Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/5aNPOuV4B0wsJ-iRudCMxgLLP1s.roa
File: 5aNPOuV4B0wsJ-iRudCMxgLLP1s.roa (raw, json)
Hash identifier: 1JF31/DswJjYCppG8neRRdWkpTqRPpVjaQScd7L5h7Q=
Subject key identifier: E5:A3:4F:3A:E5:78:07:4C:2C:27:E8:91:B9:D0:8C:C6:02:CB:3F:5B
Certificate issuer: /CN=8e622a34c55e39b8fa15a37ba9e370eaafd99774
Certificate serial: 0962B93A
Authority key identifier: 8E:62:2A:34:C5:5E:39:B8:FA:15:A3:7B:A9:E3:70:EA:AF:D9:97:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmIqNMVeObj6FaN7qeNw6q_Zl3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/5aNPOuV4B0wsJ-iRudCMxgLLP1s.roa
Signing time: Sat 01 Jan 2022 13:56:14 +0000
ROA not before: Sat 01 Jan 2022 13:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198033
IP address blocks: 195.190.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157464890 (0x962b93a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e622a34c55e39b8fa15a37ba9e370eaafd99774
Validity
Not Before: Jan 1 13:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5a34f3ae578074c2c27e891b9d08cc602cb3f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7a:e2:7c:5b:af:7c:87:b5:72:e1:d7:13:eb:
0f:e9:39:9e:7a:fd:1b:4b:b9:c9:6f:be:82:22:06:
20:59:7a:f4:0b:cb:51:98:ff:5d:fa:b0:e7:72:e9:
25:53:1e:3b:14:a1:1b:60:96:d4:1b:8a:40:e0:12:
80:8a:57:81:d9:c6:71:fa:bc:32:50:e2:d2:58:20:
51:e5:67:6a:e8:57:80:9d:1f:34:f6:06:7b:4e:52:
e0:fa:09:50:84:f2:34:2c:99:18:74:6b:5e:77:ae:
e1:b3:2c:bb:d4:2f:12:b2:13:fb:2e:01:78:8f:45:
89:bc:a7:f7:71:29:a6:ea:d1:4c:4c:ad:59:f7:bf:
bc:7d:48:ad:f5:63:fe:a4:e0:fa:d5:ef:f8:8b:a5:
09:94:27:f7:14:0c:65:ec:08:3d:a9:16:bc:2d:21:
d4:db:96:f0:19:4d:45:07:12:86:b9:34:08:63:68:
dd:f5:79:92:6d:a2:9a:3a:d8:e5:a0:f4:34:5e:5d:
15:ae:d3:9c:19:45:1f:7e:91:5a:14:21:bc:ea:5c:
73:6a:50:1b:ca:5b:b3:35:f4:45:1d:71:d8:77:12:
71:f1:ad:1a:dc:7f:28:78:a1:a9:95:82:9b:81:2c:
86:9c:40:51:00:88:a5:77:95:eb:71:6a:38:c5:e5:
9f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A3:4F:3A:E5:78:07:4C:2C:27:E8:91:B9:D0:8C:C6:02:CB:3F:5B
X509v3 Authority Key Identifier:
keyid:8E:62:2A:34:C5:5E:39:B8:FA:15:A3:7B:A9:E3:70:EA:AF:D9:97:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmIqNMVeObj6FaN7qeNw6q_Zl3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/5aNPOuV4B0wsJ-iRudCMxgLLP1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/jmIqNMVeObj6FaN7qeNw6q_Zl3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.152.0/24
Signature Algorithm: sha256WithRSAEncryption
