Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VqWHjmvkeJ5XR_h-6PQxqxvs1CI.roa
File: VqWHjmvkeJ5XR_h-6PQxqxvs1CI.roa (raw, json)
Hash identifier: kMU4tp/VGAyoC06RFAGelUfxPr2JuBG6S8Y6R9s31yI=
Subject key identifier: 56:A5:87:8E:6B:E4:78:9E:57:47:F8:7E:E8:F4:31:AB:1B:EC:D4:22
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1482FAA5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VqWHjmvkeJ5XR_h-6PQxqxvs1CI.roa
Signing time: Tue 10 May 2022 17:24:03 +0000
ROA not before: Tue 10 May 2022 17:24:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50200
IP address blocks: 185.238.188.0/22 maxlen: 24
2a0e:97c0:650::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344128165 (0x1482faa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 10 17:24:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56a5878e6be4789e5747f87ee8f431ab1becd422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f6:40:d4:9f:c4:00:a8:af:86:28:2e:0c:1e:
6f:a5:23:12:d1:33:f8:ff:9d:ec:3a:66:46:ed:f0:
86:d0:37:01:7b:82:82:7e:bd:fa:35:08:db:cd:a7:
50:45:11:f2:cf:a0:c1:c3:0d:19:90:a1:80:f4:63:
58:3c:b3:c1:d7:9e:68:e1:fb:b0:d6:c5:a4:ed:67:
e2:f0:05:6d:21:6d:4e:e6:fd:1c:39:86:8c:07:a0:
e5:71:b0:a3:9d:60:a3:04:68:b7:14:fc:f6:ba:39:
3e:55:6b:44:95:99:9b:fb:5a:d1:82:ed:ee:6b:e6:
21:94:8d:f1:ee:f1:15:39:57:82:e7:e0:f0:27:62:
b9:ee:b0:ca:c3:c7:f0:44:3f:0c:21:30:40:88:bb:
e0:ac:38:c7:1d:52:4e:f0:92:39:08:28:3b:23:a1:
16:9f:b1:61:60:10:01:7a:be:98:40:16:6f:9f:80:
e3:9c:8e:17:69:01:74:9d:34:c6:a9:5b:8d:b0:b5:
ba:05:47:62:11:76:27:27:9f:42:71:b9:ce:68:0b:
53:bf:51:d0:6e:19:cf:f4:0b:5f:53:5b:a2:43:6d:
26:17:75:86:cf:99:87:cd:36:db:ad:ac:b9:2a:88:
67:7e:dc:08:7b:86:33:ed:0e:2f:80:9d:05:a0:cf:
61:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A5:87:8E:6B:E4:78:9E:57:47:F8:7E:E8:F4:31:AB:1B:EC:D4:22
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VqWHjmvkeJ5XR_h-6PQxqxvs1CI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.188.0/22
IPv6:
2a0e:97c0:650::/44
Signature Algorithm: sha256WithRSAEncryption
48:ef:18:70:62:7f:aa:a5:8c:f8:80:0f:e4:9a:62:ec:df:ea:
d2:ea:4f:78:c3:f7:0d:f5:20:6b:f4:21:98:f0:78:33:c6:db:
36:ae:98:ff:59:74:83:7b:99:e7:2f:ba:f2:c9:43:c9:b6:79:
59:e8:b4:70:63:e6:f5:2b:49:c7:69:90:04:7e:7d:e9:6b:a1:
5b:57:72:73:2e:ae:ed:c2:92:6e:b0:5e:15:72:fd:2a:08:f4:
91:60:5c:b3:b8:55:a0:4d:1d:57:0c:b3:c0:2f:a3:80:af:24:
c9:2e:67:e6:67:d4:eb:e8:24:51:fa:cf:d1:e2:6b:02:7f:76:
5d:13:31:07:68:4f:10:6d:1c:b6:96:61:2d:7d:6e:97:09:65:
03:99:12:eb:18:99:4c:44:c6:af:f6:84:21:d5:c9:3e:ef:ba:
74:42:68:63:eb:ea:7e:c5:93:ff:17:16:26:3a:11:8c:d4:46:
fa:47:32:bc:b8:09:e6:bd:71:aa:fc:02:e2:47:61:79:d9:4d:
16:fd:32:71:e1:26:1d:c4:95:f2:af:f3:27:2d:eb:15:d2:82:
02:bd:22:77:59:e7:53:bd:d0:04:7d:69:c8:fa:80:66:34:ec:
45:99:a3:a1:7c:4d:2f:f4:76:42:34:e7:1e:12:cd:60:05:11:
b8:b0:22:b2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEFIL6pTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDUx
MDE3MjQwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTZhNTg3OGU2YmU0
Nzg5ZTU3NDdmODdlZThmNDMxYWIxYmVjZDQyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK72QNSfxACor4YoLgweb6UjEtEz+P+d7DpmRu3whtA3AXuC
gn69+jUI282nUEUR8s+gwcMNGZChgPRjWDyzwdeeaOH7sNbFpO1n4vAFbSFtTub9
HDmGjAeg5XGwo51gowRotxT89ro5PlVrRJWZm/ta0YLt7mvmIZSN8e7xFTlXgufg
8Cdiue6wysPH8EQ/DCEwQIi74Kw4xx1STvCSOQgoOyOhFp+xYWAQAXq+mEAWb5+A
45yOF2kBdJ00xqlbjbC1ugVHYhF2JyefQnG5zmgLU79R0G4Zz/QLX1NbokNtJhd1
hs+Zh802262suSqIZ37cCHuGM+0OL4CdBaDPYd0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRWpYeOa+R4nldH+H7o9DGrG+zUIjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L1ZxV0hqbXZrZUo1WFJfaC02UFF4cXh2czFDSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEArnuvDAPBAIAAjAJAwcEKg6XwAZQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBI7xhwYn+qpYz4gA/kmmLs3+rS6k94w/cN9SBr
9CGY8Hgzxts2rpj/WXSDe5nnL7ryyUPJtnlZ6LRwY+b1K0nHaZAEfn3pa6FbV3Jz
Lq7twpJusF4Vcv0qCPSRYFyzuFWgTR1XDLPAL6OAryTJLmfmZ9Tr6CRR+s/R4msC
f3ZdEzEHaE8QbRy2lmEtfW6XCWUDmRLrGJlMRMav9oQh1ck+77p0Qmhj6+p+xZP/
FxYmOhGM1Eb6RzK8uAnmvXGq/ALiR2F52U0W/TJx4SYdxJXyr/MnLesV0oICvSJ3
WedTvdAEfWnI+oBmNOxFmaOhfE0v9HZCNOceEs1gBRG4sCKy
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org