Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/EmdsV_3yiSXpxIFN3nGk7BXhe3M.roa
File: EmdsV_3yiSXpxIFN3nGk7BXhe3M.roa (raw, json)
Hash identifier: NKJJOGY0hquBRxXfiQN0tCzaijBILQUXuF37qBEkMMM=
Subject key identifier: 12:67:6C:57:FD:F2:89:25:E9:C4:81:4D:DE:71:A4:EC:15:E1:7B:73
Certificate issuer: /CN=f5bb189be4c73d21ab956f760baa33e09712d2f4
Certificate serial: 0181F46511397CC09C88E17B8CB8CC4822D2
Authority key identifier: F5:BB:18:9B:E4:C7:3D:21:AB:95:6F:76:0B:AA:33:E0:97:12:D2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9bsYm-THPSGrlW92C6oz4JcS0vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/EmdsV_3yiSXpxIFN3nGk7BXhe3M.roa
Signing time: Tue 12 Jul 2022 21:51:13 +0000
ROA not before: Tue 12 Jul 2022 21:51:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 195.96.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:65:11:39:7c:c0:9c:88:e1:7b:8c:b8:cc:48:22:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5bb189be4c73d21ab956f760baa33e09712d2f4
Validity
Not Before: Jul 12 21:51:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12676c57fdf28925e9c4814dde71a4ec15e17b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0f:fa:31:f5:9b:67:4a:8e:fd:af:04:54:fd:
82:4e:45:19:3b:62:a7:59:73:d0:6a:e1:15:1d:e3:
0c:3e:20:af:3d:a2:8a:ab:82:e5:e8:e3:2f:21:8c:
42:0b:e5:4c:cc:f3:1a:b0:fe:27:9e:00:e1:2f:75:
97:75:93:7d:6d:2b:03:8c:2d:2f:9a:2d:61:6e:cf:
4f:b4:a7:5b:3c:d7:a3:6a:a7:82:8d:d3:c2:07:dc:
2f:7f:4c:5a:eb:33:4a:3f:c2:dc:d4:af:35:4d:c9:
99:8b:e5:2f:62:05:b3:25:89:1b:6e:9f:f4:8f:6e:
84:5e:46:50:dd:13:2a:2d:8e:27:80:2c:9a:23:27:
10:b3:e5:95:92:02:f6:4c:19:d2:20:a2:27:75:d0:
bd:4d:5d:b3:85:f2:42:07:dd:85:2c:37:4b:b9:06:
20:2d:1e:e2:21:62:8d:73:44:2b:98:cd:7a:7a:bf:
cb:50:98:ec:8d:20:06:f3:86:2c:43:e7:16:18:20:
96:13:59:5b:ca:28:53:79:92:1a:33:11:f5:4d:cd:
09:bf:de:be:e7:36:44:fa:b3:e8:6d:77:67:ca:1d:
36:7a:d8:ad:b0:b6:78:8e:cb:df:aa:ce:00:1d:c0:
82:cd:19:72:fa:17:2d:8f:52:08:08:46:c1:e5:d6:
3f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:67:6C:57:FD:F2:89:25:E9:C4:81:4D:DE:71:A4:EC:15:E1:7B:73
X509v3 Authority Key Identifier:
keyid:F5:BB:18:9B:E4:C7:3D:21:AB:95:6F:76:0B:AA:33:E0:97:12:D2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bsYm-THPSGrlW92C6oz4JcS0vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/EmdsV_3yiSXpxIFN3nGk7BXhe3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/9bsYm-THPSGrlW92C6oz4JcS0vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.136.0/24
Signature Algorithm: sha256WithRSAEncryption
