Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/s5dcuKajJeEiCKXMwCEdXWJeG04.roa
File: s5dcuKajJeEiCKXMwCEdXWJeG04.roa (raw, json)
Hash identifier: IeYWEeGE9T5OODtMTnwa8zBWbK9XKWEQPK6WYZKDnXY=
Subject key identifier: B3:97:5C:B8:A6:A3:25:E1:22:08:A5:CC:C0:21:1D:5D:62:5E:1B:4E
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 07C226E4
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/s5dcuKajJeEiCKXMwCEdXWJeG04.roa
Signing time: Wed 02 Mar 2022 16:54:38 +0000
ROA not before: Wed 02 Mar 2022 16:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 194.15.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130164452 (0x7c226e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Mar 2 16:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3975cb8a6a325e12208a5ccc0211d5d625e1b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:74:b5:e3:06:db:2f:fd:f6:41:59:a4:c4:37:
32:a4:91:7a:07:28:6a:2e:5b:3b:10:4b:de:d2:e3:
fd:5b:5f:60:76:68:05:e2:33:b0:41:a8:9d:1e:11:
fe:3c:d8:71:cf:01:d9:a7:0c:6a:bc:58:a5:6e:71:
7e:be:37:0c:cf:1a:a5:7b:94:a2:94:6c:9c:1d:96:
52:24:ab:9d:98:35:40:c5:3d:cf:3a:da:3e:cd:85:
8f:b6:3b:73:7e:c7:6d:b8:47:b4:cf:4a:2f:d0:2c:
a0:30:1d:60:c5:11:38:15:cd:69:7b:84:f4:fd:a9:
17:9c:a4:4a:ed:3b:e3:13:bf:6a:d5:11:e7:d8:c0:
a5:78:be:fc:e8:d6:84:aa:12:3f:d4:6c:e9:9a:63:
0b:76:78:89:e0:f6:32:78:80:4c:fb:25:3c:ee:4f:
9e:77:e1:b7:a3:ea:6d:ed:68:44:12:a3:92:d4:55:
13:f8:35:f3:9c:06:4a:89:2b:fd:1c:f9:fd:96:b9:
7c:b0:6a:bb:ea:e3:a5:81:44:dc:4e:9b:e8:b3:4d:
d9:28:96:f2:61:92:70:7a:c2:10:fd:e7:3d:95:8f:
81:b7:cf:49:9c:e3:a7:5e:e0:4c:22:bf:10:6f:d2:
c5:11:28:5e:9b:86:3d:d2:77:9a:30:a9:b6:28:4b:
f6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:97:5C:B8:A6:A3:25:E1:22:08:A5:CC:C0:21:1D:5D:62:5E:1B:4E
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/s5dcuKajJeEiCKXMwCEdXWJeG04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.52.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:87:74:96:28:b8:2d:1a:a9:c0:72:2d:88:f3:04:c4:a1:37:
68:05:8c:fd:bc:d3:80:77:18:e8:99:7e:b9:c4:b4:77:a8:08:
5b:58:84:73:af:72:e4:be:5b:2e:80:47:a2:a6:52:fd:51:78:
55:83:6e:c0:49:8a:8b:ae:de:d4:14:2b:8a:bb:47:06:c3:24:
0a:bc:f7:6e:a9:bc:83:e7:d1:54:1e:ba:57:cb:e1:ab:99:dd:
80:b7:90:41:97:4f:30:d0:e3:67:f5:43:d7:fa:2f:08:61:9d:
44:10:4e:d1:80:6d:99:15:a8:ba:f5:9d:95:6f:bf:35:78:9e:
6a:97:48:7b:0e:aa:ae:7a:7f:c5:44:d7:b8:2c:5a:82:90:bb:
9c:ad:54:33:ac:88:e3:7b:8c:0a:1b:f4:8b:72:da:ca:00:73:
5d:c8:b7:da:6d:8a:0d:49:88:f1:e1:b0:dd:ee:ce:c6:a4:c1:
39:92:50:7b:62:cf:fc:5c:ef:8e:d9:17:4f:a1:1d:08:81:41:
6f:6b:66:38:eb:2a:3a:e3:3a:ec:9a:9b:a6:80:4f:2b:52:7f:
7f:dc:3a:ec:8b:23:5e:34:12:f6:33:c5:5b:9f:e9:0b:3a:0f:
54:7e:9c:3f:40:c5:ab:8d:81:b5:26:3f:50:3d:32:5c:aa:08:
3e:77:52:cc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB8Im5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZDJhNDc4YmIwYjA4ZTY2MWIwYjJmOWZiZTg5MzViYzljMmEyOGExMB4XDTIyMDMw
MjE2NTQzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjM5NzVjYjhhNmEz
MjVlMTIyMDhhNWNjYzAyMTFkNWQ2MjVlMWI0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK50teMG2y/99kFZpMQ3MqSRegcoai5bOxBL3tLj/VtfYHZo
BeIzsEGonR4R/jzYcc8B2acMarxYpW5xfr43DM8apXuUopRsnB2WUiSrnZg1QMU9
zzraPs2Fj7Y7c37HbbhHtM9KL9AsoDAdYMUROBXNaXuE9P2pF5ykSu074xO/atUR
59jApXi+/OjWhKoSP9Rs6ZpjC3Z4ieD2MniATPslPO5Pnnfht6Pqbe1oRBKjktRV
E/g185wGSokr/Rz5/Za5fLBqu+rjpYFE3E6b6LNN2SiW8mGScHrCEP3nPZWPgbfP
SZzjp17gTCK/EG/SxREoXpuGPdJ3mjCptihL9lsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSzl1y4pqMl4SIIpczAIR1dYl4bTjAfBgNVHSMEGDAWgBSdKkeLsLCOZhsL
L5++iTW8nCoooTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25TcEhpN0N3am1ZYkN5LWZ2b2sxdkp3cUtLRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvNjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8x
L3M1ZGN1S2FqSmVFaUNLWE13Q0VkWFdKZUcwNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
NjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8xL25TcEhpN0N3am1Z
YkN5LWZ2b2sxdkp3cUtLRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcIPNDANBgkqhkiG9w0BAQsFAAOC
AQEAnod0lii4LRqpwHItiPMExKE3aAWM/bzTgHcY6Jl+ucS0d6gIW1iEc69y5L5b
LoBHoqZS/VF4VYNuwEmKi67e1BQrirtHBsMkCrz3bqm8g+fRVB66V8vhq5ndgLeQ
QZdPMNDjZ/VD1/ovCGGdRBBO0YBtmRWouvWdlW+/NXieapdIew6qrnp/xUTXuCxa
gpC7nK1UM6yI43uMChv0i3LaygBzXci32m2KDUmI8eGw3e7OxqTBOZJQe2LP/Fzv
jtkXT6EdCIFBb2tmOOsqOuM67JqbpoBPK1J/f9w67IsjXjQS9jPFW5/pCzoPVH6c
P0DFq42BtSY/UD0yXKoIPndSzA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:33 2023 by rpki-client on console-fra.rpki-client.org