Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2b8e3e-e3bc-4635-9397-7d5dfa7d03d3/1/g497qW5vcIua8-b9To4uUMpETNU.roa
File: g497qW5vcIua8-b9To4uUMpETNU.roa (raw, json)
Hash identifier: vKSiYEOv895KljxFn6blSK49lTgBouHv5KzmXjIlFkE=
Subject key identifier: 83:8F:7B:A9:6E:6F:70:8B:9A:F3:E6:FD:4E:8E:2E:50:CA:44:4C:D5
Certificate issuer: /CN=abff1f77f397a1a80fba71b4d2d1db917b3ba6a0
Certificate serial: 01DF31
Authority key identifier: AB:FF:1F:77:F3:97:A1:A8:0F:BA:71:B4:D2:D1:DB:91:7B:3B:A6:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q_8fd_OXoagPunG00tHbkXs7pqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2b8e3e-e3bc-4635-9397-7d5dfa7d03d3/1/g497qW5vcIua8-b9To4uUMpETNU.roa
Signing time: Sun 06 Mar 2022 07:50:41 +0000
ROA not before: Sun 06 Mar 2022 07:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 94.154.114.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122673 (0x1df31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abff1f77f397a1a80fba71b4d2d1db917b3ba6a0
Validity
Not Before: Mar 6 07:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=838f7ba96e6f708b9af3e6fd4e8e2e50ca444cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ec:cb:32:f1:48:0e:4f:19:f1:6d:bd:89:d8:
33:32:0d:f9:74:33:ba:86:cc:1b:ca:19:86:57:e2:
06:78:e7:bf:d0:a3:2e:94:bb:3f:b8:f6:65:af:64:
b0:58:c8:6b:55:55:72:82:1a:c7:36:68:41:96:cf:
b3:ad:8e:56:49:dd:86:38:69:f5:9b:9d:da:e9:6d:
89:9f:6a:7c:40:56:45:54:19:3c:1e:53:13:fb:8d:
d1:79:6c:ae:f2:8d:41:1f:fc:0a:84:c7:d9:f4:a3:
c7:cb:b9:2c:d8:9a:5b:b7:24:d1:b8:a0:91:db:f9:
d7:7a:b2:7a:3f:4b:e5:0b:9b:0c:a1:66:48:90:da:
f1:68:59:ba:f4:eb:7e:30:5a:9c:cb:01:3a:cc:08:
cc:f3:36:a2:2a:28:c4:ea:39:55:a6:40:2d:7a:9e:
cf:cf:dc:84:ff:24:ea:54:52:29:8e:1b:83:b9:4e:
93:98:ac:74:59:cc:f6:a9:a3:f3:03:13:86:85:1d:
9b:0e:2f:cc:b7:44:21:93:9f:77:96:6b:b8:e4:2b:
a3:f5:e1:49:21:4f:2a:80:91:63:42:fd:77:49:c8:
3b:a4:38:d9:92:59:6d:0f:8a:23:76:68:fc:e7:17:
4d:c3:d0:7e:6d:44:ae:ab:17:0c:d0:8c:54:da:e6:
9d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8F:7B:A9:6E:6F:70:8B:9A:F3:E6:FD:4E:8E:2E:50:CA:44:4C:D5
X509v3 Authority Key Identifier:
keyid:AB:FF:1F:77:F3:97:A1:A8:0F:BA:71:B4:D2:D1:DB:91:7B:3B:A6:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q_8fd_OXoagPunG00tHbkXs7pqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2b8e3e-e3bc-4635-9397-7d5dfa7d03d3/1/g497qW5vcIua8-b9To4uUMpETNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2b8e3e-e3bc-4635-9397-7d5dfa7d03d3/1/q_8fd_OXoagPunG00tHbkXs7pqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:74:aa:63:53:3c:03:9d:da:10:59:26:04:e0:67:4a:e1:b8:
20:6b:d9:65:d7:eb:e5:11:4d:81:b9:25:60:10:c6:7f:d4:0d:
aa:bb:17:76:f5:dc:f0:4c:7b:c6:ab:b7:b7:d5:e2:17:71:b9:
fc:04:c0:a8:46:23:68:75:ed:ba:1b:6c:7a:64:9f:b3:d4:be:
9f:01:f4:f2:2a:02:a8:ae:37:e2:97:38:d9:41:03:ce:82:ba:
81:0e:d7:4b:78:19:dc:28:28:cd:6a:e3:a2:e0:7e:02:cf:7f:
b4:35:e8:5f:94:35:37:a5:2d:ef:2a:4a:03:26:90:a3:fc:94:
82:66:52:4c:b7:69:62:54:c9:41:79:44:64:5c:8b:d1:8e:ec:
d6:5d:9d:02:67:5e:c3:2e:2a:9e:de:23:bc:7a:42:01:db:e3:
51:96:e3:50:d1:50:a8:97:7d:d4:d5:be:50:50:13:2a:0e:72:
cb:6a:79:df:d8:ae:34:ea:ff:02:e1:2e:9a:75:51:c3:fc:e4:
4b:16:d9:30:67:38:83:7f:b5:07:c6:d5:b2:25:2c:06:de:7e:
8b:f6:cd:da:d4:78:80:24:6d:45:f8:e9:5d:2e:79:d1:d4:85:
4f:a5:72:5d:18:50:e4:26:73:69:e6:81:ef:6b:d4:b3:8c:07:
4f:6f:ac:a8
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAd8xMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGFi
ZmYxZjc3ZjM5N2ExYTgwZmJhNzFiNGQyZDFkYjkxN2IzYmE2YTAwHhcNMjIwMzA2
MDc1MDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4MzhmN2JhOTZlNmY3
MDhiOWFmM2U2ZmQ0ZThlMmU1MGNhNDQ0Y2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvezLMvFIDk8Z8W29idgzMg35dDO6hswbyhmGV+IGeOe/0KMu
lLs/uPZlr2SwWMhrVVVyghrHNmhBls+zrY5WSd2GOGn1m53a6W2Jn2p8QFZFVBk8
HlMT+43ReWyu8o1BH/wKhMfZ9KPHy7ks2JpbtyTRuKCR2/nXerJ6P0vlC5sMoWZI
kNrxaFm69Ot+MFqcywE6zAjM8zaiKijE6jlVpkAtep7Pz9yE/yTqVFIpjhuDuU6T
mKx0Wcz2qaPzAxOGhR2bDi/Mt0Qhk593lmu45Cuj9eFJIU8qgJFjQv13Scg7pDjZ
klltD4ojdmj85xdNw9B+bUSuqxcM0IxU2uadbwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFIOPe6lub3CLmvPm/U6OLlDKREzVMB8GA1UdIwQYMBaAFKv/H3fzl6GoD7px
tNLR25F7O6agMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cV84ZmRfT1hvYWdQdW5HMDB0SGJrWHM3cHFBLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wNC8yYjhlM2UtZTNiYy00NjM1LTkzOTctN2Q1ZGZhN2QwM2QzLzEv
ZzQ5N3FXNXZjSXVhOC1iOVRvNHVVTXBFVE5VLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8y
YjhlM2UtZTNiYy00NjM1LTkzOTctN2Q1ZGZhN2QwM2QzLzEvcV84ZmRfT1hvYWdQ
dW5HMDB0SGJrWHM3cHFBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXppyMA0GCSqGSIb3DQEBCwUAA4IB
AQAbdKpjUzwDndoQWSYE4GdK4bgga9ll1+vlEU2BuSVgEMZ/1A2quxd29dzwTHvG
q7e31eIXcbn8BMCoRiNode26G2x6ZJ+z1L6fAfTyKgKorjfilzjZQQPOgrqBDtdL
eBncKCjNauOi4H4Cz3+0NehflDU3pS3vKkoDJpCj/JSCZlJMt2liVMlBeURkXIvR
juzWXZ0CZ17DLiqe3iO8ekIB2+NRluNQ0VCol33U1b5QUBMqDnLLannf2K406v8C
4S6adVHD/ORLFtkwZziDf7UHxtWyJSwG3n6L9s3a1HiAJG1F+OldLnnR1IVPpXJd
GFDkJnNp5oHva9SzjAdPb6yo
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:46 2023 by rpki-client on console-ams.rpki-client.org