Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d81f14-1ff4-42b1-9b9f-34cd0575e1cb/1/lepQ4PaBrEJt9icFbet1JcuFhPQ.roa
File: lepQ4PaBrEJt9icFbet1JcuFhPQ.roa (raw, json)
Hash identifier: ZgdJiYBmsVqKxLS/VNF0XIxDdiXQ4iGDTA4p2z8o5vk=
Subject key identifier: 95:EA:50:E0:F6:81:AC:42:6D:F6:27:05:6D:EB:75:25:CB:85:84:F4
Certificate issuer: /CN=cc55f76cfe9dafb2d94190142bc8aab0d32806ee
Certificate serial: 01820C634A665CFDCFFC457F756A1DAFC969
Authority key identifier: CC:55:F7:6C:FE:9D:AF:B2:D9:41:90:14:2B:C8:AA:B0:D3:28:06:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zFX3bP6dr7LZQZAUK8iqsNMoBu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d81f14-1ff4-42b1-9b9f-34cd0575e1cb/1/lepQ4PaBrEJt9icFbet1JcuFhPQ.roa
Signing time: Sun 17 Jul 2022 13:40:09 +0000
ROA not before: Sun 17 Jul 2022 13:40:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44576
IP address blocks: 194.8.77.0/24 maxlen: 24
194.8.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0c:63:4a:66:5c:fd:cf:fc:45:7f:75:6a:1d:af:c9:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc55f76cfe9dafb2d94190142bc8aab0d32806ee
Validity
Not Before: Jul 17 13:40:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95ea50e0f681ac426df627056deb7525cb8584f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:45:e0:b7:fe:21:c8:90:a4:5a:20:05:aa:d4:
91:69:32:60:25:1d:4a:ab:3b:54:76:00:db:e9:e7:
23:c8:37:ec:24:a8:38:4c:b2:3a:ba:6c:4f:16:30:
4f:d0:ee:57:73:b4:a5:4f:3c:00:a3:98:75:31:25:
e8:d2:0a:3d:63:38:1e:2b:18:fa:cd:3e:58:8e:e8:
f7:3e:d1:26:36:38:47:d0:29:4a:16:9c:b6:28:0d:
75:72:d3:3d:91:8c:6c:95:81:b6:e6:94:cf:93:67:
06:2f:7e:0b:47:ba:17:a2:a3:3f:14:9d:90:4e:5a:
8e:9f:93:66:7e:a3:9f:6a:68:70:be:e2:7a:18:18:
58:a2:af:69:16:ca:d1:8f:7a:4e:94:2a:03:f1:af:
4d:c4:2b:c1:de:1d:b3:0d:f1:61:2b:e2:96:7c:2f:
b4:a7:22:60:e4:72:07:26:44:4c:1e:82:16:70:c1:
b9:f7:1c:48:69:66:c5:56:ff:f2:a0:49:09:2c:8e:
9e:b7:f2:5d:09:b7:40:9b:6c:8a:88:ad:52:2d:4e:
6a:b8:03:e5:40:92:8a:77:fb:34:f2:70:21:50:7c:
51:d5:f0:6f:65:55:99:b9:58:43:61:08:ce:e9:c1:
7a:31:4f:15:2f:cc:aa:86:73:5b:15:d3:f6:f7:aa:
6f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EA:50:E0:F6:81:AC:42:6D:F6:27:05:6D:EB:75:25:CB:85:84:F4
X509v3 Authority Key Identifier:
keyid:CC:55:F7:6C:FE:9D:AF:B2:D9:41:90:14:2B:C8:AA:B0:D3:28:06:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zFX3bP6dr7LZQZAUK8iqsNMoBu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d81f14-1ff4-42b1-9b9f-34cd0575e1cb/1/lepQ4PaBrEJt9icFbet1JcuFhPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d81f14-1ff4-42b1-9b9f-34cd0575e1cb/1/zFX3bP6dr7LZQZAUK8iqsNMoBu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.76.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:b6:cf:3b:60:b1:63:0a:26:e0:96:fb:ea:f9:a4:58:7a:fb:
