Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/CFlQISDk9QFq442zNv8Xj10r3AI.roa
File: CFlQISDk9QFq442zNv8Xj10r3AI.roa (raw, json)
Hash identifier: Y67po7ZZHtV6Cm9pmgMyu8M5y+TfjEFQJDNQTWWjCTU=
Subject key identifier: 08:59:50:21:20:E4:F5:01:6A:E3:8D:B3:36:FF:17:8F:5D:2B:DC:02
Certificate issuer: /CN=5e717627f7b2fcc56f0d7be469a13171607d2427
Certificate serial: 01831F625C6B3F90F88C7EF259470548E5FB
Authority key identifier: 5E:71:76:27:F7:B2:FC:C5:6F:0D:7B:E4:69:A1:31:71:60:7D:24:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XnF2J_ey_MVvDXvkaaExcWB9JCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/CFlQISDk9QFq442zNv8Xj10r3AI.roa
Signing time: Thu 08 Sep 2022 23:14:43 +0000
ROA not before: Thu 08 Sep 2022 23:14:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31732
IP address blocks: 195.254.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1f:62:5c:6b:3f:90:f8:8c:7e:f2:59:47:05:48:e5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e717627f7b2fcc56f0d7be469a13171607d2427
Validity
Not Before: Sep 8 23:14:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0859502120e4f5016ae38db336ff178f5d2bdc02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:59:61:67:2e:4a:12:45:d9:17:b4:4d:4a:
ae:1f:15:73:98:57:e0:60:c5:a3:e2:ff:84:35:a2:
54:fc:be:3f:c7:79:60:39:23:97:f3:e8:11:43:11:
5b:cd:55:97:2b:bb:8b:ab:42:bc:a9:de:0c:8b:ce:
e2:5b:77:9a:5b:e5:7d:78:d2:c3:ca:10:a2:da:2c:
da:aa:75:dd:33:fd:a2:80:39:92:47:6d:71:11:58:
d6:0a:d6:8b:06:e9:c5:ac:66:8d:64:d6:d9:7b:32:
69:ff:ca:39:d1:99:f6:55:2e:f8:2a:4a:d2:7b:48:
67:a3:71:fa:f1:ff:75:57:2a:1e:e1:7c:5d:39:14:
e7:a5:35:b1:fb:e2:3c:f9:40:48:b1:83:dd:64:82:
d2:96:63:ed:86:66:fc:f5:e0:07:92:36:d9:57:d2:
6f:d7:c5:88:ba:2d:0a:93:6f:a9:eb:61:f6:53:c8:
d9:77:90:ae:e9:67:85:b8:52:dc:cf:56:a2:a7:fe:
c8:13:3d:e1:ce:75:cf:02:1c:16:68:08:1c:2c:93:
f5:4e:30:d8:38:2b:cf:29:05:a7:36:30:ec:df:0b:
20:c6:45:db:7c:39:a4:23:ec:4c:5f:58:ca:39:b1:
9d:31:fd:1c:8f:f3:03:df:51:5f:dc:c3:ae:dd:b6:
a3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:59:50:21:20:E4:F5:01:6A:E3:8D:B3:36:FF:17:8F:5D:2B:DC:02
X509v3 Authority Key Identifier:
keyid:5E:71:76:27:F7:B2:FC:C5:6F:0D:7B:E4:69:A1:31:71:60:7D:24:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XnF2J_ey_MVvDXvkaaExcWB9JCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/CFlQISDk9QFq442zNv8Xj10r3AI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/XnF2J_ey_MVvDXvkaaExcWB9JCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.165.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:2c:6f:97:69:c3:25:d9:be:9c:9f:71:50:5d:4e:8d:3f:d2:
2d:f8:8f:af:0d:00:40:87:3a:ea:25:24:85:73:91:85:0b:c9:
b3:6a:61:02:b1:53:00:bf:8b:12:41:cc:9b:ea:3e:01:de:7d:
9f:7d:6b:f9:1d:c4:69:45:85:36:bb:7e:77:d3:bc:3b:76:98:
ed:e8:9d:ad:a5:fc:6f:fa:7c:93:59:8e:d7:75:bc:fb:d2:4b:
b7:08:fb:7f:99:80:de:a4:4b:77:e8:49:ac:75:29:39:cb:90:
ed:28:f6:5f:d5:b2:b4:b2:1c:02:cd:f1:0b:75:21:4e:5b:80:
7c:43:1f:3d:c0:ca:b7:9c:49:fe:3b:cd:97:4f:da:e2:92:28:
c2:e6:ac:e5:f9:46:0f:2f:db:ea:83:ce:33:8f:0f:fb:e2:5e:
e5:a2:7c:d4:a5:75:d5:92:a1:7d:6b:9f:a4:95:24:eb:c1:9c:
d2:af:42:f1:ac:74:dc:6c:e1:69:e5:e4:cf:45:57:aa:74:bc:
e2:73:7f:d5:31:4a:32:2c:ef:72:01:d7:9e:11:eb:26:7c:02:
ad:83:a0:29:66:78:04:97:f4:85:17:44:ee:a7:fa:99:38:63:
3b:1b:d1:2e:37:0f:e4:1e:7a:fb:78:cd:12:ff:27:1e:72:b9:
21:d9:5f:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMfYlxrP5D4jH7yWUcFSOX7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNzE3NjI3ZjdiMmZjYzU2ZjBkN2JlNDY5YTEzMTcxNjA3
ZDI0MjcwHhcNMjIwOTA4MjMxNDQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODU5NTAyMTIwZTRmNTAxNmFlMzhkYjMzNmZmMTc4ZjVkMmJkYzAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwtZYWcuShJF2Re0TUquHxVzmFfg
YMWj4v+ENaJU/L4/x3lgOSOX8+gRQxFbzVWXK7uLq0K8qd4Mi87iW3eaW+V9eNLD
yhCi2izaqnXdM/2igDmSR21xEVjWCtaLBunFrGaNZNbZezJp/8o50Zn2VS74KkrS
e0hno3H68f91Vyoe4XxdORTnpTWx++I8+UBIsYPdZILSlmPthmb89eAHkjbZV9Jv
18WIui0Kk2+p62H2U8jZd5Cu6WeFuFLcz1aip/7IEz3hznXPAhwWaAgcLJP1TjDY
OCvPKQWnNjDs3wsgxkXbfDmkI+xMX1jKObGdMf0cj/MD31Ff3MOu3bajpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAhZUCEg5PUBauONszb/F49dK9wCMB8GA1UdIwQY
MBaAFF5xdif3svzFbw175GmhMXFgfSQnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG5GMkpfZXlfTVZ2RFh2a2FhRXhjV0I5SkNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8zZDE5NDUtZDYwZS00OGFiLTg4YmMt
OGNmZTRiODE1N2QyLzEvQ0ZsUUlTRGs5UUZxNDQyek52OFhqMTByM0FJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy8zZDE5NDUtZDYwZS00OGFiLTg4YmMtOGNmZTRiODE1N2Qy
LzEvWG5GMkpfZXlfTVZ2RFh2a2FhRXhjV0I5SkNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/6lMA0G
CSqGSIb3DQEBCwUAA4IBAQCOLG+XacMl2b6cn3FQXU6NP9It+I+vDQBAhzrqJSSF
c5GFC8mzamECsVMAv4sSQcyb6j4B3n2ffWv5HcRpRYU2u35307w7dpjt6J2tpfxv
+nyTWY7Xdbz70ku3CPt/mYDepEt36EmsdSk5y5DtKPZf1bK0shwCzfELdSFOW4B8
Qx89wMq3nEn+O82XT9rikijC5qzl+UYPL9vqg84zjw/74l7lonzUpXXVkqF9a5+k
lSTrwZzSr0LxrHTcbOFp5eTPRVeqdLzic3/VMUoyLO9yAdeeEesmfAKtg6ApZngE
l/SFF0Tup/qZOGM7G9EuNw/kHnr7eM0S/ycecrkh2V+1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:28 2024 by rpki-client on console-ams.rpki-client.org