Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/215de6-4176-42d2-8da2-6b70169cda1b/1/41eBEcyY8NRyfkiOenOCokU5vis.roa
File: 41eBEcyY8NRyfkiOenOCokU5vis.roa (raw, json)
Hash identifier: bleDFrdrDGMFqZ5UNuEUygnJy5/2xXBjdenF++H/i3o=
Subject key identifier: E3:57:81:11:CC:98:F0:D4:72:7E:48:8E:7A:73:82:A2:45:39:BE:2B
Certificate issuer: /CN=fc9beb0192d0d346a5e6858aa744b0434fed3189
Certificate serial: 06801E91
Authority key identifier: FC:9B:EB:01:92:D0:D3:46:A5:E6:85:8A:A7:44:B0:43:4F:ED:31:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JvrAZLQ00al5oWKp0SwQ0_tMYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/215de6-4176-42d2-8da2-6b70169cda1b/1/41eBEcyY8NRyfkiOenOCokU5vis.roa
Signing time: Sat 01 Jan 2022 15:59:43 +0000
ROA not before: Sat 01 Jan 2022 15:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 194.11.135.0/24 maxlen: 24
194.11.134.0/24 maxlen: 24
194.11.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109059729 (0x6801e91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc9beb0192d0d346a5e6858aa744b0434fed3189
Validity
Not Before: Jan 1 15:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3578111cc98f0d4727e488e7a7382a24539be2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:eb:81:33:5a:44:ad:39:ea:e7:9a:2c:3b:f7:
79:51:59:65:ba:e5:35:96:96:11:6c:cc:f6:09:3e:
de:02:a5:df:a6:3c:2e:13:f3:31:e7:c6:d4:62:3e:
04:84:e8:ab:b9:7d:21:23:26:fd:d4:6d:d6:8e:46:
74:f9:83:d3:d4:42:e0:d2:8c:1c:53:11:53:c9:ef:
c4:d1:14:51:50:0c:b1:13:e5:ab:45:2c:52:7b:e5:
40:62:a6:55:73:3e:14:c2:e9:2b:45:01:ee:60:47:
56:8b:27:44:0a:57:05:73:64:0d:66:13:c9:ee:2b:
86:77:1b:5c:1b:ba:c8:7a:c8:55:cb:dc:0b:33:de:
83:14:8f:68:47:f7:53:45:51:19:d2:d0:55:35:6c:
e7:ec:d2:58:f9:d3:c7:ac:3a:47:af:0f:16:67:d2:
f2:b3:30:b8:16:d6:bd:f8:cf:e5:db:de:ae:d9:38:
ad:10:24:6b:9e:81:ee:3f:81:66:b1:a8:07:13:b6:
7b:6c:ed:d9:fd:0e:6d:68:93:38:70:23:71:df:13:
99:bc:ec:63:ba:66:d7:23:fa:39:e3:e1:45:b1:ba:
cc:87:3a:20:ef:9c:f9:e7:ab:78:bc:e0:b1:9e:b2:
9d:bd:45:29:67:b1:f8:7b:01:f2:e5:9f:e5:f1:25:
5b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:57:81:11:CC:98:F0:D4:72:7E:48:8E:7A:73:82:A2:45:39:BE:2B
X509v3 Authority Key Identifier:
keyid:FC:9B:EB:01:92:D0:D3:46:A5:E6:85:8A:A7:44:B0:43:4F:ED:31:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JvrAZLQ00al5oWKp0SwQ0_tMYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/215de6-4176-42d2-8da2-6b70169cda1b/1/41eBEcyY8NRyfkiOenOCokU5vis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/215de6-4176-42d2-8da2-6b70169cda1b/1/_JvrAZLQ00al5oWKp0SwQ0_tMYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.133.0-194.11.135.255
