Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/bAL6cbsqrU6d-lmgqfM2nTlBz_A.roa
File: bAL6cbsqrU6d-lmgqfM2nTlBz_A.roa (raw, json)
Hash identifier: NkiZppEke3Hk7gHdOpUDeILjm2jmuUN0MyzF3IezdO8=
Subject key identifier: 6C:02:FA:71:BB:2A:AD:4E:9D:FA:59:A0:A9:F3:36:9D:39:41:CF:F0
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 02CBA5AE
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/bAL6cbsqrU6d-lmgqfM2nTlBz_A.roa
Signing time: Thu 19 May 2022 12:55:31 +0000
ROA not before: Thu 19 May 2022 12:55:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 195.14.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46900654 (0x2cba5ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: May 19 12:55:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c02fa71bb2aad4e9dfa59a0a9f3369d3941cff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:27:4d:8d:27:b4:24:ef:ed:c9:af:ba:21:
f9:6c:64:23:34:01:ab:5d:b2:82:d3:4d:18:c0:01:
db:ff:52:c6:2e:6c:99:4a:bd:00:15:e0:26:53:60:
ed:f0:d3:85:e5:49:4b:5d:cc:6f:25:39:74:70:b8:
5d:e1:f1:84:8a:a3:76:b5:5e:a9:85:f8:6b:1f:74:
5b:c3:bd:ea:c6:3a:e6:c7:33:89:58:d8:1f:1e:ef:
e0:e5:e0:0b:3e:c6:60:19:bf:81:ad:a0:66:64:49:
35:17:19:fa:1f:b7:b6:12:e5:5b:5f:0a:d6:69:ba:
41:a1:cb:32:2e:fb:17:5d:75:2f:b2:19:37:d0:5e:
da:0b:dd:db:4a:47:34:11:34:fb:70:a5:27:02:61:
c0:c0:fe:e8:67:d4:0f:9d:84:d7:19:0c:a3:e7:47:
ca:ea:56:66:b2:ad:24:4d:2b:23:7c:a4:20:a2:ef:
3f:2e:9b:4b:32:ae:3c:b6:84:99:46:02:c0:f6:41:
8d:23:b0:0d:95:b6:35:10:3e:e7:c2:3b:b3:42:59:
a4:84:8b:2f:a3:8c:71:e1:7b:66:7b:7a:c6:1d:4d:
e4:5c:78:ba:e8:76:56:d9:11:8e:b4:0e:46:97:2a:
e2:39:6c:80:98:6d:0b:7a:a5:ae:b8:18:53:0b:ba:
20:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:02:FA:71:BB:2A:AD:4E:9D:FA:59:A0:A9:F3:36:9D:39:41:CF:F0
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/bAL6cbsqrU6d-lmgqfM2nTlBz_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.105.0/24
Signature Algorithm: sha256WithRSAEncryption
99:bb:2c:4a:64:59:2f:28:52:db:97:63:53:65:36:98:32:f6:
85:11:39:bb:c4:a4:05:1c:9d:41:3f:78:e1:a9:c9:76:23:6f:
55:98:3a:a9:83:7b:7f:6f:2e:16:df:97:ab:a9:ea:20:77:99:
ac:68:7a:95:ae:44:da:10:9a:a4:d9:31:2f:12:e4:8b:5e:ad:
68:d6:ba:f3:eb:ed:e0:08:b4:35:0f:eb:e7:aa:4e:e5:b4:ff:
91:69:14:35:59:17:5c:32:dd:c3:17:f5:a2:e4:ec:e8:fe:0d:
e1:64:51:b6:68:4f:7d:31:b3:18:cb:42:7a:10:a0:bc:0f:87:
5b:7a:a8:c0:eb:eb:b2:2a:b2:72:24:43:a1:e3:2d:2f:6d:fa:
9d:ff:40:28:dc:64:91:bf:b0:62:79:33:2c:be:3b:29:87:99:
f9:c8:9a:ce:d6:3d:1b:ba:be:5f:90:76:9a:8b:aa:da:cc:8d:
04:a7:00:07:69:07:60:d7:d4:1a:91:e4:e8:d5:b8:53:58:fd:
fc:89:e1:52:fa:79:a6:52:6a:9d:49:e4:0a:94:03:ab:fa:5a:
91:b9:23:28:ab:24:63:5c:ef:70:e2:e3:1a:24:f7:3f:29:ea:
ed:cf:66:64:8c:cd:18:5b:e0:bf:36:b9:62:98:49:cc:cf:d6:
27:65:5b:8b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAsulrjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWMyYzFhZmQ0YmRlYzk4MDUwNmZhMDdkZjdjODY2MmQ1NTRmYTQ2MB4XDTIyMDUx
OTEyNTUzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmMwMmZhNzFiYjJh
YWQ0ZTlkZmE1OWEwYTlmMzM2OWQzOTQxY2ZmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjDJ02NJ7Qk7+3Jr7oh+WxkIzQBq12ygtNNGMAB2/9Sxi5s
mUq9ABXgJlNg7fDTheVJS13MbyU5dHC4XeHxhIqjdrVeqYX4ax90W8O96sY65scz
iVjYHx7v4OXgCz7GYBm/ga2gZmRJNRcZ+h+3thLlW18K1mm6QaHLMi77F111L7IZ
N9Be2gvd20pHNBE0+3ClJwJhwMD+6GfUD52E1xkMo+dHyupWZrKtJE0rI3ykIKLv
Py6bSzKuPLaEmUYCwPZBjSOwDZW2NRA+58I7s0JZpISLL6OMceF7Znt6xh1N5Fx4
uuh2VtkRjrQORpcq4jlsgJhtC3qlrrgYUwu6IIsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRsAvpxuyqtTp36WaCp8zadOUHP8DAfBgNVHSMEGDAWgBTqwsGv1L3smAUG
+gfffIZi1VT6RjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZzTEJyOVM5N0pnRkJ2b0gzM3lHWXRWVS1rWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvNTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8x
L2JBTDZjYnNxclU2ZC1sbWdxZk0yblRsQnpfQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
NTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8xLzZzTEJyOVM5N0pn
RkJ2b0gzM3lHWXRWVS1rWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMOaTANBgkqhkiG9w0BAQsFAAOC
AQEAmbssSmRZLyhS25djU2U2mDL2hRE5u8SkBRydQT944anJdiNvVZg6qYN7f28u
Ft+Xq6nqIHeZrGh6la5E2hCapNkxLxLki16taNa68+vt4Ai0NQ/r56pO5bT/kWkU
NVkXXDLdwxf1ouTs6P4N4WRRtmhPfTGzGMtCehCgvA+HW3qowOvrsiqyciRDoeMt
L236nf9AKNxkkb+wYnkzLL47KYeZ+ciaztY9G7q+X5B2mouq2syNBKcAB2kHYNfU
GpHk6NW4U1j9/InhUvp5plJqnUnkCpQDq/pakbkjKKskY1zvcOLjGiT3Pynq7c9m
ZIzNGFvgvza5YphJzM/WJ2Vbiw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:30 2023 by rpki-client on console-ams.rpki-client.org