Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/8a5ee7-b638-4b70-8a8e-f97745d13b8d/1/5kc_IgEOynvOR-DgFn4se84n_Uk.roa
File: 5kc_IgEOynvOR-DgFn4se84n_Uk.roa (raw, json)
Hash identifier: 0Ou3m0HJwcX4GjgRL4v4pvYPHXokOsaqV5+9QaEtMv8=
Subject key identifier: E6:47:3F:22:01:0E:CA:7B:CE:47:E0:E0:16:7E:2C:7B:CE:27:FD:49
Certificate issuer: /CN=375c742259ff900857d13689d8d48db20edf4603
Certificate serial: 03C5BC59
Authority key identifier: 37:5C:74:22:59:FF:90:08:57:D1:36:89:D8:D4:8D:B2:0E:DF:46:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1x0Iln_kAhX0TaJ2NSNsg7fRgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/8a5ee7-b638-4b70-8a8e-f97745d13b8d/1/5kc_IgEOynvOR-DgFn4se84n_Uk.roa
Signing time: Sat 01 Jan 2022 03:54:16 +0000
ROA not before: Sat 01 Jan 2022 03:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43621
IP address blocks: 195.214.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63290457 (0x3c5bc59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375c742259ff900857d13689d8d48db20edf4603
Validity
Not Before: Jan 1 03:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6473f22010eca7bce47e0e0167e2c7bce27fd49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:96:5b:ac:65:4d:1f:da:a9:92:b0:c8:38:32:
a5:a0:5c:9a:08:61:52:60:b2:ca:61:e1:7f:f0:c9:
f2:be:8f:d0:41:f8:1d:2c:00:06:d1:e4:e7:d2:7e:
26:c8:bf:64:43:25:89:9a:2b:ce:23:7a:f8:53:fd:
7e:46:ce:53:4e:ae:45:11:be:50:05:ae:87:e9:3a:
f0:3c:12:72:49:7d:90:3e:0f:40:12:13:ad:43:52:
94:6f:bf:cd:8d:18:a1:47:ee:ae:03:bc:39:f8:d8:
a7:40:c3:9d:a7:83:62:92:24:92:48:fe:17:08:35:
24:89:2d:e9:b7:79:f3:bc:51:4a:0c:ef:e5:99:3e:
76:ad:7f:fc:67:c7:b4:c3:52:e0:aa:26:fa:c6:e5:
86:5d:22:fd:c5:e1:7a:8e:3a:4f:2c:86:f3:01:4a:
21:6e:b7:d8:41:4b:80:77:83:c7:10:6a:7c:5f:8e:
66:88:a6:a7:fa:1e:01:1b:a4:da:38:8a:f9:6b:9a:
e8:c4:8a:e3:cf:53:47:2b:29:38:aa:d6:c1:10:3d:
2c:86:cb:a1:b5:aa:be:f1:59:fe:44:36:3f:76:ab:
bb:b0:cc:19:6a:4f:58:f8:80:e7:e5:c3:40:dc:28:
bc:08:98:bb:9f:49:de:0d:49:e9:47:7a:15:82:c4:
1a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:47:3F:22:01:0E:CA:7B:CE:47:E0:E0:16:7E:2C:7B:CE:27:FD:49
X509v3 Authority Key Identifier:
keyid:37:5C:74:22:59:FF:90:08:57:D1:36:89:D8:D4:8D:B2:0E:DF:46:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1x0Iln_kAhX0TaJ2NSNsg7fRgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/8a5ee7-b638-4b70-8a8e-f97745d13b8d/1/5kc_IgEOynvOR-DgFn4se84n_Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/8a5ee7-b638-4b70-8a8e-f97745d13b8d/1/N1x0Iln_kAhX0TaJ2NSNsg7fRgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.234.0/24
