Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/x4f1wBH05bnfYwzLECVSU-iewUQ.roa
File: x4f1wBH05bnfYwzLECVSU-iewUQ.roa (raw, json)
Hash identifier: A+ukSpOxZX7MpYZGaTKSX1KWfUxFcgHVQcGnLxLh9QM=
Subject key identifier: C7:87:F5:C0:11:F4:E5:B9:DF:63:0C:CB:10:25:52:53:E8:9E:C1:44
Certificate issuer: /CN=dcdcb02b61e3a15eac373b992e0e1a6545f61e52
Certificate serial: 0A0848D6
Authority key identifier: DC:DC:B0:2B:61:E3:A1:5E:AC:37:3B:99:2E:0E:1A:65:45:F6:1E:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3NywK2HjoV6sNzuZLg4aZUX2HlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/x4f1wBH05bnfYwzLECVSU-iewUQ.roa
Signing time: Sat 01 Jan 2022 06:02:49 +0000
ROA not before: Sat 01 Jan 2022 06:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 194.15.103.0/24 maxlen: 24
194.15.100.0/24 maxlen: 24
194.15.101.0/24 maxlen: 24
194.15.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168315094 (0xa0848d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcdcb02b61e3a15eac373b992e0e1a6545f61e52
Validity
Not Before: Jan 1 06:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c787f5c011f4e5b9df630ccb10255253e89ec144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4d:ba:9c:4c:50:6b:d9:37:20:4c:09:95:9f:
57:86:22:79:15:62:74:a7:50:c0:e7:91:5e:32:9a:
c4:a5:3d:a3:b2:57:cc:32:fd:da:08:bd:91:b2:f7:
43:6d:4d:6f:e0:0b:c3:17:e7:15:5c:63:17:12:45:
04:a1:72:ef:5d:bb:98:73:e2:f0:a7:d7:24:14:d2:
a2:71:4f:64:31:7d:f8:96:9b:bd:5b:1c:5c:30:a8:
72:f5:24:2b:b4:85:99:d2:43:e0:80:8f:9d:95:69:
cc:9e:73:d9:58:ea:78:fe:34:f0:35:b5:42:82:5b:
db:2e:d8:b0:aa:34:f6:4f:8b:95:6e:fb:3a:f7:8b:
78:49:6e:d4:11:13:6c:fa:7e:16:12:bd:d7:20:72:
a6:bf:89:47:c7:0e:66:1b:63:ff:26:bf:cb:78:e8:
c5:93:b7:97:79:6d:f2:86:23:23:f7:7f:bf:af:41:
ff:38:d2:26:64:f9:f3:a6:2d:63:74:85:83:9f:0a:
f3:90:39:7b:5e:5f:d0:2f:5e:79:b3:3c:fc:56:f2:
9f:fe:8b:1d:eb:e9:86:fd:cf:8e:17:51:d8:c9:b5:
da:cc:5e:fd:14:67:7e:f0:38:3e:80:45:62:21:a5:
7a:be:26:74:b9:20:e1:1e:1b:54:2a:c3:dc:6d:0b:
69:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:87:F5:C0:11:F4:E5:B9:DF:63:0C:CB:10:25:52:53:E8:9E:C1:44
X509v3 Authority Key Identifier:
keyid:DC:DC:B0:2B:61:E3:A1:5E:AC:37:3B:99:2E:0E:1A:65:45:F6:1E:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3NywK2HjoV6sNzuZLg4aZUX2HlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/x4f1wBH05bnfYwzLECVSU-iewUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/3NywK2HjoV6sNzuZLg4aZUX2HlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.100.0/22
Signature Algorithm: sha256WithRSAEncryption
