Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/n_u2fxXJ9ojyfRITGZPiVVSysDQ.roa
File: n_u2fxXJ9ojyfRITGZPiVVSysDQ.roa (raw, json)
Hash identifier: hixGBDUBpPiGzdKeXMBoceBGQIKKSxAx11E7u4kjedc=
Subject key identifier: 9F:FB:B6:7F:15:C9:F6:88:F2:7D:12:13:19:93:E2:55:54:B2:B0:34
Certificate issuer: /CN=e5a1e519c9ce77575d89f07cf718f3b0cc86ec55
Certificate serial: 0181F29B42EAF0ACF941E779372673DFAB2D
Authority key identifier: E5:A1:E5:19:C9:CE:77:57:5D:89:F0:7C:F7:18:F3:B0:CC:86:EC:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aHlGcnOd1ddifB89xjzsMyG7FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/n_u2fxXJ9ojyfRITGZPiVVSysDQ.roa
Signing time: Tue 12 Jul 2022 13:31:10 +0000
ROA not before: Tue 12 Jul 2022 13:31:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199117
IP address blocks: 194.33.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f2:9b:42:ea:f0:ac:f9:41:e7:79:37:26:73:df:ab:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1e519c9ce77575d89f07cf718f3b0cc86ec55
Validity
Not Before: Jul 12 13:31:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ffbb67f15c9f688f27d12131993e25554b2b034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fb:b8:16:95:e3:b4:1b:ab:ae:9a:9b:20:86:
c9:5e:32:84:3b:8a:30:5d:71:c9:d2:99:17:3d:83:
d5:fa:48:71:19:dd:07:e0:64:84:f2:da:c7:3a:f9:
17:57:26:76:de:a5:3b:e1:a9:68:67:4c:0f:f6:00:
6b:1e:d1:40:35:22:f2:63:4e:86:4b:33:07:93:e4:
5f:cd:e6:7e:e6:01:41:cc:80:38:72:dd:d5:a2:2c:
b5:f8:9d:7f:df:d2:b0:3f:b9:0a:4a:1f:a4:ae:1a:
c1:c9:db:94:78:e3:22:d5:9b:ef:3b:b9:76:dc:e0:
46:45:1d:57:32:ce:29:c8:9c:78:12:d0:84:80:14:
b4:e9:fa:69:04:11:09:dc:89:18:29:b2:39:71:1b:
8b:f4:bc:07:97:80:7b:07:d3:dc:61:52:ec:7d:c6:
67:0c:3f:7d:2f:d9:ed:93:26:3c:0e:5c:93:c0:ee:
e8:99:4d:97:ca:c2:9d:d3:d8:98:86:d1:fd:34:cb:
9e:dd:bc:24:0d:d8:21:6e:a0:23:14:3c:4d:15:88:
e6:0b:db:1e:38:c2:0e:d4:5f:3b:b2:ff:45:0a:02:
7f:ee:ea:eb:d6:4e:9f:07:9a:07:5b:61:c3:bb:04:
20:8a:47:26:ee:89:34:39:0e:79:4c:2a:d7:d4:54:
76:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:FB:B6:7F:15:C9:F6:88:F2:7D:12:13:19:93:E2:55:54:B2:B0:34
X509v3 Authority Key Identifier:
keyid:E5:A1:E5:19:C9:CE:77:57:5D:89:F0:7C:F7:18:F3:B0:CC:86:EC:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aHlGcnOd1ddifB89xjzsMyG7FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/n_u2fxXJ9ojyfRITGZPiVVSysDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/5aHlGcnOd1ddifB89xjzsMyG7FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.78.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:fb:6d:4a:50:92:f3:75:73:ce:0f:46:fc:45:57:e8:02:d4:
