Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/K-wOHEwjfwLqM7aIZUDmttQudGw.roa
File: K-wOHEwjfwLqM7aIZUDmttQudGw.roa (raw, json)
Hash identifier: 94KGTbByKtcma8oZXzjmCrnAbTiYXfjofHDyPE2FglY=
Subject key identifier: 2B:EC:0E:1C:4C:23:7F:02:EA:33:B6:88:65:40:E6:B6:D4:2E:74:6C
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42A1191B
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/K-wOHEwjfwLqM7aIZUDmttQudGw.roa
Signing time: Sat 01 Jan 2022 06:05:01 +0000
ROA not before: Sat 01 Jan 2022 06:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34291
IP address blocks: 195.54.10.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117853979 (0x42a1191b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bec0e1c4c237f02ea33b6886540e6b6d42e746c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:12:e6:ff:b4:16:a3:6e:39:fe:f7:0a:6f:d0:
9a:66:41:b4:32:86:46:0c:89:90:52:8e:31:6e:c2:
cb:a7:13:b5:3a:40:1f:57:4b:3b:fc:28:5e:b4:98:
90:6f:bb:38:df:67:1b:e0:42:2e:89:d5:86:c4:9a:
40:86:63:c3:29:82:06:61:6c:52:a8:33:3e:29:b7:
aa:49:81:5b:e8:24:d2:33:9b:a4:ff:10:42:fd:16:
9c:78:4b:90:dc:38:8e:01:65:7b:c6:7d:b9:db:53:
52:49:31:02:ed:a9:41:87:03:b5:f9:c1:0c:4a:10:
13:34:e2:66:69:ac:07:27:1c:9d:7e:71:85:dd:69:
4a:8b:61:37:cf:d4:68:c6:06:85:e0:ae:7a:fe:99:
a9:b7:9e:b2:d4:55:b2:8a:7b:60:50:7a:f2:19:7d:
22:60:95:3d:21:aa:eb:2b:97:6c:57:5c:ec:a6:6d:
aa:32:7b:17:4f:b3:fd:b7:b6:b6:b7:bb:a4:41:63:
f1:47:af:8c:1f:6e:65:42:e2:da:57:60:00:16:28:
c6:fe:f4:22:53:c5:bc:17:90:8d:b7:83:20:6f:aa:
44:e1:16:76:2e:5d:ce:d1:c7:91:52:cd:3b:ad:c4:
9c:75:d5:bc:a4:79:a4:5f:49:dd:39:b2:bf:b3:57:
64:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:EC:0E:1C:4C:23:7F:02:EA:33:B6:88:65:40:E6:B6:D4:2E:74:6C
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/K-wOHEwjfwLqM7aIZUDmttQudGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.54.10.0/23
Signature Algorithm: sha256WithRSAEncryption
42:60:db:52:f6:04:1b:5d:1c:61:9e:8a:fd:88:5f:09:af:c0:
21:54:bf:08:29:99:42:e6:03:4a:3b:a7:ff:e7:a9:5c:39:4e:
52:c3:66:59:11:cc:5b:30:d8:ea:d5:09:71:b5:02:8d:7a:fa:
e0:77:d9:f1:f4:36:f6:cd:22:50:a7:e4:46:ad:93:0e:85:81:
d5:d1:43:e2:cf:16:22:cf:c8:c0:2e:ff:75:be:95:18:c3:7d:
c5:58:84:39:c5:b0:ff:8a:32:8c:1a:a9:78:c3:df:9e:37:da:
ad:85:56:86:2e:d9:45:14:f1:4a:71:53:71:d8:9c:ec:02:be:
b3:62:ea:dc:c0:51:b2:59:59:2e:ab:cc:57:03:2a:32:93:64:
59:74:86:88:96:b4:e7:eb:51:21:54:11:c0:38:a8:74:44:bc:
f2:3f:14:2e:66:f6:29:8e:d3:ed:3e:e0:e8:c3:41:8f:b4:f5:
c2:8b:c0:c1:d5:81:45:f6:7d:8b:45:13:d1:1e:af:23:85:c6:
c5:3a:97:9e:2b:a0:6c:d2:6f:34:00:5e:c2:69:fc:ef:f9:c1:
5d:5c:4b:90:13:0c:97:0e:c2:d4:05:ae:1c:c2:1b:a0:8e:ac:
79:ca:5f:69:d6:c7:41:5e:8c:ca:d8:a6:19:e2:fd:b5:ff:dd:
2b:d8:af:c7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEQqEZGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZWU1MzFiOWFjMjk5MGQ2OWE4YTVjMzAyM2U3MmU2ZDg0MWU2YzA5MB4XDTIyMDEw
MTA2MDUwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmJlYzBlMWM0YzIz
N2YwMmVhMzNiNjg4NjU0MGU2YjZkNDJlNzQ2YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALkS5v+0FqNuOf73Cm/QmmZBtDKGRgyJkFKOMW7Cy6cTtTpA
H1dLO/woXrSYkG+7ON9nG+BCLonVhsSaQIZjwymCBmFsUqgzPim3qkmBW+gk0jOb
pP8QQv0WnHhLkNw4jgFle8Z9udtTUkkxAu2pQYcDtfnBDEoQEzTiZmmsByccnX5x
hd1pSothN8/UaMYGheCuev6ZqbeestRVsop7YFB68hl9ImCVPSGq6yuXbFdc7KZt
qjJ7F0+z/be2tre7pEFj8UevjB9uZULi2ldgABYoxv70IlPFvBeQjbeDIG+qROEW
di5dztHHkVLNO63EnHXVvKR5pF9J3Tmyv7NXZKMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQr7A4cTCN/AuoztohlQOa21C50bDAfBgNVHSMEGDAWgBRe5TG5rCmQ1pqK
XDAj5y5thB5sCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1h1VXh1YXdwa05hYWlsd3dJLWN1YllRZWJBay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvOWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8x
L0std09IRXdqZndMcU03YUlaVURtdHRRdWRHdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
OWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8xL1h1VXh1YXdwa05h
YWlsd3dJLWN1YllRZWJBay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcM2CjANBgkqhkiG9w0BAQsFAAOC
AQEAQmDbUvYEG10cYZ6K/YhfCa/AIVS/CCmZQuYDSjun/+epXDlOUsNmWRHMWzDY
6tUJcbUCjXr64HfZ8fQ29s0iUKfkRq2TDoWB1dFD4s8WIs/IwC7/db6VGMN9xViE
OcWw/4oyjBqpeMPfnjfarYVWhi7ZRRTxSnFTcdic7AK+s2Lq3MBRsllZLqvMVwMq
MpNkWXSGiJa05+tRIVQRwDiodES88j8ULmb2KY7T7T7g6MNBj7T1wovAwdWBRfZ9
i0UT0R6vI4XGxTqXniugbNJvNABewmn87/nBXVxLkBMMlw7C1AWuHMIboI6secpf
adbHQV6MytimGeL9tf/dK9ivxw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:24 2024 by rpki-client on console-ams.rpki-client.org