Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/jb6lkfEG25l_3_7zcuBPGZuQqnk.roa
File: jb6lkfEG25l_3_7zcuBPGZuQqnk.roa (raw, json)
Hash identifier: 13u5CsEz6WmhJ0Ps3fFZFZ/ECLWkZWsQ2gz4q8drnyw=
Subject key identifier: 8D:BE:A5:91:F1:06:DB:99:7F:DF:FE:F3:72:E0:4F:19:9B:90:AA:79
Certificate issuer: /CN=af036816a317dd99d25383a32a681859c047b5ff
Certificate serial: 019EEF20
Authority key identifier: AF:03:68:16:A3:17:DD:99:D2:53:83:A3:2A:68:18:59:C0:47:B5:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwNoFqMX3ZnSU4OjKmgYWcBHtf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/jb6lkfEG25l_3_7zcuBPGZuQqnk.roa
Signing time: Sat 01 Jan 2022 04:59:26 +0000
ROA not before: Sat 01 Jan 2022 04:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51212
IP address blocks: 194.187.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27193120 (0x19eef20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af036816a317dd99d25383a32a681859c047b5ff
Validity
Not Before: Jan 1 04:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dbea591f106db997fdffef372e04f199b90aa79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:f7:c1:82:b8:0e:2d:d5:89:da:be:2a:6f:
1a:66:93:a3:57:f3:f9:08:7b:91:3f:cc:67:54:00:
0f:cf:a3:ee:09:46:c2:af:99:eb:54:60:fd:a6:62:
8b:e5:1e:52:0a:c0:2a:52:58:42:ee:a6:24:12:b5:
12:85:bb:88:41:03:e3:f5:51:1c:49:e9:2e:39:e6:
9f:57:77:27:d5:cc:fd:48:29:dd:d7:a8:30:cb:86:
d5:8b:3a:a7:1e:0f:cc:55:a5:5e:18:fe:04:a1:49:
e9:0f:89:12:b1:f3:17:72:38:64:a4:98:c1:03:3e:
8b:0e:4e:b8:9d:08:4f:6c:69:2a:a6:ae:e6:34:b5:
62:eb:75:77:66:bc:92:cf:33:bf:f7:42:8b:65:c0:
65:01:31:e4:80:2e:7c:45:7d:a9:7a:15:8a:1d:af:
b7:3f:bb:a2:a4:a2:5f:65:24:22:d5:67:56:d9:0c:
93:88:56:f7:c9:7c:9f:b0:bf:a4:2e:30:14:8c:82:
a0:81:b8:20:68:d1:85:5f:98:07:3f:18:54:0c:6e:
dd:ce:4e:58:f2:14:e6:42:d5:ac:7f:e4:64:7e:06:
d1:82:f6:a7:57:ca:93:e5:9d:2a:40:84:e4:34:c7:
0f:99:a1:09:01:ac:b6:00:e1:1a:c1:fc:c8:72:4b:
25:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BE:A5:91:F1:06:DB:99:7F:DF:FE:F3:72:E0:4F:19:9B:90:AA:79
X509v3 Authority Key Identifier:
keyid:AF:03:68:16:A3:17:DD:99:D2:53:83:A3:2A:68:18:59:C0:47:B5:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwNoFqMX3ZnSU4OjKmgYWcBHtf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/jb6lkfEG25l_3_7zcuBPGZuQqnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/rwNoFqMX3ZnSU4OjKmgYWcBHtf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.56.0/22
Signature Algorithm: sha256WithRSAEncryption
