Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/qPhYtsgHD3rd4Wu29apeYzHu6uE.roa
File: qPhYtsgHD3rd4Wu29apeYzHu6uE.roa (raw, json)
Hash identifier: LGhOslBtMGDxXIUID2hxJVwU7hQtAGbwa4BA21QToqA=
Subject key identifier: A8:F8:58:B6:C8:07:0F:7A:DD:E1:6B:B6:F5:AA:5E:63:31:EE:EA:E1
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01826D501D7679D617EF66F1C9E63B7B5C57
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/qPhYtsgHD3rd4Wu29apeYzHu6uE.roa
Signing time: Fri 05 Aug 2022 09:22:23 +0000
ROA not before: Fri 05 Aug 2022 09:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.81.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:50:1d:76:79:d6:17:ef:66:f1:c9:e6:3b:7b:5c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Aug 5 09:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8f858b6c8070f7adde16bb6f5aa5e6331eeeae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1d:40:6f:bf:2a:5b:80:3f:a4:9c:d3:b5:83:
a6:8b:9f:e6:66:30:ed:a6:e8:31:c2:89:cb:4d:e6:
a0:44:62:60:be:a2:32:55:99:1d:b8:cc:1a:6f:79:
fe:97:f4:fa:dc:82:60:a4:66:34:c4:b7:64:c5:8a:
c0:5c:90:71:8c:1b:84:f9:91:79:a6:a4:58:c8:fb:
41:d7:a0:cf:c0:05:97:85:57:ab:79:fe:b7:47:fd:
42:c4:42:46:f2:d8:e3:a5:db:20:79:f0:a9:e3:9b:
02:58:ed:dd:d6:3b:4e:c9:d5:83:07:a8:5c:9b:f7:
b3:77:cd:18:87:66:01:5d:f7:e8:c6:ef:42:af:e2:
66:bc:3a:e0:8f:50:a6:f8:e8:61:dc:83:86:2d:5b:
9a:26:58:97:82:f5:81:ce:20:66:ae:1f:51:90:42:
75:39:31:24:a9:dc:bb:4e:be:e1:fb:45:0f:f4:45:
d5:14:ae:5f:3b:60:15:35:9c:c7:3d:c1:25:de:9f:
a4:38:b5:70:23:07:f7:13:15:96:67:03:9f:30:d1:
60:af:dd:57:e1:24:54:1a:10:be:c1:66:fd:56:39:
8b:23:a9:eb:3b:a3:c7:8a:b6:2e:b5:e4:c8:13:70:
82:69:c2:92:ac:5c:23:f9:78:38:98:88:cc:b1:ca:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F8:58:B6:C8:07:0F:7A:DD:E1:6B:B6:F5:AA:5E:63:31:EE:EA:E1
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/qPhYtsgHD3rd4Wu29apeYzHu6uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.127.0/24
Signature Algorithm: sha256WithRSAEncryption
54:7e:a6:53:0a:12:a5:44:76:20:84:ce:a6:b6:4b:52:6d:6f:
3d:e9:23:98:35:23:2f:07:d8:92:87:d5:32:48:52:13:e2:94:
34:01:17:1f:cd:32:c8:1c:a3:9b:42:f1:78:ab:0a:14:76:47:
5c:ab:78:d9:1b:cb:2d:71:13:21:f7:a7:4a:b3:24:16:fa:c5:
31:91:d5:20:48:5e:39:29:f1:a3:a6:a6:1e:3d:cb:f7:06:d3:
5d:91:35:f9:b1:42:65:99:69:cc:64:c1:64:91:db:d1:e8:64:
4f:b2:03:42:49:34:84:0c:5a:19:16:ac:1f:0c:d0:8c:9e:9b:
92:7d:f0:0e:9d:06:f0:c4:b2:73:67:9f:13:ce:d7:ca:8f:09:
26:cc:b8:39:b6:1f:77:5b:ad:b7:07:db:3a:2f:68:8c:a7:c5:
e7:9d:5f:f3:8b:13:8f:32:c8:75:85:84:f9:e7:dd:7d:4b:3f:
a7:56:92:fa:94:17:7b:e8:cf:cf:45:d6:34:6d:9d:13:5e:3f:
11:c8:9a:05:31:cc:56:15:95:ae:dc:e0:3b:4b:2c:1b:a3:4b:
7e:5d:aa:71:2a:30:ab:74:1e:52:50:37:42:27:cf:25:2a:4b:
c9:19:bc:96:0f:9c:6a:3f:6e:90:93:4f:00:93:60:5f:29:ab:
7d:05:22:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJtUB12edYX72bxyeY7e1xXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZTU5ZDI0NWQxNTBkYzM4YzQ4OTYyNjNkY2JkY2JiZDY3
NDcwYTcwHhcNMjIwODA1MDkyMjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGY4NThiNmM4MDcwZjdhZGRlMTZiYjZmNWFhNWU2MzMxZWVlYWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkR1Ab78qW4A/pJzTtYOmi5/mZjDt
pugxwonLTeagRGJgvqIyVZkduMwab3n+l/T63IJgpGY0xLdkxYrAXJBxjBuE+ZF5
pqRYyPtB16DPwAWXhVeref63R/1CxEJG8tjjpdsgefCp45sCWO3d1jtOydWDB6hc
m/ezd80Yh2YBXffoxu9Cr+JmvDrgj1Cm+Ohh3IOGLVuaJliXgvWBziBmrh9RkEJ1
OTEkqdy7Tr7h+0UP9EXVFK5fO2AVNZzHPcEl3p+kOLVwIwf3ExWWZwOfMNFgr91X
4SRUGhC+wWb9VjmLI6nrO6PHirYuteTIE3CCacKSrFwj+Xg4mIjMscoTtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKj4WLbIBw963eFrtvWqXmMx7urhMB8GA1UdIwQY
MBaAFJTlnSRdFQ3DjEiWJj3L3LvWdHCnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDIt
ZWU5NWI2Y2MzNDc0LzEvcVBoWXRzZ0hEM3JkNFd1MjlhcGVZekh1NnVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDItZWU5NWI2Y2MzNDc0
LzEvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVF/MA0G
CSqGSIb3DQEBCwUAA4IBAQBUfqZTChKlRHYghM6mtktSbW896SOYNSMvB9iSh9Uy
SFIT4pQ0ARcfzTLIHKObQvF4qwoUdkdcq3jZG8stcRMh96dKsyQW+sUxkdUgSF45
KfGjpqYePcv3BtNdkTX5sUJlmWnMZMFkkdvR6GRPsgNCSTSEDFoZFqwfDNCMnpuS
ffAOnQbwxLJzZ58TztfKjwkmzLg5th93W623B9s6L2iMp8XnnV/zixOPMsh1hYT5
5919Sz+nVpL6lBd76M/PRdY0bZ0TXj8RyJoFMcxWFZWu3OA7Sywbo0t+XapxKjCr
dB5SUDdCJ88lKkvJGbyWD5xqP26Qk08Ak2BfKat9BSJQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:39 2024 by rpki-client on console-ams.rpki-client.org