Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-fFYneb9VXh-yvl2HpzZdjHcffw.roa
File: 1-fFYneb9VXh-yvl2HpzZdjHcffw.roa (raw, json)
Hash identifier: Wag3njWSLT9rul3BfwILyLp20g+amqbZo+4xN39xfWw=
Subject key identifier: F9:F1:58:9D:E6:FD:55:78:7E:CA:F9:76:1E:9C:D9:76:31:DC:7D:FC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01833146D8AF1A8A0751D8BE4110F7C1A862
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-fFYneb9VXh-yvl2HpzZdjHcffw.roa
Signing time: Mon 12 Sep 2022 10:37:50 +0000
ROA not before: Mon 12 Sep 2022 10:37:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212411
IP address blocks: 194.87.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:31:46:d8:af:1a:8a:07:51:d8:be:41:10:f7:c1:a8:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 12 10:37:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9f1589de6fd55787ecaf9761e9cd97631dc7dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ec:2a:31:8a:f7:31:05:52:5d:52:56:5a:6e:
b6:b0:58:f7:ff:95:ec:96:9e:e6:20:1c:e9:d8:83:
35:ce:c7:a9:79:c8:6a:70:5f:78:bd:a8:a3:d7:74:
59:2e:cf:4e:5f:2c:db:c3:b4:dd:63:a2:bb:0d:54:
58:60:8b:1e:5a:08:b6:a2:70:96:08:c6:2d:fe:8a:
0b:e6:46:f7:b3:11:98:01:e7:a6:cf:ff:ca:b0:63:
51:80:8f:70:b0:53:1a:68:08:15:40:58:f8:5c:76:
92:ae:e0:c9:74:f1:1e:36:b4:80:60:8b:d2:15:65:
3e:44:44:f2:2d:2e:10:cf:63:f6:bc:dd:59:d7:4e:
6b:3a:f8:4d:1b:4e:a8:e5:4b:dd:a8:9f:d5:90:51:
5c:1a:08:82:ac:0e:fb:1f:c5:a3:e9:6b:b5:ca:25:
76:7c:56:fd:1c:b3:fe:8e:8b:8e:8e:b4:03:ce:2e:
04:4a:21:af:dc:bb:f3:f1:2c:bb:3f:07:dd:89:6e:
4f:5e:50:3f:50:d0:49:03:78:e1:67:dc:3c:05:94:
9b:ee:6d:5b:6f:51:f9:19:b1:7d:31:d9:3e:c9:ac:
37:f2:99:d1:5f:83:78:b3:52:45:ff:ea:1e:41:03:
d4:2e:b8:b2:fe:ac:a1:d4:fb:fc:78:0c:af:29:ba:
5d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F1:58:9D:E6:FD:55:78:7E:CA:F9:76:1E:9C:D9:76:31:DC:7D:FC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-fFYneb9VXh-yvl2HpzZdjHcffw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.228.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ba:ac:18:15:78:62:7e:f3:f8:4d:f9:6b:90:0c:ac:21:ec:
a1:22:0d:3a:57:cc:44:bc:5d:2a:d6:d9:8b:43:88:e9:9d:a3:
b5:dc:b4:47:3b:40:78:2c:a0:1b:05:76:ce:e5:d2:02:7d:9d:
63:6e:57:80:b3:f5:c0:a4:f0:c2:da:b4:6d:97:c1:93:3e:13:
89:07:bb:2f:d0:1d:9f:e0:01:1f:d6:0c:68:5b:2d:56:46:04:
52:5c:1f:ab:55:77:d9:47:f0:ce:18:9e:84:de:bb:56:23:be:
2a:f0:94:d3:58:6d:5e:7b:b6:c5:a4:d3:d4:a8:4b:9d:3a:69:
2e:83:00:5c:28:1e:a4:60:e8:7c:89:bf:a5:b9:7d:5c:0a:a9:
cf:2b:c5:fe:9b:1d:f5:cf:cb:e0:58:42:f0:4d:53:0f:e0:92:
f4:85:7c:81:a9:a9:28:47:cf:fa:ac:d2:74:f4:4c:66:ed:d4:
d9:7e:a0:bf:13:41:3e:91:86:51:a9:9c:c5:ee:63:a5:6c:15:
38:2f:f3:d9:ad:76:37:2c:24:77:dc:1a:54:2f:0b:20:1e:51:
1b:ce:d6:87:49:57:8d:c0:6a:7c:2f:3a:01:eb:43:b9:85:88:
73:03:0c:a9:15:68:13:9d:7d:d4:d6:c3:1e:ce:37:5f:7e:bd:
97:22:1d:ac
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYMxRtivGooHUdi+QRD3wahiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIwOTEyMTAzNzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOWYxNTg5ZGU2ZmQ1NTc4N2VjYWY5NzYxZTljZDk3NjMxZGM3ZGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgewqMYr3MQVSXVJWWm62sFj3/5Xs
lp7mIBzp2IM1zsepechqcF94vaij13RZLs9OXyzbw7TdY6K7DVRYYIseWgi2onCW
CMYt/ooL5kb3sxGYAeemz//KsGNRgI9wsFMaaAgVQFj4XHaSruDJdPEeNrSAYIvS
FWU+RETyLS4Qz2P2vN1Z105rOvhNG06o5UvdqJ/VkFFcGgiCrA77H8Wj6Wu1yiV2
fFb9HLP+jouOjrQDzi4ESiGv3Lvz8Sy7PwfdiW5PXlA/UNBJA3jhZ9w8BZSb7m1b
b1H5GbF9Mdk+yaw38pnRX4N4s1JF/+oeQQPULriy/qyh1Pv8eAyvKbpdPQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPnxWJ3m/VV4fsr5dh6c2XYx3H38MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvMS1mRlluZWI5VlhoLXl2bDJIcHpaZGpIY2Zmdy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0
My8xL05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJX5DAN
BgkqhkiG9w0BAQsFAAOCAQEAarqsGBV4Yn7z+E35a5AMrCHsoSINOlfMRLxdKtbZ
i0OI6Z2jtdy0RztAeCygGwV2zuXSAn2dY25XgLP1wKTwwtq0bZfBkz4TiQe7L9Ad
n+ABH9YMaFstVkYEUlwfq1V32UfwzhiehN67ViO+KvCU01htXnu2xaTT1KhLnTpp
LoMAXCgepGDofIm/pbl9XAqpzyvF/psd9c/L4FhC8E1TD+CS9IV8gampKEfP+qzS
dPRMZu3U2X6gvxNBPpGGUamcxe5jpWwVOC/z2a12Nywkd9waVC8LIB5RG87Wh0lX
jcBqfC86AetDuYWIcwMMqRVoE5191NbDHs43X369lyIdrA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-ams.rpki-client.org