Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/cuqRR_gEeFlv35aaz2TSoY6u9PM.roa
File: cuqRR_gEeFlv35aaz2TSoY6u9PM.roa (raw, json)
Hash identifier: 0FH3omeeV8vraa22uGFHtbJOb0U64k202VbAChywV9I=
Subject key identifier: 72:EA:91:47:F8:04:78:59:6F:DF:96:9A:CF:64:D2:A1:8E:AE:F4:F3
Certificate issuer: /CN=efe691427c6e41806f6ceb1e218a7dc6320fdeed
Certificate serial: 0B1A4BF9
Authority key identifier: EF:E6:91:42:7C:6E:41:80:6F:6C:EB:1E:21:8A:7D:C6:32:0F:DE:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7-aRQnxuQYBvbOseIYp9xjIP3u0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/cuqRR_gEeFlv35aaz2TSoY6u9PM.roa
Signing time: Sat 01 Jan 2022 01:03:26 +0000
ROA not before: Sat 01 Jan 2022 01:03:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39142
IP address blocks: 195.191.240.0/23 maxlen: 23
2a0a:dc07::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186272761 (0xb1a4bf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efe691427c6e41806f6ceb1e218a7dc6320fdeed
Validity
Not Before: Jan 1 01:03:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72ea9147f80478596fdf969acf64d2a18eaef4f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cd:5f:9a:10:59:1e:93:39:73:e9:f1:35:3c:
2b:7c:7c:90:09:37:c2:30:a4:b6:9b:4d:a4:20:cc:
72:6d:53:5e:99:ad:34:d4:e2:55:5b:1a:60:ad:f7:
4e:73:26:56:e5:ea:5f:79:eb:01:af:9a:ff:d5:33:
14:3f:1a:66:3a:f3:87:f0:a4:13:ee:18:3c:83:59:
22:07:a0:74:fa:8a:97:f0:fa:c7:0a:53:8d:36:b6:
0f:b4:4b:4d:96:c7:22:7c:c4:6a:93:92:c1:c2:45:
62:64:f0:8e:40:6f:d0:72:81:8b:4f:90:03:6b:b8:
ad:5e:82:63:94:75:f8:fa:56:b0:a7:e0:c5:6d:0b:
7f:6a:db:6d:06:64:49:3a:4f:fc:7c:c3:32:e2:26:
bc:a2:6e:a3:89:61:8e:ba:35:f7:38:5e:f1:2b:c5:
07:4b:84:c2:1c:a7:0d:20:47:37:e1:49:23:b7:c6:
e1:a9:0e:87:38:5d:28:5f:30:e2:3f:a4:95:a4:58:
a2:8a:88:35:c7:cb:ba:89:e8:c7:b1:54:0c:13:d4:
e2:c6:e6:73:3f:8e:e6:9e:a4:07:27:da:f1:7e:ec:
d6:3f:5b:53:8f:c9:54:a1:d1:24:01:14:20:3a:e9:
f0:9f:0f:5d:4d:a1:30:4f:ef:b2:ca:e8:13:d4:9c:
9a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EA:91:47:F8:04:78:59:6F:DF:96:9A:CF:64:D2:A1:8E:AE:F4:F3
X509v3 Authority Key Identifier:
keyid:EF:E6:91:42:7C:6E:41:80:6F:6C:EB:1E:21:8A:7D:C6:32:0F:DE:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7-aRQnxuQYBvbOseIYp9xjIP3u0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/cuqRR_gEeFlv35aaz2TSoY6u9PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/7-aRQnxuQYBvbOseIYp9xjIP3u0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.240.0/23
IPv6:
2a0a:dc07::/32
Signature Algorithm: sha256WithRSAEncryption
