Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/AIKRs9XOqijkTtCluESOS4d5jcU.roa
File: AIKRs9XOqijkTtCluESOS4d5jcU.roa (raw, json)
Hash identifier: qVjSh7r8lBg8YP12i9yEO6UaIvDfdkk1syU3VxkV7WA=
Subject key identifier: 00:82:91:B3:D5:CE:AA:28:E4:4E:D0:A5:B8:44:8E:4B:87:79:8D:C5
Certificate issuer: /CN=519e97470c63fda14c3265eb741a70e3a8b69aff
Certificate serial: 0916BF89
Authority key identifier: 51:9E:97:47:0C:63:FD:A1:4C:32:65:EB:74:1A:70:E3:A8:B6:9A:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UZ6XRwxj_aFMMmXrdBpw46i2mv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/AIKRs9XOqijkTtCluESOS4d5jcU.roa
Signing time: Sat 01 Jan 2022 11:57:49 +0000
ROA not before: Sat 01 Jan 2022 11:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33886
IP address blocks: 194.50.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152485769 (0x916bf89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=519e97470c63fda14c3265eb741a70e3a8b69aff
Validity
Not Before: Jan 1 11:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=008291b3d5ceaa28e44ed0a5b8448e4b87798dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:12:83:4b:f4:e3:0a:29:21:96:1a:9e:bd:7d:
a7:ef:51:f5:9f:e4:ef:84:2d:0d:94:1d:4d:05:a5:
7c:69:10:63:cd:69:36:39:38:56:2d:89:1a:f9:69:
d9:94:e8:62:64:8e:b5:fd:48:ce:19:c5:93:3d:78:
d8:38:9f:9e:f9:45:88:3c:33:74:1d:46:7d:dd:51:
45:f0:5a:1c:ed:79:90:9c:9d:fe:57:1a:66:e0:9d:
00:4f:54:cd:2c:41:af:6e:f3:96:1f:a1:f4:68:99:
1d:68:cb:8e:a6:37:29:1d:50:de:04:d7:1a:fb:07:
7b:ee:67:38:04:69:f3:e9:a2:34:68:73:48:0a:99:
40:6e:1d:34:cf:80:ac:d5:92:f3:f7:9e:e7:f7:e9:
2c:94:17:09:21:f8:49:93:1d:8e:7c:35:a5:5a:7c:
0b:32:4e:0c:d9:d8:2b:de:aa:28:bc:3b:09:71:ba:
1f:fb:c7:29:9d:f9:de:60:79:aa:2a:bd:9f:bf:e4:
61:b7:87:83:f1:c4:eb:f9:d4:dd:92:96:f0:99:59:
66:f7:32:43:e3:b5:5a:5f:ca:f9:a9:2d:b2:ba:d4:
16:fc:54:54:6e:4e:a6:50:b1:1c:bd:c5:79:70:85:
38:90:c5:6a:6e:f6:c3:1a:bd:9f:b4:62:38:67:ae:
f9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:82:91:B3:D5:CE:AA:28:E4:4E:D0:A5:B8:44:8E:4B:87:79:8D:C5
X509v3 Authority Key Identifier:
keyid:51:9E:97:47:0C:63:FD:A1:4C:32:65:EB:74:1A:70:E3:A8:B6:9A:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UZ6XRwxj_aFMMmXrdBpw46i2mv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/AIKRs9XOqijkTtCluESOS4d5jcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/UZ6XRwxj_aFMMmXrdBpw46i2mv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.181.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:24:b5:24:cc:7f:d1:b4:75:f4:74:b9:58:a5:59:d3:09:82:
