Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vw2-mHyGRkdzvYgczQCu-IG34GQ.roa
File: vw2-mHyGRkdzvYgczQCu-IG34GQ.roa (raw, json)
Hash identifier: WeMLBT6lMbTq34+VxB9nrPIUqPtgZIT3i8ybMDmCO9g=
Subject key identifier: BF:0D:BE:98:7C:86:46:47:73:BD:88:1C:CD:00:AE:F8:81:B7:E0:64
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E25FD69
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vw2-mHyGRkdzvYgczQCu-IG34GQ.roa
Signing time: Sat 01 Jan 2022 01:58:24 +0000
ROA not before: Sat 01 Jan 2022 01:58:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211484
IP address blocks: 194.87.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237370729 (0xe25fd69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf0dbe987c86464773bd881ccd00aef881b7e064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:22:75:58:9e:53:7c:66:d4:4f:e4:68:a9:b6:
c4:59:24:b2:db:74:e2:6d:48:1d:00:e6:fd:35:b0:
2f:95:95:68:37:de:bd:4e:94:48:32:2f:1c:27:89:
3e:85:8d:b8:c3:8c:bc:29:54:52:c8:c6:ef:37:fd:
4e:31:51:53:34:9b:a4:92:a3:a7:ba:98:37:08:62:
af:b6:57:1a:56:1b:a7:16:9a:b2:af:12:45:8b:73:
b5:a5:e6:bf:37:5b:f3:87:29:f3:33:44:47:ab:c2:
30:49:95:0d:c5:58:db:e2:09:0c:14:79:a6:1e:1c:
2a:b1:6c:81:6d:3d:b3:65:45:20:f0:07:33:68:49:
77:74:97:43:3d:e2:38:40:c4:84:db:53:7c:2e:36:
d4:8e:33:1b:10:58:9c:36:4d:fc:b5:90:7c:12:5a:
ab:62:64:cd:30:5e:56:0d:fd:44:ea:c0:db:d9:83:
5b:55:3a:47:b6:f0:c9:10:a1:27:37:f1:75:65:39:
26:f5:8a:fd:af:f4:4d:1f:01:d6:ad:64:33:94:c7:
69:a4:ed:cb:06:b5:11:0c:b8:65:c6:89:9e:38:2f:
bb:84:ae:c4:37:e6:8d:4e:78:3d:7f:9a:5c:c6:b4:
33:9f:60:69:87:26:35:98:f3:2a:7d:a4:31:13:32:
a9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0D:BE:98:7C:86:46:47:73:BD:88:1C:CD:00:AE:F8:81:B7:E0:64
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vw2-mHyGRkdzvYgczQCu-IG34GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.78.0/24
Signature Algorithm: sha256WithRSAEncryption
03:eb:b9:b1:7f:1a:7b:00:8e:92:0c:d6:c4:2c:e0:49:14:8a:
ac:a6:ff:41:ae:7d:4a:cc:03:97:ff:81:24:c6:ef:37:e8:6f:
d5:53:86:14:16:8d:fe:a2:37:27:f5:91:f8:a5:50:b5:22:0a:
76:bd:e5:84:dd:e2:ce:a2:33:bd:b9:43:a4:80:a1:68:c8:d7:
0d:76:ce:71:8d:11:0c:ca:be:93:fd:a7:55:70:d7:8a:cc:0c:
58:f5:f0:15:9b:34:8a:f5:ef:87:c5:54:c7:77:f8:74:67:72:
02:6e:87:9d:d8:35:c8:e2:8e:c8:a4:6d:6d:37:4b:09:10:7a:
87:90:eb:4f:58:22:c6:b5:b5:1f:98:a0:2c:f7:ed:3f:4e:04:
7d:12:3c:24:6f:6c:34:cb:f8:13:89:56:4f:35:d5:c1:9e:64:
db:4f:de:3a:92:81:04:f3:0e:1c:e9:1a:87:4d:f5:d1:2a:3f:
94:21:de:44:6f:93:65:78:ad:75:cd:a5:f3:33:76:d6:0c:a8:
2c:ca:cc:7e:9c:da:e6:42:62:68:33:bc:8e:ea:e8:2e:f4:7c:
a4:94:f1:ae:80:c7:bd:c4:ab:bd:28:5a:c9:ab:f4:a5:93:d2:
17:5b:d9:de:95:99:6f:f8:70:bc:50:21:3b:43:6b:b4:79:c7:
e2:e6:ee:4f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDiX9aTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTY5MGY1ZTMyZDVjODZhZjFlMTM0OWRmZDRlOGNlZWI3MGUxYWM3MB4XDTIyMDEw
MTAxNTgyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmYwZGJlOTg3Yzg2
NDY0NzczYmQ4ODFjY2QwMGFlZjg4MWI3ZTA2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIsidVieU3xm1E/kaKm2xFkkstt04m1IHQDm/TWwL5WVaDfe
vU6USDIvHCeJPoWNuMOMvClUUsjG7zf9TjFRUzSbpJKjp7qYNwhir7ZXGlYbpxaa
sq8SRYtztaXmvzdb84cp8zNER6vCMEmVDcVY2+IJDBR5ph4cKrFsgW09s2VFIPAH
M2hJd3SXQz3iOEDEhNtTfC421I4zGxBYnDZN/LWQfBJaq2JkzTBeVg39ROrA29mD
W1U6R7bwyRChJzfxdWU5JvWK/a/0TR8B1q1kM5THaaTtywa1EQy4ZcaJnjgvu4Su
xDfmjU54PX+aXMa0M59gaYcmNZjzKn2kMRMyqX8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS/Db6YfIZGR3O9iBzNAK74gbfgZDAfBgNVHSMEGDAWgBQ1aQ9eMtXIavHh
NJ39Tozutw4axzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8x
L3Z3Mi1tSHlHUmtkenZZZ2N6UUN1LUlHMzRHUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
ZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8xL05Xa1BYakxWeUdy
eDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJXTjANBgkqhkiG9w0BAQsFAAOC
AQEAA+u5sX8aewCOkgzWxCzgSRSKrKb/Qa59SswDl/+BJMbvN+hv1VOGFBaN/qI3
J/WR+KVQtSIKdr3lhN3izqIzvblDpIChaMjXDXbOcY0RDMq+k/2nVXDXiswMWPXw
FZs0ivXvh8VUx3f4dGdyAm6Hndg1yOKOyKRtbTdLCRB6h5DrT1gixrW1H5igLPft
P04EfRI8JG9sNMv4E4lWTzXVwZ5k20/eOpKBBPMOHOkah0310So/lCHeRG+TZXit
dc2l8zN21gyoLMrMfpza5kJiaDO8juroLvR8pJTxroDHvcSrvShayav0pZPSF1vZ
3pWZb/hwvFAhO0NrtHnH4ubuTw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:50 2024 by rpki-client on console-ams.rpki-client.org