Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/tS0NVyhCroyu6GgioqUAFvulwes.roa
File: tS0NVyhCroyu6GgioqUAFvulwes.roa (raw, json)
Hash identifier: DJbPx9RCn2mVQG0Gy53wZHV+oAR/33O+wwi7Me8LQX4=
Subject key identifier: B5:2D:0D:57:28:42:AE:8C:AE:E8:68:22:A2:A5:00:16:FB:A5:C1:EB
Certificate issuer: /CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Certificate serial: 018436FEF903FA0B0D24408DD09DE56D84D1
Authority key identifier: 50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/tS0NVyhCroyu6GgioqUAFvulwes.roa
Signing time: Wed 02 Nov 2022 06:19:50 +0000
ROA not before: Wed 02 Nov 2022 06:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52468
IP address blocks: 81.199.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:36:fe:f9:03:fa:0b:0d:24:40:8d:d0:9d:e5:6d:84:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Validity
Not Before: Nov 2 06:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b52d0d572842ae8caee86822a2a50016fba5c1eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a5:0a:ca:5a:61:93:34:71:04:22:38:c6:a8:
29:e8:78:39:53:e2:41:7f:cb:db:81:70:6b:b8:91:
2b:23:f4:35:ee:1b:a5:dc:02:38:c3:9c:f6:a5:42:
ee:f4:a5:61:6d:d6:f9:10:68:75:0b:62:3d:2d:41:
51:f2:5d:ed:ce:03:9f:b3:d7:b5:bd:d7:b5:51:c1:
e4:38:e2:d5:4a:54:b8:99:00:7d:9c:2c:d4:95:c9:
38:a1:05:6c:0f:c3:a1:c8:b3:35:8a:28:1b:53:08:
bd:f9:0f:26:b1:bc:e7:28:ea:54:72:a4:b8:d5:f4:
4f:0f:44:8a:41:82:9c:50:1f:54:69:88:84:72:14:
72:db:5f:36:6f:9c:73:c6:c9:66:1b:f9:bc:b6:42:
cb:c6:42:7e:d6:7f:9d:fa:ce:22:1e:d6:a8:56:c5:
f2:a8:6c:51:e8:93:e9:bf:fb:7e:a6:fc:67:37:2b:
28:63:19:cd:6a:fa:36:49:a0:c0:f4:d9:40:51:4c:
64:b4:78:a9:2b:b7:3f:af:84:d5:5f:2d:4c:52:4d:
d9:c7:54:0c:24:87:72:3e:a4:20:57:9e:dc:db:1e:
15:78:02:19:ab:a8:d3:8b:7b:6e:08:21:e6:33:56:
aa:8a:d8:3e:4c:b2:e7:ed:0c:8c:e0:a9:a4:0d:3d:
4a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2D:0D:57:28:42:AE:8C:AE:E8:68:22:A2:A5:00:16:FB:A5:C1:EB
X509v3 Authority Key Identifier:
keyid:50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/tS0NVyhCroyu6GgioqUAFvulwes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/UBgr7pqgEMH_0tgE9qp7FL3bkfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.115.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:19:e9:e8:87:d0:7b:80:2c:a1:96:40:2c:41:45:20:91:59:
9e:35:15:64:53:3d:80:1e:5a:a6:cd:2c:ce:d8:4f:6c:fc:19:
f3:ab:63:ee:97:51:7f:bf:fe:fa:30:b4:a1:ef:6d:99:cb:8d:
86:dc:14:72:c6:a3:27:03:30:05:5b:3f:af:2f:c2:85:08:56:
08:a4:63:56:b6:4c:f9:4c:53:9d:0d:80:53:4c:2b:07:d7:a3:
05:da:2a:15:7e:a1:3c:f0:22:10:fb:a7:4f:56:8a:22:d2:b1:
3a:68:b1:a1:c0:13:6e:cc:45:de:23:bf:96:36:db:d2:11:a0:
d0:cd:17:6c:d8:51:58:25:ab:e5:fa:1b:0e:c0:82:eb:ea:56:
5f:ef:2e:ff:b9:89:26:a9:8d:1c:b5:fb:fd:6b:30:45:00:bd:
2d:e1:5b:9a:69:df:61:c4:f5:1d:45:95:06:a0:fc:15:5a:2d:
74:79:dd:81:c9:df:c4:d7:16:18:ca:62:65:b4:51:65:e7:3e:
1e:8f:44:20:30:ba:14:4d:1e:77:9b:d3:f6:b8:6a:7c:0f:57:
ec:7e:f8:a1:4e:4d:08:4f:be:51:82:06:02:65:62:41:24:3f:
57:64:5d:80:c6:d1:9c:42:52:c0:68:fb:8b:07:6e:7c:e7:40:
0a:73:96:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQ2/vkD+gsNJECN0J3lbYTRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwMTgyYmVlOWFhMDEwYzFmZmQyZDgwNGY2YWE3YjE0YmRk
YjkxZjcwHhcNMjIxMTAyMDYxOTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTJkMGQ1NzI4NDJhZThjYWVlODY4MjJhMmE1MDAxNmZiYTVjMWViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6UKylphkzRxBCI4xqgp6Hg5U+JB
f8vbgXBruJErI/Q17hul3AI4w5z2pULu9KVhbdb5EGh1C2I9LUFR8l3tzgOfs9e1
vde1UcHkOOLVSlS4mQB9nCzUlck4oQVsD8OhyLM1iigbUwi9+Q8msbznKOpUcqS4
1fRPD0SKQYKcUB9UaYiEchRy2182b5xzxslmG/m8tkLLxkJ+1n+d+s4iHtaoVsXy
qGxR6JPpv/t+pvxnNysoYxnNavo2SaDA9NlAUUxktHipK7c/r4TVXy1MUk3Zx1QM
JIdyPqQgV57c2x4VeAIZq6jTi3tuCCHmM1aqitg+TLLn7QyM4KmkDT1K8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLUtDVcoQq6MruhoIqKlABb7pcHrMB8GA1UdIwQY
MBaAFFAYK+6aoBDB/9LYBPaqexS925H3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUJncjdwcWdFTUhfMHRnRTlxcDdGTDNia2ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9iZDQ1NjYtYWMyNy00NmY4LTk0Zjkt
MTlkMWJiNjFkOWE3LzEvdFMwTlZ5aENyb3l1NkdnaW9xVUFGdnVsd2VzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9iZDQ1NjYtYWMyNy00NmY4LTk0ZjktMTlkMWJiNjFkOWE3
LzEvVUJncjdwcWdFTUhfMHRnRTlxcDdGTDNia2ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUcdzMA0G
CSqGSIb3DQEBCwUAA4IBAQA7Genoh9B7gCyhlkAsQUUgkVmeNRVkUz2AHlqmzSzO
2E9s/Bnzq2Pul1F/v/76MLSh722Zy42G3BRyxqMnAzAFWz+vL8KFCFYIpGNWtkz5
TFOdDYBTTCsH16MF2ioVfqE88CIQ+6dPVooi0rE6aLGhwBNuzEXeI7+WNtvSEaDQ
zRds2FFYJavl+hsOwILr6lZf7y7/uYkmqY0ctfv9azBFAL0t4Vuaad9hxPUdRZUG
oPwVWi10ed2Byd/E1xYYymJltFFl5z4ej0QgMLoUTR53m9P2uGp8D1fsfvihTk0I
T75RggYCZWJBJD9XZF2AxtGcQlLAaPuLB25850AKc5aj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:50 2024 by rpki-client on console-ams.rpki-client.org