Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f9ae1a-8e52-48d3-a58d-a250da13d68a/1/VVhSoWxfXZOGs8wIotVoP2naTPo.roa
File: VVhSoWxfXZOGs8wIotVoP2naTPo.roa (raw, json)
Hash identifier: 2Re0hOTlvaEckEFzyqRCKJUWJoSsKCPPQfRm+aITEMI=
Subject key identifier: 55:58:52:A1:6C:5F:5D:93:86:B3:CC:08:A2:D5:68:3F:69:DA:4C:FA
Certificate issuer: /CN=1375b40938d87cd332726aaa481aa71ae6e98717
Certificate serial: 904740
Authority key identifier: 13:75:B4:09:38:D8:7C:D3:32:72:6A:AA:48:1A:A7:1A:E6:E9:87:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3W0CTjYfNMycmqqSBqnGubphxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f9ae1a-8e52-48d3-a58d-a250da13d68a/1/VVhSoWxfXZOGs8wIotVoP2naTPo.roa
Signing time: Sat 01 Jan 2022 02:58:23 +0000
ROA not before: Sat 01 Jan 2022 02:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209031
IP address blocks: 194.113.62.0/23 maxlen: 24
194.113.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9455424 (0x904740)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1375b40938d87cd332726aaa481aa71ae6e98717
Validity
Not Before: Jan 1 02:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=555852a16c5f5d9386b3cc08a2d5683f69da4cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7a:9b:89:7e:78:67:10:6d:7d:20:a1:52:29:
41:63:a2:d8:5b:9c:28:a8:d0:53:b5:78:9c:a0:fe:
3f:b2:92:ae:d1:fa:c2:03:5e:3d:c5:dd:55:36:6d:
c6:0f:85:cc:e8:40:47:33:a4:03:3c:48:64:f1:8a:
52:90:e5:94:5d:61:b7:d9:b0:75:3a:db:41:cb:8f:
10:c8:9e:bc:b9:bd:db:97:0a:4f:f7:55:84:f3:87:
36:1a:88:5d:15:96:d9:6c:6d:77:0c:15:a1:fd:ea:
d8:c1:fc:23:b0:ce:cf:3a:62:ac:c1:2f:39:8f:69:
28:15:6a:4a:c4:60:d3:24:1f:11:ff:97:eb:7f:50:
be:06:1e:57:77:03:a7:42:71:49:05:36:83:92:88:
c0:17:6e:94:0a:5b:c0:b1:5f:d9:d6:12:66:06:d9:
52:45:4b:94:df:65:ea:76:c8:b7:0e:63:2e:44:da:
b5:39:14:19:f8:6e:cf:06:56:1a:cb:f2:03:db:15:
cb:5e:e4:66:1f:c4:23:8e:98:fa:ee:23:60:00:16:
b7:28:7f:54:d4:5f:38:f9:df:7e:ce:ab:d4:f3:34:
06:a1:1f:f1:03:1d:29:13:7c:bf:47:96:bb:6b:84:
cf:d7:ea:84:fa:a9:c0:93:ec:9e:81:e0:c8:e9:68:
ed:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:58:52:A1:6C:5F:5D:93:86:B3:CC:08:A2:D5:68:3F:69:DA:4C:FA
X509v3 Authority Key Identifier:
keyid:13:75:B4:09:38:D8:7C:D3:32:72:6A:AA:48:1A:A7:1A:E6:E9:87:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3W0CTjYfNMycmqqSBqnGubphxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f9ae1a-8e52-48d3-a58d-a250da13d68a/1/VVhSoWxfXZOGs8wIotVoP2naTPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f9ae1a-8e52-48d3-a58d-a250da13d68a/1/E3W0CTjYfNMycmqqSBqnGubphxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.62.0/23
