Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/k5qblUZyGTCC019P-PRrFXcaOmU.roa
File: k5qblUZyGTCC019P-PRrFXcaOmU.roa (raw, json)
Hash identifier: nJO+0imVuF5hd3eH90dPtJaUYFGBK3AgLulPrF0w1s0=
Subject key identifier: 93:9A:9B:95:46:72:19:30:82:D3:5F:4F:F8:F4:6B:15:77:1A:3A:65
Certificate issuer: /CN=bd8f133d1095cd31205c7a3462248cc9941203ac
Certificate serial: 1A9561FB
Authority key identifier: BD:8F:13:3D:10:95:CD:31:20:5C:7A:34:62:24:8C:C9:94:12:03:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vY8TPRCVzTEgXHo0YiSMyZQSA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/k5qblUZyGTCC019P-PRrFXcaOmU.roa
Signing time: Sat 01 Jan 2022 12:56:00 +0000
ROA not before: Sat 01 Jan 2022 12:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62354
IP address blocks: 195.200.80.0/24 maxlen: 24
185.37.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445997563 (0x1a9561fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd8f133d1095cd31205c7a3462248cc9941203ac
Validity
Not Before: Jan 1 12:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=939a9b954672193082d35f4ff8f46b15771a3a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fd:57:32:76:dc:6c:35:47:28:54:1d:0b:79:
26:a7:3c:c1:25:5e:81:66:37:4b:01:85:55:33:10:
10:a3:df:8a:9e:0f:bc:50:93:7c:b0:5c:de:08:18:
b3:95:00:78:a8:a2:8b:7d:4d:04:7c:2b:00:3a:36:
46:68:a5:ee:16:04:16:8f:d0:24:d5:73:c9:69:d8:
50:49:c3:40:dd:e7:b1:d6:ee:00:d0:37:b1:11:68:
d0:74:c0:1d:2d:71:1c:e9:2d:38:04:51:a5:4b:e7:
e5:a0:25:88:58:64:49:ea:99:0d:ad:a9:9c:f5:9b:
fd:70:e4:e4:07:24:12:bb:20:79:c4:fd:4a:b6:cf:
f7:b8:3b:aa:70:7d:76:bb:22:12:37:32:70:ea:93:
cb:5d:aa:5b:3a:00:15:51:19:31:f3:41:43:64:db:
33:b2:f7:71:a2:bf:a4:1d:ad:67:9a:ee:54:2d:4d:
71:ab:78:5b:4f:ef:d5:e0:d9:42:10:3f:7a:c4:fe:
da:d5:78:1f:cc:a5:ca:7e:01:0d:70:45:e3:36:af:
b1:75:d8:f8:8e:75:f3:e3:2d:6b:73:d2:f1:a3:de:
a0:c3:c6:c7:44:51:aa:62:19:d8:b0:b9:aa:7a:be:
55:3e:07:e3:4c:99:c6:d5:dc:10:93:30:22:58:8d:
e6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:9A:9B:95:46:72:19:30:82:D3:5F:4F:F8:F4:6B:15:77:1A:3A:65
X509v3 Authority Key Identifier:
keyid:BD:8F:13:3D:10:95:CD:31:20:5C:7A:34:62:24:8C:C9:94:12:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vY8TPRCVzTEgXHo0YiSMyZQSA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/k5qblUZyGTCC019P-PRrFXcaOmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/vY8TPRCVzTEgXHo0YiSMyZQSA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.16.0/22
195.200.80.0/24
Signature Algorithm: sha256WithRSAEncryption
