Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/81ec54-a8a5-4128-9b7d-5f41d75a7e3a/1/W9fNAm-fxMVLg9oH_-brKayk_VI.roa
File: W9fNAm-fxMVLg9oH_-brKayk_VI.roa (raw, json)
Hash identifier: k+YHFqtSbTWvF18S4I5AWNBYejK+MW3VpeqFNWDp1wE=
Subject key identifier: 5B:D7:CD:02:6F:9F:C4:C5:4B:83:DA:07:FF:E6:EB:29:AC:A4:FD:52
Certificate issuer: /CN=6cebe0eff0d425fff2fc43a442905c4dd52bd6a8
Certificate serial: 06F4BA0D
Authority key identifier: 6C:EB:E0:EF:F0:D4:25:FF:F2:FC:43:A4:42:90:5C:4D:D5:2B:D6:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOvg7_DUJf_y_EOkQpBcTdUr1qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/81ec54-a8a5-4128-9b7d-5f41d75a7e3a/1/W9fNAm-fxMVLg9oH_-brKayk_VI.roa
Signing time: Sat 01 Jan 2022 02:52:18 +0000
ROA not before: Sat 01 Jan 2022 02:52:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136620
IP address blocks: 195.191.54.0/23 maxlen: 23
195.191.56.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116701709 (0x6f4ba0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cebe0eff0d425fff2fc43a442905c4dd52bd6a8
Validity
Not Before: Jan 1 02:52:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bd7cd026f9fc4c54b83da07ffe6eb29aca4fd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:cf:f2:8a:48:d4:5e:66:81:d3:c8:c5:18:
99:bf:fe:4d:23:2e:41:1b:52:d0:54:37:61:d3:da:
65:0e:38:0e:0f:ad:90:43:03:39:de:aa:83:e9:74:
ee:08:f9:98:1c:44:ae:5b:3b:da:1c:12:98:9e:37:
91:c0:1e:be:25:c9:34:f0:5f:e3:e0:eb:04:2c:bf:
c1:5b:48:1c:97:c4:67:7e:01:22:95:0e:3d:90:4a:
fd:88:8a:f8:37:aa:52:a9:31:8e:35:06:ba:83:31:
64:67:12:6f:0d:37:00:b5:1b:db:11:8a:07:36:71:
21:ec:bd:20:4d:a0:69:b5:5e:96:8f:10:a8:0c:7d:
b7:a7:7b:ff:72:bb:82:00:aa:a5:68:95:69:1e:9b:
8c:9f:5e:a6:4e:31:71:7c:1a:3f:fb:e4:de:85:7d:
f8:bd:5b:2e:17:6a:f9:55:1d:8f:6d:27:ac:35:cf:
3b:ae:94:c0:5b:cf:b6:98:02:f6:42:43:05:a0:20:
f7:d1:f7:02:7a:7a:ba:13:92:7f:a5:68:8e:e9:48:
dd:d5:5b:45:6b:f8:0f:48:ec:bb:d6:ba:b6:b7:16:
ae:b9:d1:4d:ca:f0:c9:b7:b5:3d:d8:59:70:f4:e1:
44:c2:85:80:2f:09:63:1c:5a:b9:05:09:be:f5:3e:
c2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D7:CD:02:6F:9F:C4:C5:4B:83:DA:07:FF:E6:EB:29:AC:A4:FD:52
X509v3 Authority Key Identifier:
keyid:6C:EB:E0:EF:F0:D4:25:FF:F2:FC:43:A4:42:90:5C:4D:D5:2B:D6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOvg7_DUJf_y_EOkQpBcTdUr1qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/81ec54-a8a5-4128-9b7d-5f41d75a7e3a/1/W9fNAm-fxMVLg9oH_-brKayk_VI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/81ec54-a8a5-4128-9b7d-5f41d75a7e3a/1/bOvg7_DUJf_y_EOkQpBcTdUr1qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.54.0-195.191.57.255
