Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rxcXWY4GRdBIfwfJbhUeZ7dSyTM.roa
File: rxcXWY4GRdBIfwfJbhUeZ7dSyTM.roa (raw, json)
Hash identifier: pq2Bzmcp2DDrAj009TRJBEmEqBpJ/RLgWm5pk4iqyBg=
Subject key identifier: AF:17:17:59:8E:06:45:D0:48:7F:07:C9:6E:15:1E:67:B7:52:C9:33
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0183F2CA0FCAFC4E5F9671EA71DD3C5CB171
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rxcXWY4GRdBIfwfJbhUeZ7dSyTM.roa
Signing time: Thu 20 Oct 2022 00:27:52 +0000
ROA not before: Thu 20 Oct 2022 00:27:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197540
IP address blocks: 194.87.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f2:ca:0f:ca:fc:4e:5f:96:71:ea:71:dd:3c:5c:b1:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 20 00:27:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af1717598e0645d0487f07c96e151e67b752c933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:89:2b:97:0d:6b:1a:55:f7:7e:9a:da:a9:5f:
02:c8:e1:74:b5:fa:f5:7f:2c:74:da:2b:9a:30:f0:
6c:56:74:3b:0a:1d:e9:08:24:5b:b3:e0:e4:11:cb:
92:35:c0:c8:0e:c0:29:e2:ca:9a:1e:43:57:cc:88:
2a:24:12:1a:40:83:61:10:6d:00:a9:e2:d3:cd:23:
98:e2:28:df:ce:84:56:ca:a7:8f:0c:a6:19:41:d0:
f2:eb:d1:9e:d3:a9:f4:6e:ea:e7:eb:34:9b:12:d2:
75:63:59:79:95:fa:3c:83:3d:5d:d7:35:d2:ef:e6:
44:74:e9:cd:c7:8b:57:30:4e:5e:9c:91:de:d9:a1:
d7:ea:50:62:36:c7:0b:58:d0:e0:e7:ae:3f:96:51:
72:87:d4:e0:77:ad:85:8e:a2:28:89:f0:80:e4:f4:
4f:c3:44:d3:8c:95:58:b0:c3:52:2f:b4:1a:da:39:
39:f2:51:74:14:34:13:20:d7:82:07:9e:bd:4d:92:
62:b5:85:ce:9f:36:de:73:0c:c8:d1:23:0b:ec:1e:
a5:d1:73:84:46:08:9f:cc:da:a3:ce:2f:53:6f:25:
d4:67:11:fd:ff:16:0f:4b:ff:51:4c:17:5e:bd:e1:
77:79:20:24:fa:49:0b:2d:fd:8d:b4:f8:75:75:a3:
d3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:17:17:59:8E:06:45:D0:48:7F:07:C9:6E:15:1E:67:B7:52:C9:33
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rxcXWY4GRdBIfwfJbhUeZ7dSyTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.224.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:47:c5:b4:0c:17:70:9b:13:54:2a:ff:24:85:0b:6c:58:ee:
72:b1:39:4f:34:d9:ea:5d:4a:ed:6b:63:f3:7a:e7:41:c7:2f:
57:dc:1e:c2:bf:4e:e9:26:41:d6:de:6f:3e:13:5d:ff:99:13:
ff:38:e6:15:a9:ee:6d:fd:eb:d7:27:c3:d1:9f:1e:40:da:99:
09:19:6c:9b:34:46:47:8c:75:b3:91:9c:01:d4:f6:5c:05:f4:
32:78:ed:95:f1:f6:39:4a:ee:79:51:3f:cf:ec:91:31:dc:a6:
23:de:16:16:0b:e5:4a:ce:e6:e6:8d:02:16:30:a3:26:1f:36:
b3:08:58:8d:f1:6f:e9:19:9f:49:e7:01:88:cd:46:bc:88:1f:
01:28:46:26:49:62:aa:be:06:86:59:3b:71:72:aa:74:fa:a3:
17:fd:4b:4d:cd:66:42:c0:7a:bd:51:77:0c:77:f9:7a:7d:22:
4d:95:6c:a8:19:a9:2e:a4:1b:c6:f1:30:08:79:83:45:84:ad:
66:f8:ab:fc:5f:82:76:81:a2:65:eb:92:a7:a8:77:c4:db:57:
1c:03:79:ea:39:21:5e:7b:f5:22:8e:a3:15:32:bd:40:ae:e6:
2d:02:c8:e1:5d:58:82:4d:df:44:5d:36:4e:47:fa:2b:02:11:
ab:07:3c:5f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPyyg/K/E5flnHqcd08XLFxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIxMDIwMDAyNzUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjE3MTc1OThlMDY0NWQwNDg3ZjA3Yzk2ZTE1MWU2N2I3NTJjOTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhIkrlw1rGlX3fpraqV8CyOF0tfr1
fyx02iuaMPBsVnQ7Ch3pCCRbs+DkEcuSNcDIDsAp4sqaHkNXzIgqJBIaQINhEG0A
qeLTzSOY4ijfzoRWyqePDKYZQdDy69Ge06n0burn6zSbEtJ1Y1l5lfo8gz1d1zXS
7+ZEdOnNx4tXME5enJHe2aHX6lBiNscLWNDg564/llFyh9Tgd62FjqIoifCA5PRP
w0TTjJVYsMNSL7Qa2jk58lF0FDQTINeCB569TZJitYXOnzbecwzI0SML7B6l0XOE
RgifzNqjzi9TbyXUZxH9/xYPS/9RTBdeveF3eSAk+kkLLf2NtPh1daPTuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK8XF1mOBkXQSH8HyW4VHme3UskzMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvcnhjWFdZNEdSZEJJZndmSmJoVWVaN2RTeVRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwlfgMA0G
CSqGSIb3DQEBCwUAA4IBAQAdR8W0DBdwmxNUKv8khQtsWO5ysTlPNNnqXUrta2Pz
eudBxy9X3B7Cv07pJkHW3m8+E13/mRP/OOYVqe5t/evXJ8PRnx5A2pkJGWybNEZH
jHWzkZwB1PZcBfQyeO2V8fY5Su55UT/P7JEx3KYj3hYWC+VKzubmjQIWMKMmHzaz
CFiN8W/pGZ9J5wGIzUa8iB8BKEYmSWKqvgaGWTtxcqp0+qMX/UtNzWZCwHq9UXcM
d/l6fSJNlWyoGakupBvG8TAIeYNFhK1m+Kv8X4J2gaJl65KnqHfE21ccA3nqOSFe
e/UijqMVMr1AruYtAsjhXViCTd9EXTZOR/orAhGrBzxf
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:48 2024 by rpki-client on console-ams.rpki-client.org