Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/sYWVq9SDmKeafS8nMnblr50dDV8.roa
File: sYWVq9SDmKeafS8nMnblr50dDV8.roa (raw, json)
Hash identifier: ma0XOmQK/mU3m3w6hnX562+ZuXsfGuC0C0Lo1dSNFmU=
Subject key identifier: B1:85:95:AB:D4:83:98:A7:9A:7D:2F:27:32:76:E5:AF:9D:1D:0D:5F
Certificate issuer: /CN=5bd6cbdaa794a97a7d8266702cb054f1b249d4bf
Certificate serial: 0A56D4F9
Authority key identifier: 5B:D6:CB:DA:A7:94:A9:7A:7D:82:66:70:2C:B0:54:F1:B2:49:D4:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/sYWVq9SDmKeafS8nMnblr50dDV8.roa
Signing time: Sat 01 Jan 2022 07:58:12 +0000
ROA not before: Sat 01 Jan 2022 07:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2445
IP address blocks: 192.33.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173462777 (0xa56d4f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd6cbdaa794a97a7d8266702cb054f1b249d4bf
Validity
Not Before: Jan 1 07:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b18595abd48398a79a7d2f273276e5af9d1d0d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:92:71:fb:9d:47:06:9f:8b:dd:06:a0:07:7f:
df:0f:1a:26:31:08:c5:bb:55:09:a3:e3:bb:bc:b6:
a1:ab:dc:d1:f7:02:6a:70:72:6c:57:02:cf:d9:f4:
90:07:05:37:79:3c:c6:37:79:78:f0:32:d7:68:76:
ca:ed:8d:4e:92:d6:69:a4:8e:c5:30:6f:ce:3a:2c:
0a:1a:a9:f6:26:89:fb:cb:dc:4a:68:13:b1:e9:16:
57:f3:c0:32:e4:34:7c:0e:0e:12:aa:a7:63:f2:e2:
ca:22:4a:8f:b5:7c:3d:27:f1:5c:12:f3:7d:bd:98:
57:64:47:a3:28:cf:72:2e:a6:0f:02:83:33:30:85:
94:f9:8b:87:65:5e:77:1a:97:83:df:c4:43:32:12:
ab:5b:e6:3a:e0:30:3a:c1:53:18:4e:6b:5b:d4:5c:
89:88:fe:fd:75:e2:a5:7d:be:8b:fb:9e:00:99:d1:
fd:e3:f2:d7:65:3a:10:83:f3:1c:a3:f5:1a:a0:ea:
d3:ef:72:49:67:4e:c8:a0:c4:69:99:07:12:a5:74:
75:eb:01:93:66:1c:19:c9:76:b2:53:bc:cc:42:5d:
63:9c:f3:d3:e8:99:50:d1:4d:05:66:07:f3:3d:d3:
88:9c:a4:ad:90:1a:bc:ba:37:f4:17:4f:be:e8:11:
a0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:85:95:AB:D4:83:98:A7:9A:7D:2F:27:32:76:E5:AF:9D:1D:0D:5F
X509v3 Authority Key Identifier:
keyid:5B:D6:CB:DA:A7:94:A9:7A:7D:82:66:70:2C:B0:54:F1:B2:49:D4:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/sYWVq9SDmKeafS8nMnblr50dDV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.33.156.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:99:e9:1b:dc:f9:a7:9d:c8:7d:1a:81:94:03:16:c8:96:7c:
10:22:7a:f2:86:31:81:ad:fe:d8:fa:50:a9:c5:49:62:35:de:
41:88:9f:28:bd:74:2a:43:ca:be:57:47:a7:c8:7c:ee:c0:af:
44:0c:c7:e1:ae:c7:22:88:d3:c4:7d:25:58:d0:c5:e8:7d:71:
fd:96:17:f7:4f:42:07:ca:5c:be:12:91:07:06:ad:b6:2f:c7:
c8:80:be:40:24:22:86:d7:af:b3:e9:36:66:55:a5:7d:ef:5b:
92:2f:4f:dc:26:7a:ee:40:8f:4d:d4:83:11:d1:7a:ff:57:fb:
b3:cb:2c:1f:07:01:76:d1:aa:39:15:77:01:54:4c:17:19:88:
e2:8e:58:39:10:49:37:0d:7f:af:16:f3:df:23:6e:6c:70:e4:
ca:4a:b3:a6:f1:ab:9f:14:ab:fc:b7:d8:3d:cc:04:3b:d4:45:
42:29:31:0f:54:74:2b:b0:0b:c4:5b:80:9a:2f:cf:0e:c0:13:
fc:61:dc:ed:fb:11:22:93:0b:ca:4d:bb:9c:18:5a:a7:0e:25:
53:67:91:49:40:3c:78:25:e3:12:9c:a2:56:f5:a1:a8:a5:e0:
a1:99:87:31:60:37:34:d5:47:a7:c3:d0:ad:c2:0f:3a:b8:79:
19:1f:a0:69
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEClbU+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YmQ2Y2JkYWE3OTRhOTdhN2Q4MjY2NzAyY2IwNTRmMWIyNDlkNGJmMB4XDTIyMDEw
MTA3NTgxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjE4NTk1YWJkNDgz
OThhNzlhN2QyZjI3MzI3NmU1YWY5ZDFkMGQ1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPOScfudRwafi90GoAd/3w8aJjEIxbtVCaPju7y2oavc0fcC
anBybFcCz9n0kAcFN3k8xjd5ePAy12h2yu2NTpLWaaSOxTBvzjosChqp9iaJ+8vc
SmgTsekWV/PAMuQ0fA4OEqqnY/LiyiJKj7V8PSfxXBLzfb2YV2RHoyjPci6mDwKD
MzCFlPmLh2VedxqXg9/EQzISq1vmOuAwOsFTGE5rW9RciYj+/XXipX2+i/ueAJnR
/ePy12U6EIPzHKP1GqDq0+9ySWdOyKDEaZkHEqV0desBk2YcGcl2slO8zEJdY5zz
0+iZUNFNBWYH8z3TiJykrZAavLo39BdPvugRoEcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSxhZWr1IOYp5p9LycyduWvnR0NXzAfBgNVHSMEGDAWgBRb1svap5Spen2C
ZnAssFTxsknUvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1c5YkwycWVVcVhwOWdtWndMTEJVOGJKSjFMOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODAvYzkzMWZjLWRmMWUtNGJiMS05ZGU5LWQ3NGExMjk1OWFkNy8x
L3NZV1ZxOVNEbUtlYWZTOG5NbmJscjUwZERWOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAv
YzkzMWZjLWRmMWUtNGJiMS05ZGU5LWQ3NGExMjk1OWFkNy8xL1c5YkwycWVVcVhw
OWdtWndMTEJVOGJKSjFMOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMAhnDANBgkqhkiG9w0BAQsFAAOC
AQEAtJnpG9z5p53IfRqBlAMWyJZ8ECJ68oYxga3+2PpQqcVJYjXeQYifKL10KkPK
vldHp8h87sCvRAzH4a7HIojTxH0lWNDF6H1x/ZYX909CB8pcvhKRBwatti/HyIC+
QCQihtevs+k2ZlWlfe9bki9P3CZ67kCPTdSDEdF6/1f7s8ssHwcBdtGqORV3AVRM
FxmI4o5YORBJNw1/rxbz3yNubHDkykqzpvGrnxSr/LfYPcwEO9RFQikxD1R0K7AL
xFuAmi/PDsAT/GHc7fsRIpMLyk27nBhapw4lU2eRSUA8eCXjEpyiVvWhqKXgoZmH
MWA3NNVHp8PQrcIPOrh5GR+gaQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:32 2024 by rpki-client on console-ams.rpki-client.org