Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/36e382-2b62-44dc-8fb2-dd50be067401/1/deILcf5wZYhdNnKDf-FYLD3ig0w.roa
File: deILcf5wZYhdNnKDf-FYLD3ig0w.roa (raw, json)
Hash identifier: mxZcqOMDr4X3T9T4fpoxjDR6lmW5G30Ae0xdLjnIkU0=
Subject key identifier: 75:E2:0B:71:FE:70:65:88:5D:36:72:83:7F:E1:58:2C:3D:E2:83:4C
Certificate issuer: /CN=d77100a46cc46ae896bdc2e0e074e3055ab8867b
Certificate serial: 01843914B959F8D341646EFA9D073D254115
Authority key identifier: D7:71:00:A4:6C:C4:6A:E8:96:BD:C2:E0:E0:74:E3:05:5A:B8:86:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/13EApGzEauiWvcLg4HTjBVq4hns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/36e382-2b62-44dc-8fb2-dd50be067401/1/deILcf5wZYhdNnKDf-FYLD3ig0w.roa
Signing time: Wed 02 Nov 2022 16:02:50 +0000
ROA not before: Wed 02 Nov 2022 16:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33911
IP address blocks: 195.254.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:14:b9:59:f8:d3:41:64:6e:fa:9d:07:3d:25:41:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d77100a46cc46ae896bdc2e0e074e3055ab8867b
Validity
Not Before: Nov 2 16:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75e20b71fe7065885d3672837fe1582c3de2834c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:86:69:75:c0:8d:e3:cd:06:87:05:6b:1b:50:
c7:08:7c:ec:c2:21:46:1a:e6:86:90:91:ee:2a:6b:
29:de:74:13:bc:74:ff:92:63:22:30:83:74:94:7b:
8f:87:40:ee:fe:a9:49:d6:50:e5:48:74:55:3d:0c:
5f:58:a2:93:e2:83:3f:5b:24:4c:3a:c4:72:74:0f:
aa:e5:35:83:66:e6:a1:f4:91:80:bb:6a:2a:df:c0:
1c:ca:d8:82:64:c6:24:d7:48:d3:02:16:64:da:5d:
24:91:e5:8e:e1:99:7b:b8:6d:c0:80:90:02:c1:b8:
06:a5:ad:4c:5b:d3:98:98:3b:00:17:73:42:39:d1:
3b:ae:b8:6b:5c:d3:76:39:34:73:7f:2e:e4:d9:4e:
69:39:49:14:2c:fc:1f:9d:0d:ff:8b:51:50:ec:83:
f8:77:8b:1e:d2:03:35:bb:cf:15:91:30:54:1e:41:
06:66:02:57:f8:9b:36:63:41:4b:de:37:fe:e7:28:
dc:8d:20:63:0a:82:c6:d5:4b:9c:71:88:4f:ba:05:
f1:e0:18:0a:ad:a3:7b:fd:68:7f:18:cd:6b:bd:19:
45:18:c7:d3:af:64:4c:a5:89:97:f4:9a:05:28:f4:
97:e0:4c:48:e8:5b:07:4d:fc:69:a9:3b:5d:4f:26:
f2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E2:0B:71:FE:70:65:88:5D:36:72:83:7F:E1:58:2C:3D:E2:83:4C
X509v3 Authority Key Identifier:
keyid:D7:71:00:A4:6C:C4:6A:E8:96:BD:C2:E0:E0:74:E3:05:5A:B8:86:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/13EApGzEauiWvcLg4HTjBVq4hns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/36e382-2b62-44dc-8fb2-dd50be067401/1/deILcf5wZYhdNnKDf-FYLD3ig0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/36e382-2b62-44dc-8fb2-dd50be067401/1/13EApGzEauiWvcLg4HTjBVq4hns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.134.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:9c:37:8f:da:52:a6:b5:6b:48:66:34:1e:8f:71:da:15:e4:
