Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/a7e850-00be-4dc2-8c41-3866b95f485f/1/7V5u_9sGquGV6KUpXaallhwShY4.roa
File: 7V5u_9sGquGV6KUpXaallhwShY4.roa (raw, json)
Hash identifier: PqCqbiEXuprMHhGmndxB31twwdR30T4TB3c7xUEnOXc=
Subject key identifier: ED:5E:6E:FF:DB:06:AA:E1:95:E8:A5:29:5D:A6:A5:96:1C:12:85:8E
Certificate issuer: /CN=5df40ee7489e95c57f104271919da268bc513f9b
Certificate serial: 0108C37C
Authority key identifier: 5D:F4:0E:E7:48:9E:95:C5:7F:10:42:71:91:9D:A2:68:BC:51:3F:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfQO50ielcV_EEJxkZ2iaLxRP5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/a7e850-00be-4dc2-8c41-3866b95f485f/1/7V5u_9sGquGV6KUpXaallhwShY4.roa
Signing time: Tue 08 Mar 2022 11:58:47 +0000
ROA not before: Tue 08 Mar 2022 11:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207673
IP address blocks: 194.76.58.0/23 maxlen: 23
194.76.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17351548 (0x108c37c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df40ee7489e95c57f104271919da268bc513f9b
Validity
Not Before: Mar 8 11:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed5e6effdb06aae195e8a5295da6a5961c12858e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:83:c0:52:3c:32:b5:63:2d:0c:d3:6d:d8:4f:
40:6c:c3:85:54:d6:b4:80:bb:44:56:db:19:ee:8e:
b7:cd:1d:6f:04:1f:4f:8a:44:8e:26:c8:e8:cc:35:
da:1a:60:7e:b6:b6:30:8f:86:2f:de:58:51:7f:a4:
7a:da:3d:78:82:27:87:80:27:f7:88:aa:43:6e:36:
db:68:d5:9d:32:e7:7b:9d:59:e9:db:c8:ef:f5:00:
b1:9d:a3:5b:d5:16:2c:76:ed:6b:4a:db:66:00:f4:
de:96:4f:72:85:0d:2f:db:70:f9:ba:c0:46:f2:8d:
c5:ff:57:fc:69:e2:5c:ea:62:fd:78:68:1f:bf:03:
ab:02:71:21:ee:0d:9f:1d:24:41:16:23:ec:19:f1:
f2:e4:29:9d:d1:ce:29:43:b2:e8:9a:2a:c0:7c:41:
4d:f9:36:42:1a:df:46:0a:c8:d1:0c:08:ef:b2:19:
33:c6:5b:02:0f:15:2a:79:82:9b:3f:52:89:a2:de:
bd:dc:61:4b:af:1d:45:57:07:b8:3e:3c:ee:2a:aa:
3c:38:10:bd:16:10:79:73:ac:ed:04:bc:fd:de:a0:
d1:56:6b:46:f5:0f:91:98:da:a8:78:54:b7:24:43:
ff:f5:c9:dd:e4:43:82:81:a7:c1:52:3c:66:f6:a4:
2e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:5E:6E:FF:DB:06:AA:E1:95:E8:A5:29:5D:A6:A5:96:1C:12:85:8E
X509v3 Authority Key Identifier:
keyid:5D:F4:0E:E7:48:9E:95:C5:7F:10:42:71:91:9D:A2:68:BC:51:3F:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfQO50ielcV_EEJxkZ2iaLxRP5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/a7e850-00be-4dc2-8c41-3866b95f485f/1/7V5u_9sGquGV6KUpXaallhwShY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/a7e850-00be-4dc2-8c41-3866b95f485f/1/XfQO50ielcV_EEJxkZ2iaLxRP5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.58.0/23