Signature Algorithm: sha256WithRSAEncryption
33:f6:2c:bc:69:81:62:a5:54:b3:3e:3f:cb:75:59:49:ea:73:
db:b3:f1:96:0e:93:d5:a0:4e:12:3f:14:88:4c:cb:5f:08:01:
fb:f4:a9:51:d0:10:c9:3b:fb:b0:bb:6b:b5:99:a4:ab:d3:9f:
1a:a7:7d:73:fb:75:83:08:d7:6f:96:d6:a2:c4:96:f8:90:b5:
c2:c3:05:61:bd:93:66:0c:22:1e:c9:03:55:21:62:b4:e9:c4:
22:85:1c:6b:ec:bb:b3:e3:ae:31:d5:b5:f4:13:4b:05:ed:bf:
3b:55:1e:f8:e4:70:a8:ca:64:7f:cd:53:64:6d:6d:24:ab:d8:
9c:d9:3e:98:35:2e:73:1c:ed:1d:29:08:ce:60:87:dc:e1:c7:
21:c9:9c:89:a8:f2:59:35:e7:03:ae:90:5b:70:8a:15:b2:65:
38:90:9d:fe:71:42:d9:3e:76:3c:72:73:53:52:28:15:c2:f3:
25:ef:12:5d:de:9b:e1:ff:91:c6:45:cb:b0:b4:8e:5b:53:46:
85:04:cb:0a:78:e0:50:1a:2b:82:55:0a:0e:54:49:cb:e9:5a:
d9:b2:0a:6d:85:16:bb:98:a1:37:f3:34:5b:49:11:6d:22:5b:
bf:ef:a2:33:2e:7e:d0:fc:1c:8b:31:8e:e4:44:67:28:b6:ba:
cb:c3:33:03
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA8W8WTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzVjNzQyMjU5ZmY5MDA4NTdkMTM2ODlkOGQ0OGRiMjBlZGY0NjAzMB4XDTIyMDEw
MTAzNTQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTY0NzNmMjIwMTBl
Y2E3YmNlNDdlMGUwMTY3ZTJjN2JjZTI3ZmQ0OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKeWW6xlTR/aqZKwyDgypaBcmghhUmCyymHhf/DJ8r6P0EH4
HSwABtHk59J+Jsi/ZEMliZorziN6+FP9fkbOU06uRRG+UAWuh+k68DwSckl9kD4P
QBITrUNSlG+/zY0YoUfurgO8OfjYp0DDnaeDYpIkkkj+Fwg1JIkt6bd587xRSgzv
5Zk+dq1//GfHtMNS4Kom+sblhl0i/cXheo46TyyG8wFKIW632EFLgHeDxxBqfF+O
Zoimp/oeARuk2jiK+Wua6MSK489TRyspOKrWwRA9LIbLobWqvvFZ/kQ2P3aru7DM
GWpPWPiA5+XDQNwovAiYu59J3g1J6Ud6FYLEGmUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTmRz8iAQ7Ke85H4OAWfix7zif9STAfBgNVHSMEGDAWgBQ3XHQiWf+QCFfR
NonY1I2yDt9GAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L04xeDBJbG5fa0FoWDBUYUoyTlNOc2c3ZlJnTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2MvOGE1ZWU3LWI2MzgtNGI3MC04YThlLWY5Nzc0NWQxM2I4ZC8x
LzVrY19JZ0VPeW52T1ItRGdGbjRzZTg0bl9Vay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Mv
OGE1ZWU3LWI2MzgtNGI3MC04YThlLWY5Nzc0NWQxM2I4ZC8xL04xeDBJbG5fa0Fo
WDBUYUoyTlNOc2c3ZlJnTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMPW6jANBgkqhkiG9w0BAQsFAAOC
AQEAM/YsvGmBYqVUsz4/y3VZSepz27Pxlg6T1aBOEj8UiEzLXwgB+/SpUdAQyTv7
sLtrtZmkq9OfGqd9c/t1gwjXb5bWosSW+JC1wsMFYb2TZgwiHskDVSFitOnEIoUc
a+y7s+OuMdW19BNLBe2/O1Ue+ORwqMpkf81TZG1tJKvYnNk+mDUucxztHSkIzmCH
3OHHIcmciajyWTXnA66QW3CKFbJlOJCd/nFC2T52PHJzU1IoFcLzJe8SXd6b4f+R
xkXLsLSOW1NGhQTLCnjgUBorglUKDlRJy+la2bIKbYUWu5ihN/M0W0kRbSJbv++i
My5+0PwcizGO5ERnKLa6y8MzAw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:41 2024 by rpki-client on console-ams.rpki-client.org