77:5a:c7:78:1a:25:b0:c4:bb:51:9c:bd:ce:4e:5e:78:d5:76:
41:c1:ce:93:2d:fe:ba:a8:c9:2e:ea:ac:b8:05:3a:79:e7:c1:
29:44:e7:21:16:10:96:f0:06:ef:71:9e:51:9e:42:1f:6d:20:
18:03:1d:fd:df:07:d3:a1:64:ab:a2:1d:08:09:5d:7e:75:a9:
be:49:9e:81:49:d1:be:78:34:0d:7f:15:77:f1:84:9e:ca:a3:
a7:a5:24:0c:56:c3:43:bb:5d:19:24:77:25:18:94:46:bd:1f:
15:55:ad:4f:8f:df:a4:a6:79:5a:1e:dc:f2:5f:87:37:f9:6f:
36:0e:0a:fb:f2:02:ac:7b:bd:74:6a:f6:c8:5a:5c:0b:84:1a:
28:31:20:54:23:33:41:03:1e:4e:a7:98:22:e3:1b:5d:14:f1:
a5:a7:32:81:49:dd:3f:17:b4:0a:9b:ee:9a:0e:03:7d:42:3b:
67:4f:d0:2e:3a:f6:01:17:38:70:f2:f3:49:e7:72:a2:58:da:
14:f0:9d:df:7f:af:6f:40:96:32:16:b3:2b:da:ba:95:4b:0c:
53:8c:9b:99:9d:97:b1:12:cf:c9:1f:50:6a:80:2c:15:1d:29:
53:d3:8b:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQ5FLlZ+NNBZG76nQc9JUEVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NzEwMGE0NmNjNDZhZTg5NmJkYzJlMGUwNzRlMzA1NWFi
ODg2N2IwHhcNMjIxMTAyMTYwMjUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWUyMGI3MWZlNzA2NTg4NWQzNjcyODM3ZmUxNTgyYzNkZTI4MzRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYZpdcCN480GhwVrG1DHCHzswiFG
GuaGkJHuKmsp3nQTvHT/kmMiMIN0lHuPh0Du/qlJ1lDlSHRVPQxfWKKT4oM/WyRM
OsRydA+q5TWDZuah9JGAu2oq38AcytiCZMYk10jTAhZk2l0kkeWO4Zl7uG3AgJAC
wbgGpa1MW9OYmDsAF3NCOdE7rrhrXNN2OTRzfy7k2U5pOUkULPwfnQ3/i1FQ7IP4
d4se0gM1u88VkTBUHkEGZgJX+Js2Y0FL3jf+5yjcjSBjCoLG1UuccYhPugXx4BgK
raN7/Wh/GM1rvRlFGMfTr2RMpYmX9JoFKPSX4ExI6FsHTfxpqTtdTyby7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHXiC3H+cGWIXTZyg3/hWCw94oNMMB8GA1UdIwQY
MBaAFNdxAKRsxGrolr3C4OB04wVauIZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTNFQXBHekVhdWlXdmNMZzRIVGpCVnE0aG5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8zNmUzODItMmI2Mi00NGRjLThmYjIt
ZGQ1MGJlMDY3NDAxLzEvZGVJTGNmNXdaWWhkTm5LRGYtRllMRDNpZzB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni8zNmUzODItMmI2Mi00NGRjLThmYjItZGQ1MGJlMDY3NDAx
LzEvMTNFQXBHekVhdWlXdmNMZzRIVGpCVnE0aG5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/6GMA0G
CSqGSIb3DQEBCwUAA4IBAQAPnDeP2lKmtWtIZjQej3HaFeR3Wsd4GiWwxLtRnL3O
Tl541XZBwc6TLf66qMku6qy4BTp558EpROchFhCW8AbvcZ5RnkIfbSAYAx393wfT
oWSroh0ICV1+dam+SZ6BSdG+eDQNfxV38YSeyqOnpSQMVsNDu10ZJHclGJRGvR8V
Va1Pj9+kpnlaHtzyX4c3+W82Dgr78gKse710avbIWlwLhBooMSBUIzNBAx5Op5gi
4xtdFPGlpzKBSd0/F7QKm+6aDgN9QjtnT9AuOvYBFzhw8vNJ53KiWNoU8J3ff69v
QJYyFrMr2rqVSwxTjJuZnZexEs/JH1BqgCwVHSlT04vh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:17 2024 by rpki-client on console-fra.rpki-client.org