Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/jPcC4lz9BbXiLI7Kg-UY6XglDfA.roa
File: jPcC4lz9BbXiLI7Kg-UY6XglDfA.roa (raw, json)
Hash identifier: p03o34uT/NOTvdFUcyI4j7/SN3+F2sUUsMEjE1oLwVM=
Subject key identifier: 8C:F7:02:E2:5C:FD:05:B5:E2:2C:8E:CA:83:E5:18:E9:78:25:0D:F0
Certificate issuer: /CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Certificate serial: 01838819149FE89FCB058F4D6D015D594D4E
Authority key identifier: 65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/jPcC4lz9BbXiLI7Kg-UY6XglDfA.roa
Signing time: Thu 29 Sep 2022 07:14:48 +0000
ROA not before: Thu 29 Sep 2022 07:14:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 194.147.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:88:19:14:9f:e8:9f:cb:05:8f:4d:6d:01:5d:59:4d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Validity
Not Before: Sep 29 07:14:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cf702e25cfd05b5e22c8eca83e518e978250df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:75:2b:24:93:4c:eb:3d:fa:93:4f:a4:41:d2:
a4:e3:d7:9f:32:d4:eb:24:81:ed:57:32:8e:68:e9:
7a:67:b5:d4:6e:38:19:ac:ac:a4:03:e3:82:d9:9c:
e2:b6:50:a1:82:0b:b9:4a:0c:01:d7:15:ac:72:8e:
3c:ca:76:1f:f5:fc:19:5f:7d:36:15:66:7a:d4:18:
d6:06:1a:4d:f7:27:2e:66:b3:0b:4a:c4:df:39:cc:
f8:b2:98:19:bf:c4:b2:6c:ed:f8:a3:ff:64:67:b0:
da:c1:79:36:ea:2a:b5:5b:0e:ce:3c:e0:7d:19:f1:
d4:d9:cb:74:dd:f9:80:83:af:bd:8b:a2:d7:52:6b:
d4:36:bd:b4:84:cd:8c:25:d9:01:69:ef:12:2e:ce:
7a:79:33:2b:c4:16:56:86:fe:5d:2c:88:ac:5b:17:
41:6a:85:33:39:23:3e:8e:a1:e6:a4:24:69:d2:ea:
d6:12:02:7e:bb:cd:c2:b2:08:98:1b:81:a9:1e:f4:
d1:eb:5a:8e:99:20:b1:d1:89:9e:23:b2:38:70:49:
60:ab:f3:3a:56:e7:0d:f4:f6:74:8d:d1:36:32:65:
ae:9a:a0:87:28:3d:f1:05:85:10:42:8d:ca:1e:0f:
2b:a3:2f:cc:75:ba:25:6f:f0:04:58:67:c2:24:46:
ee:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F7:02:E2:5C:FD:05:B5:E2:2C:8E:CA:83:E5:18:E9:78:25:0D:F0
X509v3 Authority Key Identifier:
keyid:65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/jPcC4lz9BbXiLI7Kg-UY6XglDfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.248.0/24
Signature Algorithm: sha256WithRSAEncryption
35:df:74:22:d9:cd:b7:32:46:43:fd:cc:fc:d2:26:c1:19:45:
62:7c:70:ff:41:1f:a7:be:68:0b:8a:b2:53:be:f0:55:68:1f:
09:aa:90:f9:7e:41:e0:cb:9d:7a:2c:18:d9:a9:bf:c4:4d:c5:
4f:ce:3f:fc:75:49:9f:3d:a6:01:de:ae:33:6e:14:dc:36:7c:
91:2f:da:dd:13:c0:40:32:88:94:ed:ce:22:95:1d:fe:02:c7:
f0:bf:93:65:c4:1f:1f:37:8e:61:03:5e:3f:1b:09:57:c3:f9:
37:27:95:32:1e:41:48:0b:40:51:af:35:ed:5e:7d:e0:eb:bc:
01:de:57:24:ce:fb:ca:9d:1b:59:d1:95:26:2d:af:59:30:8d:
03:04:1f:46:db:bb:c3:fa:ea:1d:6d:0d:53:32:3e:ff:77:fb:
3a:86:bd:be:a8:db:2a:05:f7:6c:89:27:02:31:0e:6e:39:4e:
c5:c8:3e:11:ba:53:0b:96:1e:28:d7:9c:0f:a6:a1:f5:89:98:
52:33:21:06:1c:b0:bc:e0:0e:dd:19:1f:ec:e1:44:02:69:b0:
04:df:44:55:74:3b:80:3c:49:57:13:8f:10:fb:54:dc:3d:57:
a4:8c:30:79:fd:31:4d:07:96:df:23:f3:11:a0:56:cc:b3:82:
55:71:8e:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOIGRSf6J/LBY9NbQFdWU1OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1OGMwYzQ5OWE4ZTY5ZDk3OTVmNGJkMGI1YmYxNjgyYjFm
MDBmOWEwHhcNMjIwOTI5MDcxNDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Y2Y3MDJlMjVjZmQwNWI1ZTIyYzhlY2E4M2U1MThlOTc4MjUwZGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnUrJJNM6z36k0+kQdKk49efMtTr
JIHtVzKOaOl6Z7XUbjgZrKykA+OC2ZzitlChggu5SgwB1xWsco48ynYf9fwZX302
FWZ61BjWBhpN9ycuZrMLSsTfOcz4spgZv8SybO34o/9kZ7DawXk26iq1Ww7OPOB9
GfHU2ct03fmAg6+9i6LXUmvUNr20hM2MJdkBae8SLs56eTMrxBZWhv5dLIisWxdB
aoUzOSM+jqHmpCRp0urWEgJ+u83CsgiYG4GpHvTR61qOmSCx0YmeI7I4cElgq/M6
VucN9PZ0jdE2MmWumqCHKD3xBYUQQo3KHg8roy/Mdbolb/AEWGfCJEbu9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIz3AuJc/QW14iyOyoPlGOl4JQ3wMB8GA1UdIwQY
MBaAFGWMDEmajmnZeV9L0LW/FoKx8A+aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWll3TVNacU9hZGw1WDB2UXRiOFdnckh3RDVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9lNjY5MTMtOGY1Zi00N2VmLWE3MzAt
MzJjMWIyY2VlNTkzLzEvalBjQzRsejlCYlhpTEk3S2ctVVk2WGdsRGZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9lNjY5MTMtOGY1Zi00N2VmLWE3MzAtMzJjMWIyY2VlNTkz
LzEvWll3TVNacU9hZGw1WDB2UXRiOFdnckh3RDVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpP4MA0G
CSqGSIb3DQEBCwUAA4IBAQA133Qi2c23MkZD/cz80ibBGUVifHD/QR+nvmgLirJT
vvBVaB8JqpD5fkHgy516LBjZqb/ETcVPzj/8dUmfPaYB3q4zbhTcNnyRL9rdE8BA
MoiU7c4ilR3+Asfwv5NlxB8fN45hA14/GwlXw/k3J5UyHkFIC0BRrzXtXn3g67wB
3lckzvvKnRtZ0ZUmLa9ZMI0DBB9G27vD+uodbQ1TMj7/d/s6hr2+qNsqBfdsiScC
MQ5uOU7FyD4RulMLlh4o15wPpqH1iZhSMyEGHLC84A7dGR/s4UQCabAE30RVdDuA
PElXE48Q+1TcPVekjDB5/TFNB5bfI/MRoFbMs4JVcY4z
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:27 2024 by rpki-client on console-ams.rpki-client.org