04:06:bf:8d:1c:7c:0f:c7:ff:e3:ed:bb:76:48:57:98:ac:49:
e9:b6:15:11:0c:10:e2:de:e6:b6:ef:45:88:ed:0a:01:8e:05:
be:55:10:e2:ff:0c:12:23:41:01:0e:ba:11:71:d0:7d:f4:85:
ea:16:01:fa:25:ac:07:22:51:9a:89:34:3b:50:c2:27:5e:a4:
f2:42:89:d0:ae:b4:55:13:42:5f:46:58:0d:f4:fc:7b:e9:06:
21:64:c4:45:0e:27:1c:3b:49:bf:c3:e8:2a:ab:01:dd:db:b2:
d8:64:b5:87:af:73:f1:60:4c:3f:d9:31:b2:0d:6f:78:08:36:
11:3d:b1:bd:5f:d8:81:38:ba:96:66:72:ff:dd:9b:51:f8:8f:
74:23:96:35:bf:2e:f2:48:48:12:9a:38:62:f5:42:22:54:76:
f1:d3:e0:87:d3:f1:81:6c:93:88:cb:d8:0c:ee:aa:5f:cb:dd:
69:75:9a:57:e0:65:38:66:06:db:0c:a0:d8:89:23:b0:a8:b4:
ad:c3:a7:dc:a3:b6:eb:2e:12:67:2a:a5:13:7e:09:89:0a:aa:
16:51:b1:6c:16:33:a4:63:c3:6e:1e:99:2e:54:38:30:2c:a7:
a7:3f:cd:b8:21:9b:fd:a6:06:5a:12:93:06:55:30:68:c1:5b:
91:25:3a:07
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECWK5OjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTYyMmEzNGM1NWUzOWI4ZmExNWEzN2JhOWUzNzBlYWFmZDk5Nzc0MB4XDTIyMDEw
MTEzNTYxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTVhMzRmM2FlNTc4
MDc0YzJjMjdlODkxYjlkMDhjYzYwMmNiM2Y1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALx64nxbr3yHtXLh1xPrD+k5nnr9G0u5yW++giIGIFl69AvL
UZj/Xfqw53LpJVMeOxShG2CW1BuKQOASgIpXgdnGcfq8MlDi0lggUeVnauhXgJ0f
NPYGe05S4PoJUITyNCyZGHRrXneu4bMsu9QvErIT+y4BeI9Fibyn93EppurRTEyt
Wfe/vH1IrfVj/qTg+tXv+IulCZQn9xQMZewIPakWvC0h1NuW8BlNRQcShrk0CGNo
3fV5km2imjrY5aD0NF5dFa7TnBlFH36RWhQhvOpcc2pQG8pbszX0RR1x2HcScfGt
Gtx/KHihqZWCm4EshpxAUQCIpXeV63FqOMXln5ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTlo0865XgHTCwn6JG50IzGAss/WzAfBgNVHSMEGDAWgBSOYio0xV45uPoV
o3up43Dqr9mXdDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ptSXFOTVZlT2JqNkZhTjdxZU53NnFfWmwzUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjAvODJjYjNlLTgxOTktNDkxNy1hMTc2LWU1MGUxZTliYjRiMy8x
LzVhTlBPdVY0QjB3c0otaVJ1ZENNeGdMTFAxcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjAv
ODJjYjNlLTgxOTktNDkxNy1hMTc2LWU1MGUxZTliYjRiMy8xL2ptSXFOTVZlT2Jq
NkZhTjdxZU53NnFfWmwzUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMO+mDANBgkqhkiG9w0BAQsFAAOC
AQEABAa/jRx8D8f/4+27dkhXmKxJ6bYVEQwQ4t7mtu9FiO0KAY4FvlUQ4v8MEiNB
AQ66EXHQffSF6hYB+iWsByJRmok0O1DCJ16k8kKJ0K60VRNCX0ZYDfT8e+kGIWTE
RQ4nHDtJv8PoKqsB3duy2GS1h69z8WBMP9kxsg1veAg2ET2xvV/YgTi6lmZy/92b
UfiPdCOWNb8u8khIEpo4YvVCIlR28dPgh9PxgWyTiMvYDO6qX8vdaXWaV+BlOGYG
2wyg2IkjsKi0rcOn3KO26y4SZyqlE34JiQqqFlGxbBYzpGPDbh6ZLlQ4MCynpz/N
uCGb/aYGWhKTBlUwaMFbkSU6Bw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:56 2023 by rpki-client on console-fra.rpki-client.org