Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/9OLegeCtzdWNvcM_G-XfdZzd4Vs.roa
File: 9OLegeCtzdWNvcM_G-XfdZzd4Vs.roa (raw, json)
Hash identifier: XgZhMZtWdeOncg92HYgRSG0yS1p+qDCOp7iPcOZcD1k=
Subject key identifier: F4:E2:DE:81:E0:AD:CD:D5:8D:BD:C3:3F:1B:E5:DF:75:9C:DD:E1:5B
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: E367
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/9OLegeCtzdWNvcM_G-XfdZzd4Vs.roa
Signing time: Thu 27 Jan 2022 14:11:58 +0000
ROA not before: Thu 27 Jan 2022 14:11:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 94.143.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58215 (0xe367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Jan 27 14:11:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4e2de81e0adcdd58dbdc33f1be5df759cdde15b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:89:42:16:58:71:98:91:19:87:b5:72:8c:
05:da:c8:83:3b:1d:97:fc:43:fe:1b:df:12:bf:8a:
e9:16:9f:5a:da:43:cf:a2:87:b4:54:ec:93:03:ee:
05:01:4f:ea:1a:66:dc:68:14:db:d6:fe:58:7b:a8:
86:af:85:48:a2:12:4d:79:fb:60:f6:14:db:4f:c4:
59:ef:95:72:43:2b:5f:42:64:5b:06:92:76:9b:d0:
1e:3b:cb:b4:25:d9:9f:98:2c:ea:9f:c8:c0:81:7e:
a1:75:59:40:0c:9f:74:3e:17:ee:42:d1:1c:cc:22:
88:6e:9c:30:a8:36:5c:d9:5a:fc:86:1c:e2:69:1f:
06:0f:81:c0:86:92:07:dd:c3:e2:fa:03:3f:59:9d:
4f:05:06:c1:c1:b5:99:28:d3:16:05:ee:d6:d3:d4:
e0:17:75:91:60:77:f2:63:0f:b6:cf:4e:ed:97:d1:
5a:51:a8:25:87:2e:b2:f0:9b:a2:c7:ff:76:1f:8b:
47:0c:57:4c:3f:36:bf:d4:e1:a2:01:5c:2b:94:79:
c0:b4:ee:ad:c1:df:b2:95:6c:92:fa:44:a4:ea:ba:
89:ea:73:4d:88:ab:1d:05:d8:6f:c0:41:5e:41:e3:
fb:76:54:da:97:31:3d:cc:63:e6:91:39:f0:fa:78:
63:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E2:DE:81:E0:AD:CD:D5:8D:BD:C3:3F:1B:E5:DF:75:9C:DD:E1:5B
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/9OLegeCtzdWNvcM_G-XfdZzd4Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.225.0/24
Signature Algorithm: sha256WithRSAEncryption
49:21:86:67:d7:49:0f:68:60:96:d2:d6:f5:ee:9a:29:a5:78:
ba:25:f3:54:b1:80:2e:f5:00:f1:23:63:12:07:9f:94:06:6f:
52:09:5e:0b:32:49:07:5d:2c:bb:6a:22:7b:5b:5a:af:38:c4:
80:28:80:b6:ee:c1:ac:ce:e9:ba:e2:d0:0e:0d:24:44:24:c0:
e7:75:7b:01:6e:a2:c8:ae:d3:0c:6a:3f:0b:5a:b1:df:b0:3f:
69:3c:89:52:56:47:49:ba:f7:c9:30:d0:1e:df:5c:11:a4:50:
56:04:9f:07:a0:f9:62:40:4b:ab:88:c8:f7:ec:b0:a1:12:6d:
d5:c8:47:8f:36:63:9d:58:5c:8a:0f:fa:af:2f:5d:97:ea:23:
ac:1e:b1:f0:2d:08:b0:96:7c:8c:6a:6c:c7:1b:25:e8:c4:c1:
b5:c7:f7:2f:5a:19:6a:b7:49:c5:7d:ce:ba:21:b8:02:84:f4:
0c:2b:85:71:27:91:db:61:08:f8:92:b6:fc:33:ec:2b:38:13:
04:d3:cc:d9:b4:aa:5f:30:bc:88:af:94:3a:9c:e8:89:bc:34:
b2:c3:32:7c:2c:2a:00:36:e0:00:e7:77:10:e8:64:15:67:45:
ed:b8:d7:15:ff:8a:17:23:fd:63:83:88:d1:fc:53:55:df:a7:
20:5d:c1:e5
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAONnMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGZm
NDRkYmFjYTU2ZGFjMzE5NDAxZjY4YTUwZDkxN2Y1NDI0NjExYWQwHhcNMjIwMTI3
MTQxMTU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmNGUyZGU4MWUwYWRj
ZGQ1OGRiZGMzM2YxYmU1ZGY3NTljZGRlMTViMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA2AWJQhZYcZiRGYe1cowF2siDOx2X/EP+G98Sv4rpFp9a2kPP
ooe0VOyTA+4FAU/qGmbcaBTb1v5Ye6iGr4VIohJNeftg9hTbT8RZ75VyQytfQmRb
BpJ2m9AeO8u0JdmfmCzqn8jAgX6hdVlADJ90PhfuQtEczCKIbpwwqDZc2Vr8hhzi
aR8GD4HAhpIH3cPi+gM/WZ1PBQbBwbWZKNMWBe7W09TgF3WRYHfyYw+2z07tl9Fa
Uaglhy6y8Juix/92H4tHDFdMPza/1OGiAVwrlHnAtO6twd+ylWyS+kSk6rqJ6nNN
iKsdBdhvwEFeQeP7dlTalzE9zGPmkTnw+nhjOwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFPTi3oHgrc3Vjb3DPxvl33Wc3eFbMB8GA1UdIwQYMBaAFP9E26ylbawxlAH2
ilDZF/VCRhGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
XzBUYnJLVnRyREdVQWZhS1VOa1g5VUpHRWEwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Zi81M2E5NDctZmQwMy00MDE0LTk4MjctYzVkODk1MDgxOGVjLzEv
OU9MZWdlQ3R6ZFdOdmNNX0ctWGZkWnpkNFZzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi81
M2E5NDctZmQwMy00MDE0LTk4MjctYzVkODk1MDgxOGVjLzEvXzBUYnJLVnRyREdV
QWZhS1VOa1g5VUpHRWEwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXo/hMA0GCSqGSIb3DQEBCwUAA4IB
AQBJIYZn10kPaGCW0tb17poppXi6JfNUsYAu9QDxI2MSB5+UBm9SCV4LMkkHXSy7
aiJ7W1qvOMSAKIC27sGszum64tAODSREJMDndXsBbqLIrtMMaj8LWrHfsD9pPIlS
VkdJuvfJMNAe31wRpFBWBJ8HoPliQEuriMj37LChEm3VyEePNmOdWFyKD/qvL12X
6iOsHrHwLQiwlnyMamzHGyXoxMG1x/cvWhlqt0nFfc66IbgChPQMK4VxJ5HbYQj4
krb8M+wrOBME08zZtKpfMLyIr5Q6nOiJvDSywzJ8LCoANuAA53cQ6GQVZ0XtuNcV
/4oXI/1jg4jR/FNV36cgXcHl
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org