Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/611c7f-b125-4712-9ef7-3c7987c42c16/1/hcPyRxrfAfB_lwSmLmfg1xvQeSQ.roa
File: hcPyRxrfAfB_lwSmLmfg1xvQeSQ.roa (raw, json)
Hash identifier: w4oZADC39kgMSc+S1jl17x+kszeExuX4v8M0j1fcTeY=
Subject key identifier: 85:C3:F2:47:1A:DF:01:F0:7F:97:04:A6:2E:67:E0:D7:1B:D0:79:24
Certificate issuer: /CN=bdff3d96e8aa141d22c4242aeff78af71ef8b244
Certificate serial: 0916C666
Authority key identifier: BD:FF:3D:96:E8:AA:14:1D:22:C4:24:2A:EF:F7:8A:F7:1E:F8:B2:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vf89luiqFB0ixCQq7_eK9x74skQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/611c7f-b125-4712-9ef7-3c7987c42c16/1/hcPyRxrfAfB_lwSmLmfg1xvQeSQ.roa
Signing time: Sat 01 Jan 2022 12:05:58 +0000
ROA not before: Sat 01 Jan 2022 12:05:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12843
IP address blocks: 194.59.18.0/23 maxlen: 23
194.59.20.0/22 maxlen: 22
2001:67c:12f0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152487526 (0x916c666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdff3d96e8aa141d22c4242aeff78af71ef8b244
Validity
Not Before: Jan 1 12:05:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85c3f2471adf01f07f9704a62e67e0d71bd07924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:23:29:91:f3:05:78:ad:57:1d:f1:c2:82:8a:
e5:80:b1:a0:77:91:c2:99:e4:4a:ef:d0:bb:1d:50:
cd:07:78:8a:55:27:27:be:cd:6f:43:0d:9d:47:2c:
91:42:2c:77:e4:5a:3c:80:c9:46:81:00:82:6f:2a:
5e:de:21:b9:57:3b:f1:dc:23:4e:a4:5e:fa:82:11:
68:e8:fe:e2:1b:27:e9:9f:a1:e1:f3:14:ad:f8:2c:
5b:55:7f:e7:31:e4:54:4e:eb:a7:28:4f:69:e6:7c:
0d:dc:4f:d0:dc:27:9c:0a:91:c2:76:0d:dd:34:89:
ad:19:92:72:67:5d:ef:36:72:68:b1:17:5f:bc:13:
eb:26:54:3f:e2:6b:6e:32:cc:1e:53:0f:56:85:8c:
b8:38:d8:44:15:9e:68:45:77:d9:3c:b2:1a:c2:81:
a7:4a:e9:7b:00:26:82:37:be:be:c7:13:c7:e5:6b:
f7:32:31:e3:07:59:4c:21:19:76:3f:c2:fe:26:e5:
b4:c4:6b:2f:88:d3:f4:37:31:60:fe:6c:80:af:d1:
93:06:a1:d1:83:68:33:2b:2e:73:c6:a1:f9:13:3b:
5c:ea:84:b2:a7:a1:53:0e:93:82:e5:ad:41:0d:22:
61:d3:7b:c9:8e:70:eb:5e:9e:57:85:7c:e5:e1:43:
83:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C3:F2:47:1A:DF:01:F0:7F:97:04:A6:2E:67:E0:D7:1B:D0:79:24
X509v3 Authority Key Identifier:
keyid:BD:FF:3D:96:E8:AA:14:1D:22:C4:24:2A:EF:F7:8A:F7:1E:F8:B2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vf89luiqFB0ixCQq7_eK9x74skQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/611c7f-b125-4712-9ef7-3c7987c42c16/1/hcPyRxrfAfB_lwSmLmfg1xvQeSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/611c7f-b125-4712-9ef7-3c7987c42c16/1/vf89luiqFB0ixCQq7_eK9x74skQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.18.0-194.59.23.255