73:cd:11:20:83:31:27:14:93:3b:ca:c7:ba:1f:af:30:83:4e:
ed:82:f1:70:17:ef:37:50:a8:55:1a:cd:52:99:88:a9:1a:99:
bc:33:d1:e1:c4:8e:6e:29:55:28:63:4d:7f:f1:d9:29:c9:66:
03:88:eb:e4:f0:48:43:99:9a:ed:0d:bf:85:8d:a5:eb:ee:b5:
8f:bc:b6:3f:fc:f0:f2:1d:68:8b:bf:0e:82:13:c8:b1:85:12:
77:58:c3:95:d9:b3:c0:56:77:73:de:3d:5b:8b:9f:05:d1:46:
3a:df:4d:20:a7:88:72:f6:c3:76:16:53:9c:df:9d:04:7d:56:
dd:5d:27:b7:cd:25:f5:2f:66:ec:2a:a3:9d:4d:3c:d8:13:42:
2c:07:99:49:f3:7f:7e:95:ca:2b:f8:a7:9d:1d:d0:e2:e7:b9:
75:70:80:f1:06:4c:63:c6:73:3d:97:cf:61:2c:47:4d:84:1a:
58:77:02:c1:1b:0f:58:16:91:81:ed:0d:9a:1f:d2:61:0f:f7:
f2:17:6b:db:ac:24:51:ac:38:a4:71:7b:6b:46:5c:3f:2a:b7:
2c:80:34:2a:18:05:44:02:34:59:28:ba:33:78:d9:16:ad:75:
35:02:14:21:fc:69:26:92:fa:19:7c:36:b4:e3:4b:61:07:29:
ae:58:22:87
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECxpL+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZmU2OTE0MjdjNmU0MTgwNmY2Y2ViMWUyMThhN2RjNjMyMGZkZWVkMB4XDTIyMDEw
MTAxMDMyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJlYTkxNDdmODA0
Nzg1OTZmZGY5NjlhY2Y2NGQyYTE4ZWFlZjRmMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIrNX5oQWR6TOXPp8TU8K3x8kAk3wjCktptNpCDMcm1TXpmt
NNTiVVsaYK33TnMmVuXqX3nrAa+a/9UzFD8aZjrzh/CkE+4YPINZIgegdPqKl/D6
xwpTjTa2D7RLTZbHInzEapOSwcJFYmTwjkBv0HKBi0+QA2u4rV6CY5R1+PpWsKfg
xW0Lf2rbbQZkSTpP/HzDMuImvKJuo4lhjro19zhe8SvFB0uEwhynDSBHN+FJI7fG
4akOhzhdKF8w4j+klaRYooqINcfLuonox7FUDBPU4sbmcz+O5p6kByfa8X7s1j9b
U4/JVKHRJAEUIDrp8J8PXU2hME/vssroE9ScmhsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRy6pFH+AR4WW/flprPZNKhjq708zAfBgNVHSMEGDAWgBTv5pFCfG5BgG9s
6x4hin3GMg/e7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzctYVJRbnh1UVlCdmJPc2VJWXA5eGpJUDN1MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWEvMDU5OTc1LWVmOTAtNDIxYi04YWYzLTM4MTRjNTdmZTliYi8x
L2N1cVJSX2dFZUZsdjM1YWF6MlRTb1k2dTlQTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWEv
MDU5OTc1LWVmOTAtNDIxYi04YWYzLTM4MTRjNTdmZTliYi8xLzctYVJRbnh1UVlC
dmJPc2VJWXA5eGpJUDN1MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAcO/8DANBAIAAjAHAwUAKgrcBzAN
BgkqhkiG9w0BAQsFAAOCAQEAc80RIIMxJxSTO8rHuh+vMINO7YLxcBfvN1CoVRrN
UpmIqRqZvDPR4cSObilVKGNNf/HZKclmA4jr5PBIQ5ma7Q2/hY2l6+61j7y2P/zw
8h1oi78OghPIsYUSd1jDldmzwFZ3c949W4ufBdFGOt9NIKeIcvbDdhZTnN+dBH1W
3V0nt80l9S9m7CqjnU082BNCLAeZSfN/fpXKK/innR3Q4ue5dXCA8QZMY8ZzPZfP
YSxHTYQaWHcCwRsPWBaRge0Nmh/SYQ/38hdr26wkUaw4pHF7a0ZcPyq3LIA0KhgF
RAI0WSi6M3jZFq11NQIUIfxpJpL6GXw2tONLYQcprlgihw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:09 2024 by rpki-client on console-fra.rpki-client.org