83:f2:d1:7e:34:c6:ab:6c:09:c2:c6:bd:cc:dd:18:28:2a:89:
34:49:6a:6d:f1:04:fe:45:1c:5d:fd:37:2f:97:6d:6f:6e:cd:
b7:85:e5:06:68:2a:3d:35:2a:e6:99:24:25:5a:23:ae:2c:e3:
12:30:d9:be:b0:c1:81:ce:be:5a:f4:1d:42:24:bf:94:c9:af:
76:f1:a4:ca:ca:4b:b8:7c:2a:31:c5:eb:cb:43:8a:9e:0e:12:
c3:34:b2:b0:6a:01:00:fe:77:75:ce:7f:e2:78:07:7b:90:ba:
88:da:1f:a9:ce:3d:79:eb:ee:95:54:02:9c:7b:7c:36:f4:d9:
e7:b4:1d:b6:9e:5e:fc:1b:1f:62:25:77:59:98:8d:21:10:5e:
7c:6d:e0:79:ff:1e:e7:86:80:ad:3c:e8:5a:da:68:db:53:45:
46:ae:05:72:c2:9a:30:28:a2:fd:47:d1:6d:72:0c:4a:22:ad:
2f:5b:bf:9d:a0:74:ad:7b:7d:9a:22:25:71:68:f6:b4:1b:df:
14:34:3e:7a:b6:f2:83:4d:b3:a5:bf:04:5f:be:0f:02:f0:25:
17:c3:e0:bb:e7:f7:7a:ca:ed:db:f0:33:a9:77:c1:da:45:3a:
e5:05:ed:ca:58:54:7c:82:e8:c2:ee:2a:0a:a7:2d:60:27:8a:
e5:09:52:23
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZ7vIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZjAzNjgxNmEzMTdkZDk5ZDI1MzgzYTMyYTY4MTg1OWMwNDdiNWZmMB4XDTIyMDEw
MTA0NTkyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGRiZWE1OTFmMTA2
ZGI5OTdmZGZmZWYzNzJlMDRmMTk5YjkwYWE3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALeW98GCuA4t1YnavipvGmaTo1fz+Qh7kT/MZ1QAD8+j7glG
wq+Z61Rg/aZii+UeUgrAKlJYQu6mJBK1EoW7iEED4/VRHEnpLjnmn1d3J9XM/Ugp
3deoMMuG1Ys6px4PzFWlXhj+BKFJ6Q+JErHzF3I4ZKSYwQM+iw5OuJ0IT2xpKqau
5jS1Yut1d2a8ks8zv/dCi2XAZQEx5IAufEV9qXoVih2vtz+7oqSiX2UkItVnVtkM
k4hW98l8n7C/pC4wFIyCoIG4IGjRhV+YBz8YVAxu3c5OWPIU5kLVrH/kZH4G0YL2
p1fKk+WdKkCE5DTHD5mhCQGstgDhGsH8yHJLJS0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSNvqWR8QbbmX/f/vNy4E8Zm5CqeTAfBgNVHSMEGDAWgBSvA2gWoxfdmdJT
g6MqaBhZwEe1/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3J3Tm9GcU1YM1puU1U0T2pLbWdZV2NCSHRmOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmUvNTJiMTk5LTllMWYtNGVjNy1iMGFhLTRhNGUwZjQyNGYxNy8x
L2piNmxrZkVHMjVsXzNfN3pjdUJQR1p1UXFuay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmUv
NTJiMTk5LTllMWYtNGVjNy1iMGFhLTRhNGUwZjQyNGYxNy8xL3J3Tm9GcU1YM1pu
U1U0T2pLbWdZV2NCSHRmOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsK7ODANBgkqhkiG9w0BAQsFAAOC
AQEAg/LRfjTGq2wJwsa9zN0YKCqJNElqbfEE/kUcXf03L5dtb27Nt4XlBmgqPTUq
5pkkJVojrizjEjDZvrDBgc6+WvQdQiS/lMmvdvGkyspLuHwqMcXry0OKng4SwzSy
sGoBAP53dc5/4ngHe5C6iNofqc49eevulVQCnHt8NvTZ57Qdtp5e/BsfYiV3WZiN
IRBefG3gef8e54aArTzoWtpo21NFRq4FcsKaMCii/UfRbXIMSiKtL1u/naB0rXt9
miIlcWj2tBvfFDQ+erbyg02zpb8EX74PAvAlF8Pgu+f3esrt2/AzqXfB2kU65QXt
ylhUfILowu4qCqctYCeK5QlSIw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:18 2023 by rpki-client on console-ams.rpki-client.org