Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/cooMvqvys2Q6WR1J8vOhQy6RHv8.roa
File: cooMvqvys2Q6WR1J8vOhQy6RHv8.roa (raw, json)
Hash identifier: U71FSSEUROs7wr1LEVYmxiLnxrhq0I7rVGrQBZQD3yM=
Subject key identifier: 72:8A:0C:BE:AB:F2:B3:64:3A:59:1D:49:F2:F3:A1:43:2E:91:1E:FF
Certificate issuer: /CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Certificate serial: 0182A6C27386AEEA1BE71860BDDCC640CAEB
Authority key identifier: 5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/cooMvqvys2Q6WR1J8vOhQy6RHv8.roa
Signing time: Tue 16 Aug 2022 13:05:37 +0000
ROA not before: Tue 16 Aug 2022 13:05:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199938
IP address blocks: 194.76.122.0/23 maxlen: 24
2001:678:e28::/48 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:c2:73:86:ae:ea:1b:e7:18:60:bd:dc:c6:40:ca:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Validity
Not Before: Aug 16 13:05:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=728a0cbeabf2b3643a591d49f2f3a1432e911eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7a:8e:87:b7:2d:d6:36:63:8d:2f:f9:0e:62:
cb:67:fa:0b:df:99:74:e1:13:24:f5:b3:6a:69:81:
a4:2d:cf:4c:1c:98:a6:0e:7d:a0:32:b6:d8:a5:38:
b3:0c:33:b3:79:31:b1:1d:97:89:75:fe:7d:f9:8f:
1e:e1:25:d8:a3:a5:d3:10:16:7d:4a:ab:78:19:ee:
04:31:81:44:ac:01:72:83:0a:a7:87:5f:4d:6f:ee:
6d:68:82:22:2b:df:e3:0a:b6:ea:da:d7:29:9f:32:
88:d1:c1:34:80:fb:75:bd:0c:aa:e6:22:d9:d7:5f:
f3:ee:b5:1b:00:5c:96:60:6a:a1:07:3c:2b:f1:65:
02:54:fe:f3:7e:d6:49:f0:4a:98:5d:e5:2a:50:64:
26:66:15:f3:70:d4:e9:31:da:69:90:6f:5d:88:d3:
18:c7:76:c8:c4:b6:9d:df:d3:b7:b5:19:87:06:c8:
52:ea:35:6b:f1:92:2a:aa:98:22:d0:ee:74:37:fb:
5e:4a:3c:c4:44:48:db:a0:de:73:10:08:39:27:b0:
a6:99:51:dd:9f:d1:b5:34:96:0d:35:7b:9d:4d:d3:
2e:5a:93:d6:f8:90:b8:31:30:7d:6e:be:74:d3:b3:
ed:6d:eb:25:5e:96:3c:50:7b:b8:ef:59:47:28:2a:
1e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8A:0C:BE:AB:F2:B3:64:3A:59:1D:49:F2:F3:A1:43:2E:91:1E:FF
X509v3 Authority Key Identifier:
keyid:5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/cooMvqvys2Q6WR1J8vOhQy6RHv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/XPVjIet-o-5Fze0ChmhCDjf6L6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.122.0/23
IPv6:
2001:678:e28::/48
Signature Algorithm: sha256WithRSAEncryption
6a:03:69:8b:9d:ce:8c:d6:20:b3:14:5d:4b:8a:85:db:e4:6a:
cc:b0:38:36:2b:53:ff:f6:cb:e0:9a:22:9c:a9:10:c5:df:2b:
