Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/VLd-uO-ioNeQtMiOMijDDPQRoRk.roa
File: VLd-uO-ioNeQtMiOMijDDPQRoRk.roa (raw, json)
Hash identifier: SuVdQVn6OWASf/+hHsOQspoyySK5zGWk5oemmCbkFks=
Subject key identifier: 54:B7:7E:B8:EF:A2:A0:D7:90:B4:C8:8E:32:28:C3:0C:F4:11:A1:19
Certificate issuer: /CN=ad80679b96ca322bfa85500cab206c6d47412edf
Certificate serial: 0ADA3BD5
Authority key identifier: AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/VLd-uO-ioNeQtMiOMijDDPQRoRk.roa
Signing time: Sat 01 Jan 2022 11:01:57 +0000
ROA not before: Sat 01 Jan 2022 11:01:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48096
IP address blocks: 195.42.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182074325 (0xada3bd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad80679b96ca322bfa85500cab206c6d47412edf
Validity
Not Before: Jan 1 11:01:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54b77eb8efa2a0d790b4c88e3228c30cf411a119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5c:58:d9:bc:ca:35:e1:e7:a8:b5:88:d3:6b:
35:49:de:bf:ef:9e:e6:08:17:a7:fd:52:f4:a5:9f:
73:f6:14:60:33:c2:aa:9d:f8:3f:88:83:94:5e:ae:
dc:68:ec:37:cd:c2:7e:24:71:ae:5d:e9:03:e9:7f:
6a:b9:12:4d:b7:02:d7:55:33:b3:5a:ca:c3:ae:fd:
5a:1b:29:08:d5:b9:8e:5f:81:cb:58:23:67:3e:3d:
74:ca:c7:a6:a7:f9:98:59:76:85:d5:8e:ce:bf:24:
8b:49:f7:54:c5:65:42:ad:ca:7c:c4:0f:56:94:c5:
60:4b:7f:c0:c8:98:ba:8e:0c:90:a3:87:e9:bb:20:
53:e7:0d:72:cc:7e:61:d7:e1:7c:3f:07:ff:65:60:
49:7f:eb:ff:cb:df:50:f8:4d:9b:87:08:63:9d:fa:
0a:a8:c9:85:cc:45:de:b3:da:a8:5b:fa:93:b7:da:
f8:3a:2c:df:ec:e7:37:47:e3:ff:ad:e2:32:4a:f5:
fc:e8:94:ef:91:ea:27:e1:e9:a6:5f:31:06:32:48:
bf:97:5c:ec:e3:e7:74:08:23:9c:1c:85:d1:19:09:
3f:b9:51:12:e4:f0:4c:fa:e4:a4:e9:0c:5c:13:8c:
75:61:d6:26:7d:82:c9:5e:f5:4e:9a:f3:0a:30:9a:
b1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B7:7E:B8:EF:A2:A0:D7:90:B4:C8:8E:32:28:C3:0C:F4:11:A1:19
X509v3 Authority Key Identifier:
keyid:AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/VLd-uO-ioNeQtMiOMijDDPQRoRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.243.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:c6:ce:3d:f3:3b:d2:1c:ef:52:7a:cd:4b:68:35:68:2e:f1:
7f:aa:c8:0f:1d:f4:05:9c:53:81:d5:3a:29:ac:4f:4e:97:ec:
d2:c8:45:f5:3d:1f:dd:b0:2b:c1:25:61:55:70:e2:3f:94:e2:
60:47:ab:58:a9:29:ce:ff:8e:74:c7:23:b5:9f:57:6a:f2:1e:
17:b8:4b:72:9d:29:b9:4a:e0:de:06:ab:19:f0:51:3f:15:06:
71:25:76:11:be:55:1e:86:c0:08:ec:84:24:5e:e4:28:8b:3a:
15:31:21:49:9d:e8:40:4f:b6:6c:72:56:58:e5:f1:a8:a5:83:
84:63:fe:99:34:cb:fd:6c:57:2d:54:31:04:2a:ee:d2:88:37:
76:e6:35:a5:71:34:2b:6f:fa:72:10:98:94:7e:0f:e2:df:70:
7c:e4:8d:14:12:7d:7b:ca:65:1f:66:00:c4:8f:0a:8b:1d:a6:
57:8c:df:56:62:9d:d6:6d:44:9a:76:49:16:22:af:4a:a9:6a:
9d:fa:6a:2b:62:32:73:d4:cf:b2:25:ac:85:cf:d6:20:be:08:
27:d4:8f:fb:b8:46:ec:a5:8f:7a:2e:3d:30:b4:ba:a9:2c:e3:
91:8a:15:db:f3:a2:e9:9e:21:3e:5d:36:02:f5:c9:5b:2c:4f:
8a:2a:aa:9a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECto71TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZDgwNjc5Yjk2Y2EzMjJiZmE4NTUwMGNhYjIwNmM2ZDQ3NDEyZWRmMB4XDTIyMDEw
MTExMDE1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTRiNzdlYjhlZmEy
YTBkNzkwYjRjODhlMzIyOGMzMGNmNDExYTExOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOBcWNm8yjXh56i1iNNrNUnev++e5ggXp/1S9KWfc/YUYDPC
qp34P4iDlF6u3GjsN83CfiRxrl3pA+l/arkSTbcC11Uzs1rKw679WhspCNW5jl+B
y1gjZz49dMrHpqf5mFl2hdWOzr8ki0n3VMVlQq3KfMQPVpTFYEt/wMiYuo4MkKOH
6bsgU+cNcsx+YdfhfD8H/2VgSX/r/8vfUPhNm4cIY536CqjJhcxF3rPaqFv6k7fa
+Dos3+znN0fj/63iMkr1/OiU75HqJ+Hppl8xBjJIv5dc7OPndAgjnByF0RkJP7lR
EuTwTPrkpOkMXBOMdWHWJn2CyV71TprzCjCasUsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRUt36476Kg15C0yI4yKMMM9BGhGTAfBgNVHSMEGDAWgBStgGeblsoyK/qF
UAyrIGxtR0Eu3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JZQm5tNWJLTWl2NmhWQU1xeUJzYlVkQkx0OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjgvYTEzOTlhLWVhNmItNGEwOS04YjQwLTkwYzBiZGUwOTg2OS8x
L1ZMZC11Ty1pb05lUXRNaU9NaWpERFBRUm9Say5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjgv
YTEzOTlhLWVhNmItNGEwOS04YjQwLTkwYzBiZGUwOTg2OS8xL3JZQm5tNWJLTWl2
NmhWQU1xeUJzYlVkQkx0OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMq8zANBgkqhkiG9w0BAQsFAAOC
AQEALcbOPfM70hzvUnrNS2g1aC7xf6rIDx30BZxTgdU6KaxPTpfs0shF9T0f3bAr
wSVhVXDiP5TiYEerWKkpzv+OdMcjtZ9XavIeF7hLcp0puUrg3garGfBRPxUGcSV2
Eb5VHobACOyEJF7kKIs6FTEhSZ3oQE+2bHJWWOXxqKWDhGP+mTTL/WxXLVQxBCru
0og3duY1pXE0K2/6chCYlH4P4t9wfOSNFBJ9e8plH2YAxI8Kix2mV4zfVmKd1m1E
mnZJFiKvSqlqnfpqK2Iyc9TPsiWshc/WIL4IJ9SP+7hG7KWPei49MLS6qSzjkYoV
2/Oi6Z4hPl02AvXJWyxPiiqqmg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:32 2024 by rpki-client on console-ams.rpki-client.org