Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/nA-zvUH_vOVBznDQ55Mvif1qcoU.roa
File: nA-zvUH_vOVBznDQ55Mvif1qcoU.roa (raw, json)
Hash identifier: lQkWhDDTWvE57P/bJfYhPeNgzbHgcFPfIZGYtlAVKMc=
Subject key identifier: 9C:0F:B3:BD:41:FF:BC:E5:41:CE:70:D0:E7:93:2F:89:FD:6A:72:85
Certificate issuer: /CN=109192c073862e6220c5f9106d7c55e3fc6c5d4b
Certificate serial: E1AD9A
Authority key identifier: 10:91:92:C0:73:86:2E:62:20:C5:F9:10:6D:7C:55:E3:FC:6C:5D:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJGSwHOGLmIgxfkQbXxV4_xsXUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/nA-zvUH_vOVBznDQ55Mvif1qcoU.roa
Signing time: Sat 01 Jan 2022 09:59:31 +0000
ROA not before: Sat 01 Jan 2022 09:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61425
IP address blocks: 5.198.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14790042 (0xe1ad9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=109192c073862e6220c5f9106d7c55e3fc6c5d4b
Validity
Not Before: Jan 1 09:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c0fb3bd41ffbce541ce70d0e7932f89fd6a7285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9f:ff:a1:4b:9f:cd:6d:b0:3c:cd:05:12:52:
21:55:ac:5b:d5:18:91:44:55:e8:c2:1c:25:a2:07:
3b:0e:44:bb:23:e9:24:5d:b0:92:b3:69:87:b3:bb:
50:c4:bb:d0:9b:b1:08:31:51:1d:30:6b:05:e5:bd:
d1:41:7e:8e:09:b4:e8:5d:19:60:ec:d6:70:5f:56:
03:c6:c4:72:ed:5c:d4:e4:3b:40:cf:2a:d6:fb:8a:
0c:a6:56:02:53:0e:ca:32:6d:eb:89:87:2f:75:5d:
3e:91:24:5f:d7:7b:57:86:87:53:d7:61:a6:2e:af:
12:95:df:93:2a:77:ea:cf:d6:50:73:37:05:db:1c:
72:d1:7c:88:eb:7b:68:5c:1b:1a:b1:04:f2:44:1f:
92:a4:ff:14:54:e6:8f:a5:fe:d1:39:aa:3b:77:bf:
90:ae:bf:f7:c4:9e:eb:b9:91:1d:71:84:8f:33:12:
a6:98:b4:1e:a0:52:02:c3:e4:0c:9d:34:cc:88:d3:
12:18:3a:53:e5:fb:b2:cb:41:8a:03:9a:7d:33:a9:
83:ec:7f:fc:21:79:c5:39:b1:19:e3:f0:dc:12:6d:
1b:9a:f3:d5:21:d6:9c:69:85:e5:e6:3b:b9:7c:69:
56:7c:03:8f:75:3e:f9:4e:9e:21:ab:ba:f8:b6:8e:
13:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0F:B3:BD:41:FF:BC:E5:41:CE:70:D0:E7:93:2F:89:FD:6A:72:85
X509v3 Authority Key Identifier:
keyid:10:91:92:C0:73:86:2E:62:20:C5:F9:10:6D:7C:55:E3:FC:6C:5D:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJGSwHOGLmIgxfkQbXxV4_xsXUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/nA-zvUH_vOVBznDQ55Mvif1qcoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/EJGSwHOGLmIgxfkQbXxV4_xsXUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.198.128.0/22
Signature Algorithm: sha256WithRSAEncryption
