Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/lRCOMoXxzjRtzWEDAxOGZcEWxOg.roa
File: lRCOMoXxzjRtzWEDAxOGZcEWxOg.roa (raw, json)
Hash identifier: ErisI3MQFZNdCgepHTjd2SLLffFTesgMt3IrJu9sGmc=
Subject key identifier: 95:10:8E:32:85:F1:CE:34:6D:CD:61:03:03:13:86:65:C1:16:C4:E8
Certificate issuer: /CN=cced992030531e7e8b518aefd9e267cc528eda9a
Certificate serial: 5767FB
Authority key identifier: CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/lRCOMoXxzjRtzWEDAxOGZcEWxOg.roa
Signing time: Fri 11 Feb 2022 03:23:24 +0000
ROA not before: Fri 11 Feb 2022 03:23:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 195.170.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5728251 (0x5767fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cced992030531e7e8b518aefd9e267cc528eda9a
Validity
Not Before: Feb 11 03:23:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95108e3285f1ce346dcd610303138665c116c4e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4f:ca:14:07:ba:f8:c1:43:3a:28:6e:98:fc:
48:84:89:15:93:5a:b7:5f:f5:00:0c:93:27:f2:ff:
56:ec:9f:42:0e:82:90:6b:0e:69:b7:f1:38:50:f6:
12:f9:0a:2d:e5:44:f3:82:39:b7:9e:a2:49:4d:08:
b1:85:31:bb:1d:7f:fc:2a:bd:7c:95:a4:3e:ed:8d:
51:8e:b9:23:19:84:46:48:b6:8d:32:97:6e:64:37:
5b:f6:57:1e:41:fa:04:1a:19:1d:fc:17:55:b6:e1:
92:f7:21:cb:b2:da:ba:20:9e:25:68:db:e9:de:36:
4a:c2:90:13:1b:7f:20:c5:25:bc:28:1a:19:a1:1e:
58:9d:00:2c:47:1b:cd:58:1a:40:99:a2:e0:6b:3f:
10:b5:5c:70:d6:b8:3a:c0:42:ae:64:20:52:27:39:
f5:66:68:c6:b3:31:87:16:df:9d:56:cd:f2:ab:95:
ff:9b:80:b3:e8:26:29:14:bf:33:ae:fe:40:9d:75:
35:fb:c8:91:6e:0b:14:03:f0:60:0f:0f:a6:c8:30:
a1:64:85:96:f3:30:16:26:a0:64:3d:36:6a:92:37:
40:00:b8:61:4d:22:f9:20:38:80:fd:14:ea:53:bb:
82:3c:d6:12:fa:56:f6:20:67:10:b2:b2:37:da:58:
12:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:10:8E:32:85:F1:CE:34:6D:CD:61:03:03:13:86:65:C1:16:C4:E8
X509v3 Authority Key Identifier:
keyid:CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/lRCOMoXxzjRtzWEDAxOGZcEWxOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/zO2ZIDBTHn6LUYrv2eJnzFKO2po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.163.0/24
Signature Algorithm: sha256WithRSAEncryption
95:3a:99:5b:b0:92:a2:41:45:15:d8:4c:d0:2f:58:0c:2d:35:
24:09:c8:59:50:06:ce:34:cb:53:d6:9c:fe:3f:c7:5d:f9:74:
26:b6:ee:02:92:58:06:eb:23:a5:bd:88:cf:14:13:a0:ad:04:
f8:49:68:a7:fd:e0:8d:05:63:a6:b6:e9:ce:5a:4f:f8:9e:1f:
79:b6:57:1c:43:e6:e0:16:42:df:5b:dd:2c:6d:2a:6d:4b:32:
87:af:ba:ed:15:9c:c4:5b:5a:90:80:dd:0c:81:a8:f3:da:ae:
ac:13:6f:ef:9e:6b:2c:b1:46:9e:af:29:5e:72:37:6d:08:f4:
15:88:00:27:7f:57:b0:dd:c0:62:51:21:d8:60:b7:b8:62:1d:
0d:97:83:c9:dd:5e:e7:7a:91:5c:97:3a:02:97:2a:e6:ee:89:
2f:6a:02:49:26:08:59:c8:15:ee:46:46:b8:d8:0a:03:2b:e5:
6e:7a:59:62:27:03:ca:7f:25:da:01:e8:25:54:09:e8:39:d5:
2f:93:1c:a6:1d:a0:e3:ab:a9:c3:c3:d4:6b:07:33:0f:d8:b6:
83:03:c2:e0:92:80:4d:9d:34:49:5c:12:d6:57:7f:f2:56:0d:
51:9e:c2:82:b7:06:9c:21:dc:17:29:e8:e9:06:ac:08:36:68:
13:e5:6a:27
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDV2f7MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNj
ZWQ5OTIwMzA1MzFlN2U4YjUxOGFlZmQ5ZTI2N2NjNTI4ZWRhOWEwHhcNMjIwMjEx
MDMyMzI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5NTEwOGUzMjg1ZjFj
ZTM0NmRjZDYxMDMwMzEzODY2NWMxMTZjNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAw0/KFAe6+MFDOihumPxIhIkVk1q3X/UADJMn8v9W7J9CDoKQ
aw5pt/E4UPYS+Qot5UTzgjm3nqJJTQixhTG7HX/8Kr18laQ+7Y1RjrkjGYRGSLaN
MpduZDdb9lceQfoEGhkd/BdVtuGS9yHLstq6IJ4laNvp3jZKwpATG38gxSW8KBoZ
oR5YnQAsRxvNWBpAmaLgaz8QtVxw1rg6wEKuZCBSJzn1ZmjGszGHFt+dVs3yq5X/
m4Cz6CYpFL8zrv5AnXU1+8iRbgsUA/BgDw+myDChZIWW8zAWJqBkPTZqkjdAALhh
TSL5IDiA/RTqU7uCPNYS+lb2IGcQsrI32lgSTQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJUQjjKF8c40bc1hAwMThmXBFsToMB8GA1UdIwQYMBaAFMztmSAwUx5+i1GK
79niZ8xSjtqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ek8yWklEQlRIbjZMVVlydjJlSm56RktPMnBvLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83Mi9hMDVlNzctZjMwMS00MTI1LTkxMTgtZTRkMWYwYTI3YjIxLzEv
bFJDT01vWHh6alJ0eldFREF4T0daY0VXeE9nLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9h
MDVlNzctZjMwMS00MTI1LTkxMTgtZTRkMWYwYTI3YjIxLzEvek8yWklEQlRIbjZM
VVlydjJlSm56RktPMnBvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw6qjMA0GCSqGSIb3DQEBCwUAA4IB
AQCVOplbsJKiQUUV2EzQL1gMLTUkCchZUAbONMtT1pz+P8dd+XQmtu4CklgG6yOl
vYjPFBOgrQT4SWin/eCNBWOmtunOWk/4nh95tlccQ+bgFkLfW90sbSptSzKHr7rt
FZzEW1qQgN0Mgajz2q6sE2/vnmsssUaerylecjdtCPQViAAnf1ew3cBiUSHYYLe4
Yh0Nl4PJ3V7nepFclzoClyrm7okvagJJJghZyBXuRka42AoDK+VuelliJwPKfyXa
AeglVAnoOdUvkxymHaDjq6nDw9RrBzMP2LaDA8LgkoBNnTRJXBLWV3/yVg1RnsKC
twacIdwXKejpBqwINmgT5Won
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:53 2023 by rpki-client on console-fra.rpki-client.org