Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/VZs2M4kxjXtw40EO-rwB1VAvqlg.roa
File: VZs2M4kxjXtw40EO-rwB1VAvqlg.roa (raw, json)
Hash identifier: B1BU8tpHg5uF3N0S7BQTxdhOASiEq1dtw9/9YebLdDk=
Subject key identifier: 55:9B:36:33:89:31:8D:7B:70:E3:41:0E:FA:BC:01:D5:50:2F:AA:58
Certificate issuer: /CN=05ad79492e809934d693b11855e75103241569eb
Certificate serial: 13E85AFC
Authority key identifier: 05:AD:79:49:2E:80:99:34:D6:93:B1:18:55:E7:51:03:24:15:69:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba15SS6AmTTWk7EYVedRAyQVaes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/VZs2M4kxjXtw40EO-rwB1VAvqlg.roa
Signing time: Sat 01 Jan 2022 05:59:48 +0000
ROA not before: Sat 01 Jan 2022 05:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 138.231.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333994748 (0x13e85afc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ad79492e809934d693b11855e75103241569eb
Validity
Not Before: Jan 1 05:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=559b363389318d7b70e3410efabc01d5502faa58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:af:9a:97:ff:28:be:e1:db:a2:1b:93:1f:85:
c4:ba:91:fd:c6:6c:4c:7d:24:2b:61:0d:84:da:2d:
b1:79:3e:d7:a2:bb:68:8e:d3:6f:e9:18:d5:b2:79:
d9:6a:49:b4:1d:df:03:15:38:13:ca:88:cc:f2:21:
08:38:a4:c9:dc:c8:0f:98:45:e5:ff:cd:d6:eb:47:
6c:e7:00:2a:3f:b0:e0:7b:08:06:b8:06:53:14:bb:
24:ed:ab:8e:e0:04:12:d5:42:43:4d:cf:58:5d:10:
09:95:66:bc:14:c5:68:c5:de:af:ad:f5:e0:d9:af:
12:02:d1:f5:71:cb:23:6a:7d:1a:9d:9e:6d:93:5f:
9a:f3:6a:fb:4d:94:4e:a1:cd:78:c8:d5:19:78:d1:
cb:fd:82:6a:d5:a9:b4:f1:3d:d0:e2:43:5e:e0:e0:
44:86:aa:5b:c1:22:c6:7f:36:55:c3:6f:b3:30:d3:
f5:fd:48:9a:82:5b:64:48:c7:ad:c7:57:e6:6a:4e:
25:f2:17:26:41:e6:f9:75:4c:1c:9d:d4:0d:c0:8e:
3c:06:14:4a:6a:64:82:cd:f7:60:c5:8c:8f:5b:6b:
d5:29:e1:b6:68:9d:f8:e4:dd:65:8d:74:6a:eb:61:
b6:12:bc:5d:7a:64:58:55:60:73:dc:c2:a5:31:dc:
af:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9B:36:33:89:31:8D:7B:70:E3:41:0E:FA:BC:01:D5:50:2F:AA:58
X509v3 Authority Key Identifier:
keyid:05:AD:79:49:2E:80:99:34:D6:93:B1:18:55:E7:51:03:24:15:69:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba15SS6AmTTWk7EYVedRAyQVaes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/VZs2M4kxjXtw40EO-rwB1VAvqlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/Ba15SS6AmTTWk7EYVedRAyQVaes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:3b:37:54:1c:0d:bd:78:87:ae:f1:8a:99:1d:2d:2f:9a:d0:
37:60:f3:e3:85:80:ba:bd:ca:01:cc:99:78:ba:6e:8c:44:b0:
5a:3d:af:b7:f9:62:39:23:fb:83:0a:82:fd:f3:5f:67:c9:3a:
54:da:22:99:40:78:92:ef:d5:2a:02:94:62:73:96:78:4b:d2:
4b:8c:0b:b3:f4:3c:47:7d:e0:70:4f:71:05:ed:14:b3:f1:cb:
05:f5:a8:61:c9:81:59:4b:d9:2e:13:3a:90:7a:1b:a7:22:ba:
e1:c5:b4:b0:e9:4c:34:6c:55:24:b1:7a:b9:37:d6:2e:6d:e9:
fb:0e:9d:42:c4:f6:25:3b:5f:7d:36:4a:bc:d2:c5:db:4a:de:
c1:88:8b:1d:aa:cb:ed:75:04:92:fc:ea:de:26:db:ca:15:bb:
02:3c:2d:11:46:f0:57:7d:aa:9f:54:ac:07:98:c8:cc:0c:78:
39:51:0c:43:35:b7:ef:0b:c4:01:a6:3c:0f:64:78:a2:61:73:
9b:92:5a:c0:8e:76:5b:4c:35:a9:94:96:72:8f:fe:75:d7:4d:
9b:44:67:c7:50:90:76:c8:21:97:af:cd:05:f4:46:df:10:6a:
da:45:61:cf:3d:fd:30:09:06:6a:4f:84:4f:1c:b6:83:e4:46:
bf:a9:80:b6
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEE+ha/DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NWFkNzk0OTJlODA5OTM0ZDY5M2IxMTg1NWU3NTEwMzI0MTU2OWViMB4XDTIyMDEw
MTA1NTk0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTU5YjM2MzM4OTMx
OGQ3YjcwZTM0MTBlZmFiYzAxZDU1MDJmYWE1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMivmpf/KL7h26Ibkx+FxLqR/cZsTH0kK2ENhNotsXk+16K7
aI7Tb+kY1bJ52WpJtB3fAxU4E8qIzPIhCDikydzID5hF5f/N1utHbOcAKj+w4HsI
BrgGUxS7JO2rjuAEEtVCQ03PWF0QCZVmvBTFaMXer6314NmvEgLR9XHLI2p9Gp2e
bZNfmvNq+02UTqHNeMjVGXjRy/2CatWptPE90OJDXuDgRIaqW8Eixn82VcNvszDT
9f1ImoJbZEjHrcdX5mpOJfIXJkHm+XVMHJ3UDcCOPAYUSmpkgs33YMWMj1tr1Snh
tmid+OTdZY10auththK8XXpkWFVgc9zCpTHcrzUCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRVmzYziTGNe3DjQQ76vAHVUC+qWDAfBgNVHSMEGDAWgBQFrXlJLoCZNNaT
sRhV51EDJBVp6zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JhMTVTUzZBbVRUV2s3RVlWZWRSQXlRVmFlcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzcvMjgwYjc2LTE1YWMtNGM2OC04MDMyLWYzNzk3ZWYzNDhmZi8x
L1ZaczJNNGt4alh0dzQwRU8tcndCMVZBdnFsZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcv
MjgwYjc2LTE1YWMtNGM2OC04MDMyLWYzNzk3ZWYzNDhmZi8xL0JhMTVTUzZBbVRU
V2s3RVlWZWRSQXlRVmFlcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIrnMA0GCSqGSIb3DQEBCwUAA4IB
AQB+OzdUHA29eIeu8YqZHS0vmtA3YPPjhYC6vcoBzJl4um6MRLBaPa+3+WI5I/uD
CoL9819nyTpU2iKZQHiS79UqApRic5Z4S9JLjAuz9DxHfeBwT3EF7RSz8csF9ahh
yYFZS9kuEzqQehunIrrhxbSw6Uw0bFUksXq5N9Yuben7Dp1CxPYlO199Nkq80sXb
St7BiIsdqsvtdQSS/OreJtvKFbsCPC0RRvBXfaqfVKwHmMjMDHg5UQxDNbfvC8QB
pjwPZHiiYXObklrAjnZbTDWplJZyj/51102bRGfHUJB2yCGXr80F9EbfEGraRWHP
Pf0wCQZqT4RPHLaD5Ea/qYC2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:06 2023 by rpki-client on console-fra.rpki-client.org