Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/1Ksh0_PvtzzOsWUBdsaUjUlJ7Q8.roa
File: 1Ksh0_PvtzzOsWUBdsaUjUlJ7Q8.roa (raw, json)
Hash identifier: /URNhfkuvTz6eezh0Cb6tSmyuju9RoFeMgcLFDN0kdI=
Subject key identifier: D4:AB:21:D3:F3:EF:B7:3C:CE:B1:65:01:76:C6:94:8D:49:49:ED:0F
Certificate issuer: /CN=d8173d42a8788c05de36fdfcd329c35b43eece3e
Certificate serial: CD90
Authority key identifier: D8:17:3D:42:A8:78:8C:05:DE:36:FD:FC:D3:29:C3:5B:43:EE:CE:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Bc9Qqh4jAXeNv380ynDW0Puzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/1Ksh0_PvtzzOsWUBdsaUjUlJ7Q8.roa
Signing time: Wed 30 Mar 2022 05:56:51 +0000
ROA not before: Wed 30 Mar 2022 05:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57327
IP address blocks: 192.211.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52624 (0xcd90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8173d42a8788c05de36fdfcd329c35b43eece3e
Validity
Not Before: Mar 30 05:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4ab21d3f3efb73cceb1650176c6948d4949ed0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e1:ba:72:4a:a4:e7:9d:a5:5c:30:d1:dc:d0:
4c:e4:54:9c:33:22:c9:f5:05:07:b8:bf:84:c2:0d:
74:86:c1:b2:0d:91:ea:88:d5:56:7c:d9:d5:f8:bb:
37:66:34:e8:ec:30:b7:f9:09:27:19:e0:98:c0:92:
80:01:e7:0a:27:1c:56:b1:5b:84:c8:15:a2:bc:3f:
74:e2:6e:46:e4:8c:ff:5f:76:3f:a9:7c:48:2a:55:
91:a0:eb:11:5a:2e:00:43:7f:02:ae:7c:83:aa:74:
34:e7:e9:d4:41:fc:81:fb:48:ff:cd:1a:5b:20:8e:
db:93:b2:b3:ae:43:c9:39:35:c3:e4:3a:8c:d2:9b:
1b:68:84:8a:ee:98:75:8c:3f:95:06:a7:b2:00:d6:
2b:a1:a1:50:22:84:59:ee:6b:71:f8:d4:5d:77:e2:
45:62:22:69:29:47:bb:7f:b5:ad:1c:7e:9b:48:6c:
68:6c:fb:c0:b8:00:a0:76:60:f8:d1:52:a8:c2:37:
51:d5:b8:d0:4b:2b:62:2f:63:35:71:b7:c2:13:ae:
e1:03:eb:36:d4:11:21:30:84:c1:81:0c:97:ea:36:
4d:6e:85:4f:9e:cd:aa:fa:89:4b:20:b2:c5:cb:d2:
28:70:0f:55:bb:dd:f2:3e:28:35:99:fb:99:8a:91:
46:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AB:21:D3:F3:EF:B7:3C:CE:B1:65:01:76:C6:94:8D:49:49:ED:0F
X509v3 Authority Key Identifier:
keyid:D8:17:3D:42:A8:78:8C:05:DE:36:FD:FC:D3:29:C3:5B:43:EE:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Bc9Qqh4jAXeNv380ynDW0Puzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/1Ksh0_PvtzzOsWUBdsaUjUlJ7Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/2Bc9Qqh4jAXeNv380ynDW0Puzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.211.0.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:fa:d5:0d:1f:56:c5:a8:dd:a7:25:31:60:62:93:31:74:5b:
4e:97:90:72:e4:3d:24:44:1d:5f:38:80:78:7f:42:46:74:4f:
df:52:6d:a0:f9:f4:10:6d:73:ec:4b:3a:d7:10:b9:f4:bb:a3:
1a:49:7a:1b:90:95:ab:ef:73:48:1a:9d:2f:46:43:66:d2:3e:
68:31:31:e8:e9:e0:c8:0f:84:cd:99:34:c5:94:21:e5:51:ff:
66:5b:a5:eb:13:98:3a:93:2a:58:97:d0:93:e8:d6:83:f3:30:
94:5f:89:75:ef:9b:85:7b:96:94:13:47:49:9a:ca:b5:16:76:
de:eb:f5:0c:b0:a3:00:2c:51:b2:1c:65:8a:84:e5:dd:78:ab:
22:e3:e3:59:6a:6f:52:5a:32:bb:97:a3:f7:b5:e1:19:c5:5b:
35:60:8b:33:d1:46:d6:1d:fb:83:5e:57:b2:c5:02:f2:e4:1c:
db:4e:c6:da:09:5d:0d:2f:39:6d:90:23:59:13:2d:9a:66:15:
7e:8a:92:bb:7b:10:e1:03:d2:55:d8:30:d4:5e:20:16:b6:66:
f9:c5:35:5d:3c:18:e8:a7:b8:b8:5d:9a:8c:03:43:c3:39:e9:
ea:78:8b:5c:43:21:d6:8f:83:20:bb:9a:f6:ea:4b:d0:a8:5b:
1d:00:a5:51
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAM2QMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ4
MTczZDQyYTg3ODhjMDVkZTM2ZmRmY2QzMjljMzViNDNlZWNlM2UwHhcNMjIwMzMw
MDU1NjUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkNGFiMjFkM2YzZWZi
NzNjY2ViMTY1MDE3NmM2OTQ4ZDQ5NDllZDBmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyuG6ckqk552lXDDR3NBM5FScMyLJ9QUHuL+Ewg10hsGyDZHq
iNVWfNnV+Ls3ZjTo7DC3+QknGeCYwJKAAecKJxxWsVuEyBWivD904m5G5Iz/X3Y/
qXxIKlWRoOsRWi4AQ38CrnyDqnQ05+nUQfyB+0j/zRpbII7bk7KzrkPJOTXD5DqM
0psbaISK7ph1jD+VBqeyANYroaFQIoRZ7mtx+NRdd+JFYiJpKUe7f7WtHH6bSGxo
bPvAuACgdmD40VKowjdR1bjQSytiL2M1cbfCE67hA+s21BEhMITBgQyX6jZNboVP
ns2q+olLILLFy9IocA9Vu93yPig1mfuZipFGGQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFNSrIdPz77c8zrFlAXbGlI1JSe0PMB8GA1UdIwQYMBaAFNgXPUKoeIwF3jb9
/NMpw1tD7s4+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MkJjOVFxaDRqQVhlTnYzODB5bkRXMFB1emo0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lNy9mNTA4MzktYjVmYi00OGQ4LWFkN2MtNzI1NDVjOWI0YTllLzEv
MUtzaDBfUHZ0enpPc1dVQmRzYVVqVWxKN1E4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9m
NTA4MzktYjVmYi00OGQ4LWFkN2MtNzI1NDVjOWI0YTllLzEvMkJjOVFxaDRqQVhl
TnYzODB5bkRXMFB1emo0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwNMAMA0GCSqGSIb3DQEBCwUAA4IB
AQAu+tUNH1bFqN2nJTFgYpMxdFtOl5By5D0kRB1fOIB4f0JGdE/fUm2g+fQQbXPs
SzrXELn0u6MaSXobkJWr73NIGp0vRkNm0j5oMTHo6eDID4TNmTTFlCHlUf9mW6Xr
E5g6kypYl9CT6NaD8zCUX4l175uFe5aUE0dJmsq1Fnbe6/UMsKMALFGyHGWKhOXd
eKsi4+NZam9SWjK7l6P3teEZxVs1YIsz0UbWHfuDXleyxQLy5BzbTsbaCV0NLzlt
kCNZEy2aZhV+ipK7exDhA9JV2DDUXiAWtmb5xTVdPBjop7i4XZqMA0PDOenqeItc
QyHWj4Mgu5r26kvQqFsdAKVR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:09 2024 by rpki-client on console-ams.rpki-client.org