Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/s18_SN0QEVMWQwnx9dYsZ91Icjw.roa
File: s18_SN0QEVMWQwnx9dYsZ91Icjw.roa (raw, json)
Hash identifier: G/vVErTK3vk31LBn0UckJsgMdVPzT0nOZOBgUKaTOvY=
Subject key identifier: B3:5F:3F:48:DD:10:11:53:16:43:09:F1:F5:D6:2C:67:DD:48:72:3C
Certificate issuer: /CN=5e3a7835377b9e849fe7c33f9fca4572d902673f
Certificate serial: 02DFD4
Authority key identifier: 5E:3A:78:35:37:7B:9E:84:9F:E7:C3:3F:9F:CA:45:72:D9:02:67:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xjp4NTd7noSf58M_n8pFctkCZz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/s18_SN0QEVMWQwnx9dYsZ91Icjw.roa
Signing time: Tue 15 Feb 2022 13:21:48 +0000
ROA not before: Tue 15 Feb 2022 13:21:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201339
IP address blocks: 194.127.204.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188372 (0x2dfd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3a7835377b9e849fe7c33f9fca4572d902673f
Validity
Not Before: Feb 15 13:21:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b35f3f48dd101153164309f1f5d62c67dd48723c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d6:e3:e2:01:3c:bf:59:cc:b3:82:ef:23:35:
50:44:c2:6a:dc:63:85:27:e9:50:75:0a:5d:de:94:
b7:6b:0b:17:73:a7:31:fc:9f:01:04:27:51:2b:db:
a8:94:ce:78:15:99:6b:a6:9a:e4:72:35:71:28:1e:
d1:52:c3:17:de:fc:d7:06:7b:c8:0b:b3:19:42:14:
fb:c8:05:1d:07:76:5e:f2:96:a3:30:9c:86:dd:6f:
41:09:2d:4d:99:45:e7:6e:d3:62:22:c4:77:54:2a:
07:c8:14:29:a5:6f:e1:b7:3d:04:ab:02:a0:66:5d:
3f:1c:cf:3b:97:4b:fe:f7:9d:68:50:86:d2:00:4a:
85:a5:94:01:26:ac:08:a2:28:a7:41:e6:ed:d3:8b:
73:8f:f7:34:98:a1:7d:93:c0:c0:2f:9b:f0:d4:e5:
a7:de:6a:ee:b6:1a:42:b1:09:a6:45:82:4d:44:4b:
56:46:52:ff:e6:65:87:d3:98:c6:58:2a:c1:f8:d0:
94:c4:1f:15:c7:f9:ca:3c:d3:5a:5b:a7:73:32:a1:
2c:29:de:15:5f:a4:d2:74:ee:99:d1:4e:5a:01:44:
b4:c2:3c:08:83:84:b9:41:a5:51:13:aa:6c:cf:2a:
1f:24:14:8e:bf:09:d7:1a:3a:de:4d:d5:d2:5d:2b:
9a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5F:3F:48:DD:10:11:53:16:43:09:F1:F5:D6:2C:67:DD:48:72:3C
X509v3 Authority Key Identifier:
keyid:5E:3A:78:35:37:7B:9E:84:9F:E7:C3:3F:9F:CA:45:72:D9:02:67:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xjp4NTd7noSf58M_n8pFctkCZz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/s18_SN0QEVMWQwnx9dYsZ91Icjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/Xjp4NTd7noSf58M_n8pFctkCZz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.204.0/23
Signature Algorithm: sha256WithRSAEncryption