41:97:0d:89:ee:51:56:5a:1c:73:31:f2:61:46:b4:be:24:b7:
e2:ef:3a:91:1b:0b:94:57:55:86:9d:e2:33:c7:7c:db:e1:43:
92:a5:9e:df:ee:c0:0f:53:40:b1:d2:00:2d:f5:e3:97:39:31:
1d:15:22:0e:87:20:cf:6d:10:22:57:af:63:42:3b:c6:23:8d:
cb:73:98:20:aa:d5:fe:d5:a1:e9:95:d3:e6:4d:16:f8:69:41:
05:e2:b8:04:f4:db:9c:f9:1a:77:88:fc:f9:be:49:5c:4a:f2:
02:4a:a1:6f:56:a2:4a:3f:8b:e7:4a:34:04:a5:18:a7:e1:65:
80:f5:62:29:17:29:a4:5c:a5:8b:31:4a:ad:61:cc:b7:18:18:
31:e3:c3:6c:4f:4e:5a:40:f9:a6:af:e3:9b:e4:f8:00:b7:7d:
a9:2d:94:4a:10:b4:e4:fe:ab:ed:0e:b4:ed:a5:d0:cc:86:b3:
ac:6b:78:20:db:7f:41:be:d5:ff:7a:c3:50:71:09:d6:7d:10:
c6:5e:3a:27:b8:eb:c3:2b:b3:08:93:c1:9a:10:43:19:71:fb:
ea:71:a4:a6:ec:13:20:e7:fb:96:71:90:8a:4d:d9:4b:04:e4:
05:a8:03:1f:3f:df:44:1f:7f:b1:73:31:c7:da:6a:ef:92:ad:
eb:87:72:4b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOGtmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MDkxOTJjMDczODYyZTYyMjBjNWY5MTA2ZDdjNTVlM2ZjNmM1ZDRiMB4XDTIyMDEw
MTA5NTkzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWMwZmIzYmQ0MWZm
YmNlNTQxY2U3MGQwZTc5MzJmODlmZDZhNzI4NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqf/6FLn81tsDzNBRJSIVWsW9UYkURV6MIcJaIHOw5EuyPp
JF2wkrNph7O7UMS70JuxCDFRHTBrBeW90UF+jgm06F0ZYOzWcF9WA8bEcu1c1OQ7
QM8q1vuKDKZWAlMOyjJt64mHL3VdPpEkX9d7V4aHU9dhpi6vEpXfkyp36s/WUHM3
BdscctF8iOt7aFwbGrEE8kQfkqT/FFTmj6X+0TmqO3e/kK6/98Se67mRHXGEjzMS
ppi0HqBSAsPkDJ00zIjTEhg6U+X7sstBigOafTOpg+x//CF5xTmxGePw3BJtG5rz
1SHWnGmF5eY7uXxpVnwDj3U++U6eIau6+LaOE5kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBScD7O9Qf+85UHOcNDnky+J/WpyhTAfBgNVHSMEGDAWgBQQkZLAc4YuYiDF
+RBtfFXj/GxdSzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VKR1N3SE9HTG1JZ3hma1FiWHhWNF94c1hVcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvNTNjMDUxLTU1NzItNGY4My1hN2Q2LWU2ZmU2OTFkOTQ4OS8x
L25BLXp2VUhfdk9WQnpuRFE1NU12aWYxcWNvVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
NTNjMDUxLTU1NzItNGY4My1hN2Q2LWU2ZmU2OTFkOTQ4OS8xL0VKR1N3SE9HTG1J
Z3hma1FiWHhWNF94c1hVcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgXGgDANBgkqhkiG9w0BAQsFAAOC
AQEAQZcNie5RVlocczHyYUa0viS34u86kRsLlFdVhp3iM8d82+FDkqWe3+7AD1NA
sdIALfXjlzkxHRUiDocgz20QIlevY0I7xiONy3OYIKrV/tWh6ZXT5k0W+GlBBeK4
BPTbnPkad4j8+b5JXEryAkqhb1aiSj+L50o0BKUYp+FlgPViKRcppFylizFKrWHM
txgYMePDbE9OWkD5pq/jm+T4ALd9qS2UShC05P6r7Q607aXQzIazrGt4INt/Qb7V
/3rDUHEJ1n0Qxl46J7jrwyuzCJPBmhBDGXH76nGkpuwTIOf7lnGQik3ZSwTkBagD
Hz/fRB9/sXMxx9pq75Kt64dySw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org