Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/VFe3udVxH5cj7YAuMD-AwOVEDu4.roa
File: VFe3udVxH5cj7YAuMD-AwOVEDu4.roa (raw, json)
Hash identifier: lwuw+0c1X38Rte8ZEQ8VG3WDF7HOY5XDnJSkmLe17V0=
Subject key identifier: 54:57:B7:B9:D5:71:1F:97:23:ED:80:2E:30:3F:80:C0:E5:44:0E:EE
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 018359FC4D4C1C796FD04ECDBD23F467D677
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/VFe3udVxH5cj7YAuMD-AwOVEDu4.roa
Signing time: Tue 20 Sep 2022 08:20:50 +0000
ROA not before: Tue 20 Sep 2022 08:20:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59832
IP address blocks: 193.59.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:59:fc:4d:4c:1c:79:6f:d0:4e:cd:bd:23:f4:67:d6:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Sep 20 08:20:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5457b7b9d5711f9723ed802e303f80c0e5440eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c2:6e:5d:bf:4c:d0:19:42:6b:09:21:98:cc:
d0:37:4a:0c:cf:3c:05:50:62:0b:97:d8:7b:ba:9a:
40:dc:51:c9:be:ad:69:a4:5d:59:11:30:ca:e4:ee:
96:bc:c3:51:4f:76:44:70:67:7c:cd:e6:4d:2e:ad:
ba:4b:0a:9d:97:65:3b:d5:4b:f7:cf:aa:7a:e8:a7:
b6:e3:da:07:a5:b1:ed:45:71:73:39:0a:9f:e8:ef:
48:90:df:07:9d:0b:42:9b:c0:6f:f1:f9:09:3e:b2:
bf:ac:b2:c0:81:b1:fc:19:d4:f6:42:38:95:50:ab:
4c:f4:4a:a1:a0:f4:d0:55:28:09:8e:ea:b8:5b:13:
d8:28:ef:a9:0d:01:ed:fb:91:fe:89:b0:35:60:22:
e1:9a:89:92:e6:c7:a6:70:9f:ad:39:19:93:f2:af:
4c:1d:87:92:af:3f:df:1b:32:2c:88:cb:48:4c:09:
7d:90:32:bc:13:90:d2:88:0d:14:3f:50:5a:07:54:
19:93:82:2d:39:24:bf:44:f4:9a:6a:9a:0f:03:e4:
1a:48:9f:05:44:60:7b:5d:7e:75:ad:07:d2:4b:50:
8b:74:f3:70:13:a8:5d:9e:9d:24:38:5e:ec:c3:93:
ea:11:3b:92:b5:45:fb:7b:63:58:9f:58:f0:6d:a1:
e7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:57:B7:B9:D5:71:1F:97:23:ED:80:2E:30:3F:80:C0:E5:44:0E:EE
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/VFe3udVxH5cj7YAuMD-AwOVEDu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.104.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:c6:6a:f3:e6:a7:9a:36:04:0f:3b:9d:9e:b7:e1:91:61:55:
b0:29:b0:7d:85:e9:fa:51:28:88:3e:86:3c:fa:dd:d0:7f:8e:
c0:ad:d1:b2:e4:43:ce:b2:3a:50:1e:de:2d:93:e0:e9:77:4a:
35:dc:52:bc:cf:11:a3:11:10:18:b4:21:86:83:ee:11:cb:53:
f9:3c:d1:70:b1:6b:7b:81:97:ca:22:ab:44:24:42:a1:99:fc:
89:4d:6e:06:d0:de:f4:f8:a4:3b:a1:b9:21:c1:cb:00:6f:27:
ba:f7:a6:da:81:7c:43:e6:8f:20:24:49:99:11:72:d3:dc:66:
21:0d:79:a2:5e:e4:5b:e4:1c:44:05:d3:e7:f1:05:22:55:8b:
ef:f1:aa:35:2a:26:eb:5e:49:37:4e:08:b7:ec:1c:92:76:b1:
67:7e:df:4d:71:a4:88:61:12:42:93:a8:0b:73:6c:bd:b0:e2:
f7:c7:cd:31:f6:58:86:4a:dd:ae:89:a8:e0:c1:a9:50:ef:19:
5a:e6:d7:e1:f2:29:1c:83:d1:15:f8:d9:dc:d4:32:e9:d0:76:
53:7f:10:77:1d:e1:b8:f8:34:6a:57:44:f2:90:22:8b:8e:5f:
aa:70:4f:5d:c6:1a:2b:ef:2a:e9:49:83:93:06:03:0e:49:2b:
6f:7c:e4:ee
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNZ/E1MHHlv0E7NvSP0Z9Z3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjIwOTIwMDgyMDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDU3YjdiOWQ1NzExZjk3MjNlZDgwMmUzMDNmODBjMGU1NDQwZWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8JuXb9M0BlCawkhmMzQN0oMzzwF
UGILl9h7uppA3FHJvq1ppF1ZETDK5O6WvMNRT3ZEcGd8zeZNLq26Swqdl2U71Uv3
z6p66Ke249oHpbHtRXFzOQqf6O9IkN8HnQtCm8Bv8fkJPrK/rLLAgbH8GdT2QjiV
UKtM9EqhoPTQVSgJjuq4WxPYKO+pDQHt+5H+ibA1YCLhmomS5semcJ+tORmT8q9M
HYeSrz/fGzIsiMtITAl9kDK8E5DSiA0UP1BaB1QZk4ItOSS/RPSaapoPA+QaSJ8F
RGB7XX51rQfSS1CLdPNwE6hdnp0kOF7sw5PqETuStUX7e2NYn1jwbaHnvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFRXt7nVcR+XI+2ALjA/gMDlRA7uMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvVkZlM3VkVnhINWNqN1lBdU1ELUF3T1ZFRHU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwTtoMA0G
CSqGSIb3DQEBCwUAA4IBAQBexmrz5qeaNgQPO52et+GRYVWwKbB9hen6USiIPoY8
+t3Qf47ArdGy5EPOsjpQHt4tk+Dpd0o13FK8zxGjERAYtCGGg+4Ry1P5PNFwsWt7
gZfKIqtEJEKhmfyJTW4G0N70+KQ7obkhwcsAbye696bagXxD5o8gJEmZEXLT3GYh
DXmiXuRb5BxEBdPn8QUiVYvv8ao1KibrXkk3Tgi37BySdrFnft9NcaSIYRJCk6gL
c2y9sOL3x80x9liGSt2uiajgwalQ7xla5tfh8ikcg9EV+Nnc1DLp0HZTfxB3HeG4
+DRqV0TykCKLjl+qcE9dxhor7yrpSYOTBgMOSStvfOTu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org