a4:e6:49:6e:e6:7f:95:82:25:c9:10:6f:28:46:ef:8e:49:36:
b8:e9:ea:94:4b:a0:e1:aa:63:1e:fd:9d:b6:f5:48:80:4d:61:
70:cf:e6:ee:1b:de:2f:71:45:a1:3e:9e:0c:e6:24:02:13:97:
e9:24:04:ce:82:ea:37:48:22:fa:93:34:6c:e8:51:8d:3f:f0:
b1:c0:00:ef:db:8c:ac:46:c8:63:75:0d:89:fd:17:ca:61:c5:
3f:b9:41:2f:7a:7f:33:0e:67:d9:fb:da:db:46:12:a8:77:bc:
98:7c:e6:36:8e:5f:4f:ac:d5:56:b4:a5:1c:06:de:6b:f9:23:
78:96:ab:79:8c:b9:c7:96:e6:7b:11:cf:b2:74:e5:04:db:60:
56:a4:80:94:8f:7f:c4:28:67:cf:3b:5b:bd:d8:3c:dd:e2:f0:
c6:20:92:d9:cd:07:84:6e:13:2e:25:89:1a:23:6b:6a:a7:8b:
b3:ae:43:fa:3c:65:e8:fd:cd:29:81:62:99:86:42:8c:b3:59:
09:65:50:80:6b:cd:fd:f2:5b:e7:bc:5f:4f:eb:b1:3b:62:28:
db:54:cd:15:12:05:fc:e6:15:2a:34:c5:6b:13:9b:2a:00:a0:
32:10:36:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHym0Lq8Kz5Qed5NyZz36stMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YTFlNTE5YzljZTc3NTc1ZDg5ZjA3Y2Y3MThmM2IwY2M4
NmVjNTUwHhcNMjIwNzEyMTMzMTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmZiYjY3ZjE1YzlmNjg4ZjI3ZDEyMTMxOTkzZTI1NTU0YjJiMDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/u4FpXjtBurrpqbIIbJXjKEO4ow
XXHJ0pkXPYPV+khxGd0H4GSE8trHOvkXVyZ23qU74aloZ0wP9gBrHtFANSLyY06G
SzMHk+RfzeZ+5gFBzIA4ct3Voiy1+J1/39KwP7kKSh+krhrByduUeOMi1ZvvO7l2
3OBGRR1XMs4pyJx4EtCEgBS06fppBBEJ3IkYKbI5cRuL9LwHl4B7B9PcYVLsfcZn
DD99L9ntkyY8DlyTwO7omU2XysKd09iYhtH9NMue3bwkDdghbqAjFDxNFYjmC9se
OMIO1F87sv9FCgJ/7urr1k6fB5oHW2HDuwQgikcm7ok0OQ55TCrX1FR2UwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ/7tn8VyfaI8n0SExmT4lVUsrA0MB8GA1UdIwQY
MBaAFOWh5RnJzndXXYnwfPcY87DMhuxVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWFIbEdjbk9kMWRkaWZCODl4anpzTXlHN0ZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8yY2MyMmMtMmQ3MS00NmQ2LTkyMTUt
MzhjNWIwYzRmMTUyLzEvbl91MmZ4WEo5b2p5ZlJJVEdaUGlWVlN5c0RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8yY2MyMmMtMmQ3MS00NmQ2LTkyMTUtMzhjNWIwYzRmMTUy
LzEvNWFIbEdjbk9kMWRkaWZCODl4anpzTXlHN0ZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiFOMA0G
CSqGSIb3DQEBCwUAA4IBAQAr+21KUJLzdXPOD0b8RVfoAtSk5klu5n+VgiXJEG8o
Ru+OSTa46eqUS6DhqmMe/Z229UiATWFwz+buG94vcUWhPp4M5iQCE5fpJATOguo3
SCL6kzRs6FGNP/CxwADv24ysRshjdQ2J/RfKYcU/uUEven8zDmfZ+9rbRhKod7yY
fOY2jl9PrNVWtKUcBt5r+SN4lqt5jLnHluZ7Ec+ydOUE22BWpICUj3/EKGfPO1u9
2Dzd4vDGIJLZzQeEbhMuJYkaI2tqp4uzrkP6PGXo/c0pgWKZhkKMs1kJZVCAa839
8lvnvF9P67E7YijbVM0VEgX85hUqNMVrE5sqAKAyEDbD
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:42 2023 by rpki-client on console-ams.rpki-client.org