Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/_5MyIh4YoxAUGIXIMU6frXjlSyo.roa
File: _5MyIh4YoxAUGIXIMU6frXjlSyo.roa (raw, json)
Hash identifier: WeB1+6RMk9+uSAcvPCGOElY8DgrC6UuH6AjirCsY+Io=
Subject key identifier: FF:93:32:22:1E:18:A3:10:14:18:85:C8:31:4E:9F:AD:78:E5:4B:2A
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B14DDEC
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/_5MyIh4YoxAUGIXIMU6frXjlSyo.roa
Signing time: Sat 01 Jan 2022 13:58:10 +0000
ROA not before: Sat 01 Jan 2022 13:58:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205598
IP address blocks: 188.114.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722787820 (0x2b14ddec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff9332221e18a310141885c8314e9fad78e54b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9d:ef:86:c3:15:92:19:7e:5e:6b:72:ed:fe:
6a:60:18:b2:60:48:68:19:7f:23:c6:ff:be:67:3e:
29:de:ad:4d:d4:a2:92:14:ee:21:59:78:c8:fd:dc:
27:20:18:df:9f:5a:2d:9e:99:65:6c:b2:aa:72:38:
6c:cf:d2:db:fc:73:af:a9:82:7d:b2:78:fe:b8:cc:
e0:41:b8:08:00:ae:ce:5b:03:c0:39:59:15:6e:a7:
db:9c:ad:e1:a7:41:62:f9:eb:36:05:24:c5:7c:d2:
61:32:98:49:07:02:3f:a9:9e:c8:7d:cf:5b:b2:e7:
a3:84:bd:92:83:6c:4e:d7:eb:c8:4c:cb:ee:65:75:
30:b9:19:f6:99:e6:67:92:e4:32:d2:0a:b1:c0:f9:
11:96:92:de:90:33:d4:33:c6:85:82:8b:fb:9d:a7:
8d:7f:61:e5:ac:cc:b2:82:9a:1e:9b:28:53:43:29:
4a:3f:c0:8f:c7:40:a1:00:69:a0:33:7a:fe:6f:9a:
c2:ea:20:5a:49:90:ff:6c:ac:9e:5a:ad:bc:01:49:
a9:35:8e:1d:32:67:9b:96:6c:95:c7:d1:fe:85:de:
69:6e:dd:8d:a2:48:75:79:f9:95:ca:1f:ea:25:11:
78:11:d6:dc:85:42:76:58:32:51:48:0d:ed:d6:3e:
31:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:93:32:22:1E:18:A3:10:14:18:85:C8:31:4E:9F:AD:78:E5:4B:2A
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/_5MyIh4YoxAUGIXIMU6frXjlSyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.87.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:0b:ef:d2:e1:27:33:2b:47:73:87:31:a5:28:0b:09:45:59:
d7:33:57:09:e5:62:8b:39:60:25:cf:80:6a:5d:6c:59:f2:65:
07:09:69:ad:15:53:e9:80:97:41:21:a3:5f:eb:6f:28:06:14:
fd:76:a2:dd:f9:b7:13:a2:66:78:83:ea:a7:bb:51:6e:c5:32:
41:a0:bd:dc:16:08:cf:b3:6b:13:58:6f:06:14:ce:a9:b2:c2:
1a:ef:9a:6a:df:45:08:ff:59:77:c0:bd:8b:47:b3:e5:0f:d3:
8e:24:07:5a:e5:ba:cc:85:8b:65:95:d3:62:c8:8d:7e:5a:ca:
c4:5a:f0:ae:6a:6c:4b:df:07:f7:0a:db:9d:d1:93:1d:6f:b0:
1b:1f:e7:7f:25:32:87:bb:73:df:e9:7f:9e:e7:0e:85:5a:03:
2a:dc:ba:ea:d8:47:3f:b1:b9:4e:d9:d8:65:e7:4e:a6:66:bb:
98:91:9c:4f:02:28:4b:03:4a:6e:13:c8:ba:6d:62:03:05:d3:
ee:9d:f8:4e:04:0a:df:85:aa:57:ef:4d:d3:0f:db:98:4f:b3:
d4:96:3c:96:2c:4d:3c:0a:6c:cd:b6:3e:01:53:f1:bd:58:59:
ee:40:38:9e:5f:02:c8:9b:95:83:b4:cd:cd:28:ab:26:34:f4:
93:79:03:06
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKxTd7DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTk1NDQ5OTk3NzI3OGE3NTU3MGIzNDAzZjRkM2FhMDBiMWIzNmU4MB4XDTIyMDEw
MTEzNTgxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmY5MzMyMjIxZTE4
YTMxMDE0MTg4NWM4MzE0ZTlmYWQ3OGU1NGIyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJKd74bDFZIZfl5rcu3+amAYsmBIaBl/I8b/vmc+Kd6tTdSi
khTuIVl4yP3cJyAY359aLZ6ZZWyyqnI4bM/S2/xzr6mCfbJ4/rjM4EG4CACuzlsD
wDlZFW6n25yt4adBYvnrNgUkxXzSYTKYSQcCP6meyH3PW7Lno4S9koNsTtfryEzL
7mV1MLkZ9pnmZ5LkMtIKscD5EZaS3pAz1DPGhYKL+52njX9h5azMsoKaHpsoU0Mp
Sj/Aj8dAoQBpoDN6/m+awuogWkmQ/2ysnlqtvAFJqTWOHTJnm5ZslcfR/oXeaW7d
jaJIdXn5lcof6iUReBHW3IVCdlgyUUgN7dY+MS0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT/kzIiHhijEBQYhcgxTp+teOVLKjAfBgNVHSMEGDAWgBS5lUSZl3J4p1Vw
s0A/TTqgCxs26DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8x
L181TXlJaDRZb3hBVUdJWElNVTZmclhqbFN5by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Nzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8xL3VaVkVtWmR5ZUtk
VmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALxyVzANBgkqhkiG9w0BAQsFAAOC
AQEAbwvv0uEnMytHc4cxpSgLCUVZ1zNXCeViizlgJc+Aal1sWfJlBwlprRVT6YCX
QSGjX+tvKAYU/Xai3fm3E6JmeIPqp7tRbsUyQaC93BYIz7NrE1hvBhTOqbLCGu+a
at9FCP9Zd8C9i0ez5Q/TjiQHWuW6zIWLZZXTYsiNflrKxFrwrmpsS98H9wrbndGT
HW+wGx/nfyUyh7tz3+l/nucOhVoDKty66thHP7G5TtnYZedOpma7mJGcTwIoSwNK
bhPIum1iAwXT7p34TgQK34WqV+9N0w/bmE+z1JY8lixNPApszbY+AVPxvVhZ7kA4
nl8CyJuVg7TNzSirJjT0k3kDBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org