Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/zvXJAGQ7q0r0NeH6Of9saJRMlgs.roa
File: zvXJAGQ7q0r0NeH6Of9saJRMlgs.roa (raw, json)
Hash identifier: i49IP7Ko9Fms4ZIXOOdIpbRFnnHENC+PY12XLMioCVg=
Subject key identifier: CE:F5:C9:00:64:3B:AB:4A:F4:35:E1:FA:39:FF:6C:68:94:4C:96:0B
Certificate issuer: /CN=605bc01303905800620ac26c1468b141f8074514
Certificate serial: 01536D
Authority key identifier: 60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/zvXJAGQ7q0r0NeH6Of9saJRMlgs.roa
Signing time: Mon 02 May 2022 11:01:34 +0000
ROA not before: Mon 02 May 2022 11:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57028
IP address blocks: 194.6.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86893 (0x1536d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605bc01303905800620ac26c1468b141f8074514
Validity
Not Before: May 2 11:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cef5c900643bab4af435e1fa39ff6c68944c960b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:50:26:ca:dc:24:59:7b:78:6f:a5:80:f2:c4:
81:fb:9e:75:68:96:21:b7:eb:06:f4:19:19:c5:24:
5e:78:33:d6:5e:af:e1:2b:3b:db:4f:52:27:e1:11:
bb:0b:e7:6d:ca:fc:db:8d:4e:e9:c4:00:bd:49:e1:
ee:52:34:5f:56:0d:09:55:2e:9a:31:2f:5c:b2:a1:
9e:47:ba:96:6b:9d:9c:e8:bd:d7:c6:b9:83:44:ea:
f6:b4:44:d9:d6:ef:09:4a:0a:d5:87:8b:11:8e:8c:
6b:fc:bf:3f:b6:92:4e:77:9a:13:73:41:21:64:88:
57:9b:e4:7e:53:7b:e3:56:ba:04:f2:aa:a3:de:9a:
09:26:84:68:eb:7c:4b:d9:60:8b:df:cb:6f:20:96:
60:c3:73:22:f8:45:22:1e:98:b9:ae:e1:52:93:eb:
29:ba:4b:6a:82:80:f4:9f:fc:99:5b:19:4e:80:09:
d1:d9:f3:5e:b3:87:3c:44:55:e4:c2:3f:1c:4e:1d:
37:e0:e3:dd:a3:4b:a7:68:43:42:e3:9b:80:af:98:
1c:f8:89:5d:b2:aa:7e:c7:47:9c:81:6d:c7:63:e0:
e9:28:73:ef:7d:af:79:35:8b:4f:c4:cf:51:dc:00:
62:0d:da:50:79:17:11:fd:38:a4:e4:9b:6d:55:3d:
b0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F5:C9:00:64:3B:AB:4A:F4:35:E1:FA:39:FF:6C:68:94:4C:96:0B
X509v3 Authority Key Identifier:
keyid:60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/zvXJAGQ7q0r0NeH6Of9saJRMlgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.203.0/24
Signature Algorithm: sha256WithRSAEncryption
34:e3:a1:43:bd:06:51:f3:fb:00:54:ea:9b:81:ae:a9:d5:82:
7e:32:e1:2f:cc:3a:15:4b:46:b0:02:ce:c6:87:44:b8:55:49:
e0:d3:09:b3:f0:2e:f3:64:9d:0c:20:33:0e:62:fa:30:a7:48:
77:1b:c0:73:76:ea:40:bb:aa:7a:97:a1:89:22:de:01:a1:98:
40:7a:b2:28:85:f6:2b:33:83:09:77:2f:35:75:0e:44:3d:51:
b9:8b:e5:08:cd:81:ab:c8:55:ac:51:2b:26:2b:ec:a9:70:3b:
8d:ff:3f:e4:b7:20:d8:de:37:08:37:c6:ce:a3:30:d8:ac:11:
0b:39:3f:dc:04:23:8a:d6:9a:4b:f0:72:6e:0f:a8:61:ed:51:
72:28:88:bf:db:07:c1:8e:7d:2a:e2:07:d4:ff:27:10:9f:c5:
27:3f:f4:92:19:aa:1b:56:44:2c:c0:07:6e:03:33:7b:a6:c6:
2d:db:8c:c7:b9:6e:ef:e0:3e:e0:c9:53:5d:df:ac:71:34:e6:
3c:bd:23:7a:12:18:d4:45:34:ec:96:0a:5f:d7:a5:33:79:aa:
62:ba:f6:e6:e7:e8:69:1a:2e:24:48:70:24:cd:c9:7d:d7:27:
bd:fa:ea:06:b0:37:bf:2e:50:7c:cb:fc:4c:e3:41:17:91:2d:
67:1a:1b:59
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAVNtMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDYw
NWJjMDEzMDM5MDU4MDA2MjBhYzI2YzE0NjhiMTQxZjgwNzQ1MTQwHhcNMjIwNTAy
MTEwMTM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhjZWY1YzkwMDY0M2Jh
YjRhZjQzNWUxZmEzOWZmNmM2ODk0NGM5NjBiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAslAmytwkWXt4b6WA8sSB+551aJYht+sG9BkZxSReeDPWXq/h
KzvbT1In4RG7C+dtyvzbjU7pxAC9SeHuUjRfVg0JVS6aMS9csqGeR7qWa52c6L3X
xrmDROr2tETZ1u8JSgrVh4sRjoxr/L8/tpJOd5oTc0EhZIhXm+R+U3vjVroE8qqj
3poJJoRo63xL2WCL38tvIJZgw3Mi+EUiHpi5ruFSk+spuktqgoD0n/yZWxlOgAnR
2fNes4c8RFXkwj8cTh034OPdo0unaENC45uAr5gc+Ildsqp+x0ecgW3HY+DpKHPv
fa95NYtPxM9R3ABiDdpQeRcR/Tik5JttVT2wEQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFM71yQBkO6tK9DXh+jn/bGiUTJYLMB8GA1UdIwQYMBaAFGBbwBMDkFgAYgrC
bBRosUH4B0UUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WUZ2QUV3T1FXQUJpQ3NKc0ZHaXhRZmdIUlJRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Zi8zYTdhN2ItZGQ5ZC00ZDdjLTg2YzQtMTNjNDI4YWQ1ZmRiLzEv
enZYSkFHUTdxMHIwTmVINk9mOXNhSlJNbGdzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8z
YTdhN2ItZGQ5ZC00ZDdjLTg2YzQtMTNjNDI4YWQ1ZmRiLzEvWUZ2QUV3T1FXQUJp
Q3NKc0ZHaXhRZmdIUlJRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgbLMA0GCSqGSIb3DQEBCwUAA4IB
AQA046FDvQZR8/sAVOqbga6p1YJ+MuEvzDoVS0awAs7Gh0S4VUng0wmz8C7zZJ0M
IDMOYvowp0h3G8BzdupAu6p6l6GJIt4BoZhAerIohfYrM4MJdy81dQ5EPVG5i+UI
zYGryFWsUSsmK+ypcDuN/z/ktyDY3jcIN8bOozDYrBELOT/cBCOK1ppL8HJuD6hh
7VFyKIi/2wfBjn0q4gfU/ycQn8UnP/SSGaobVkQswAduAzN7psYt24zHuW7v4D7g
yVNd36xxNOY8vSN6EhjURTTslgpf16Uzeapiuvbm5+hpGi4kSHAkzcl91ye9+uoG
sDe/LlB8y/xM40EXkS1nGhtZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:23 2024 by rpki-client on console-ams.rpki-client.org