Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cPf4_I7WbDkSK6wQm5DtFyJ1j-c.roa
File: cPf4_I7WbDkSK6wQm5DtFyJ1j-c.roa (raw, json)
Hash identifier: q9QnFUQnJulbihzdK+1UolquaTIjxudTDGhrRwJp/jc=
Subject key identifier: 70:F7:F8:FC:8E:D6:6C:39:12:2B:AC:10:9B:90:ED:17:22:75:8F:E7
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018441A2AACFC3087DCF34A1D83EF534641B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cPf4_I7WbDkSK6wQm5DtFyJ1j-c.roa
Signing time: Fri 04 Nov 2022 07:54:50 +0000
ROA not before: Fri 04 Nov 2022 07:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213370
IP address blocks: 194.48.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:41:a2:aa:cf:c3:08:7d:cf:34:a1:d8:3e:f5:34:64:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 4 07:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70f7f8fc8ed66c39122bac109b90ed1722758fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:24:87:67:82:18:f5:f4:25:10:e6:c3:44:fe:
e2:06:93:22:09:33:d8:4a:a6:6e:40:83:46:b2:c7:
67:03:9f:c6:b3:c4:ee:1d:19:0e:52:16:08:23:0a:
de:73:7f:85:dc:f5:5f:9f:f2:00:ba:ab:60:0f:a8:
71:f5:af:bb:6f:55:94:c0:4a:e3:40:80:31:aa:26:
e1:95:21:d5:3a:18:3c:91:9d:2e:07:04:96:4c:3b:
59:b8:83:fb:b4:03:a7:1b:89:5d:62:84:ae:00:86:
90:38:cf:08:4d:59:1d:b4:98:f7:aa:47:70:f1:11:
f6:5d:57:c5:37:c4:0b:5f:d3:18:e7:42:0b:f5:a3:
41:97:b2:38:06:b2:0b:74:b5:b8:7e:7b:e4:75:f9:
29:ed:3d:fd:9a:98:5d:99:f1:cf:c3:9d:50:d7:a6:
43:ee:11:fb:e3:59:11:88:5e:f9:5e:78:cb:85:c3:
7e:4c:25:9d:de:33:c5:bd:5c:b4:c7:f1:bf:13:58:
38:12:b6:6f:16:1e:3c:4f:df:e4:89:4e:c4:69:66:
41:e5:00:2a:3b:56:93:90:28:b2:d8:29:14:0c:30:
74:09:36:7d:d2:c8:db:08:03:85:76:cc:0a:15:ab:
88:d6:96:13:e1:44:38:3a:1a:21:82:04:38:ee:98:
1a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F7:F8:FC:8E:D6:6C:39:12:2B:AC:10:9B:90:ED:17:22:75:8F:E7
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cPf4_I7WbDkSK6wQm5DtFyJ1j-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
14:21:6f:dc:e2:f1:41:74:3f:f5:85:7b:d7:4f:f3:f1:c6:bd:
57:b5:ac:af:c2:25:b0:f2:c4:c9:d0:79:26:54:0b:cc:3b:f8:
0b:51:25:47:6d:35:af:64:b6:4f:79:b1:a3:88:f9:52:62:b7:
63:1e:82:11:81:bd:51:53:3a:12:21:07:77:4b:af:25:14:b8:
2b:5c:49:e8:9e:44:a2:70:64:25:0c:9c:6d:68:5d:c5:13:6a:
aa:3a:c6:5b:09:8d:63:7a:c3:85:f3:26:e0:43:86:28:be:e5:
3a:e2:77:4c:58:aa:ee:71:0e:cc:15:ca:16:95:ad:2e:69:d7:
d0:22:9f:72:0e:bb:81:e8:94:ad:42:e5:89:a3:10:ee:fc:22:
9c:d1:d9:66:47:92:2b:fe:a3:fa:80:8d:6c:36:5b:ba:2b:cb:
8e:7e:dd:4c:4a:80:0c:32:aa:dc:b2:06:ca:e9:6d:29:82:0f:
31:c0:43:10:c0:d2:a5:13:2f:54:7f:8e:83:b5:23:e4:4b:c6:
5e:d5:8c:4d:32:2c:67:5f:10:b1:4e:77:86:61:fc:be:4b:51:
ca:4f:61:f3:e8:09:c1:7c:99:f1:6b:21:45:15:a5:2b:9c:ab:
d4:66:84:99:ab:dd:47:78:56:e1:53:ee:b6:d8:b9:5c:72:27:
94:d4:5c:80
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRBoqrPwwh9zzSh2D71NGQbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIxMTA0MDc1NDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MGY3ZjhmYzhlZDY2YzM5MTIyYmFjMTA5YjkwZWQxNzIyNzU4ZmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSSHZ4IY9fQlEObDRP7iBpMiCTPY
SqZuQINGssdnA5/Gs8TuHRkOUhYIIwrec3+F3PVfn/IAuqtgD6hx9a+7b1WUwErj
QIAxqibhlSHVOhg8kZ0uBwSWTDtZuIP7tAOnG4ldYoSuAIaQOM8ITVkdtJj3qkdw
8RH2XVfFN8QLX9MY50IL9aNBl7I4BrILdLW4fnvkdfkp7T39mphdmfHPw51Q16ZD
7hH741kRiF75XnjLhcN+TCWd3jPFvVy0x/G/E1g4ErZvFh48T9/kiU7EaWZB5QAq
O1aTkCiy2CkUDDB0CTZ90sjbCAOFdswKFauI1pYT4UQ4OhohggQ47pgaGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHD3+PyO1mw5EiusEJuQ7RcidY/nMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvY1BmNF9JN1diRGtTSzZ3UW01RHRGeUoxai1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjD7MA0G
CSqGSIb3DQEBCwUAA4IBAQAUIW/c4vFBdD/1hXvXT/Pxxr1XtayvwiWw8sTJ0Hkm
VAvMO/gLUSVHbTWvZLZPebGjiPlSYrdjHoIRgb1RUzoSIQd3S68lFLgrXEnonkSi
cGQlDJxtaF3FE2qqOsZbCY1jesOF8ybgQ4YovuU64ndMWKrucQ7MFcoWla0uadfQ
Ip9yDruB6JStQuWJoxDu/CKc0dlmR5Ir/qP6gI1sNlu6K8uOft1MSoAMMqrcsgbK
6W0pgg8xwEMQwNKlEy9Uf46DtSPkS8Ze1YxNMixnXxCxTneGYfy+S1HKT2Hz6AnB
fJnxayFFFaUrnKvUZoSZq91HeFbhU+622LlccieU1FyA
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:39 2023 by rpki-client on console-ams.rpki-client.org