Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/SeKEevhcV_Jtc5yBba3LCdGx8ww.roa
File: SeKEevhcV_Jtc5yBba3LCdGx8ww.roa (raw, json)
Hash identifier: oF3MhylysfqyAmmC5eY8hOJQyJVgVRT6bdgXWSjf65E=
Subject key identifier: 49:E2:84:7A:F8:5C:57:F2:6D:73:9C:81:6D:AD:CB:09:D1:B1:F3:0C
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 0181D9C435101507A3DC803B81D21CB922BE
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/SeKEevhcV_Jtc5yBba3LCdGx8ww.roa
Signing time: Thu 07 Jul 2022 17:45:23 +0000
ROA not before: Thu 07 Jul 2022 17:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 194.113.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d9:c4:35:10:15:07:a3:dc:80:3b:81:d2:1c:b9:22:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jul 7 17:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49e2847af85c57f26d739c816dadcb09d1b1f30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9f:b7:5d:36:6e:3a:03:18:2b:54:65:9d:84:
47:d5:22:df:e2:62:32:85:c2:64:f7:ff:5d:b2:4e:
5f:92:ce:50:ae:39:0a:a5:45:10:44:e6:6c:42:a5:
96:4b:53:2b:94:b8:7c:c7:9a:aa:3c:e6:c5:89:25:
b7:ea:61:fd:ae:66:55:b7:a3:82:3b:40:8e:0b:2f:
c7:34:6b:da:cb:0e:b5:56:a7:0d:b0:52:0c:67:1d:
3b:fe:79:88:22:2a:f5:cd:e6:6f:6d:b6:43:1a:f6:
b0:2f:a3:a8:81:65:24:83:33:7a:f1:95:4a:29:74:
b2:cb:32:f5:5b:eb:e4:34:b6:dc:69:83:58:ae:34:
a7:71:39:5a:f7:64:6f:d7:f5:1c:cc:ad:e8:38:c2:
f2:b6:ac:28:70:b0:73:02:30:6c:dc:a8:42:f9:67:
dd:0a:3c:94:1a:e8:67:e8:c6:f7:a9:15:a4:d4:1e:
55:e7:2e:74:c0:c8:e8:a3:6c:11:fa:35:a6:39:cd:
43:f9:45:cc:e7:95:d5:52:6a:ee:a5:6a:d9:c0:96:
d2:79:7e:32:9c:6b:76:f6:09:3d:54:47:04:53:b5:
02:a1:4e:53:20:c7:a1:c1:1e:3c:d2:2d:4f:13:9d:
e1:ce:25:4b:22:f0:1c:5e:07:7f:a2:91:d0:19:64:
a8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E2:84:7A:F8:5C:57:F2:6D:73:9C:81:6D:AD:CB:09:D1:B1:F3:0C
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/SeKEevhcV_Jtc5yBba3LCdGx8ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.238.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:2f:ac:19:da:b3:93:35:6b:37:ff:27:8e:1b:17:cf:85:fb:
fc:04:b2:e0:14:42:24:04:95:ae:49:f6:4e:7b:60:31:fe:ab:
c6:9b:b4:42:44:78:17:42:77:b1:83:62:0a:1e:f6:52:27:c0:
65:75:45:5e:0a:fd:d2:fa:09:34:af:46:f9:2e:f7:d0:4a:ce:
eb:ff:a1:d1:19:2f:78:8c:33:d0:e6:a8:84:29:19:39:62:d6:
03:6a:3b:7d:fd:65:8b:0f:5f:ee:ee:59:18:f2:ef:b9:0b:77:
b9:b3:c7:a8:95:cd:d9:53:0a:8e:c9:fa:4a:d3:af:31:7e:c4:
09:6a:4a:c3:67:1f:be:55:11:cd:38:8c:cb:e0:60:0d:26:9a:
95:51:67:cd:40:34:74:b1:5f:a1:b2:c5:00:0c:09:7f:6d:f7:
b5:71:b3:a7:b2:42:8f:eb:b6:83:9d:1f:74:eb:e6:bb:a6:3d:
bb:b5:96:24:0f:40:93:0d:3e:53:7d:8b:fd:33:3c:02:ee:5d:
ce:d7:15:62:4c:64:08:e8:c0:68:6e:6c:0f:24:f8:36:47:cd:
7d:9c:a2:ef:90:85:d9:04:17:da:8c:ba:fc:52:0b:87:c2:5f:
20:5b:e3:e5:05:09:92:2f:aa:49:3b:87:60:7f:f8:50:e1:45:
ac:99:27:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHZxDUQFQej3IA7gdIcuSK+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOWZkYzdmYjM5ZWJiYmVkNGVlNTRmNzAzZDNhYzYxNTNk
ZGVlNjkwHhcNMjIwNzA3MTc0NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWUyODQ3YWY4NWM1N2YyNmQ3MzljODE2ZGFkY2IwOWQxYjFmMzBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1J+3XTZuOgMYK1RlnYRH1SLf4mIy
hcJk9/9dsk5fks5QrjkKpUUQROZsQqWWS1MrlLh8x5qqPObFiSW36mH9rmZVt6OC
O0COCy/HNGvayw61VqcNsFIMZx07/nmIIir1zeZvbbZDGvawL6OogWUkgzN68ZVK
KXSyyzL1W+vkNLbcaYNYrjSncTla92Rv1/UczK3oOMLytqwocLBzAjBs3KhC+Wfd
CjyUGuhn6Mb3qRWk1B5V5y50wMjoo2wR+jWmOc1D+UXM55XVUmrupWrZwJbSeX4y
nGt29gk9VEcEU7UCoU5TIMehwR480i1PE53hziVLIvAcXgd/opHQGWSoEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEnihHr4XFfybXOcgW2tywnRsfMMMB8GA1UdIwQY
MBaAFB6f3H+znru+1O5U9wPTrGFT3e5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgt
NjkxZmY1YjQ0YjAxLzEvU2VLRWV2aGNWX0p0YzV5QmJhM0xDZEd4OHd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgtNjkxZmY1YjQ0YjAx
LzEvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwnHuMA0G
CSqGSIb3DQEBCwUAA4IBAQCOL6wZ2rOTNWs3/yeOGxfPhfv8BLLgFEIkBJWuSfZO
e2Ax/qvGm7RCRHgXQnexg2IKHvZSJ8BldUVeCv3S+gk0r0b5LvfQSs7r/6HRGS94
jDPQ5qiEKRk5YtYDajt9/WWLD1/u7lkY8u+5C3e5s8eolc3ZUwqOyfpK068xfsQJ
akrDZx++VRHNOIzL4GANJpqVUWfNQDR0sV+hssUADAl/bfe1cbOnskKP67aDnR90
6+a7pj27tZYkD0CTDT5TfYv9MzwC7l3O1xViTGQI6MBobmwPJPg2R819nKLvkIXZ
BBfajLr8UguHwl8gW+PlBQmSL6pJO4dgf/hQ4UWsmSdz
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:31 2023 by rpki-client on console-ams.rpki-client.org