Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/02966a-a7ae-4054-ab34-f7e73ddef4e2/1/2d5zOn4fVH7Kr4xRbcoYNLrwhLI.roa
File: 2d5zOn4fVH7Kr4xRbcoYNLrwhLI.roa (raw, json)
Hash identifier: SdmKZ3cgOXPry6MM5RM2EOJO6dwxIPqDC8cRC25ArYg=
Subject key identifier: D9:DE:73:3A:7E:1F:54:7E:CA:AF:8C:51:6D:CA:18:34:BA:F0:84:B2
Certificate issuer: /CN=c0395ec8821d8f8189413392bd876d7bd795c16c
Certificate serial: 0BF3831E
Authority key identifier: C0:39:5E:C8:82:1D:8F:81:89:41:33:92:BD:87:6D:7B:D7:95:C1:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wDleyIIdj4GJQTOSvYdte9eVwWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/02966a-a7ae-4054-ab34-f7e73ddef4e2/1/2d5zOn4fVH7Kr4xRbcoYNLrwhLI.roa
Signing time: Sat 01 Jan 2022 10:59:14 +0000
ROA not before: Sat 01 Jan 2022 10:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5539
IP address blocks: 194.39.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200508190 (0xbf3831e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0395ec8821d8f8189413392bd876d7bd795c16c
Validity
Not Before: Jan 1 10:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9de733a7e1f547ecaaf8c516dca1834baf084b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e3:d7:a8:40:0a:59:f8:f6:49:ee:05:3c:26:
35:43:1a:be:ee:a8:e9:92:41:3a:44:d0:d8:8e:3e:
85:c8:b2:ca:48:a6:f2:e1:e0:f6:f8:14:95:75:b4:
8d:a2:3c:9b:92:e9:0c:fa:60:a8:ea:c1:79:37:f6:
2e:9f:70:ae:60:37:42:48:1c:6b:8a:4c:16:15:9d:
3a:1b:61:30:72:01:3e:c4:b9:bf:d8:e8:7b:ba:20:
9a:a4:66:69:19:b1:af:a3:45:f5:87:aa:4b:95:fb:
37:50:51:e3:69:26:38:cf:4d:86:70:84:c8:ba:bd:
04:48:0c:6d:f7:1b:e5:ec:42:d0:84:a7:56:ef:0c:
3d:73:57:fc:84:ed:99:d9:98:12:06:b8:73:ff:52:
bb:81:97:d8:01:93:2f:11:96:f1:ca:5d:58:37:6d:
04:de:d3:da:25:9e:67:f0:9e:fb:a5:e8:af:53:4b:
0a:91:1c:2e:81:4a:54:18:ae:6f:23:7b:29:4a:65:
c7:1c:8c:c7:f7:45:84:c1:fe:75:cc:53:c1:4b:85:
57:d5:d9:2b:7f:7c:8e:0b:f8:ac:d4:9c:10:bb:fa:
54:5b:b6:64:55:39:13:a5:d2:1d:08:76:13:98:0e:
12:ad:e5:11:09:f4:c9:a6:c2:ec:be:80:a8:fb:5f:
86:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:DE:73:3A:7E:1F:54:7E:CA:AF:8C:51:6D:CA:18:34:BA:F0:84:B2
X509v3 Authority Key Identifier:
keyid:C0:39:5E:C8:82:1D:8F:81:89:41:33:92:BD:87:6D:7B:D7:95:C1:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wDleyIIdj4GJQTOSvYdte9eVwWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/02966a-a7ae-4054-ab34-f7e73ddef4e2/1/2d5zOn4fVH7Kr4xRbcoYNLrwhLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/02966a-a7ae-4054-ab34-f7e73ddef4e2/1/wDleyIIdj4GJQTOSvYdte9eVwWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.121.0/24