25:b2:57:23:f8:19:7c:2c:29:5a:53:98:09:40:06:c2:60:0d:
aa:94:bb:b2:73:ac:1a:19:a0:5c:4e:a5:d9:10:8f:df:b2:ec:
54:2c:79:32:1c:23:89:1f:ba:45:a2:16:46:81:e2:fa:ad:09:
9b:9f:6f:55:a6:80:5e:36:61:96:8c:0e:63:a1:36:58:db:b0:
c0:3c:37:03:df:8a:17:61:8f:13:2c:3c:9a:57:1c:ba:46:ae:
9c:7f:e8:47:22:d3:96:66:07:45:20:84:23:3e:fc:b0:4a:02:
fd:bb:b1:dc:05:d4:04:f6:bd:4e:17:1f:3b:64:5f:e0:2f:9d:
01:9c:e0:17:00:58:91:00:6a:62:f9:96:49:c2:17:c1:c3:d9:
02:d5:81:35:ac:e7:3f:45:4b:83:a4:a4:35:a8:87:ec:ba:51:
c4:1d:f4:ff:96:bf:41:9d:e8:ac:b4:51:3f:9c:29:94:fa:1c:
a6:c6:e2:f7:8f:5a:bd:95:a2:e4:a0:70:51:65:a7:25:54:30:
8d:ca:57:2e:fa:3f:ac:72:ec:00:c1:12:5b:ea:16:25:26:80:
ce:44:30:27:68:9b:c0:1a:0f:bf:95:61:e2:55:f7:f0:22:b4:
7f:12:be:75
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECRa/iTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MTllOTc0NzBjNjNmZGExNGMzMjY1ZWI3NDFhNzBlM2E4YjY5YWZmMB4XDTIyMDEw
MTExNTc0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDA4MjkxYjNkNWNl
YWEyOGU0NGVkMGE1Yjg0NDhlNGI4Nzc5OGRjNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANISg0v04wopIZYanr19p+9R9Z/k74QtDZQdTQWlfGkQY81p
Njk4Vi2JGvlp2ZToYmSOtf1IzhnFkz142DifnvlFiDwzdB1Gfd1RRfBaHO15kJyd
/lcaZuCdAE9UzSxBr27zlh+h9GiZHWjLjqY3KR1Q3gTXGvsHe+5nOARp8+miNGhz
SAqZQG4dNM+ArNWS8/ee5/fpLJQXCSH4SZMdjnw1pVp8CzJODNnYK96qKLw7CXG6
H/vHKZ353mB5qiq9n7/kYbeHg/HE6/nU3ZKW8JlZZvcyQ+O1Wl/K+aktsrrUFvxU
VG5OplCxHL3FeXCFOJDFam72wxq9n7RiOGeu+RkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQAgpGz1c6qKORO0KW4RI5Lh3mNxTAfBgNVHSMEGDAWgBRRnpdHDGP9oUwy
Zet0GnDjqLaa/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VaNlhSd3hqX2FGTU1tWHJkQnB3NDZpMm12OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzEvM2ZkOTEwLTc4YmMtNDQyYS04OGFjLThjNTJkZTZmYTg4OC8x
L0FJS1JzOVhPcWlqa1R0Q2x1RVNPUzRkNWpjVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEv
M2ZkOTEwLTc4YmMtNDQyYS04OGFjLThjNTJkZTZmYTg4OC8xL1VaNlhSd3hqX2FG
TU1tWHJkQnB3NDZpMm12OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIytTANBgkqhkiG9w0BAQsFAAOC
AQEArSS1JMx/0bR19HS5WKVZ0wmCJbJXI/gZfCwpWlOYCUAGwmANqpS7snOsGhmg
XE6l2RCP37LsVCx5MhwjiR+6RaIWRoHi+q0Jm59vVaaAXjZhlowOY6E2WNuwwDw3
A9+KF2GPEyw8mlccukaunH/oRyLTlmYHRSCEIz78sEoC/bux3AXUBPa9ThcfO2Rf
4C+dAZzgFwBYkQBqYvmWScIXwcPZAtWBNaznP0VLg6SkNaiH7LpRxB30/5a/QZ3o
rLRRP5wplPocpsbi949avZWi5KBwUWWnJVQwjcpXLvo/rHLsAMESW+oWJSaAzkQw
J2ibwBoPv5Vh4lX38CK0fxK+dQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:33 2024 by rpki-client on console-fra.rpki-client.org