05:c9:04:22:3b:45:9d:11:7f:38:6f:36:e5:3d:d0:a1:13:64:
87:1d:88:63:37:0a:bf:78:01:e9:5f:a7:fb:39:f4:4d:df:cd:
63:96:59:6a:ea:55:fb:44:85:bd:7e:11:03:9f:5a:90:d2:3e:
cf:ff:be:41:47:d6:5b:71:9c:aa:1a:9a:1f:d3:8c:e3:9d:b7:
a8:42:39:c4:58:d6:bc:4f:e7:ef:ec:32:b4:cb:d5:2f:bd:e1:
30:74:d7:cc:66:02:7c:a8:bc:da:a5:84:a5:d6:84:bb:6c:35:
ea:d8:12:9b:51:06:3a:cf:7b:3a:30:4b:b2:50:39:7a:b0:d7:
a9:a3:66:a4:ee:4c:54:12:20:73:42:e0:63:ac:ba:00:55:da:
33:6d:76:ee:a0:85:4c:04:b8:51:5b:ca:fe:ae:96:d8:a4:6f:
01:0c:47:6a:e3:ba:ea:4d:54:3b:6c:ca:08:5e:6d:66:7e:82:
4a:30:1a:65:66:7e:c4:7a:9f:b8:0e:af:e3:2e:c6:a0:ee:36:
92:65:ae:d0:43:31:f8:1a:d5:6a:d5:e6:86:c9:1f:ae:f5:26:
ea:07:07:ef:c1:52:04:c2:07:a1:a9:ba:69:22:49:7e:ba:21:
a8:40:87:42:17:9f:b6:eb:7a:2f:87:d3:c9:40:f5:cc:80:3f:
49:9c:27:18
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECghI1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Y2RjYjAyYjYxZTNhMTVlYWMzNzNiOTkyZTBlMWE2NTQ1ZjYxZTUyMB4XDTIyMDEw
MTA2MDI0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzc4N2Y1YzAxMWY0
ZTViOWRmNjMwY2NiMTAyNTUyNTNlODllYzE0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOBNupxMUGvZNyBMCZWfV4YieRVidKdQwOeRXjKaxKU9o7JX
zDL92gi9kbL3Q21Nb+ALwxfnFVxjFxJFBKFy7127mHPi8KfXJBTSonFPZDF9+Jab
vVscXDCocvUkK7SFmdJD4ICPnZVpzJ5z2VjqeP408DW1QoJb2y7YsKo09k+LlW77
OveLeElu1BETbPp+FhK91yBypr+JR8cOZhtj/ya/y3joxZO3l3lt8oYjI/d/v69B
/zjSJmT586YtY3SFg58K85A5e15f0C9eebM8/Fbyn/6LHevphv3PjhdR2Mm12sxe
/RRnfvA4PoBFYiGler4mdLkg4R4bVCrD3G0LaZcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTHh/XAEfTlud9jDMsQJVJT6J7BRDAfBgNVHSMEGDAWgBTc3LArYeOhXqw3
O5kuDhplRfYeUjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNOeXdLMkhqb1Y2c056dVpMZzRhWlVYMkhsSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvMmI0ODIzLTQyNjItNDdkMy05YjgwLTY2NzU4NDc5ODYzZS8x
L3g0ZjF3QkgwNWJuZll3ekxFQ1ZTVS1pZXdVUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
MmI0ODIzLTQyNjItNDdkMy05YjgwLTY2NzU4NDc5ODYzZS8xLzNOeXdLMkhqb1Y2
c056dVpMZzRhWlVYMkhsSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsIPZDANBgkqhkiG9w0BAQsFAAOC
AQEABckEIjtFnRF/OG825T3QoRNkhx2IYzcKv3gB6V+n+zn0Td/NY5ZZaupV+0SF
vX4RA59akNI+z/++QUfWW3GcqhqaH9OM4523qEI5xFjWvE/n7+wytMvVL73hMHTX
zGYCfKi82qWEpdaEu2w16tgSm1EGOs97OjBLslA5erDXqaNmpO5MVBIgc0LgY6y6
AFXaM2127qCFTAS4UVvK/q6W2KRvAQxHauO66k1UO2zKCF5tZn6CSjAaZWZ+xHqf
uA6v4y7GoO42kmWu0EMx+BrVatXmhskfrvUm6gcH78FSBMIHoam6aSJJfrohqECH
Qheftut6L4fTyUD1zIA/SZwnGA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:10 2023 by rpki-client on console-fra.rpki-client.org