a4:6d:e2:c7:b6:bc:19:2d:f7:05:db:63:26:82:b3:3b:57:28:
f6:d7:94:88:b7:8a:18:a0:1a:48:6d:99:d6:df:20:cb:31:ae:
f1:7e:a2:bc:7d:68:91:1d:63:8c:7c:64:b2:e6:98:bd:77:a3:
a6:f3:81:b1:65:f1:b1:08:90:c7:85:ba:5b:89:56:bd:66:a4:
c9:fc:3b:e1:d2:c7:3c:5a:79:0c:4e:63:f3:6b:a4:8c:b2:e4:
af:38:5d:42:55:9f:64:ea:81:ee:aa:b9:cc:fe:b6:77:cd:6c:
5b:47:ea:bb:c7:e0:4f:28:84:20:6c:44:40:7e:b4:4a:6d:1e:
6a:b1:83:27:a1:76:73:0d:2f:e3:fb:09:9f:56:d0:c8:52:9d:
c3:9d:b3:89:54:89:1d:c2:41:f7:78:4a:9a:5a:8f:b9:fe:c8:
94:ab:04:66:1a:c7:ca:4b:85:46:bf:0e:0d:68:70:84:0e:83:
94:0e:25:36:f0:d9:2c:eb:5d:d9:37:b3:64:15:85:52:2b:99:
87:15:c7:a8:72:50:24:91:09:c2:94:09:07:f6:e8:cf:a3:30:
79:db:9f:d1
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYKmwnOGruob5xhgvdzGQMrrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjU2MzIxZWI3ZWEzZWU0NWNkZWQwMjg2Njg0MjBlMzdm
YTJmYWMwHhcNMjIwODE2MTMwNTM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjhhMGNiZWFiZjJiMzY0M2E1OTFkNDlmMmYzYTE0MzJlOTExZWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3qOh7ct1jZjjS/5DmLLZ/oL35l0
4RMk9bNqaYGkLc9MHJimDn2gMrbYpTizDDOzeTGxHZeJdf59+Y8e4SXYo6XTEBZ9
Sqt4Ge4EMYFErAFygwqnh19Nb+5taIIiK9/jCrbq2tcpnzKI0cE0gPt1vQyq5iLZ
11/z7rUbAFyWYGqhBzwr8WUCVP7zftZJ8EqYXeUqUGQmZhXzcNTpMdppkG9diNMY
x3bIxLad39O3tRmHBshS6jVr8ZIqqpgi0O50N/teSjzEREjboN5zEAg5J7CmmVHd
n9G1NJYNNXudTdMuWpPW+JC4MTB9br5007PtbeslXpY8UHu471lHKCoe/QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHKKDL6r8rNkOlkdSfLzoUMukR7/MB8GA1UdIwQY
MBaAFFz1YyHrfqPuRc3tAoZoQg43+i+sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBWaklldC1vLTVGemUwQ2htaENEamY2TDZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kZmE0YTgtMzhiMC00NjFiLWEwODIt
ODQzZTI2MmRkOGRjLzEvY29vTXZxdnlzMlE2V1IxSjh2T2hReTZSSHY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9kZmE0YTgtMzhiMC00NjFiLWEwODItODQzZTI2MmRkOGRj
LzEvWFBWaklldC1vLTVGemUwQ2htaENEamY2TDZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBwkx6MA8E
AgACMAkDBwAgAQZ4DigwDQYJKoZIhvcNAQELBQADggEBAGoDaYudzozWILMUXUuK
hdvkasywODYrU//2y+CaIpypEMXfK6Rt4se2vBkt9wXbYyaCsztXKPbXlIi3ihig
GkhtmdbfIMsxrvF+orx9aJEdY4x8ZLLmmL13o6bzgbFl8bEIkMeFuluJVr1mpMn8
O+HSxzxaeQxOY/NrpIyy5K84XUJVn2Tqge6qucz+tnfNbFtH6rvH4E8ohCBsREB+
tEptHmqxgyehdnMNL+P7CZ9W0MhSncOds4lUiR3CQfd4Sppaj7n+yJSrBGYax8pL
hUa/Dg1ocIQOg5QOJTbw2SzrXdk3s2QVhVIrmYcVx6hyUCSRCcKUCQf26M+jMHnb
n9E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:59 2024 by rpki-client on console-ams.rpki-client.org