Signature Algorithm: sha256WithRSAEncryption
11:ac:a7:56:55:77:a0:10:c0:b2:a7:03:69:e8:3f:f8:3c:dc:
7e:3d:bd:e5:47:ec:b7:c2:1f:10:f8:2f:d9:da:61:91:71:53:
b8:6b:4c:76:39:44:10:9b:c1:9e:13:b2:5c:f1:a0:27:66:02:
71:92:3c:f4:1e:94:96:87:00:19:42:59:49:11:d6:c2:d4:ff:
d3:44:2f:55:03:f4:03:b4:d4:d1:80:9f:65:3e:9d:a0:e5:d8:
99:8d:90:03:26:87:4c:e2:22:23:1f:c3:f9:c0:f1:ca:a2:93:
14:c1:cb:66:cf:7b:57:b0:37:12:5e:9f:0a:49:5c:f1:aa:32:
72:26:53:7a:ac:cb:51:70:b4:e6:4c:22:64:5c:f3:d3:45:a9:
c2:ed:87:2a:f7:db:90:8b:ad:f6:13:3f:01:04:06:3c:5d:46:
3b:d4:ea:6d:a8:3c:73:94:a7:79:d9:fa:7f:69:fa:51:30:85:
65:40:5e:51:52:47:8f:b4:7d:b2:40:46:ab:9e:c6:99:54:ce:
ee:b2:c8:e7:e3:9b:e3:e2:99:83:ba:a6:ff:00:91:b0:f4:6e:
46:39:e6:a2:6d:45:91:82:51:41:c4:b7:dc:60:c0:2d:25:bb:
31:16:68:07:88:b2:80:9e:db:82:05:0d:e3:6c:a9:69:8b:77:
ed:25:9d:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC/ODHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MDM5NWVjODgyMWQ4ZjgxODk0MTMzOTJiZDg3NmQ3YmQ3OTVjMTZjMB4XDTIyMDEw
MTEwNTkxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDlkZTczM2E3ZTFm
NTQ3ZWNhYWY4YzUxNmRjYTE4MzRiYWYwODRiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLj16hACln49knuBTwmNUMavu6o6ZJBOkTQ2I4+hciyykim
8uHg9vgUlXW0jaI8m5LpDPpgqOrBeTf2Lp9wrmA3Qkgca4pMFhWdOhthMHIBPsS5
v9joe7ogmqRmaRmxr6NF9YeqS5X7N1BR42kmOM9NhnCEyLq9BEgMbfcb5exC0ISn
Vu8MPXNX/ITtmdmYEga4c/9Su4GX2AGTLxGW8cpdWDdtBN7T2iWeZ/Ce+6Xor1NL
CpEcLoFKVBiubyN7KUplxxyMx/dFhMH+dcxTwUuFV9XZK398jgv4rNScELv6VFu2
ZFU5E6XSHQh2E5gOEq3lEQn0yabC7L6AqPtfhl8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTZ3nM6fh9UfsqvjFFtyhg0uvCEsjAfBgNVHSMEGDAWgBTAOV7Igh2PgYlB
M5K9h21715XBbDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dEbGV5SUlkajRHSlFUT1N2WWR0ZTllVndXdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvMDI5NjZhLWE3YWUtNDA1NC1hYjM0LWY3ZTczZGRlZjRlMi8x
LzJkNXpPbjRmVkg3S3I0eFJiY29ZTkxyd2hMSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
MDI5NjZhLWE3YWUtNDA1NC1hYjM0LWY3ZTczZGRlZjRlMi8xL3dEbGV5SUlkajRH
SlFUT1N2WWR0ZTllVndXdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIneTANBgkqhkiG9w0BAQsFAAOC
AQEAEaynVlV3oBDAsqcDaeg/+Dzcfj295Ufst8IfEPgv2dphkXFTuGtMdjlEEJvB
nhOyXPGgJ2YCcZI89B6UlocAGUJZSRHWwtT/00QvVQP0A7TU0YCfZT6doOXYmY2Q
AyaHTOIiIx/D+cDxyqKTFMHLZs97V7A3El6fCklc8aoyciZTeqzLUXC05kwiZFzz
00Wpwu2HKvfbkIut9hM/AQQGPF1GO9Tqbag8c5Snedn6f2n6UTCFZUBeUVJHj7R9
skBGq57GmVTO7rLI5+Ob4+KZg7qm/wCRsPRuRjnmom1FkYJRQcS33GDALSW7MRZo
B4iygJ7bggUN42ypaYt37SWdng==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:52 2023 by rpki-client on console-ams.rpki-client.org