Signature Algorithm: sha256WithRSAEncryption
c2:e7:e1:6c:07:90:0c:db:c7:9a:9b:c1:2e:f1:ca:86:63:ba:
63:a0:f9:4f:2d:54:9d:d8:02:eb:e3:91:1f:bb:c5:ce:fa:f0:
be:8e:09:49:db:b2:23:20:1e:a0:96:02:4a:58:11:9b:bd:56:
a7:46:f4:83:6b:22:fc:be:d3:7a:c4:a7:0c:bb:c0:56:65:d2:
9b:b7:de:e0:1b:81:41:78:f8:af:c9:fe:01:15:09:bf:93:0b:
22:0c:7d:d5:3d:20:c5:97:d9:79:31:b0:29:3c:59:0d:15:51:
ae:76:5d:d5:4e:9b:dc:d5:f2:f3:2c:5b:62:11:45:62:b3:79:
63:23:9e:da:74:82:da:71:37:71:bb:e8:7e:1e:ea:0e:f9:ee:
85:ac:66:33:78:8f:bb:ce:ba:d4:2c:45:94:00:0d:3d:ea:3d:
af:b7:e6:2a:14:a2:ed:c1:43:15:4d:2d:8b:28:32:a1:8b:39:
27:1b:f8:08:1c:6d:48:b9:97:98:d6:c3:86:bc:64:4b:9c:59:
e8:93:de:48:1a:33:af:08:e3:59:b1:db:41:20:16:18:4a:5c:
05:40:cf:9c:fa:17:be:f7:82:7c:0f:d5:c8:6b:be:62:43:8f:
2a:b9:cc:f8:02:b1:7b:45:86:2e:80:9a:27:f4:7f:35:3f:ea:
4d:bd:38:c4
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBvS6DTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Y2ViZTBlZmYwZDQyNWZmZjJmYzQzYTQ0MjkwNWM0ZGQ1MmJkNmE4MB4XDTIyMDEw
MTAyNTIxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWJkN2NkMDI2Zjlm
YzRjNTRiODNkYTA3ZmZlNmViMjlhY2E0ZmQ1MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALwbz/KKSNReZoHTyMUYmb/+TSMuQRtS0FQ3YdPaZQ44Dg+t
kEMDOd6qg+l07gj5mBxErls72hwSmJ43kcAeviXJNPBf4+DrBCy/wVtIHJfEZ34B
IpUOPZBK/YiK+DeqUqkxjjUGuoMxZGcSbw03ALUb2xGKBzZxIey9IE2gabVelo8Q
qAx9t6d7/3K7ggCqpWiVaR6bjJ9epk4xcXwaP/vk3oV9+L1bLhdq+VUdj20nrDXP
O66UwFvPtpgC9kJDBaAg99H3Anp6uhOSf6VojulI3dVbRWv4D0jsu9a6trcWrrnR
Tcrwybe1PdhZcPThRMKFgC8JYxxauQUJvvU+wt8CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBRb180Cb5/ExUuD2gf/5usprKT9UjAfBgNVHSMEGDAWgBRs6+Dv8NQl//L8
Q6RCkFxN1SvWqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JPdmc3X0RVSmZfeV9FT2tRcEJjVGRVcjFxZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvODFlYzU0LWE4YTUtNDEyOC05YjdkLTVmNDFkNzVhN2UzYS8x
L1c5Zk5BbS1meE1WTGc5b0hfLWJyS2F5a19WSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
ODFlYzU0LWE4YTUtNDEyOC05YjdkLTVmNDFkNzVhN2UzYS8xL2JPdmc3X0RVSmZf
eV9FT2tRcEJjVGRVcjFxZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQBw782AwQBw784MA0GCSqGSIb3
DQEBCwUAA4IBAQDC5+FsB5AM28eam8Eu8cqGY7pjoPlPLVSd2ALr45Efu8XO+vC+
jglJ27IjIB6glgJKWBGbvVanRvSDayL8vtN6xKcMu8BWZdKbt97gG4FBePivyf4B
FQm/kwsiDH3VPSDFl9l5MbApPFkNFVGudl3VTpvc1fLzLFtiEUVis3ljI57adILa
cTdxu+h+HuoO+e6FrGYzeI+7zrrULEWUAA096j2vt+YqFKLtwUMVTS2LKDKhizkn
G/gIHG1IuZeY1sOGvGRLnFnok95IGjOvCONZsdtBIBYYSlwFQM+c+he+94J8D9XI
a75iQ48qucz4ArF7RYYugJon9H81P+pNvTjE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org