Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/DFxaZkocAkWkBwtvoRX9_ymP-eI.roa
File: DFxaZkocAkWkBwtvoRX9_ymP-eI.roa (raw, json)
Hash identifier: WSGwdBW4ylv4cMeEeF7UP2Lu8IMa0w+4eC6AhSjzEHs=
Subject key identifier: 0C:5C:5A:66:4A:1C:02:45:A4:07:0B:6F:A1:15:FD:FF:29:8F:F9:E2
Certificate issuer: /CN=2ce2995058b3de9aed23a61f7fb7b5b7b193984a
Certificate serial: 01F507
Authority key identifier: 2C:E2:99:50:58:B3:DE:9A:ED:23:A6:1F:7F:B7:B5:B7:B1:93:98:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LOKZUFiz3prtI6Yff7e1t7GTmEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/DFxaZkocAkWkBwtvoRX9_ymP-eI.roa
Signing time: Thu 21 Apr 2022 09:59:28 +0000
ROA not before: Thu 21 Apr 2022 09:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29267
IP address blocks: 195.85.211.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128263 (0x1f507)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ce2995058b3de9aed23a61f7fb7b5b7b193984a
Validity
Not Before: Apr 21 09:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c5c5a664a1c0245a4070b6fa115fdff298ff9e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:91:91:71:69:f4:8b:e5:46:69:9c:c2:2f:cc:
22:46:0b:f6:80:35:5f:d3:e9:f7:42:80:ef:f9:dc:
9a:7c:23:4b:65:2a:a5:9c:fa:74:12:67:3d:91:92:
e1:cf:86:8e:46:3d:cb:b1:15:3d:67:78:d4:dc:e7:
63:79:04:fc:42:23:0f:da:d6:1f:39:82:42:d8:fe:
5c:76:e0:bb:8c:10:d3:f1:06:c4:f3:65:ba:bc:0e:
4e:28:85:52:33:24:e2:c5:5e:14:c3:ed:44:69:49:
a4:e7:61:2f:b6:c1:23:eb:a3:c5:3c:21:bf:20:88:
15:60:c9:93:c6:8b:ef:f8:a6:f9:bc:35:ca:f4:6f:
b5:19:91:ad:32:b8:fc:03:1e:f5:8a:58:8b:f3:b7:
93:1e:33:d3:a1:71:3f:a8:fd:eb:c5:02:32:bb:77:
99:2c:4a:1e:4f:3f:78:6f:f3:5d:6a:8b:3b:78:3b:
76:0a:fc:a5:aa:c5:25:ce:a1:3c:fd:c3:09:10:43:
8a:95:ab:67:73:64:3d:5a:50:9f:a6:42:38:0b:e4:
06:38:70:cd:42:47:cb:bb:75:df:04:f4:cd:45:13:
09:1b:d2:30:40:38:1f:07:0f:91:00:63:2b:c0:4d:
44:4d:27:32:7a:ad:ab:44:91:38:3e:b4:e1:5b:38:
69:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:5C:5A:66:4A:1C:02:45:A4:07:0B:6F:A1:15:FD:FF:29:8F:F9:E2
X509v3 Authority Key Identifier:
keyid:2C:E2:99:50:58:B3:DE:9A:ED:23:A6:1F:7F:B7:B5:B7:B1:93:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LOKZUFiz3prtI6Yff7e1t7GTmEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/DFxaZkocAkWkBwtvoRX9_ymP-eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/LOKZUFiz3prtI6Yff7e1t7GTmEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.211.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:5d:4a:12:1b:22:f5:07:08:b4:79:d4:2a:c4:33:73:79:6f:
