Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/950gsSiFjAb72DoKuWba-G85BB0.roa
File: 950gsSiFjAb72DoKuWba-G85BB0.roa (raw, json)
Hash identifier: 4iaS0d4ajvpE9LAs2U66usrCtC/vYzaaTnen2Qj6cZM=
Subject key identifier: F7:9D:20:B1:28:85:8C:06:FB:D8:3A:0A:B9:66:DA:F8:6F:39:04:1D
Certificate issuer: /CN=2ec121e1545df3e5bb86e9188f2825fad7477f75
Certificate serial: 0183118AC7A127FABB104EB489F092608512
Authority key identifier: 2E:C1:21:E1:54:5D:F3:E5:BB:86:E9:18:8F:28:25:FA:D7:47:7F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LsEh4VRd8-W7hukYjygl-tdHf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/950gsSiFjAb72DoKuWba-G85BB0.roa
Signing time: Tue 06 Sep 2022 06:44:11 +0000
ROA not before: Tue 06 Sep 2022 06:44:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42630
IP address blocks: 193.200.58.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:11:8a:c7:a1:27:fa:bb:10:4e:b4:89:f0:92:60:85:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ec121e1545df3e5bb86e9188f2825fad7477f75
Validity
Not Before: Sep 6 06:44:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f79d20b128858c06fbd83a0ab966daf86f39041d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:07:16:18:0c:dc:e2:19:64:9c:d1:0c:87:
c2:ad:d5:ba:42:d3:bf:d7:81:f3:02:22:7d:76:ab:
a5:90:88:b5:dc:15:e7:b4:1c:01:62:1b:58:7f:60:
c6:9f:1f:2a:3b:c3:90:1d:22:31:ca:98:0f:34:1c:
55:a5:37:72:2e:97:a9:ec:f8:1f:9e:5e:f7:c8:6c:
d5:cb:6d:8b:81:67:44:e4:e5:db:75:51:7f:ea:95:
9a:60:09:07:83:f6:2b:37:6d:3a:9f:9b:fc:72:69:
92:00:8f:96:d1:56:aa:69:85:24:71:38:b2:45:ec:
97:90:fa:aa:de:c0:89:b6:00:66:1a:be:33:f4:8d:
28:3f:40:ca:f0:f8:4f:6f:74:34:9e:77:11:81:ca:
ba:f3:56:6f:b1:df:03:bf:1d:68:a1:53:4c:02:62:
a2:b0:52:24:3e:27:88:c3:9f:83:7b:17:b7:8a:9c:
5b:02:a4:e4:01:5d:ee:c3:eb:ee:b4:88:db:55:7a:
4b:14:f4:0d:c7:d9:f0:07:ca:46:8f:86:c5:09:e6:
a8:30:6b:6d:f6:c2:bb:8c:87:82:0e:dc:0e:0c:e7:
f3:22:8c:26:3e:39:c6:03:99:ae:de:a6:49:ac:10:
d6:9d:2e:dc:40:ca:76:f6:38:0b:90:6b:90:3b:68:
64:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9D:20:B1:28:85:8C:06:FB:D8:3A:0A:B9:66:DA:F8:6F:39:04:1D
X509v3 Authority Key Identifier:
keyid:2E:C1:21:E1:54:5D:F3:E5:BB:86:E9:18:8F:28:25:FA:D7:47:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LsEh4VRd8-W7hukYjygl-tdHf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/950gsSiFjAb72DoKuWba-G85BB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/LsEh4VRd8-W7hukYjygl-tdHf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.58.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:88:2f:6f:cf:ac:53:be:37:9b:9e:15:fd:d2:49:8a:ee:7a:
3c:70:7a:47:5e:95:fe:0a:04:e1:e5:b3:a8:69:24:8d:01:20:
10:71:d0:76:2e:5b:e9:25:34:c1:8d:b1:9c:11:d1:50:de:38:
bc:45:69:69:87:56:48:a4:3b:fe:f5:87:e8:a7:7c:76:e7:2a:
d7:4f:da:0a:76:37:19:36:4a:40:cd:99:8c:f7:01:e3:75:a5:
15:09:7a:5e:92:9b:9e:17:bf:87:0c:70:03:54:d7:08:0c:68:
62:37:f4:ae:a4:eb:c3:56:f5:94:df:cc:f6:71:cd:a6:7e:d9:
4e:dc:e5:3b:c7:b9:b9:21:22:d4:56:8b:be:df:e9:61:2e:43:
cf:9e:c3:85:95:2f:14:56:2b:e5:ca:ec:ac:ee:74:05:79:43:
31:3c:f2:76:b9:0c:34:8e:5e:46:7a:2c:3e:15:b8:21:c4:7f:
09:69:9a:df:dd:a6:b9:3b:0c:9d:53:7b:56:40:72:62:1e:5f:
f4:0d:7f:d7:d1:f7:22:2c:29:ca:89:1d:ba:3d:9b:da:a2:42:
c0:cb:34:4e:fd:72:5f:54:98:6d:93:e9:a4:93:42:18:6b:f2:
b5:29:b6:6f:aa:0e:2e:2f:87:20:d3:a3:0b:74:72:89:50:38:
5b:fd:33:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMRisehJ/q7EE60ifCSYIUSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlYzEyMWUxNTQ1ZGYzZTViYjg2ZTkxODhmMjgyNWZhZDc0
NzdmNzUwHhcNMjIwOTA2MDY0NDExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzlkMjBiMTI4ODU4YzA2ZmJkODNhMGFiOTY2ZGFmODZmMzkwNDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgMHFhgM3OIZZJzRDIfCrdW6QtO/
14HzAiJ9dqulkIi13BXntBwBYhtYf2DGnx8qO8OQHSIxypgPNBxVpTdyLpep7Pgf
nl73yGzVy22LgWdE5OXbdVF/6pWaYAkHg/YrN206n5v8cmmSAI+W0VaqaYUkcTiy
ReyXkPqq3sCJtgBmGr4z9I0oP0DK8PhPb3Q0nncRgcq681Zvsd8Dvx1ooVNMAmKi
sFIkPieIw5+Dexe3ipxbAqTkAV3uw+vutIjbVXpLFPQNx9nwB8pGj4bFCeaoMGtt
9sK7jIeCDtwODOfzIowmPjnGA5mu3qZJrBDWnS7cQMp29jgLkGuQO2hkdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPedILEohYwG+9g6Crlm2vhvOQQdMB8GA1UdIwQY
MBaAFC7BIeFUXfPlu4bpGI8oJfrXR391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHNFaDRWUmQ4LVc3aHVrWWp5Z2wtdGRIZjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8xZWQyN2MtMmQ4Yy00MDgwLWE0NTgt
OWY1MjJhMjg0NTk1LzEvOTUwZ3NTaUZqQWI3MkRvS3VXYmEtRzg1QkIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8xZWQyN2MtMmQ4Yy00MDgwLWE0NTgtOWY1MjJhMjg0NTk1
LzEvTHNFaDRWUmQ4LVc3aHVrWWp5Z2wtdGRIZjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwcg6MA0G
CSqGSIb3DQEBCwUAA4IBAQB8iC9vz6xTvjebnhX90kmK7no8cHpHXpX+CgTh5bOo
aSSNASAQcdB2LlvpJTTBjbGcEdFQ3ji8RWlph1ZIpDv+9Yfop3x25yrXT9oKdjcZ
NkpAzZmM9wHjdaUVCXpekpueF7+HDHADVNcIDGhiN/SupOvDVvWU38z2cc2mftlO
3OU7x7m5ISLUVou+3+lhLkPPnsOFlS8UVivlyuys7nQFeUMxPPJ2uQw0jl5Geiw+
FbghxH8JaZrf3aa5OwydU3tWQHJiHl/0DX/X0fciLCnKiR26PZvaokLAyzRO/XJf
VJhtk+mkk0IYa/K1KbZvqg4uL4cg06MLdHKJUDhb/TO7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org