79:65:ab:60:d6:44:92:ba:ed:45:94:75:34:c9:b1:42:32:a2:
16:ca:48:7b:47:18:6e:65:50:70:36:8b:21:ab:14:db:16:66:
88:2d:04:f8:38:8d:52:4c:3f:ab:65:47:57:b9:99:3f:2c:4f:
7c:26:0a:ed:f8:2d:60:f8:5f:8b:cc:e1:f6:1c:b0:25:0d:cf:
07:e6:76:90:54:1e:85:6b:61:8f:67:e0:92:56:fb:22:6b:bc:
7e:ae:f1:f0:15:b0:c1:ad:52:35:54:45:58:48:9d:d5:ad:6f:
0a:66:43:53:e0:07:e5:3e:1a:dc:b0:cb:22:97:a9:f4:7d:95:
24:6f:a4:22:4c:1e:3d:9a:0a:f4:17:86:7e:70:3e:0d:eb:4c:
62:53:cd:a0:b3:bc:7b:67:37:da:05:bb:12:be:35:d8:a0:a1:
7e:e2:eb:35:64:61:e4:c3:53:0a:40:5d:ee:22:c8:61:22:2c:
0a:58:49:94:48:b2:88:de:cd:af:c9:3f:fd:5f:fe:e0:38:a3:
36:fe:21:2d:a3:99:93:04:f1:55:49:fa:ec:f6:41:f5:50:c3:
a7:90:11:49:62:73:24:1c:34:97:f4:95:73:9a:38:da:c5:51:
91:a1:ad:d2:78:d3:26:50:e6:ff:f2:ba:1d:6d:cd:68:d8:e7:
03:dc:e5:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYH0ZRE5fMCciOF7jLjMSCLSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1YmIxODliZTRjNzNkMjFhYjk1NmY3NjBiYWEzM2UwOTcx
MmQyZjQwHhcNMjIwNzEyMjE1MTEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjY3NmM1N2ZkZjI4OTI1ZTljNDgxNGRkZTcxYTRlYzE1ZTE3YjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQ/6MfWbZ0qO/a8EVP2CTkUZO2Kn
WXPQauEVHeMMPiCvPaKKq4Ll6OMvIYxCC+VMzPMasP4nngDhL3WXdZN9bSsDjC0v
mi1hbs9PtKdbPNejaqeCjdPCB9wvf0xa6zNKP8Lc1K81TcmZi+UvYgWzJYkbbp/0
j26EXkZQ3RMqLY4ngCyaIycQs+WVkgL2TBnSIKInddC9TV2zhfJCB92FLDdLuQYg
LR7iIWKNc0QrmM16er/LUJjsjSAG84YsQ+cWGCCWE1lbyihTeZIaMxH1Tc0Jv96+
5zZE+rPobXdnyh02etitsLZ4jsvfqs4AHcCCzRly+hctj1IICEbB5dY/tQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBJnbFf98okl6cSBTd5xpOwV4XtzMB8GA1UdIwQY
MBaAFPW7GJvkxz0hq5VvdguqM+CXEtL0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWJzWW0tVEhQU0dybFc5MkM2b3o0SmNTMHZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9lOTZmODQtZDdlMi00ODNhLWJmMTIt
ODA0OTIyMjU1ZmY5LzEvRW1kc1ZfM3lpU1hweElGTjNuR2s3QlhoZTNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9lOTZmODQtZDdlMi00ODNhLWJmMTItODA0OTIyMjU1ZmY5
LzEvOWJzWW0tVEhQU0dybFc5MkM2b3o0SmNTMHZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw2CIMA0G
CSqGSIb3DQEBCwUAA4IBAQB5Zatg1kSSuu1FlHU0ybFCMqIWykh7RxhuZVBwNosh
qxTbFmaILQT4OI1STD+rZUdXuZk/LE98Jgrt+C1g+F+LzOH2HLAlDc8H5naQVB6F
a2GPZ+CSVvsia7x+rvHwFbDBrVI1VEVYSJ3VrW8KZkNT4AflPhrcsMsil6n0fZUk
b6QiTB49mgr0F4Z+cD4N60xiU82gs7x7ZzfaBbsSvjXYoKF+4us1ZGHkw1MKQF3u
IshhIiwKWEmUSLKI3s2vyT/9X/7gOKM2/iEto5mTBPFVSfrs9kH1UMOnkBFJYnMk
HDSX9JVzmjjaxVGRoa3SeNMmUOb/8rodbc1o2OcD3OU5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:15 2023 by rpki-client on console-ams.rpki-client.org