjJ3aAVGajegueUCpPPuTCV2xoNbADwUW3e1Qj6
MVTDHzUkQepWVnFlg9oANntUwFFqb9KbcO/BYH68XMlsk5jUT2Ufz1uI06/GWTdX
9bjZyyh8yqPd/r8WuNCGwthsaDtZgNvhaLxIbgkUlK6DZfJpzQMZ1SHuCnnYwl/s
sIztBc6gkjuyVWtn0hluKSqOZyFAVI1Et4QS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org