Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/YVVqEcGZa7ffoEtt9foqA_95yb4.roa
File: YVVqEcGZa7ffoEtt9foqA_95yb4.roa (raw, json)
Hash identifier: J81lKgU7KeNPYbCM4sPeAAapngZKpamjTHJS79xjJxU=
Subject key identifier: 61:55:6A:11:C1:99:6B:B7:DF:A0:4B:6D:F5:FA:2A:03:FF:79:C9:BE
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01823A528A129A9FE97400DC2CF734ADC573
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/YVVqEcGZa7ffoEtt9foqA_95yb4.roa
Signing time: Tue 26 Jul 2022 11:44:24 +0000
ROA not before: Tue 26 Jul 2022 11:44:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44428
IP address blocks: 201.49.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:52:8a:12:9a:9f:e9:74:00:dc:2c:f7:34:ad:c5:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 26 11:44:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61556a11c1996bb7dfa04b6df5fa2a03ff79c9be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:49:aa:e0:c6:46:dc:9d:ab:bb:1f:53:88:0c:
43:38:f1:e6:65:81:54:57:5f:65:85:38:1d:a9:ea:
d0:78:4e:f5:35:75:04:3b:f7:b1:af:4d:f2:5f:0c:
9c:f3:ac:f2:30:a8:59:84:46:9e:cc:0c:2b:62:bd:
96:08:8c:92:a8:b8:54:cd:bb:28:24:67:55:cf:fb:
2b:bd:bc:42:04:e5:32:62:f0:8d:98:c8:cd:c4:d8:
34:61:1d:c1:0e:21:d2:df:79:8c:2d:15:85:1c:e6:
01:72:c8:3d:51:c0:be:5b:13:d6:6b:65:d5:a1:0e:
8d:dc:42:a8:1b:eb:36:15:80:84:6b:69:92:03:db:
d3:62:03:2a:9f:87:2c:bc:b7:99:84:18:9c:79:3a:
3f:96:08:56:d9:be:3e:d8:33:3f:5c:69:b7:6f:93:
e0:ba:ad:68:a5:63:a4:22:33:a1:77:61:0e:88:02:
b5:c7:4e:19:e7:ef:87:e4:1b:ae:1f:8e:15:32:b6:
32:0e:e2:64:92:0d:05:e0:dd:a6:85:91:1d:b2:05:
c7:d2:ed:e7:b5:e0:3f:6a:40:27:8c:53:e9:46:cb:
f4:f7:d6:79:3d:4a:8f:51:cb:e3:e0:c9:2e:b0:f6:
e5:23:63:ba:73:bf:43:60:b7:20:74:b3:44:46:0b:
91:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:55:6A:11:C1:99:6B:B7:DF:A0:4B:6D:F5:FA:2A:03:FF:79:C9:BE
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/YVVqEcGZa7ffoEtt9foqA_95yb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.49.188.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:02:9b:6c:e5:1d:e4:b7:0b:24:86:5e:36:51:db:9b:a7:78:
96:eb:a9:fc:f4:37:c1:cc:19:eb:56:ec:14:41:46:3c:87:7f:
97:e7:27:b3:f1:ff:0f:cb:aa:3b:40:d4:3b:14:3e:33:d8:f8:
82:53:de:1b:6e:00:40:f5:02:6c:6f:e0:de:ad:8e:ec:b9:81:
45:cf:93:9e:6f:a5:ba:84:cf:1e:84:69:e5:3e:f2:81:b5:82:
7d:c1:35:4c:44:a8:ac:dd:c2:58:06:2e:62:06:fc:08:cb:1d:
8e:60:7f:83:6d:6d:83:5f:40:27:ec:bc:e4:cb:a7:74:35:a4:
b5:91:6f:a6:50:8a:45:b5:26:e7:b7:5c:34:dd:45:0a:85:78:
5b:73:e3:5c:55:b4:01:cc:4f:d8:34:3f:33:c8:6c:78:ea:6f:
fc:6a:d9:6e:38:8a:23:42:dc:79:ce:ed:25:9c:cb:e2:16:41:
c2:e4:30:7b:b4:9c:ba:38:a4:b0:8a:6e:ed:28:b0:67:26:f1:
80:6f:fa:5e:c3:7d:dd:ad:53:97:5a:9f:9a:70:b8:64:ff:36:
83:bf:a6:74:92:17:27:43:10:f9:8c:c4:12:9a:12:ea:f9:29:
4c:12:17:52:57:6f:3a:d2:ed:f7:a2:94:cc:f8:6c:20:f1:9c:
ac:49:b1:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI6UooSmp/pdADcLPc0rcVzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjIwNzI2MTE0NDI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTU1NmExMWMxOTk2YmI3ZGZhMDRiNmRmNWZhMmEwM2ZmNzljOWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEmq4MZG3J2rux9TiAxDOPHmZYFU
V19lhTgdqerQeE71NXUEO/exr03yXwyc86zyMKhZhEaezAwrYr2WCIySqLhUzbso
JGdVz/srvbxCBOUyYvCNmMjNxNg0YR3BDiHS33mMLRWFHOYBcsg9UcC+WxPWa2XV
oQ6N3EKoG+s2FYCEa2mSA9vTYgMqn4csvLeZhBiceTo/lghW2b4+2DM/XGm3b5Pg
uq1opWOkIjOhd2EOiAK1x04Z5++H5BuuH44VMrYyDuJkkg0F4N2mhZEdsgXH0u3n
teA/akAnjFPpRsv099Z5PUqPUcvj4MkusPblI2O6c79DYLcgdLNERguREwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGFVahHBmWu336BLbfX6KgP/ecm+MB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvWVZWcUVjR1phN2Zmb0V0dDlmb3FBXzk1eWI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyTG8MA0G
CSqGSIb3DQEBCwUAA4IBAQDNApts5R3ktwskhl42Udubp3iW66n89DfBzBnrVuwU
QUY8h3+X5yez8f8Py6o7QNQ7FD4z2PiCU94bbgBA9QJsb+DerY7suYFFz5Oeb6W6
hM8ehGnlPvKBtYJ9wTVMRKis3cJYBi5iBvwIyx2OYH+DbW2DX0An7Lzky6d0NaS1
kW+mUIpFtSbnt1w03UUKhXhbc+NcVbQBzE/YND8zyGx46m/8atluOIojQtx5zu0l
nMviFkHC5DB7tJy6OKSwim7tKLBnJvGAb/pew33drVOXWp+acLhk/zaDv6Z0khcn
QxD5jMQSmhLq+SlMEhdSV2860u33opTM+Gwg8ZysSbEJ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org