Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/lRUsJUlkG15RtshKCvQNYKDZPMc.roa
File: lRUsJUlkG15RtshKCvQNYKDZPMc.roa (raw, json)
Hash identifier: n5Ei+g1MI0qXKRW2/D92E9IQWEL8SHWjyeKkHgevSUE=
Subject key identifier: 95:15:2C:25:49:64:1B:5E:51:B6:C8:4A:0A:F4:0D:60:A0:D9:3C:C7
Certificate issuer: /CN=6a37982207e62ded0691dcb18ef6ea32d413f3f6
Certificate serial: 01833C
Authority key identifier: 6A:37:98:22:07:E6:2D:ED:06:91:DC:B1:8E:F6:EA:32:D4:13:F3:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/lRUsJUlkG15RtshKCvQNYKDZPMc.roa
Signing time: Thu 10 Mar 2022 10:20:31 +0000
ROA not before: Thu 10 Mar 2022 10:20:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42184
IP address blocks: 89.251.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99132 (0x1833c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a37982207e62ded0691dcb18ef6ea32d413f3f6
Validity
Not Before: Mar 10 10:20:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95152c2549641b5e51b6c84a0af40d60a0d93cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:19:c1:de:69:fa:86:31:3e:d2:cf:9b:3c:14:
6f:db:d8:da:07:34:50:82:0c:2c:c4:dd:50:8d:30:
f0:1d:c8:f5:c6:61:29:71:b2:b5:4c:2f:e8:f2:df:
fe:d6:5c:ef:9f:21:9e:df:5a:0c:25:ba:24:86:e9:
b5:9a:50:42:43:44:4a:d7:40:fa:0a:2d:0e:15:20:
5c:e7:f8:04:41:c5:bc:6c:7c:83:56:44:8e:72:d1:
d7:8b:dc:9d:9d:29:19:05:bd:e4:12:d7:b1:51:1d:
4b:62:92:92:d1:1b:6f:9e:c8:21:e4:77:35:90:21:
ac:ba:e0:b9:7f:3e:4e:75:77:bd:4f:b4:d3:c9:1f:
8b:cd:29:f8:2f:61:44:d4:8b:de:9b:86:96:d9:e3:
ee:96:b9:82:1b:81:29:c2:82:50:c1:b7:fa:d3:3e:
b8:dc:b2:1b:78:a6:7c:c3:78:6b:da:85:53:1e:89:
f5:fb:21:6f:7a:05:70:69:b1:d8:3d:27:6e:8b:b4:
df:ed:49:29:50:81:22:a0:92:dd:b2:cc:42:41:8f:
16:a7:a9:7a:ae:0e:35:6d:ca:65:2b:9d:81:47:3d:
97:c4:10:eb:15:e7:dd:b5:c2:ff:60:99:5a:14:6d:
54:77:b0:79:02:e7:f9:68:ad:ea:9a:fd:a1:bb:32:
72:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:15:2C:25:49:64:1B:5E:51:B6:C8:4A:0A:F4:0D:60:A0:D9:3C:C7
X509v3 Authority Key Identifier:
keyid:6A:37:98:22:07:E6:2D:ED:06:91:DC:B1:8E:F6:EA:32:D4:13:F3:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/lRUsJUlkG15RtshKCvQNYKDZPMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.128.0/20
Signature Algorithm: sha256WithRSAEncryption
88:95:d3:28:66:db:91:0b:9e:ff:31:f2:45:ff:bb:60:89:80:
41:6f:da:2e:78:c5:87:6c:df:c6:0a:41:bf:ef:9c:99:23:e2:
c2:4b:c4:c5:d3:30:17:fc:f3:3c:8e:98:fe:a8:8a:3d:38:06:
eb:54:ed:51:f8:ed:70:3b:ee:13:78:e1:c7:c0:00:61:ef:f5:
03:e2:17:24:fc:b1:67:64:63:ff:db:6f:c0:b4:aa:4b:ac:70:
5f:5a:4c:b8:8b:1c:d6:14:2c:33:1a:72:01:27:5a:9c:11:a0:
07:b4:20:58:85:c0:52:3c:a1:e5:9f:e1:d4:46:de:74:25:de:
4f:70:76:58:d9:b0:ce:f1:db:6d:ba:3c:13:b3:17:09:62:17:
98:bf:a3:fa:29:d7:70:ee:d5:69:93:3d:58:50:31:f5:c6:a2:
f6:08:fd:13:d8:1a:a1:f7:37:e0:1e:41:58:67:3d:f3:07:08:
fa:63:9a:b2:4b:e0:9f:ab:d8:e5:a2:8e:40:0e:63:0b:6e:2a:
1a:da:26:2a:99:62:6e:7e:e8:98:27:08:4a:f2:15:21:0d:81:
64:fa:54:3c:63:bf:1e:de:13:1b:ec:f0:ac:9c:2a:13:2b:98:
b7:9e:ab:c6:b8:0d:4b:e9:49:f4:fe:7e:63:36:d3:64:4f:07:
db:92:69:5a
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAYM8MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDZh
Mzc5ODIyMDdlNjJkZWQwNjkxZGNiMThlZjZlYTMyZDQxM2YzZjYwHhcNMjIwMzEw
MTAyMDMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5NTE1MmMyNTQ5NjQx
YjVlNTFiNmM4NGEwYWY0MGQ2MGEwZDkzY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAkxnB3mn6hjE+0s+bPBRv29jaBzRQggwsxN1QjTDwHcj1xmEp
cbK1TC/o8t/+1lzvnyGe31oMJbokhum1mlBCQ0RK10D6Ci0OFSBc5/gEQcW8bHyD
VkSOctHXi9ydnSkZBb3kEtexUR1LYpKS0Rtvnsgh5Hc1kCGsuuC5fz5OdXe9T7TT
yR+LzSn4L2FE1Ivem4aW2ePulrmCG4EpwoJQwbf60z643LIbeKZ8w3hr2oVTHon1
+yFvegVwabHYPSdui7Tf7UkpUIEioJLdssxCQY8Wp6l6rg41bcplK52BRz2XxBDr
FefdtcL/YJlaFG1Ud7B5Auf5aK3qmv2huzJynwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJUVLCVJZBteUbbISgr0DWCg2TzHMB8GA1UdIwQYMBaAFGo3mCIH5i3tBpHc
sY726jLUE/P2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
YWplWUlnZm1MZTBHa2R5eGp2YnFNdFFUOF9ZLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jNS9iODExZDUtYmEzNS00MjNkLTg2MmYtMjM1MzE2NTRlNTg5LzEv
bFJVc0pVbGtHMTVSdHNoS0N2UU5ZS0RaUE1jLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9i
ODExZDUtYmEzNS00MjNkLTg2MmYtMjM1MzE2NTRlNTg5LzEvYWplWUlnZm1MZTBH
a2R5eGp2YnFNdFFUOF9ZLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEWfuAMA0GCSqGSIb3DQEBCwUAA4IB
AQCIldMoZtuRC57/MfJF/7tgiYBBb9oueMWHbN/GCkG/75yZI+LCS8TF0zAX/PM8
jpj+qIo9OAbrVO1R+O1wO+4TeOHHwABh7/UD4hck/LFnZGP/22/AtKpLrHBfWky4
ixzWFCwzGnIBJ1qcEaAHtCBYhcBSPKHln+HURt50Jd5PcHZY2bDO8dttujwTsxcJ
YheYv6P6Kddw7tVpkz1YUDH1xqL2CP0T2Bqh9zfgHkFYZz3zBwj6Y5qyS+Cfq9jl
oo5ADmMLbioa2iYqmWJufuiYJwhK8hUhDYFk+lQ8Y78e3hMb7PCsnCoTK5i3nqvG
uA1L6Un0/n5jNtNkTwfbkmla
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:13 2024 by rpki-client on console-ams.rpki-client.org