79:81:15:47:92:5d:a4:bd:94:b9:19:58:c7:9a:e6:99:bc:41:
9a:7c:fd:22:49:ed:2f:e3:c0:a0:05:28:83:04:4e:1c:68:4d:
24:37:d4:e2:01:79:8f:ed:1e:7d:3d:38:ab:81:9a:ed:58:f1:
9a:89:ed:d7:2e:7a:92:25:d0:c0:b3:39:2c:e0:f7:af:3c:d2:
46:ed:76:34:44:67:d1:bd:41:97:81:91:86:78:55:0e:20:39:
4e:d4:c7:94:c0:75:68:9a:e6:a6:2a:eb:e7:75:28:e4:7b:d7:
62:22:2b:de:ad:33:34:60:e3:c4:a6:c4:d4:9f:6a:8a:d0:f8:
12:c1:75:4a:d4:ea:1d:cc:8f:17:5b:a4:7b:c3:09:01:ee:db:
31:36:c6:ca:ac:17:91:0c:e2:1e:fc:aa:27:93:cd:b3:61:e0:
ab:2e:2c:4f:5f:e8:38:df:0a:40:05:0a:68:49:da:2a:f4:4c:
df:6e:4c:e4:8b:d0:19:8c:6c:04:33:e1:ee:e2:e3:ae:5a:47:
2c:4d:8b:8e:ec:50:72:3c:6f:13:2f:d0:ae:e8:0b:d5:1e:c9:
46:92:d3:2a:a4:bf:c2:10:ee:9d:b6:df:34:4b:a1:11:27:e4:
24:96:42:6b:a1:59:e0:a7:00:b9:be:fb:77:be:70:63:79:f8:
02:6d:a4:e9
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEGpVh+zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZDhmMTMzZDEwOTVjZDMxMjA1YzdhMzQ2MjI0OGNjOTk0MTIwM2FjMB4XDTIyMDEw
MTEyNTYwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTM5YTliOTU0Njcy
MTkzMDgyZDM1ZjRmZjhmNDZiMTU3NzFhM2E2NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKb9VzJ23Gw1RyhUHQt5Jqc8wSVegWY3SwGFVTMQEKPfip4P
vFCTfLBc3ggYs5UAeKiii31NBHwrADo2Rmil7hYEFo/QJNVzyWnYUEnDQN3nsdbu
ANA3sRFo0HTAHS1xHOktOARRpUvn5aAliFhkSeqZDa2pnPWb/XDk5AckErsgecT9
SrbP97g7qnB9drsiEjcycOqTy12qWzoAFVEZMfNBQ2TbM7L3caK/pB2tZ5ruVC1N
cat4W0/v1eDZQhA/esT+2tV4H8ylyn4BDXBF4zavsXXY+I518+Mta3PS8aPeoMPG
x0RRqmIZ2LC5qnq+VT4H40yZxtXcEJMwIliN5v0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSTmpuVRnIZMILTX0/49GsVdxo6ZTAfBgNVHSMEGDAWgBS9jxM9EJXNMSBc
ejRiJIzJlBIDrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZZOFRQUkNWelRFZ1hIbzBZaVNNeVpRU0E2dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvM2I3YzQzLTQyNDEtNDRkNC04NTM0LTQwOWQwZjljOGEwNC8x
L2s1cWJsVVp5R1RDQzAxOVAtUFJyRlhjYU9tVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
M2I3YzQzLTQyNDEtNDRkNC04NTM0LTQwOWQwZjljOGEwNC8xL3ZZOFRQUkNWelRF
Z1hIbzBZaVNNeVpRU0E2dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArklEAMEAMPIUDANBgkqhkiG9w0B
AQsFAAOCAQEAeYEVR5JdpL2UuRlYx5rmmbxBmnz9IkntL+PAoAUogwROHGhNJDfU
4gF5j+0efT04q4Ga7Vjxmont1y56kiXQwLM5LOD3rzzSRu12NERn0b1Bl4GRhnhV
DiA5TtTHlMB1aJrmpirr53Uo5HvXYiIr3q0zNGDjxKbE1J9qitD4EsF1StTqHcyP
F1uke8MJAe7bMTbGyqwXkQziHvyqJ5PNs2Hgqy4sT1/oON8KQAUKaEnaKvRM325M
5IvQGYxsBDPh7uLjrlpHLE2LjuxQcjxvEy/QrugL1R7JRpLTKqS/whDunbbfNEuh
ESfkJJZCa6FZ4KcAub77d75wY3n4Am2k6Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:57 2024 by rpki-client on console-fra.rpki-client.org