Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/5AErPKrF0lDzes5JEExbipGXcug.roa
File: 5AErPKrF0lDzes5JEExbipGXcug.roa (raw, json)
Hash identifier: UODNRNLD5l50Z+xmrdOYLq1UCeki3k2ETCukZVfb+ao=
Subject key identifier: E4:01:2B:3C:AA:C5:D2:50:F3:7A:CE:49:10:4C:5B:8A:91:97:72:E8
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 01842E9F391A2955C9B252A16ACBF2353CEA
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/5AErPKrF0lDzes5JEExbipGXcug.roa
Signing time: Mon 31 Oct 2022 15:18:17 +0000
ROA not before: Mon 31 Oct 2022 15:18:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 194.151.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2e:9f:39:1a:29:55:c9:b2:52:a1:6a:cb:f2:35:3c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Oct 31 15:18:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4012b3caac5d250f37ace49104c5b8a919772e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4a:b1:15:0d:93:78:04:f9:b2:a2:86:bc:cf:
86:f6:41:54:af:4c:28:a4:92:7b:7d:d4:9d:61:ed:
d9:fc:4e:b1:0a:1f:ee:39:a5:94:20:96:28:85:75:
1b:c1:a8:b2:11:ec:88:76:3e:bf:0f:d4:bc:8e:c1:
f9:54:04:44:5e:3a:0d:95:33:c2:57:20:f5:0d:24:
64:58:b7:43:29:f7:57:6f:19:46:fe:9d:1b:4e:10:
c4:7b:4f:0e:53:d0:29:90:74:b2:ae:2b:32:de:df:
a5:7e:05:2a:a2:d8:e8:05:eb:6d:c6:e0:cb:66:59:
ba:fb:67:98:58:fc:06:28:ec:9a:91:f2:65:81:f7:
0b:34:71:fd:29:97:11:81:0c:0c:d2:a4:88:da:bb:
03:56:97:05:df:fe:3e:6e:9b:81:65:ed:a2:2b:86:
d9:34:2c:83:45:2d:d3:0e:1f:79:19:2b:b2:0c:00:
7f:d5:d9:67:ba:fe:22:da:f7:c8:34:7b:22:75:51:
c5:2e:f3:56:d7:ea:fe:7d:ee:40:e6:35:07:c5:f8:
89:62:b9:47:1e:65:b7:98:c1:19:83:55:03:9e:91:
d4:6f:7f:df:47:7f:80:64:2b:89:46:a0:fc:89:04:
4e:f2:3f:e3:ba:eb:b1:33:9a:a3:9d:ee:71:a7:73:
53:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:01:2B:3C:AA:C5:D2:50:F3:7A:CE:49:10:4C:5B:8A:91:97:72:E8
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/5AErPKrF0lDzes5JEExbipGXcug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.151.203.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:87:b1:53:f9:9e:a3:2f:d3:84:b8:6a:cb:10:94:41:cc:bd:
64:e1:f2:18:4f:d4:1d:da:0d:27:2e:bc:cf:19:32:49:0f:21:
9c:45:71:ed:a8:be:f8:53:c2:d6:35:81:89:39:e4:99:84:55:
cd:4f:06:0b:66:2e:b2:49:71:80:f7:07:dd:f5:67:17:47:1b:
bf:7a:c0:01:89:a6:17:e8:6f:e5:c1:50:14:aa:c4:ab:53:b6:
5e:72:ab:38:88:9e:47:cf:0c:e4:dd:34:15:6b:69:ce:0e:3e:
81:91:ce:48:c0:e1:05:e8:a6:1e:a3:50:23:bd:44:16:37:17:
1f:bb:b6:d0:30:b9:8d:b5:fb:ed:ef:2f:70:ec:3e:68:63:c7:
e2:b8:7c:73:b0:57:86:59:b6:0c:9a:e1:a7:eb:a4:45:53:99:
12:4c:3a:86:bd:6e:f7:64:c8:73:5a:20:4c:73:bd:55:1f:26:
2e:5e:cb:1e:57:b1:40:6d:e4:89:6a:dc:93:d4:a2:46:36:8d:
99:6b:3a:26:bc:d3:d2:41:8a:ae:5a:f9:4f:f7:37:17:b6:68:
c8:c4:65:d1:32:88:32:e0:c3:88:c6:68:68:2d:76:a8:f8:f4:
5b:2f:db:c6:e1:0a:be:7b:cc:1e:d2:ad:fd:07:e3:25:5d:bf:
b9:17:1d:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQunzkaKVXJslKhasvyNTzqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzOTgwNjBmMWJmMjJmMDk5OWNiMDcxYjFiNDI2OTZkYmM0
M2UxMGMwHhcNMjIxMDMxMTUxODE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDAxMmIzY2FhYzVkMjUwZjM3YWNlNDkxMDRjNWI4YTkxOTc3MmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEqxFQ2TeAT5sqKGvM+G9kFUr0wo
pJJ7fdSdYe3Z/E6xCh/uOaWUIJYohXUbwaiyEeyIdj6/D9S8jsH5VAREXjoNlTPC
VyD1DSRkWLdDKfdXbxlG/p0bThDEe08OU9ApkHSyrisy3t+lfgUqotjoBettxuDL
Zlm6+2eYWPwGKOyakfJlgfcLNHH9KZcRgQwM0qSI2rsDVpcF3/4+bpuBZe2iK4bZ
NCyDRS3TDh95GSuyDAB/1dlnuv4i2vfINHsidVHFLvNW1+r+fe5A5jUHxfiJYrlH
HmW3mMEZg1UDnpHUb3/fR3+AZCuJRqD8iQRO8j/juuuxM5qjne5xp3NTxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOQBKzyqxdJQ83rOSRBMW4qRl3LoMB8GA1UdIwQY
MBaAFMOYBg8b8i8JmcsHGxtCaW28Q+EMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzVnR0R4dnlMd21aeXdjYkcwSnBiYnhENFF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zYmZjMzEtZGMzMi00NTQxLTg0NjAt
YzkyN2I4YzJjN2M0LzEvNUFFclBLckYwbER6ZXM1SkVFeGJpcEdYY3VnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8zYmZjMzEtZGMzMi00NTQxLTg0NjAtYzkyN2I4YzJjN2M0
LzEvdzVnR0R4dnlMd21aeXdjYkcwSnBiYnhENFF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpfLMA0G
CSqGSIb3DQEBCwUAA4IBAQCOh7FT+Z6jL9OEuGrLEJRBzL1k4fIYT9Qd2g0nLrzP
GTJJDyGcRXHtqL74U8LWNYGJOeSZhFXNTwYLZi6ySXGA9wfd9WcXRxu/esABiaYX
6G/lwVAUqsSrU7Zecqs4iJ5Hzwzk3TQVa2nODj6Bkc5IwOEF6KYeo1AjvUQWNxcf
u7bQMLmNtfvt7y9w7D5oY8fiuHxzsFeGWbYMmuGn66RFU5kSTDqGvW73ZMhzWiBM
c71VHyYuXsseV7FAbeSJatyT1KJGNo2ZazomvNPSQYquWvlP9zcXtmjIxGXRMogy
4MOIxmhoLXao+PRbL9vG4Qq+e8we0q39B+MlXb+5Fx0y
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org