Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/0UW9IstEDRQB42eXkBGS20e1eAo.roa
File: 0UW9IstEDRQB42eXkBGS20e1eAo.roa (raw, json)
Hash identifier: 3+bzrw3iI51+/mNHxakXG5Lxh4XMrncobYYkkKBKpZs=
Subject key identifier: D1:45:BD:22:CB:44:0D:14:01:E3:67:97:90:11:92:DB:47:B5:78:0A
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 06E5048E
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/0UW9IstEDRQB42eXkBGS20e1eAo.roa
Signing time: Wed 25 May 2022 07:38:13 +0000
ROA not before: Wed 25 May 2022 07:38:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213396
IP address blocks: 194.50.176.0/24 maxlen: 24
2a0a:4540:3000::/48 maxlen: 48
2a0a:4540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115672206 (0x6e5048e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: May 25 07:38:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d145bd22cb440d1401e36797901192db47b5780a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:30:9d:39:ba:a3:4c:3f:71:51:26:0e:2d:0e:
b4:e4:01:ed:47:c5:7b:b6:a0:c0:22:80:25:3b:bc:
48:90:01:ce:fe:5b:49:cd:ac:8f:13:6d:1f:a0:14:
8d:4d:43:b5:9f:5c:bb:45:d2:79:09:7f:4b:d8:1e:
56:3c:2f:96:b0:f4:2b:4f:44:aa:a9:9e:2c:43:4d:
ee:61:0b:19:d5:cb:05:4c:ec:76:28:89:1e:07:f9:
b7:7e:f4:20:d7:53:d5:ab:01:da:85:ba:c5:0e:a9:
a4:61:81:c7:ac:5f:c0:af:5a:ce:25:cb:36:e9:51:
ed:92:34:5f:3e:23:08:2d:00:19:49:df:75:b4:41:
cb:cd:4f:9a:79:e1:45:a3:5b:c4:a2:f7:f5:6b:ac:
b7:70:21:ee:bb:62:37:42:d9:e9:05:1d:1a:6c:be:
e8:df:dc:d1:b8:6d:d9:b7:cf:f1:39:f7:45:ec:bf:
77:2e:ae:e9:b5:6a:e7:ed:1e:0b:0d:51:cf:a3:cb:
55:92:02:9a:85:97:79:c2:41:d1:6e:ef:9c:93:aa:
ad:17:48:46:bb:dc:1a:17:53:5f:8c:6c:c6:89:79:
12:af:d2:39:3a:f7:d8:18:38:ee:75:df:53:a1:aa:
e5:2e:b3:6f:0c:81:f1:82:3c:e3:99:79:e4:9e:5c:
6c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:45:BD:22:CB:44:0D:14:01:E3:67:97:90:11:92:DB:47:B5:78:0A
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/0UW9IstEDRQB42eXkBGS20e1eAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.176.0/24
IPv6:
2a0a:4540::/48
2a0a:4540:3000::/48
Signature Algorithm: sha256WithRSAEncryption
2d:84:29:7c:ee:2b:ed:64:59:4b:cf:c3:de:b5:17:5b:82:3e:
b2:a8:82:7a:c6:88:ee:a0:3c:f2:7a:0f:5b:20:f7:1c:a3:74:
1d:99:ae:31:df:23:aa:d9:7d:0d:cc:26:fe:d7:93:5d:a1:6b:
82:8f:08:18:8b:23:80:f1:e0:65:a7:3a:55:24:38:ae:3e:12:
b2:20:2b:71:27:6f:ae:6d:4d:19:86:d8:07:e4:d4:ca:b9:55:
cb:8e:0f:80:18:e3:61:dc:16:3d:d6:54:da:0b:54:7b:0c:da:
4a:d7:8b:68:1b:54:ab:4c:cb:6c:38:a8:a0:c7:61:4d:e1:b9:
08:50:e7:41:2a:e4:b9:09:3b:73:c7:03:35:87:a3:ed:17:13:
fd:7b:bb:18:81:f1:95:22:de:5e:3e:e1:6e:64:49:bf:3b:66:
69:0e:23:f7:1e:6a:b8:14:53:dc:04:5a:72:1c:67:c3:94:38:
44:cc:59:b3:00:79:67:fe:25:3d:85:6c:df:c0:e7:71:d0:01:
b7:8b:af:35:4e:66:f5:45:6e:4c:bd:bf:ee:aa:e8:f1:45:28:
1e:18:41:da:40:18:e7:05:3d:73:c1:a6:e5:7a:04:49:f9:52:
f1:a3:90:16:ee:a6:cd:8b:a3:df:c1:5c:ba:84:5e:e1:e6:e9:
70:06:c0:47
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIEBuUEjjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YmFjNTBmMTlkOTkzMGFlZWMwOWNkMjdmNTA4ZmM1MDJlYTE0ZDFmMB4XDTIyMDUy
NTA3MzgxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDE0NWJkMjJjYjQ0
MGQxNDAxZTM2Nzk3OTAxMTkyZGI0N2I1NzgwYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJwwnTm6o0w/cVEmDi0OtOQB7UfFe7agwCKAJTu8SJABzv5b
Sc2sjxNtH6AUjU1DtZ9cu0XSeQl/S9geVjwvlrD0K09EqqmeLENN7mELGdXLBUzs
diiJHgf5t370INdT1asB2oW6xQ6ppGGBx6xfwK9aziXLNulR7ZI0Xz4jCC0AGUnf
dbRBy81PmnnhRaNbxKL39Wust3Ah7rtiN0LZ6QUdGmy+6N/c0bht2bfP8Tn3Rey/
dy6u6bVq5+0eCw1Rz6PLVZICmoWXecJB0W7vnJOqrRdIRrvcGhdTX4xsxol5Eq/S
OTr32Bg47nXfU6Gq5S6zbwyB8YI845l55J5cbMUCAwEAAaOCAiUwggIhMB0GA1Ud
DgQWBBTRRb0iy0QNFAHjZ5eQEZLbR7V4CjAfBgNVHSMEGDAWgBT7rFDxnZkwruwJ
zSf1CPxQLqFNHzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtNnhROFoyWk1LN3NDYzBuOVFqOFVDNmhUUjguY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzRlLzhmYzA5ZC03ZDI1LTQyNWMtOGI5MS1kNjJlNDU0YmYzN2Yv
MS8wVVc5SXN0RURSUUI0MmVYa0JHUzIwZTFlQW8ucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRl
LzhmYzA5ZC03ZDI1LTQyNWMtOGI5MS1kNjJlNDU0YmYzN2YvMS8xLTZ4UThaMlpN
SzdzQ2MwbjlRajhVQzZoVFI4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAwjKwMBgEAgACMBIDBwAqCkVA
AAADBwAqCkVAMAAwDQYJKoZIhvcNAQELBQADggEBAC2EKXzuK+1kWUvPw961F1uC
PrKognrGiO6gPPJ6D1sg9xyjdB2ZrjHfI6rZfQ3MJv7Xk12ha4KPCBiLI4Dx4GWn
OlUkOK4+ErIgK3Enb65tTRmG2Afk1Mq5VcuOD4AY42HcFj3WVNoLVHsM2krXi2gb
VKtMy2w4qKDHYU3huQhQ50Eq5LkJO3PHAzWHo+0XE/17uxiB8ZUi3l4+4W5kSb87
ZmkOI/ceargUU9wEWnIcZ8OUOETMWbMAeWf+JT2FbN/A53HQAbeLrzVOZvVFbky9
v+6q6PFFKB4YQdpAGOcFPXPBpuV6BEn5UvGjkBbups2Lo9/BXLqEXuHm6XAGwEc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org