194.113.68.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:ab:4c:fc:0f:c8:7a:07:1e:c0:70:94:1d:6b:4b:ad:98:e2:
4a:e8:c1:f8:f6:cb:62:fc:0c:ad:2f:4c:90:9c:e5:af:5a:5b:
82:c6:f3:2e:98:89:28:34:9e:0d:38:c5:ca:03:e8:05:df:70:
af:7f:30:db:db:ca:d6:9e:ea:f0:e3:28:33:ea:4b:9d:28:0f:
a9:c3:19:c3:44:af:b0:04:3e:78:b2:03:d5:c4:b6:1a:90:d2:
f1:10:a8:35:ca:ec:f8:8c:2b:44:f8:8d:00:48:80:ea:4f:0d:
9b:16:b5:1c:d1:b5:37:d8:07:1d:36:ab:29:6a:8a:3e:c2:7a:
cb:21:84:fd:c8:7b:12:e2:d2:6e:9d:cf:0a:3b:8d:50:e7:82:
2e:6f:31:4d:40:a4:37:8f:54:ff:4a:8c:eb:58:b6:cd:f9:94:
2d:84:46:94:a1:67:28:13:63:a7:23:60:75:cc:28:57:ec:e0:
85:45:35:26:28:84:cf:12:f0:a5:05:4e:55:9e:9e:c7:24:be:
8b:7f:07:a0:c4:56:1e:63:a7:55:56:12:53:95:80:a7:4e:97:
6d:d9:04:35:44:cc:e3:8d:5a:42:e1:95:d6:83:a9:28:f3:f7:
0e:fa:67:03:99:9a:af:b9:91:6b:49:33:ac:18:a1:55:27:1b:
95:21:dd:31
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAJBHQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
Mzc1YjQwOTM4ZDg3Y2QzMzI3MjZhYWE0ODFhYTcxYWU2ZTk4NzE3MB4XDTIyMDEw
MTAyNTgyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTU1ODUyYTE2YzVm
NWQ5Mzg2YjNjYzA4YTJkNTY4M2Y2OWRhNGNmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM16m4l+eGcQbX0goVIpQWOi2FucKKjQU7V4nKD+P7KSrtH6
wgNePcXdVTZtxg+FzOhARzOkAzxIZPGKUpDllF1ht9mwdTrbQcuPEMievLm925cK
T/dVhPOHNhqIXRWW2WxtdwwVof3q2MH8I7DOzzpirMEvOY9pKBVqSsRg0yQfEf+X
639QvgYeV3cDp0JxSQU2g5KIwBdulApbwLFf2dYSZgbZUkVLlN9l6nbItw5jLkTa
tTkUGfhuzwZWGsvyA9sVy17kZh/EI46Y+u4jYAAWtyh/VNRfOPnffs6r1PM0BqEf
8QMdKRN8v0eWu2uEz9fqhPqpwJPsnoHgyOlo7R0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRVWFKhbF9dk4azzAii1Wg/adpM+jAfBgNVHSMEGDAWgBQTdbQJONh80zJy
aqpIGqca5umHFzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0UzVzBDVGpZZk5NeWNtcXFTQnFuR3VicGh4Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTAvZjlhZTFhLThlNTItNDhkMy1hNThkLWEyNTBkYTEzZDY4YS8x
L1ZWaFNvV3hmWFpPR3M4d0lvdFZvUDJuYVRQby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAv
ZjlhZTFhLThlNTItNDhkMy1hNThkLWEyNTBkYTEzZDY4YS8xL0UzVzBDVGpZZk5N
eWNtcXFTQnFuR3VicGh4Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcJxPgMEAcJxRDANBgkqhkiG9w0B
AQsFAAOCAQEAm6tM/A/IegcewHCUHWtLrZjiSujB+PbLYvwMrS9MkJzlr1pbgsbz
LpiJKDSeDTjFygPoBd9wr38w29vK1p7q8OMoM+pLnSgPqcMZw0SvsAQ+eLID1cS2
GpDS8RCoNcrs+IwrRPiNAEiA6k8Nmxa1HNG1N9gHHTarKWqKPsJ6yyGE/ch7EuLS
bp3PCjuNUOeCLm8xTUCkN49U/0qM61i2zfmULYRGlKFnKBNjpyNgdcwoV+zghUU1
JiiEzxLwpQVOVZ6exyS+i38HoMRWHmOnVVYSU5WAp06XbdkENUTM441aQuGV1oOp
KPP3DvpnA5mar7mRa0kzrBihVScblSHdMQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:47 2024 by rpki-client on console-ams.rpki-client.org