61:4c:3b:cd:a6:02:dc:6b:72:ef:a7:c1:8a:e4:77:db:d8:0b:
c0:47:f6:d1:9e:c8:25:92:14:7e:f3:41:32:40:38:97:9d:ff:
09:ee:e7:2c:3c:19:14:9e:7d:b4:88:e5:bb:9e:4a:98:31:6d:
6e:42:de:ec:d7:08:18:94:bc:b5:45:eb:a7:0f:29:10:6f:9b:
69:77:67:f7:9b:16:c4:f1:0d:8b:c6:83:0f:bd:3e:f5:3d:c6:
be:cf:dd:48:eb:21:80:b6:64:1e:39:b6:2b:ab:d4:e9:ad:44:
7a:e5:61:ad:16:f1:7d:3c:34:35:ee:8d:2b:88:c7:21:5b:78:
31:d1:1f:99:1a:6d:84:69:bd:73:ea:ae:50:96:c6:0e:32:49:
29:3e:a0:59:c5:0f:e2:5f:07:4a:06:4e:56:48:c6:3e:9f:11:
19:c8:fb:53:a8:4c:ad:be:1e:7e:de:4c:7a:2a:b3:d3:b7:1c:
04:41:7f:f1:25:07:0f:21:f5:78:95:d6:6f:8b:af:60:d6:45:
23:de:88:6f:c6:47:75:a5:93:df:c0:fe:4a:76:6b:43:81:d6:
ab:ea:dd:bf:5f:f5:80:86:4e:0c:9c:2a:23:5f:56:fe:be:45:
2f:92:2d:17:5d:20:1a:69:03:f3:9b:0f:43:8b:ba:09:a6:bd:
9c:21:0d:55
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAt/UMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVl
M2E3ODM1Mzc3YjllODQ5ZmU3YzMzZjlmY2E0NTcyZDkwMjY3M2YwHhcNMjIwMjE1
MTMyMTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiMzVmM2Y0OGRkMTAx
MTUzMTY0MzA5ZjFmNWQ2MmM2N2RkNDg3MjNjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvtbj4gE8v1nMs4LvIzVQRMJq3GOFJ+lQdQpd3pS3awsXc6cx
/J8BBCdRK9uolM54FZlrpprkcjVxKB7RUsMX3vzXBnvIC7MZQhT7yAUdB3Ze8paj
MJyG3W9BCS1NmUXnbtNiIsR3VCoHyBQppW/htz0EqwKgZl0/HM87l0v+951oUIbS
AEqFpZQBJqwIoiinQebt04tzj/c0mKF9k8DAL5vw1OWn3mruthpCsQmmRYJNREtW
RlL/5mWH05jGWCrB+NCUxB8Vx/nKPNNaW6dzMqEsKd4VX6TSdO6Z0U5aAUS0wjwI
g4S5QaVRE6pszyofJBSOvwnXGjreTdXSXSuapwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLNfP0jdEBFTFkMJ8fXWLGfdSHI8MB8GA1UdIwQYMBaAFF46eDU3e56En+fD
P5/KRXLZAmc/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WGpwNE5UZDdub1NmNThNX244cEZjdGtDWno4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84OC9jZGQ4MTUtOGJkMy00MTRmLWE5YjgtMDU1YjFiMGU2MGY0LzEv
czE4X1NOMFFFVk1XUXdueDlkWXNaOTFJY2p3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9j
ZGQ4MTUtOGJkMy00MTRmLWE5YjgtMDU1YjFiMGU2MGY0LzEvWGpwNE5UZDdub1Nm
NThNX244cEZjdGtDWno4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwn/MMA0GCSqGSIb3DQEBCwUAA4IB
AQBhTDvNpgLca3Lvp8GK5Hfb2AvAR/bRnsglkhR+80EyQDiXnf8J7ucsPBkUnn20
iOW7nkqYMW1uQt7s1wgYlLy1ReunDykQb5tpd2f3mxbE8Q2LxoMPvT71Pca+z91I
6yGAtmQeObYrq9TprUR65WGtFvF9PDQ17o0riMchW3gx0R+ZGm2Eab1z6q5QlsYO
MkkpPqBZxQ/iXwdKBk5WSMY+nxEZyPtTqEytvh5+3kx6KrPTtxwEQX/xJQcPIfV4
ldZvi69g1kUj3ohvxkd1pZPfwP5KdmtDgdar6t2/X/WAhk4MnCojX1b+vkUvki0X
XSAaaQPzmw9Di7oJpr2cIQ1V
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org