Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/hQ6db6LPteLIKEAnvFoyW48bwXA.roa
File: hQ6db6LPteLIKEAnvFoyW48bwXA.roa (raw, json)
Hash identifier: 8iLZOhZy/7vLoz0BM23LnXAVExp3I/UyLjyg29BeHFc=
Subject key identifier: 85:0E:9D:6F:A2:CF:B5:E2:C8:28:40:27:BC:5A:32:5B:8F:1B:C1:70
Certificate issuer: /CN=222c4585bd88fb27cadf29ee5bb95d6575fcef83
Certificate serial: 020D2E
Authority key identifier: 22:2C:45:85:BD:88:FB:27:CA:DF:29:EE:5B:B9:5D:65:75:FC:EF:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IixFhb2I-yfK3ynuW7ldZXX874M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/hQ6db6LPteLIKEAnvFoyW48bwXA.roa
Signing time: Wed 23 Mar 2022 10:22:00 +0000
ROA not before: Wed 23 Mar 2022 10:22:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57169
IP address blocks: 195.254.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134446 (0x20d2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=222c4585bd88fb27cadf29ee5bb95d6575fcef83
Validity
Not Before: Mar 23 10:22:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=850e9d6fa2cfb5e2c8284027bc5a325b8f1bc170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:58:80:87:ae:06:46:69:8a:f9:8c:e1:46:9b:
3f:88:f8:98:be:0a:b0:76:91:75:08:8a:35:ec:01:
b3:85:5b:65:bd:ee:1b:88:bc:ae:46:40:60:76:bc:
fb:a7:80:49:5e:9e:45:ce:b4:4d:aa:e2:3f:0f:34:
ed:d3:c5:fc:47:3d:55:e7:2f:7e:66:3d:bd:c2:1f:
f4:94:87:f0:a0:ce:07:61:85:4a:7a:38:5f:b9:a2:
c6:38:27:2d:f9:f2:7c:39:7f:4e:38:bb:e1:b6:6a:
c3:61:4b:b3:9a:37:0c:86:f5:f7:05:f6:12:91:b9:
4b:49:c7:2b:86:09:98:91:59:91:ab:0c:37:48:4b:
e3:46:04:9b:73:c6:73:4b:83:e6:a0:45:9f:c1:4a:
32:0c:b7:85:6d:99:4d:42:fc:2c:14:ae:42:d6:b3:
f3:b0:3d:51:ff:74:de:ed:bf:27:a0:1d:94:28:0d:
07:51:99:a3:77:30:1a:24:9a:e9:d3:bd:60:5b:de:
a1:d9:a9:ec:a5:83:7d:44:63:64:01:8f:dd:8e:4e:
ee:85:ab:3b:2e:4f:54:76:b1:78:59:54:d2:54:14:
22:b2:c2:06:f0:20:00:23:d8:46:57:71:32:ea:99:
ad:77:37:0a:05:35:69:bd:a3:8e:09:15:aa:ae:7f:
b1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0E:9D:6F:A2:CF:B5:E2:C8:28:40:27:BC:5A:32:5B:8F:1B:C1:70
X509v3 Authority Key Identifier:
keyid:22:2C:45:85:BD:88:FB:27:CA:DF:29:EE:5B:B9:5D:65:75:FC:EF:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IixFhb2I-yfK3ynuW7ldZXX874M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/hQ6db6LPteLIKEAnvFoyW48bwXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/IixFhb2I-yfK3ynuW7ldZXX874M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.132.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b3:4f:73:21:9a:a3:5a:45:b2:09:9c:2a:96:a3:19:ab:b6:
36:c3:9a:7f:4d:2c:67:6f:e1:32:ac:f2:aa:8e:da:5c:98:7d:
bc:d5:75:85:31:a1:6e:4b:de:7d:2d:95:45:93:2d:d0:61:ea:
29:5c:28:ee:45:44:5b:1f:46:d8:dc:de:7f:fc:66:7d:01:6b:
c6:9f:8a:79:2e:d7:f3:69:28:79:b9:ec:d8:85:53:44:6f:39:
da:06:11:49:ba:fb:5c:fd:8a:4b:00:63:ae:61:42:f5:32:93:
c1:09:81:02:f1:ad:22:25:a7:51:46:88:bf:98:21:b4:e2:36:
d8:73:0e:68:28:4f:65:19:18:ca:99:ef:74:8f:1d:3f:1c:ea:
2a:7f:dd:57:27:3b:6f:b8:4f:7c:97:98:7b:29:4f:28:87:53:
fc:02:7d:6d:ea:3f:7c:88:2f:27:9b:85:e5:3a:a3:a6:26:9e:
10:2c:59:a4:5b:44:81:57:ef:cb:56:09:1d:4f:78:de:56:d9:
88:32:bb:34:cf:ee:47:fd:81:a7:98:c7:fe:4f:9b:bd:b2:2f:
3f:91:70:e1:6d:99:76:7f:24:c6:fe:48:f9:8c:fa:88:11:33:
64:08:b2:83:7f:d9:f8:5d:d3:68:d0:13:c9:a8:1d:06:59:03:
56:87:ca:9d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAg0uMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDIy
MmM0NTg1YmQ4OGZiMjdjYWRmMjllZTViYjk1ZDY1NzVmY2VmODMwHhcNMjIwMzIz
MTAyMjAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4NTBlOWQ2ZmEyY2Zi
NWUyYzgyODQwMjdiYzVhMzI1YjhmMWJjMTcwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAj1iAh64GRmmK+YzhRps/iPiYvgqwdpF1CIo17AGzhVtlve4b
iLyuRkBgdrz7p4BJXp5FzrRNquI/DzTt08X8Rz1V5y9+Zj29wh/0lIfwoM4HYYVK
ejhfuaLGOCct+fJ8OX9OOLvhtmrDYUuzmjcMhvX3BfYSkblLSccrhgmYkVmRqww3
SEvjRgSbc8ZzS4PmoEWfwUoyDLeFbZlNQvwsFK5C1rPzsD1R/3Te7b8noB2UKA0H
UZmjdzAaJJrp071gW96h2anspYN9RGNkAY/djk7uhas7Lk9UdrF4WVTSVBQissIG
8CAAI9hGV3Ey6pmtdzcKBTVpvaOOCRWqrn+xdwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFIUOnW+iz7XiyChAJ7xaMluPG8FwMB8GA1UdIwQYMBaAFCIsRYW9iPsnyt8p
7lu5XWV1/O+DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SWl4RmhiMkkteWZLM3ludVc3bGRaWFg4NzRNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82OC82ZWIzNjUtODAzYS00YzJmLWI3YWUtYzY0N2E4YzFkZGZhLzEv
aFE2ZGI2TFB0ZUxJS0VBbnZGb3lXNDhid1hBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC82
ZWIzNjUtODAzYS00YzJmLWI3YWUtYzY0N2E4YzFkZGZhLzEvSWl4RmhiMkkteWZL
M3ludVc3bGRaWFg4NzRNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/6EMA0GCSqGSIb3DQEBCwUAA4IB
AQBbs09zIZqjWkWyCZwqlqMZq7Y2w5p/TSxnb+EyrPKqjtpcmH281XWFMaFuS959
LZVFky3QYeopXCjuRURbH0bY3N5//GZ9AWvGn4p5LtfzaSh5uezYhVNEbznaBhFJ
uvtc/YpLAGOuYUL1MpPBCYEC8a0iJadRRoi/mCG04jbYcw5oKE9lGRjKme90jx0/
HOoqf91XJztvuE98l5h7KU8oh1P8An1t6j98iC8nm4XlOqOmJp4QLFmkW0SBV+/L
VgkdT3jeVtmIMrs0z+5H/YGnmMf+T5u9si8/kXDhbZl2fyTG/kj5jPqIETNkCLKD
f9n4XdNo0BPJqB0GWQNWh8qd
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:19 2023 by rpki-client on console-fra.rpki-client.org