IPv6:
2001:67c:12f0::/48
Signature Algorithm: sha256WithRSAEncryption
4a:b6:af:e6:44:99:a6:37:fb:c4:b8:19:73:3d:a3:0a:61:06:
5f:14:91:c0:ec:ad:b5:5e:83:7f:d9:f0:62:04:b3:7b:2c:26:
ab:d6:b1:9c:71:be:d9:34:83:9a:42:b1:73:34:40:98:06:6b:
1f:1b:dc:ba:c1:eb:1e:c7:d5:f4:5b:8d:ac:5d:12:21:68:2d:
c6:3a:e3:e4:d8:8b:93:2e:14:64:6e:c0:9a:3e:3e:6b:b4:82:
c7:01:ff:fd:bb:18:1c:97:4d:25:b9:e2:b0:0c:75:ef:73:b6:
9e:c5:cf:31:66:1a:de:54:15:ec:10:28:ce:d3:d7:e4:d8:0e:
05:b7:93:03:30:5e:95:0b:bc:d7:fc:b4:96:f1:9f:b5:74:3f:
67:94:3a:58:69:c5:89:f2:dc:67:7a:5a:25:89:0d:bc:dd:10:
b8:21:31:2c:da:bd:22:fe:b4:76:35:df:ee:51:61:71:20:41:
78:04:06:56:8c:9c:a9:41:8c:2f:eb:32:b8:76:f3:54:85:d6:
96:c0:c6:13:4e:cf:6e:11:7f:0f:fc:f2:49:4b:49:00:1b:99:
76:5b:b0:16:0e:a0:c3:9d:49:37:a4:aa:95:95:e8:71:70:b4:
fd:6b:c5:33:98:cd:36:ac:4e:89:d2:bd:8d:9e:f8:b8:16:62:
54:3a:9b:8a
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgIECRbGZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZGZmM2Q5NmU4YWExNDFkMjJjNDI0MmFlZmY3OGFmNzFlZjhiMjQ0MB4XDTIyMDEw
MTEyMDU1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODVjM2YyNDcxYWRm
MDFmMDdmOTcwNGE2MmU2N2UwZDcxYmQwNzkyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJQjKZHzBXitVx3xwoKK5YCxoHeRwpnkSu/Qux1QzQd4ilUn
J77Nb0MNnUcskUIsd+RaPIDJRoEAgm8qXt4huVc78dwjTqRe+oIRaOj+4hsn6Z+h
4fMUrfgsW1V/5zHkVE7rpyhPaeZ8DdxP0NwnnAqRwnYN3TSJrRmScmdd7zZyaLEX
X7wT6yZUP+JrbjLMHlMPVoWMuDjYRBWeaEV32TyyGsKBp0rpewAmgje+vscTx+Vr
9zIx4wdZTCEZdj/C/ibltMRrL4jT9DcxYP5sgK/Rkwah0YNoMysuc8ah+RM7XOqE
sqehUw6TguWtQQ0iYdN7yY5w616eV4V85eFDg8UCAwEAAaOCAiIwggIeMB0GA1Ud
DgQWBBSFw/JHGt8B8H+XBKYuZ+DXG9B5JDAfBgNVHSMEGDAWgBS9/z2W6KoUHSLE
JCrv94r3HviyRDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZmODlsdWlxRkIwaXhDUXE3X2VLOXg3NHNrUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvNjExYzdmLWIxMjUtNDcxMi05ZWY3LTNjNzk4N2M0MmMxNi8x
L2hjUHlSeHJmQWZCX2x3U21MbWZnMXh2UWVTUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
NjExYzdmLWIxMjUtNDcxMi05ZWY3LTNjNzk4N2M0MmMxNi8xL3ZmODlsdWlxRkIw
aXhDUXE3X2VLOXg3NHNrUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA4
BggrBgEFBQcBBwEB/wQpMCcwFAQCAAEwDjAMAwQBwjsSAwQDwjsQMA8EAgACMAkD
BwAgAQZ8EvAwDQYJKoZIhvcNAQELBQADggEBAEq2r+ZEmaY3+8S4GXM9owphBl8U
kcDsrbVeg3/Z8GIEs3ssJqvWsZxxvtk0g5pCsXM0QJgGax8b3LrB6x7H1fRbjaxd
EiFoLcY64+TYi5MuFGRuwJo+Pmu0gscB//27GByXTSW54rAMde9ztp7FzzFmGt5U
FewQKM7T1+TYDgW3kwMwXpULvNf8tJbxn7V0P2eUOlhpxYny3Gd6WiWJDbzdELgh
MSzavSL+tHY13+5RYXEgQXgEBlaMnKlBjC/rMrh281SF1pbAxhNOz24Rfw/88klL
SQAbmXZbsBYOoMOdSTekqpWV6HFwtP1rxTOYzTasTonSvY2e+LgWYlQ6m4o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:46 2024 by rpki-client on console-fra.rpki-client.org