Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/smzouPlJH2exQ-XDru6F_dx0XWM.roa
File: smzouPlJH2exQ-XDru6F_dx0XWM.roa (raw, json)
Hash identifier: vAtXEttwX0u3i/Hv/fuTLInUlIJInECkgrsXuDxBVSU=
Subject key identifier: B2:6C:E8:B8:F9:49:1F:67:B1:43:E5:C3:AE:EE:85:FD:DC:74:5D:63
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01827C3D884709687759CEC313995785EB23
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/smzouPlJH2exQ-XDru6F_dx0XWM.roa
Signing time: Mon 08 Aug 2022 06:56:23 +0000
ROA not before: Mon 08 Aug 2022 06:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209737
IP address blocks: 86.62.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:3d:88:47:09:68:77:59:ce:c3:13:99:57:85:eb:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Aug 8 06:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b26ce8b8f9491f67b143e5c3aeee85fddc745d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9a:8f:de:ec:cf:49:a0:3e:cb:1a:26:20:0e:
fc:37:76:49:55:19:56:61:ab:a5:d5:79:a3:18:d7:
f8:21:bd:49:3a:a6:4d:d9:48:68:60:04:7c:01:c5:
05:a0:ce:a0:0c:ed:18:92:a5:73:23:6f:f8:b6:8c:
f5:23:15:4d:fe:9b:e9:62:9e:bd:46:b1:1a:9b:f9:
a1:41:71:ec:16:ce:97:65:9e:e2:49:12:3c:ea:bf:
86:ba:f0:cd:31:6c:db:f4:ce:11:2a:8f:79:4a:55:
6b:44:dd:3f:db:5e:e7:ad:8c:2d:e9:42:c6:e3:85:
1d:55:3f:2a:a4:76:98:62:83:8a:23:09:10:5c:ea:
2f:ca:87:ed:bb:f3:6d:07:8b:9f:1e:09:99:fa:5f:
49:cd:30:5e:fe:04:85:b7:d5:3b:1e:ad:51:90:61:
37:c4:d0:66:f3:a5:86:e1:4d:9d:47:7a:ef:a0:d4:
c6:12:20:47:f3:f8:d4:9e:7e:8f:10:a9:d3:aa:d2:
dd:67:ed:08:b8:6f:cf:f1:8b:b4:a7:e4:f3:c4:3c:
fc:ae:e4:bd:5c:95:74:b5:86:e0:a9:24:b2:f5:51:
2b:78:b8:84:dd:f7:c5:57:dc:b7:9f:c9:4a:85:12:
fc:50:4d:4f:0c:1f:73:86:7f:1b:0a:9a:c3:a4:a8:
15:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6C:E8:B8:F9:49:1F:67:B1:43:E5:C3:AE:EE:85:FD:DC:74:5D:63
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/smzouPlJH2exQ-XDru6F_dx0XWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.29.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:45:3d:4c:43:11:27:14:3c:80:f5:eb:1f:85:f5:60:96:f4:
6c:8e:c3:d4:1f:d6:37:4b:3d:cd:6d:94:1b:b4:ae:5b:39:5e:
1f:71:3e:71:6f:4e:3e:7c:75:79:7e:c9:87:9e:b7:df:9b:c7:
5b:c7:96:14:37:2d:8c:ac:e4:39:e4:38:48:15:b7:42:0e:38:
08:79:e7:c6:a6:b9:13:7e:36:39:28:01:cd:9d:b4:2a:78:2c:
c4:13:da:41:10:eb:58:c6:eb:7d:15:23:b8:d6:84:a3:4a:9e:
f2:fb:ef:aa:e6:93:fa:78:8f:ba:ab:ea:43:9a:f3:1d:06:9f:
ef:b3:c9:ba:07:75:e3:2b:7a:14:8e:44:d8:5e:a1:82:06:08:
73:76:94:48:fe:cc:b3:75:8b:3e:1b:dd:e5:6b:1a:28:8e:29:
ad:f7:e3:a4:d3:b5:65:d5:40:56:c7:82:29:63:14:36:d8:07:
7c:1b:22:47:55:f1:18:66:9a:f0:8d:52:a9:75:fc:7d:bc:85:
d0:3a:3d:9e:35:57:89:11:bf:8c:3e:9a:8c:ce:d8:ae:7f:cc:
1a:e8:ed:a6:a3:90:14:3f:44:a4:7b:20:b3:dc:26:67:e7:49:
0b:fc:8f:5e:88:7e:ff:97:70:ab:e5:49:eb:84:08:4a:ab:eb:
cf:10:a4:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJ8PYhHCWh3Wc7DE5lXhesjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZTU5ZDI0NWQxNTBkYzM4YzQ4OTYyNjNkY2JkY2JiZDY3
NDcwYTcwHhcNMjIwODA4MDY1NjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjZjZThiOGY5NDkxZjY3YjE0M2U1YzNhZWVlODVmZGRjNzQ1ZDYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZqP3uzPSaA+yxomIA78N3ZJVRlW
Yaul1XmjGNf4Ib1JOqZN2UhoYAR8AcUFoM6gDO0YkqVzI2/4toz1IxVN/pvpYp69
RrEam/mhQXHsFs6XZZ7iSRI86r+GuvDNMWzb9M4RKo95SlVrRN0/217nrYwt6ULG
44UdVT8qpHaYYoOKIwkQXOovyoftu/NtB4ufHgmZ+l9JzTBe/gSFt9U7Hq1RkGE3
xNBm86WG4U2dR3rvoNTGEiBH8/jUnn6PEKnTqtLdZ+0IuG/P8Yu0p+TzxDz8ruS9
XJV0tYbgqSSy9VEreLiE3ffFV9y3n8lKhRL8UE1PDB9zhn8bCprDpKgVVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLJs6Lj5SR9nsUPlw67uhf3cdF1jMB8GA1UdIwQY
MBaAFJTlnSRdFQ3DjEiWJj3L3LvWdHCnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDIt
ZWU5NWI2Y2MzNDc0LzEvc216b3VQbEpIMmV4US1YRHJ1NkZfZHgwWFdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDItZWU5NWI2Y2MzNDc0
LzEvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVj4dMA0G
CSqGSIb3DQEBCwUAA4IBAQCLRT1MQxEnFDyA9esfhfVglvRsjsPUH9Y3Sz3NbZQb
tK5bOV4fcT5xb04+fHV5fsmHnrffm8dbx5YUNy2MrOQ55DhIFbdCDjgIeefGprkT
fjY5KAHNnbQqeCzEE9pBEOtYxut9FSO41oSjSp7y+++q5pP6eI+6q+pDmvMdBp/v
s8m6B3XjK3oUjkTYXqGCBghzdpRI/syzdYs+G93laxoojimt9+Ok07Vl1UBWx4Ip
YxQ22Ad8GyJHVfEYZprwjVKpdfx9vIXQOj2eNVeJEb+MPpqMztiuf8wa6O2mo5AU
P0SkeyCz3CZn50kL/I9eiH7/l3Cr5UnrhAhKq+vPEKQ5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:09 2023 by rpki-client on console-fra.rpki-client.org