Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/J60ZCXk-7SZWoz1e4IdEZDwqpxE.roa
File: J60ZCXk-7SZWoz1e4IdEZDwqpxE.roa (raw, json)
Hash identifier: TQe4mv1YTltMeQ5IkTI3oIHNOUAd2YwbQCMk2bmvqHE=
Subject key identifier: 27:AD:19:09:79:3E:ED:26:56:A3:3D:5E:E0:87:44:64:3C:2A:A7:11
Certificate issuer: /CN=f42d0cad0eaed1a61f478fb0919c7a4322724695
Certificate serial: 01836010D095BC66E0D8AD3C331D8992ED7F
Authority key identifier: F4:2D:0C:AD:0E:AE:D1:A6:1F:47:8F:B0:91:9C:7A:43:22:72:46:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/J60ZCXk-7SZWoz1e4IdEZDwqpxE.roa
Signing time: Wed 21 Sep 2022 12:40:58 +0000
ROA not before: Wed 21 Sep 2022 12:40:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50379
IP address blocks: 195.191.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:10:d0:95:bc:66:e0:d8:ad:3c:33:1d:89:92:ed:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f42d0cad0eaed1a61f478fb0919c7a4322724695
Validity
Not Before: Sep 21 12:40:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27ad1909793eed2656a33d5ee08744643c2aa711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5b:56:dc:ac:20:08:99:d9:af:72:fb:44:ba:
79:49:c1:e6:be:c2:59:9e:48:d7:bb:bd:db:a8:a9:
8b:12:93:d2:75:42:55:43:63:68:55:6c:ee:05:ea:
d1:ed:9c:ac:11:fe:19:e4:13:68:74:3c:81:f5:55:
d9:1d:f9:60:30:da:51:34:02:10:f1:cd:4a:3f:2c:
cd:fb:cc:7b:29:c9:0f:80:be:b4:82:72:e8:a7:3c:
14:67:0d:bf:7a:4a:2e:67:20:8e:79:50:4d:bc:47:
46:32:ad:8e:62:5c:c5:d3:9d:e4:fa:4e:07:bc:72:
a0:b1:5b:f4:01:fd:84:08:a1:7a:8d:59:32:56:ba:
ae:06:e4:7e:89:e5:c5:7b:f5:0f:d3:73:14:f1:e1:
93:72:db:89:55:99:f6:d7:f6:35:7a:d5:8b:57:8e:
7e:3c:cc:9a:b3:65:15:e1:ec:98:84:31:d1:7c:a6:
92:6f:dc:51:3e:77:e7:aa:32:d2:40:62:69:a5:0c:
44:8d:7c:b4:25:85:1f:bb:6a:1e:a1:01:6a:b8:ca:
c6:e4:3c:20:e2:bb:8a:5b:27:e9:3f:d0:e6:83:ea:
cd:98:0c:70:ea:7b:04:03:4f:16:1a:2b:d7:b0:d4:
f4:14:fe:7d:27:6b:2b:3d:90:69:84:0a:9a:75:b6:
5d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AD:19:09:79:3E:ED:26:56:A3:3D:5E:E0:87:44:64:3C:2A:A7:11
X509v3 Authority Key Identifier:
keyid:F4:2D:0C:AD:0E:AE:D1:A6:1F:47:8F:B0:91:9C:7A:43:22:72:46:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/J60ZCXk-7SZWoz1e4IdEZDwqpxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.60.0/23
Signature Algorithm: sha256WithRSAEncryption
39:08:5c:9f:04:3e:cf:61:85:9f:bc:58:fa:69:5d:ac:92:de:
7a:a9:31:89:57:74:5e:28:f2:be:75:b7:eb:c1:c8:bd:95:8b:
21:59:e7:11:9e:ce:72:4c:6a:4a:e5:3d:75:b2:75:ae:da:b5:
bf:7a:21:d7:d0:9f:db:7b:e1:e5:c7:cc:1c:fd:6e:44:9b:2a:
98:6b:af:1f:46:82:7a:08:98:62:bb:ef:53:90:cf:62:b6:02:
26:4b:3a:2a:f7:96:91:82:57:41:49:7d:ee:8e:8e:f3:2c:53:
80:86:6a:4b:18:79:3e:b4:8f:fb:3c:e6:d3:af:82:20:30:a7:
f1:3e:32:fb:55:3b:91:f3:63:f0:e2:67:c2:bb:f4:f3:1e:e3:
c7:e8:82:70:5b:34:85:08:41:60:0e:79:2c:2c:6d:40:42:1b:
ce:45:be:5f:c5:7b:34:b3:a0:87:e9:56:a8:ae:fd:fa:e9:15:
3e:15:d3:57:52:3e:39:28:6f:4e:e6:66:73:0f:0e:62:a4:ea:
ea:ff:e1:23:69:c2:31:0a:01:28:58:9a:4f:90:65:f0:ff:00:
11:dc:5b:96:a3:64:1b:6d:1a:16:62:3c:b7:66:72:75:9f:07:
0d:f5:5e:85:b8:de:ad:38:d9:96:29:16:6f:19:47:1e:b1:12:
77:85:89:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNgENCVvGbg2K08Mx2Jku1/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0MmQwY2FkMGVhZWQxYTYxZjQ3OGZiMDkxOWM3YTQzMjI3
MjQ2OTUwHhcNMjIwOTIxMTI0MDU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2FkMTkwOTc5M2VlZDI2NTZhMzNkNWVlMDg3NDQ2NDNjMmFhNzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiltW3KwgCJnZr3L7RLp5ScHmvsJZ
nkjXu73bqKmLEpPSdUJVQ2NoVWzuBerR7ZysEf4Z5BNodDyB9VXZHflgMNpRNAIQ
8c1KPyzN+8x7KckPgL60gnLopzwUZw2/ekouZyCOeVBNvEdGMq2OYlzF053k+k4H
vHKgsVv0Af2ECKF6jVkyVrquBuR+ieXFe/UP03MU8eGTctuJVZn21/Y1etWLV45+
PMyas2UV4eyYhDHRfKaSb9xRPnfnqjLSQGJppQxEjXy0JYUfu2oeoQFquMrG5Dwg
4ruKWyfpP9Dmg+rNmAxw6nsEA08WGivXsNT0FP59J2srPZBphAqadbZdPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCetGQl5Pu0mVqM9XuCHRGQ8KqcRMB8GA1UdIwQY
MBaAFPQtDK0OrtGmH0ePsJGcekMickaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUMwTXJRNnUwYVlmUjQtd2taeDZReUp5UnBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9kZmY0ZDAtMWQwYS00OTUxLThiMjct
N2Y3Mzk0YmU4Y2U0LzEvSjYwWkNYay03U1pXb3oxZTRJZEVaRHdxcHhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9kZmY0ZDAtMWQwYS00OTUxLThiMjctN2Y3Mzk0YmU4Y2U0
LzEvOUMwTXJRNnUwYVlmUjQtd2taeDZReUp5UnBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw788MA0G
CSqGSIb3DQEBCwUAA4IBAQA5CFyfBD7PYYWfvFj6aV2skt56qTGJV3ReKPK+dbfr
wci9lYshWecRns5yTGpK5T11snWu2rW/eiHX0J/be+Hlx8wc/W5EmyqYa68fRoJ6
CJhiu+9TkM9itgImSzoq95aRgldBSX3ujo7zLFOAhmpLGHk+tI/7PObTr4IgMKfx
PjL7VTuR82Pw4mfCu/TzHuPH6IJwWzSFCEFgDnksLG1AQhvORb5fxXs0s6CH6Vao
rv366RU+FdNXUj45KG9O5mZzDw5ipOrq/+EjacIxCgEoWJpPkGXw/wAR3FuWo2Qb
bRoWYjy3ZnJ1nwcN9V6FuN6tONmWKRZvGUcesRJ3hYlT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org