Signature Algorithm: sha256WithRSAEncryption
1e:1c:52:23:d0:70:90:a1:7e:a9:95:d1:a2:95:c3:02:e1:b8:
62:87:83:e8:7e:1e:b4:2c:3c:79:32:25:d5:0d:46:e0:ad:e7:
75:5c:6a:a2:12:8a:a2:0e:6d:d3:d7:6c:b5:50:df:48:60:06:
b8:5f:1c:5f:04:49:32:6a:33:69:2b:1b:04:49:78:fe:e4:a2:
a4:6a:76:46:0a:8e:b5:36:9b:63:61:79:dc:e5:7c:90:45:ea:
2e:e8:e7:40:9f:56:7b:06:11:7f:ba:5b:ba:d9:80:07:a9:de:
d3:db:6a:3b:12:b2:e7:49:33:44:f1:9a:a1:20:02:f6:e5:2d:
46:ad:9f:e0:53:27:e5:7d:db:70:92:97:e5:62:13:4f:0a:7a:
f5:d1:f7:2b:0c:1c:9a:7f:34:81:1a:ca:12:8c:e0:5e:f7:09:
9b:54:36:f9:5a:93:c0:f2:96:04:32:34:da:b5:ef:c1:38:4e:
e6:e3:92:52:d6:dd:27:d8:0e:59:60:f0:7c:d9:67:25:0e:16:
3a:5d:d3:8b:c7:4b:71:c2:fd:96:49:83:c6:03:0c:0d:f2:a5:
1f:5b:2e:2c:56:5c:5e:5d:de:c3:09:8b:c7:53:4b:e2:f3:39:
e3:fa:9d:f5:dc:46:3b:73:db:d2:0e:ee:29:0c:85:e8:f3:37:
a9:2e:67:24
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBoAekTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YzliZWIwMTkyZDBkMzQ2YTVlNjg1OGFhNzQ0YjA0MzRmZWQzMTg5MB4XDTIyMDEw
MTE1NTk0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTM1NzgxMTFjYzk4
ZjBkNDcyN2U0ODhlN2E3MzgyYTI0NTM5YmUyYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKDrgTNaRK056ueaLDv3eVFZZbrlNZaWEWzM9gk+3gKl36Y8
LhPzMefG1GI+BIToq7l9ISMm/dRt1o5GdPmD09RC4NKMHFMRU8nvxNEUUVAMsRPl
q0UsUnvlQGKmVXM+FMLpK0UB7mBHVosnRApXBXNkDWYTye4rhncbXBu6yHrIVcvc
CzPegxSPaEf3U0VRGdLQVTVs5+zSWPnTx6w6R68PFmfS8rMwuBbWvfjP5dvertk4
rRAka56B7j+BZrGoBxO2e2zt2f0ObWiTOHAjcd8TmbzsY7pm1yP6OePhRbG6zIc6
IO+c+eereLzgsZ6ynb1FKWex+HsB8uWf5fElW5cCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTjV4ERzJjw1HJ+SI56c4KiRTm+KzAfBgNVHSMEGDAWgBT8m+sBktDTRqXm
hYqnRLBDT+0xiTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19KdnJBWkxRMDBhbDVvV0twMFN3UTBfdE1Zay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvMjE1ZGU2LTQxNzYtNDJkMi04ZGEyLTZiNzAxNjljZGExYi8x
LzQxZUJFY3lZOE5SeWZraU9lbk9Db2tVNXZpcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
MjE1ZGU2LTQxNzYtNDJkMi04ZGEyLTZiNzAxNjljZGExYi8xL19KdnJBWkxRMDBh
bDVvV0twMFN3UTBfdE1Zay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAwguFAwQDwguAMA0GCSqGSIb3
DQEBCwUAA4IBAQAeHFIj0HCQoX6pldGilcMC4bhih4Pofh60LDx5MiXVDUbgred1
XGqiEoqiDm3T12y1UN9IYAa4XxxfBEkyajNpKxsESXj+5KKkanZGCo61NptjYXnc
5XyQReou6OdAn1Z7BhF/ulu62YAHqd7T22o7ErLnSTNE8ZqhIAL25S1GrZ/gUyfl
fdtwkpflYhNPCnr10fcrDByafzSBGsoSjOBe9wmbVDb5WpPA8pYEMjTate/BOE7m
45JS1t0n2A5ZYPB82WclDhY6XdOLx0txwv2WSYPGAwwN8qUfWy4sVlxeXd7DCYvH
U0vi8znj+p313EY7c9vSDu4pDIXo8zepLmck
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:40 2024 by rpki-client on console-fra.rpki-client.org