Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/aomncT1V9eEuM-DGbHpoB6x-XBg.roa
File: aomncT1V9eEuM-DGbHpoB6x-XBg.roa (raw, json)
Hash identifier: xrmVGLxxGAOgPF+NSGeiFl8vY/sByLUO2PMC9nTFZpQ=
Subject key identifier: 6A:89:A7:71:3D:55:F5:E1:2E:33:E0:C6:6C:7A:68:07:AC:7E:5C:18
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 01833CDF147939D713734BD41EAE9F2F081A
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/aomncT1V9eEuM-DGbHpoB6x-XBg.roa
Signing time: Wed 14 Sep 2022 16:39:56 +0000
ROA not before: Wed 14 Sep 2022 16:39:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 194.169.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3c:df:14:79:39:d7:13:73:4b:d4:1e:ae:9f:2f:08:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Sep 14 16:39:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a89a7713d55f5e12e33e0c66c7a6807ac7e5c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:07:a2:27:0d:97:f0:6b:f9:37:24:47:87:71:
39:b5:2c:91:00:eb:b2:97:9e:a6:36:91:53:6f:85:
6a:ca:b8:fb:89:e9:7f:32:de:3c:4c:90:f6:aa:52:
a9:b3:ec:c4:33:07:6d:34:4a:61:4c:5f:89:4a:28:
4e:aa:84:28:41:37:4a:dc:e8:5c:76:26:64:68:39:
5d:b8:e6:c7:68:aa:a6:53:9b:15:08:51:c3:c0:7b:
f9:d2:23:a3:c5:88:4b:77:64:33:3c:a4:25:6b:74:
6d:13:9d:2c:4f:a4:c3:c6:ca:d5:0b:57:1b:bb:88:
7c:0c:5e:1b:41:a8:fb:b1:06:21:a3:e1:ed:35:43:
6e:4b:bd:a6:1c:dc:fa:07:f7:f6:9f:bf:fc:d5:30:
9d:62:89:55:eb:02:15:61:a6:29:75:2e:50:ee:94:
9d:ac:c8:d7:df:93:6f:98:84:67:23:1f:58:cf:31:
44:b2:c9:39:1a:07:1a:d2:53:c1:e7:e6:12:10:24:
15:76:87:18:53:c9:fc:46:4b:a6:59:d0:bc:13:13:
b6:fb:84:6d:0a:7e:56:60:35:cd:a0:75:78:86:29:
7c:42:26:67:5c:f1:df:e9:0d:17:9f:99:16:49:22:
4b:95:2e:f5:b4:20:57:11:47:bc:51:cf:b7:5b:b4:
6e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:89:A7:71:3D:55:F5:E1:2E:33:E0:C6:6C:7A:68:07:AC:7E:5C:18
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/aomncT1V9eEuM-DGbHpoB6x-XBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.48.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:6c:23:be:28:b4:e7:f0:1b:ca:b2:57:a0:e0:6e:e3:c0:04:
6b:77:16:ab:f7:90:96:c2:8e:23:96:4f:02:8d:81:4a:31:22:
23:b0:2f:b2:e5:44:07:f3:96:21:23:39:2e:5d:b6:8e:3d:ab:
3a:e7:90:5b:b8:22:12:82:b0:e1:82:28:92:eb:86:9c:f1:ee:
70:b8:67:8c:7a:93:29:b9:25:f7:58:a2:5c:3a:15:54:32:5f:
0d:8b:9d:78:ed:40:80:b1:50:a1:92:ae:31:ae:01:1f:09:4f:
cf:bc:80:78:92:99:b1:9b:3a:09:6f:2d:e4:fe:26:18:b2:94:
34:31:04:52:53:f0:9f:4f:bd:9e:81:e2:1b:9e:e6:2b:b4:56:
1b:8d:15:4a:37:2f:24:90:7e:6b:45:de:fb:03:47:f6:36:8b:
c7:4c:ea:35:ff:1b:19:3d:b1:b1:ba:a1:66:a3:20:61:91:5e:
7e:af:c3:0b:ec:eb:82:3d:df:2f:d1:09:15:b4:4d:d2:49:9d:
8a:6c:46:6d:1d:84:9c:c8:5c:d0:73:77:2c:e7:e8:87:ba:af:
cd:76:a6:8e:47:c4:91:03:1d:f1:3d:22:cd:8d:85:5e:1e:d4:
43:09:ac:1e:1a:87:4d:83:85:ca:d3:86:3f:59:43:f9:f3:36:
58:ea:ad:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYM83xR5OdcTc0vUHq6fLwgaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ODI0N2QzZjgxNDcyZGJiYTA2ZGJlYTliZDE5Yzc4NWQx
OGJhYmUwHhcNMjIwOTE0MTYzOTU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTg5YTc3MTNkNTVmNWUxMmUzM2UwYzY2YzdhNjgwN2FjN2U1YzE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArweiJw2X8Gv5NyRHh3E5tSyRAOuy
l56mNpFTb4Vqyrj7iel/Mt48TJD2qlKps+zEMwdtNEphTF+JSihOqoQoQTdK3Ohc
diZkaDlduObHaKqmU5sVCFHDwHv50iOjxYhLd2QzPKQla3RtE50sT6TDxsrVC1cb
u4h8DF4bQaj7sQYho+HtNUNuS72mHNz6B/f2n7/81TCdYolV6wIVYaYpdS5Q7pSd
rMjX35NvmIRnIx9YzzFEssk5Ggca0lPB5+YSECQVdocYU8n8RkumWdC8ExO2+4Rt
Cn5WYDXNoHV4hil8QiZnXPHf6Q0Xn5kWSSJLlS71tCBXEUe8Uc+3W7RuqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGqJp3E9VfXhLjPgxmx6aAesflwYMB8GA1UdIwQY
MBaAFNmCR9P4FHLbugbb6pvRnHhdGLq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMllKSDBfZ1VjdHU2QnR2cW05R2NlRjBZdXI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC82ZGJjOTktYmZhOS00ZWY3LWE3OTgt
YTMwMzI2MTU2NjBjLzEvYW9tbmNUMVY5ZUV1TS1ER2JIcG9CNngtWEJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC82ZGJjOTktYmZhOS00ZWY3LWE3OTgtYTMwMzI2MTU2NjBj
LzEvMllKSDBfZ1VjdHU2QnR2cW05R2NlRjBZdXI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwqkwMA0G
CSqGSIb3DQEBCwUAA4IBAQAabCO+KLTn8BvKsleg4G7jwARrdxar95CWwo4jlk8C
jYFKMSIjsC+y5UQH85YhIzkuXbaOPas655BbuCISgrDhgiiS64ac8e5wuGeMepMp
uSX3WKJcOhVUMl8Ni5147UCAsVChkq4xrgEfCU/PvIB4kpmxmzoJby3k/iYYspQ0
MQRSU/CfT72egeIbnuYrtFYbjRVKNy8kkH5rRd77A0f2NovHTOo1/xsZPbGxuqFm
oyBhkV5+r8ML7OuCPd8v0QkVtE3SSZ2KbEZtHYScyFzQc3cs5+iHuq/NdqaOR8SR
Ax3xPSLNjYVeHtRDCaweGodNg4XK04Y/WUP58zZY6q1+
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org