Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/6lriqaXSHyqhUeLys4lOd86VQYA.roa
File: 6lriqaXSHyqhUeLys4lOd86VQYA.roa (raw, json)
Hash identifier: Oj4OW2VRbP24fS2SnZqVgoiHMrv1lDmvGTTmb39DLK8=
Subject key identifier: EA:5A:E2:A9:A5:D2:1F:2A:A1:51:E2:F2:B3:89:4E:77:CE:95:41:80
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37F00049
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/6lriqaXSHyqhUeLys4lOd86VQYA.roa
Signing time: Thu 28 Apr 2022 12:09:23 +0000
ROA not before: Thu 28 Apr 2022 12:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202043
IP address blocks: 84.252.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938475593 (0x37f00049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea5ae2a9a5d21f2aa151e2f2b3894e77ce954180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c7:bd:88:37:c4:38:b1:cc:e5:6d:7b:38:65:
d5:9d:45:a6:0c:58:65:b4:cf:3d:47:73:42:59:cb:
78:81:dc:5a:36:a8:e3:30:9f:03:67:7d:3f:9b:1c:
c9:e1:65:0f:67:4c:6a:af:a6:ad:ad:21:bc:31:fc:
5f:76:a6:2b:79:ad:4e:71:7a:a1:77:6f:1d:b0:17:
67:e3:8c:35:e2:d1:97:a9:86:d2:e1:17:ed:39:4d:
3b:f6:40:1d:f8:36:53:57:c4:d7:d5:2e:80:59:ef:
a6:34:01:9a:fa:c8:31:0e:76:85:79:71:01:f0:61:
50:dd:08:f3:b7:e1:eb:53:e0:05:4a:78:76:66:1e:
b5:a8:f9:d3:30:5b:59:e3:8d:b9:4d:ac:05:44:07:
84:8f:ad:48:da:ec:05:1c:61:ad:f3:ae:f2:82:55:
dd:58:59:2f:32:74:3d:92:d9:60:e8:d7:47:f5:d1:
58:7d:2b:e2:78:86:2d:be:cd:ad:37:25:70:f3:fd:
7e:ea:94:c4:8a:5b:89:fa:84:fa:bd:68:42:e5:da:
9a:0a:99:f2:77:56:96:d9:60:9b:ee:e5:4c:51:1d:
95:78:be:b3:de:c7:04:44:b5:74:10:40:3d:0e:bb:
d8:65:d3:4f:6a:3d:ca:8a:e2:23:20:83:b7:e7:8f:
99:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:5A:E2:A9:A5:D2:1F:2A:A1:51:E2:F2:B3:89:4E:77:CE:95:41:80
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/6lriqaXSHyqhUeLys4lOd86VQYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.55.0/24
Signature Algorithm: sha256WithRSAEncryption
60:73:ee:4a:ec:a6:dc:d3:0a:3e:48:7f:ef:19:5f:ea:f8:a0:
ac:ae:82:51:12:fb:9c:fa:d7:4a:d8:fd:d6:d1:5f:58:08:dc:
fb:54:5c:69:3c:ed:db:a0:7f:a6:1d:4e:bd:79:e1:cd:27:db:
6b:a2:a9:21:af:38:fb:8e:5e:3b:a1:53:30:64:88:2a:0e:40:
b4:3a:20:df:fd:d5:c8:bb:1a:bf:0d:c9:6e:4e:d8:63:87:31:
8e:6f:ba:3e:8a:74:d5:c4:43:8e:e4:e1:75:36:e1:84:55:04:
f5:4d:3c:6c:5e:28:ae:f8:ce:cd:86:93:49:f8:71:73:fd:2a:
e8:41:75:c0:af:58:dc:72:d9:b7:02:a0:6f:5a:7e:83:8e:34:
03:4f:e6:0e:a9:53:4b:9a:dc:02:4c:8c:62:a2:dc:26:5a:2a:
88:db:3c:15:e8:26:06:4d:a7:32:ab:69:ce:0a:84:a1:a2:b0:
d9:fe:1c:6f:6b:7e:ef:47:77:e1:9a:ae:c1:f2:26:77:7a:09:
61:9b:67:e6:2d:77:29:74:c0:b9:e4:03:d8:bf:a2:8a:bf:c7:
ca:c5:87:b7:07:c7:fa:22:1f:2d:62:40:f4:84:5d:9c:65:f1:
dd:bb:a8:ee:93:f3:58:0f:25:0c:21:54:1c:c1:69:53:ca:12:
ff:0b:c6:f3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN/AASTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDQy
ODEyMDkyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWE1YWUyYTlhNWQy
MWYyYWExNTFlMmYyYjM4OTRlNzdjZTk1NDE4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7HvYg3xDixzOVtezhl1Z1FpgxYZbTPPUdzQlnLeIHcWjao
4zCfA2d9P5scyeFlD2dMaq+mra0hvDH8X3amK3mtTnF6oXdvHbAXZ+OMNeLRl6mG
0uEX7TlNO/ZAHfg2U1fE19UugFnvpjQBmvrIMQ52hXlxAfBhUN0I87fh61PgBUp4
dmYetaj50zBbWeONuU2sBUQHhI+tSNrsBRxhrfOu8oJV3VhZLzJ0PZLZYOjXR/XR
WH0r4niGLb7NrTclcPP9fuqUxIpbifqE+r1oQuXamgqZ8ndWltlgm+7lTFEdlXi+
s97HBES1dBBAPQ672GXTT2o9yoriIyCDt+ePmUUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTqWuKppdIfKqFR4vKziU53zpVBgDAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
LzZscmlxYVhTSHlxaFVlTHlzNGxPZDg2VlFZQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFT8NzANBgkqhkiG9w0BAQsFAAOC
AQEAYHPuSuym3NMKPkh/7xlf6vigrK6CURL7nPrXStj91tFfWAjc+1RcaTzt26B/
ph1OvXnhzSfba6KpIa84+45eO6FTMGSIKg5AtDog3/3VyLsavw3Jbk7YY4cxjm+6
Pop01cRDjuThdTbhhFUE9U08bF4orvjOzYaTSfhxc/0q6EF1wK9Y3HLZtwKgb1p+
g440A0/mDqlTS5rcAkyMYqLcJloqiNs8FegmBk2nMqtpzgqEoaKw2f4cb2t+70d3
4ZquwfImd3oJYZtn5i13KXTAueQD2L+iir/HysWHtwfH+iIfLWJA9IRdnGXx3buo
7pPzWA8lDCFUHMFpU8oS/wvG8w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:10 2023 by rpki-client on console-ams.rpki-client.org