0e:fb:6c:b5:97:ae:15:67:4a:9f:df:82:b6:c3:51:8d:30:b7:
44:ed:c8:b1:f1:c9:9b:4a:7b:43:40:99:4e:e6:36:95:7b:d6:
7c:a5:1a:d3:c6:fe:fa:a2:22:66:7e:a0:04:0b:b3:ce:22:66:
71:29:f7:b4:0a:e1:49:8c:71:a6:46:6d:ff:e7:e4:ea:f8:18:
34:ac:d0:f0:ee:8b:fa:2e:d9:b9:b8:99:68:d3:29:d8:d0:b7:
c2:9c:f0:5b:0e:d2:ba:61:89:eb:9e:42:67:c2:07:df:9b:53:
0d:01:32:cf:79:7f:09:d6:dc:d0:87:00:85:2c:a6:80:70:4b:
f9:71:fb:34:82:44:2c:e8:70:a4:14:db:df:01:d1:05:33:07:
cf:58:51:c2:59:5b:97:65:ea:72:ff:07:0f:9e:95:21:b5:57:
49:68:a3:30:5b:e5:e6:49:8a:0b:40:77:d7:07:fd:f9:af:93:
9a:ca:26:02:c3:65:a8:b8:7c:75:7f:b4:b4:66:94:30:dc:3f:
45:c6:3c:55:b2:95:a8:6e:6e:49:13:81:96:0a:d4:49:7d:c2:
6b:6c:de:11:3e:9c:9d:4f:34:2b:9c:ab:81:ce:e4:93:3e:23:
d1:4f:bc:db
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAfUHMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDJj
ZTI5OTUwNThiM2RlOWFlZDIzYTYxZjdmYjdiNWI3YjE5Mzk4NGEwHhcNMjIwNDIx
MDk1OTI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwYzVjNWE2NjRhMWMw
MjQ1YTQwNzBiNmZhMTE1ZmRmZjI5OGZmOWUyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtZGRcWn0i+VGaZzCL8wiRgv2gDVf0+n3QoDv+dyafCNLZSql
nPp0Emc9kZLhz4aORj3LsRU9Z3jU3OdjeQT8QiMP2tYfOYJC2P5cduC7jBDT8QbE
82W6vA5OKIVSMyTixV4Uw+1EaUmk52EvtsEj66PFPCG/IIgVYMmTxovv+Kb5vDXK
9G+1GZGtMrj8Ax71iliL87eTHjPToXE/qP3rxQIyu3eZLEoeTz94b/Ndaos7eDt2
CvylqsUlzqE8/cMJEEOKlatnc2Q9WlCfpkI4C+QGOHDNQkfLu3XfBPTNRRMJG9Iw
QDgfBw+RAGMrwE1ETScyeq2rRJE4PrThWzhpbwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFAxcWmZKHAJFpAcLb6EV/f8pj/niMB8GA1UdIwQYMBaAFCzimVBYs96a7SOm
H3+3tbexk5hKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
TE9LWlVGaXozcHJ0STZZZmY3ZTF0N0dUbUVvLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83Yy9kNTIwZGItYmRmOC00ZjI3LThkZmYtOGMxMzBlNjg0MWRiLzEv
REZ4YVprb2NBa1drQnd0dm9SWDlfeW1QLWVJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9k
NTIwZGItYmRmOC00ZjI3LThkZmYtOGMxMzBlNjg0MWRiLzEvTE9LWlVGaXozcHJ0
STZZZmY3ZTF0N0dUbUVvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1XTMA0GCSqGSIb3DQEBCwUAA4IB
AQAfXUoSGyL1Bwi0edQqxDNzeW8O+2y1l64VZ0qf34K2w1GNMLdE7cix8cmbSntD
QJlO5jaVe9Z8pRrTxv76oiJmfqAEC7POImZxKfe0CuFJjHGmRm3/5+Tq+Bg0rNDw
7ov6Ltm5uJlo0ynY0LfCnPBbDtK6YYnrnkJnwgffm1MNATLPeX8J1tzQhwCFLKaA
cEv5cfs0gkQs6HCkFNvfAdEFMwfPWFHCWVuXZepy/wcPnpUhtVdJaKMwW+XmSYoL
QHfXB/35r5OayiYCw2WouHx1f7S0ZpQw3D9FxjxVspWobm5JE4GWCtRJfcJrbN4R
PpydTzQrnKuBzuSTPiPRT7zb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-ams.rpki-client.org