Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/5HT5StCQ8GKMom8moThoPz1uGMc.roa
File: 5HT5StCQ8GKMom8moThoPz1uGMc.roa (raw, json)
Hash identifier: 31euXhWLKs7p8k/wlLpWFq2llz0ghl1cuwjVuzBWzJA=
Subject key identifier: E4:74:F9:4A:D0:90:F0:62:8C:A2:6F:26:A1:38:68:3F:3D:6E:18:C7
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 07B0059D
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/5HT5StCQ8GKMom8moThoPz1uGMc.roa
Signing time: Sat 01 Jan 2022 05:57:03 +0000
ROA not before: Sat 01 Jan 2022 05:57:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196886
IP address blocks: 188.255.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128976285 (0x7b0059d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 1 05:57:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e474f94ad090f0628ca26f26a138683f3d6e18c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:54:5f:be:cf:8f:4b:18:e1:e6:0b:9b:ba:
d2:45:99:a1:a0:c7:e3:53:ea:3a:fa:78:e1:d8:5a:
3f:08:11:18:0a:db:ff:17:39:d3:ef:b0:be:3f:52:
c7:f7:cf:3b:09:60:6a:24:97:de:1f:02:3c:0b:42:
1c:ac:3e:69:da:2f:33:1a:42:08:40:49:36:5e:4b:
8d:f4:35:eb:6e:29:7e:d0:63:1e:34:21:0e:1e:ed:
62:d2:ed:58:c3:9a:36:4e:c3:12:13:4b:cb:a7:bb:
6a:10:d5:5e:b0:fb:c1:a5:99:9b:db:d2:46:c2:10:
84:6e:ac:d1:5f:a3:1d:ee:03:8a:9a:84:7b:34:50:
4c:d2:2f:6c:72:35:c2:35:f4:f1:93:c4:05:51:1a:
74:61:d2:15:5f:fc:27:b0:2a:d8:2a:af:4f:7d:9d:
2c:09:27:58:c1:d9:21:81:26:d5:7d:50:4f:3d:89:
db:19:c5:7b:92:f4:0a:38:23:36:de:ad:57:cb:6b:
27:fa:7c:13:67:ab:33:c3:27:77:1e:81:eb:5a:49:
a0:e8:90:d1:dc:96:ff:96:7e:58:f5:ce:14:e8:98:
2e:2a:d6:f4:8d:20:da:3e:cb:bc:ff:d4:a4:06:f7:
d9:5d:6d:f8:a0:44:d6:a6:2d:d1:4a:b6:88:9e:cd:
94:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:74:F9:4A:D0:90:F0:62:8C:A2:6F:26:A1:38:68:3F:3D:6E:18:C7
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/5HT5StCQ8GKMom8moThoPz1uGMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.252.0/24
Signature Algorithm: sha256WithRSAEncryption
45:82:a4:5d:90:52:bf:b0:64:e3:7b:8a:f8:5f:6d:f7:fa:b2:
38:33:c5:b2:8b:f0:77:74:87:a3:94:6f:7a:11:09:12:71:97:
1b:72:67:77:d9:f8:51:d6:6e:b6:05:13:dc:6d:42:4a:fe:12:
c9:e6:b7:f2:d5:a0:5a:60:52:8d:2e:07:31:1f:ba:9a:f0:05:
c4:a6:27:29:97:59:a5:7b:d7:09:32:8a:6c:40:be:8f:fb:3f:
32:f7:50:2c:8a:d8:f3:f9:a8:11:ad:3b:7f:7b:c5:d7:28:61:
c1:b7:08:a3:2b:2a:f0:10:49:f4:1b:4e:f4:1a:06:a3:aa:56:
cf:37:b7:09:ab:37:a5:cd:27:ff:68:6e:d9:e1:1e:12:55:92:
a4:a4:09:ac:65:70:8f:a6:50:5c:41:76:4b:48:cb:65:e9:9e:
73:9f:9a:c2:cc:dc:a6:91:69:82:58:39:4c:69:57:e8:d3:f7:
25:2d:bb:30:95:05:f5:0e:40:97:0d:e1:ef:6c:5c:bc:e3:c2:
ae:6e:77:4c:d7:1b:90:1e:d0:0b:21:e4:02:be:40:18:df:44:
00:e0:fe:71:f0:75:0c:51:4a:c4:e9:42:2d:b5:03:44:c6:23:
bc:8e:e6:1c:49:b1:6e:2d:cf:31:cd:b9:1d:77:12:cb:31:1a:
22:46:20:51
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB7AFnTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Zjg0ZTQ3MzhhNzBlYTM5YzA4Y2VmMjEwNDMyYWUzOTllYzdlOTE1MB4XDTIyMDEw
MTA1NTcwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTQ3NGY5NGFkMDkw
ZjA2MjhjYTI2ZjI2YTEzODY4M2YzZDZlMThjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKP+VF++z49LGOHmC5u60kWZoaDH41PqOvp44dhaPwgRGArb
/xc50++wvj9Sx/fPOwlgaiSX3h8CPAtCHKw+adovMxpCCEBJNl5LjfQ1624pftBj
HjQhDh7tYtLtWMOaNk7DEhNLy6e7ahDVXrD7waWZm9vSRsIQhG6s0V+jHe4DipqE
ezRQTNIvbHI1wjX08ZPEBVEadGHSFV/8J7Aq2CqvT32dLAknWMHZIYEm1X1QTz2J
2xnFe5L0CjgjNt6tV8trJ/p8E2erM8Mndx6B61pJoOiQ0dyW/5Z+WPXOFOiYLirW
9I0g2j7LvP/UpAb32V1t+KBE1qYt0Uq2iJ7NlFECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTkdPlK0JDwYoyibyahOGg/PW4YxzAfBgNVHSMEGDAWgBRvhORzinDqOcCM
7yEEMq45nsfpFTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2I0VGtjNHB3NmpuQWpPOGhCREt1T1o3SDZSVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvZGRmOGIzLTFjMDgtNDk1Yy04ZGRmLWZhZTVkYmVkM2IxYi8x
LzVIVDVTdENROEdLTW9tOG1vVGhvUHoxdUdNYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
ZGRmOGIzLTFjMDgtNDk1Yy04ZGRmLWZhZTVkYmVkM2IxYi8xL2I0VGtjNHB3Nmpu
QWpPOGhCREt1T1o3SDZSVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALz//DANBgkqhkiG9w0BAQsFAAOC
AQEARYKkXZBSv7Bk43uK+F9t9/qyODPFsovwd3SHo5RvehEJEnGXG3Jnd9n4UdZu
tgUT3G1CSv4Syea38tWgWmBSjS4HMR+6mvAFxKYnKZdZpXvXCTKKbEC+j/s/MvdQ
LIrY8/moEa07f3vF1yhhwbcIoysq8BBJ9BtO9BoGo6pWzze3Cas3pc0n/2hu2eEe
ElWSpKQJrGVwj6ZQXEF2S0jLZemec5+awszcppFpglg5TGlX6NP3JS27MJUF9Q5A
lw3h72xcvOPCrm53TNcbkB7QCyHkAr5AGN9EAOD+cfB1DFFKxOlCLbUDRMYjvI7m
HEmxbi3PMc25HXcSyzEaIkYgUQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org