78:df:a2:12:ff:76:e2:10:52:2d:85:a4:60:af:9b:ca:0a:e9:
12:3f:58:be:57:ea:ce:ab:c1:22:8f:5d:2a:71:d3:f4:40:a7:
32:b1:78:fc:62:6f:c7:9b:26:21:d8:8c:51:d8:f2:1a:d0:f2:
d3:fd:70:63:d0:03:26:39:8d:e6:47:50:4f:22:a5:94:3b:08:
79:4a:e9:0a:14:5d:38:fe:95:4f:e0:83:5a:79:91:8b:31:92:
e9:fe:b0:33:7d:8f:1d:8b:a1:35:22:b8:ed:b3:de:9f:cb:d9:
d8:9a:32:ad:3b:14:1c:5a:4d:f3:4c:ca:36:be:d5:c4:ea:19:
9b:92:26:c8:21:63:48:03:ee:d4:54:f5:cc:60:9e:c6:c4:07:
ea:dc:70:5e:36:70:95:14:66:8b:cd:a2:73:e8:6d:6c:98:1c:
50:1b:ea:7d:9e:b4:8b:e6:05:2b:d0:78:86:5b:82:a8:e0:3a:
d7:d1:3a:b5:18:05:3b:22:ec:21:10:cf:8a:c9:cc:92:70:9f:
f5:6e:ae:ee:93:2f:25:9e:f3:f2:c5:d2:aa:9e:b4:b4:13:91:
1d:a4:32:99:77:7b:15:3f:5b:59:b3:82:df:66:ed:28:6e:a9:
d3:f6:01:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIMY0pmXP3P/EV/dWodr8lpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjNTVmNzZjZmU5ZGFmYjJkOTQxOTAxNDJiYzhhYWIwZDMy
ODA2ZWUwHhcNMjIwNzE3MTM0MDA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWVhNTBlMGY2ODFhYzQyNmRmNjI3MDU2ZGViNzUyNWNiODU4NGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEXgt/4hyJCkWiAFqtSRaTJgJR1K
qztUdgDb6ecjyDfsJKg4TLI6umxPFjBP0O5Xc7SlTzwAo5h1MSXo0go9YzgeKxj6
zT5Yjuj3PtEmNjhH0ClKFpy2KA11ctM9kYxslYG25pTPk2cGL34LR7oXoqM/FJ2Q
TlqOn5NmfqOfamhwvuJ6GBhYoq9pFsrRj3pOlCoD8a9NxCvB3h2zDfFhK+KWfC+0
pyJg5HIHJkRMHoIWcMG59xxIaWbFVv/yoEkJLI6et/JdCbdAm2yKiK1SLU5quAPl
QJKKd/s08nAhUHxR1fBvZVWZuVhDYQjO6cF6MU8VL8yqhnNbFdP296pvbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJXqUOD2gaxCbfYnBW3rdSXLhYT0MB8GA1UdIwQY
MBaAFMxV92z+na+y2UGQFCvIqrDTKAbuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekZYM2JQNmRyN0xaUVpBVUs4aXFzTk1vQnU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9kODFmMTQtMWZmNC00MmIxLTliOWYt
MzRjZDA1NzVlMWNiLzEvbGVwUTRQYUJyRUp0OWljRmJldDFKY3VGaFBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9kODFmMTQtMWZmNC00MmIxLTliOWYtMzRjZDA1NzVlMWNi
LzEvekZYM2JQNmRyN0xaUVpBVUs4aXFzTk1vQnU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwghMMA0G
CSqGSIb3DQEBCwUAA4IBAQC7ts87YLFjCibglvvq+aRYevt436IS/3biEFIthaRg
r5vKCukSP1i+V+rOq8Eij10qcdP0QKcysXj8Ym/HmyYh2IxR2PIa0PLT/XBj0AMm
OY3mR1BPIqWUOwh5SukKFF04/pVP4INaeZGLMZLp/rAzfY8di6E1Irjts96fy9nY
mjKtOxQcWk3zTMo2vtXE6hmbkibIIWNIA+7UVPXMYJ7GxAfq3HBeNnCVFGaLzaJz
6G1smBxQG+p9nrSL5gUr0HiGW4Ko4DrX0Tq1GAU7IuwhEM+KycyScJ/1bq7uky8l
nvPyxdKqnrS0E5EdpDKZd3sVP1tZs4LfZu0obqnT9gGv
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:00 2024 by rpki-client on console-ams.rpki-client.org