194.76.104.0/23
Signature Algorithm: sha256WithRSAEncryption
52:b5:8d:65:72:7b:bf:65:56:ec:90:03:1d:19:80:2a:b6:85:
6b:2b:5f:a2:57:8e:ff:3f:71:50:16:2c:b0:c8:fe:34:a6:f0:
d5:78:e7:ae:38:6d:69:5f:81:50:25:66:15:0d:6d:0b:f4:ee:
4a:da:1b:9a:9f:89:9a:d4:69:61:3d:57:1d:5d:07:c5:ec:ab:
b2:af:20:58:9f:1f:68:a7:53:67:ab:0b:cc:12:d8:2d:5b:f4:
10:58:ac:c0:f4:af:ba:66:b1:98:5a:c9:92:33:72:4e:22:af:
e9:cc:29:67:26:c1:37:f1:a3:31:76:ae:12:27:09:19:d4:c8:
2e:f6:c1:b0:fe:79:cc:48:81:c1:47:4e:a2:da:92:47:46:6d:
10:2b:11:3d:1c:c6:bf:13:22:b0:0d:33:16:46:09:d4:b1:eb:
a3:eb:16:52:02:58:9b:58:d4:66:8a:5b:3b:b3:06:a4:57:79:
ec:42:70:98:c0:c8:12:12:79:e0:f7:9a:b1:1d:09:cf:14:43:
a1:ca:8e:84:0e:2e:5b:45:68:b4:6f:7a:46:98:ed:bd:2e:20:
51:2b:ec:ca:ad:34:8b:e0:67:11:ca:11:4f:9d:99:e3:f5:8c:
9b:8f:ed:c6:8e:fd:fe:1c:ad:a9:6b:43:d4:3f:74:eb:40:53:
5b:aa:0c:d6
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAQjDfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZGY0MGVlNzQ4OWU5NWM1N2YxMDQyNzE5MTlkYTI2OGJjNTEzZjliMB4XDTIyMDMw
ODExNTg0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWQ1ZTZlZmZkYjA2
YWFlMTk1ZThhNTI5NWRhNmE1OTYxYzEyODU4ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMmDwFI8MrVjLQzTbdhPQGzDhVTWtIC7RFbbGe6Ot80dbwQf
T4pEjibI6Mw12hpgfra2MI+GL95YUX+keto9eIInh4An94iqQ24222jVnTLne51Z
6dvI7/UAsZ2jW9UWLHbta0rbZgD03pZPcoUNL9tw+brARvKNxf9X/GniXOpi/Xho
H78DqwJxIe4Nnx0kQRYj7Bnx8uQpndHOKUOy6JoqwHxBTfk2QhrfRgrI0QwI77IZ
M8ZbAg8VKnmCmz9SiaLevdxhS68dRVcHuD487iqqPDgQvRYQeXOs7QS8/d6g0VZr
RvUPkZjaqHhUtyRD//XJ3eRDgoGnwVI8ZvakLnsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTtXm7/2waq4ZXopSldpqWWHBKFjjAfBgNVHSMEGDAWgBRd9A7nSJ6VxX8Q
QnGRnaJovFE/mzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hmUU81MGllbGNWX0VFSnhrWjJpYUx4UlA1cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYTdlODUwLTAwYmUtNGRjMi04YzQxLTM4NjZiOTVmNDg1Zi8x
LzdWNXVfOXNHcXVHVjZLVXBYYWFsbGh3U2hZNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YTdlODUwLTAwYmUtNGRjMi04YzQxLTM4NjZiOTVmNDg1Zi8xL1hmUU81MGllbGNW
X0VFSnhrWjJpYUx4UlA1cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcJMOgMEAcJMaDANBgkqhkiG9w0B
AQsFAAOCAQEAUrWNZXJ7v2VW7JADHRmAKraFaytfoleO/z9xUBYssMj+NKbw1Xjn
rjhtaV+BUCVmFQ1tC/TuStobmp+JmtRpYT1XHV0Hxeyrsq8gWJ8faKdTZ6sLzBLY
LVv0EFiswPSvumaxmFrJkjNyTiKv6cwpZybBN/GjMXauEicJGdTILvbBsP55zEiB
wUdOotqSR0ZtECsRPRzGvxMisA0zFkYJ1LHro+sWUgJYm1jUZopbO7MGpFd57EJw
mMDIEhJ54PeasR0JzxRDocqOhA4uW0VotG96RpjtvS4gUSvsyq00i+BnEcoRT52Z
4/WMm4/txo79/hytqWtD1D9060BTW6oM1g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org