Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/lJwYKrZGst86-XARWngvttYXgtc.roa
File: lJwYKrZGst86-XARWngvttYXgtc.roa (raw, json)
Hash identifier: Nd9/0LDHXfKrn+D85tf+3j4LYg0YiEDk6/a/Aer3NB0=
Subject key identifier: 94:9C:18:2A:B6:46:B2:DF:3A:F9:70:11:5A:78:2F:B6:D6:17:82:D7
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 393615D9
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/lJwYKrZGst86-XARWngvttYXgtc.roa
Signing time: Sat 01 Jan 2022 03:52:53 +0000
ROA not before: Sat 01 Jan 2022 03:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3323
IP address blocks: 194.177.196.0/24 maxlen: 24
2001:648:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 959845849 (0x393615d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=949c182ab646b2df3af970115a782fb6d61782d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d7:c4:bb:18:41:af:43:80:17:71:2a:ae:6b:
d1:ed:8a:20:be:e4:6f:e3:ce:df:7d:b4:e2:ea:af:
ef:a7:4c:1d:d8:dd:a9:c3:ea:d8:ad:7d:f3:49:0d:
e9:a2:b5:76:ab:a3:d4:fa:16:bd:66:f5:f3:28:8f:
6a:ba:7c:17:1d:cf:15:06:8b:eb:75:25:29:af:22:
ac:65:af:8f:47:56:6c:d2:1e:73:ac:58:8f:19:86:
13:6b:97:71:50:c5:dd:8e:a5:35:5e:e8:de:3e:25:
9b:91:fe:39:9c:72:98:d0:81:2f:35:9b:4c:cb:09:
5d:ba:26:b0:7b:bf:18:d0:0a:5d:0d:d1:33:f4:88:
87:7b:79:cc:1f:73:6d:88:eb:1c:66:40:75:3b:78:
42:43:34:c2:8f:95:ac:35:bf:87:db:e2:49:bf:26:
25:54:ea:91:2c:5c:29:4f:37:c3:ab:cd:a6:36:70:
eb:10:78:49:19:aa:f8:2a:d1:1d:dc:48:15:46:c4:
3d:30:0e:25:d9:20:f3:34:02:db:cc:3f:80:ab:04:
9b:36:b1:95:ff:f4:fc:9a:46:96:15:e9:08:b7:5b:
f3:63:b9:a4:62:42:52:28:f2:c8:98:ec:60:ea:53:
90:d1:84:6d:5b:b5:09:2e:30:41:33:b7:70:d9:f8:
5f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9C:18:2A:B6:46:B2:DF:3A:F9:70:11:5A:78:2F:B6:D6:17:82:D7
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/lJwYKrZGst86-XARWngvttYXgtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.177.196.0/24
IPv6:
2001:648:2000::/48
Signature Algorithm: sha256WithRSAEncryption
4d:6e:8b:db:75:1a:51:0e:99:95:03:54:10:78:42:7e:f7:d3:
f3:76:a1:dd:69:dc:a6:68:19:0e:99:74:49:aa:b0:06:04:77:
0c:38:fc:0a:b2:72:bd:f8:e6:2c:26:28:52:73:a9:4c:e1:f7:
0f:4c:d8:93:28:41:00:17:85:e3:0e:c1:0a:b0:cf:48:d9:8b:
36:76:39:93:43:01:6c:20:7c:41:01:cf:4b:36:a6:f9:81:6d:
ad:77:24:9b:97:1e:00:0e:48:69:a4:75:da:2b:d9:04:e2:cc:
4a:24:d6:4a:e7:8b:4f:57:13:a2:72:79:a6:2b:e2:3e:ce:c2:
48:7f:9b:58:5d:e9:93:9d:29:74:36:fb:69:86:be:1e:42:ad:
f3:49:bc:0c:a0:83:10:9e:03:30:e2:1a:97:8d:c0:f7:ab:26:
bc:d1:1a:c6:47:72:7e:3e:45:2d:7e:ad:75:4e:cd:9a:38:0b:
95:4c:12:78:f7:da:27:20:07:de:31:d8:75:ec:ef:26:f1:2f:
cc:8a:41:96:bc:73:ff:3c:d6:e0:1c:cc:fe:6d:4c:4a:77:2e:
de:80:60:0e:3c:bc:99:9b:b7:a1:e0:3a:ee:67:0c:2e:95:47:
12:a9:3c:e4:b0:56:5f:fa:0c:f4:fb:c9:4d:4b:4e:f3:f5:b1:
fa:01:27:c2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEOTYV2TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YTZmOTI5NTUyMWRmMzBhMTU4ZjUwNmJhN2NiODczYWI5NTI5ZGMzMB4XDTIyMDEw
MTAzNTI1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTQ5YzE4MmFiNjQ2
YjJkZjNhZjk3MDExNWE3ODJmYjZkNjE3ODJkNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN3XxLsYQa9DgBdxKq5r0e2KIL7kb+PO33204uqv76dMHdjd
qcPq2K1980kN6aK1dquj1PoWvWb18yiParp8Fx3PFQaL63UlKa8irGWvj0dWbNIe
c6xYjxmGE2uXcVDF3Y6lNV7o3j4lm5H+OZxymNCBLzWbTMsJXbomsHu/GNAKXQ3R
M/SIh3t5zB9zbYjrHGZAdTt4QkM0wo+VrDW/h9viSb8mJVTqkSxcKU83w6vNpjZw
6xB4SRmq+CrRHdxIFUbEPTAOJdkg8zQC28w/gKsEmzaxlf/0/JpGlhXpCLdb82O5
pGJCUijyyJjsYOpTkNGEbVu1CS4wQTO3cNn4X1ECAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSUnBgqtkay3zr5cBFaeC+21heC1zAfBgNVHSMEGDAWgBRab5KVUh3zChWP
UGuny4c6uVKdwzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dtLVNsVklkOHdvVmoxQnJwOHVIT3JsU25jTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTlmOTNiLWJlMzEtNDVjZi1hYTdlLWFhYTQ1NTNkMmFiZC8x
L2xKd1lLclpHc3Q4Ni1YQVJXbmd2dHRZWGd0Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTlmOTNiLWJlMzEtNDVjZi1hYTdlLWFhYTQ1NTNkMmFiZC8xL1dtLVNsVklkOHdv
VmoxQnJwOHVIT3JsU25jTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMKxxDAPBAIAAjAJAwcAIAEGSCAA
MA0GCSqGSIb3DQEBCwUAA4IBAQBNbovbdRpRDpmVA1QQeEJ+99PzdqHdadymaBkO
mXRJqrAGBHcMOPwKsnK9+OYsJihSc6lM4fcPTNiTKEEAF4XjDsEKsM9I2Ys2djmT
QwFsIHxBAc9LNqb5gW2tdySblx4ADkhppHXaK9kE4sxKJNZK54tPVxOicnmmK+I+
zsJIf5tYXemTnSl0Nvtphr4eQq3zSbwMoIMQngMw4hqXjcD3qya80RrGR3J+PkUt
fq11Ts2aOAuVTBJ499onIAfeMdh17O8m8S/MikGWvHP/PNbgHMz+bUxKdy7egGAO
PLyZm7eh4DruZwwulUcSqTzksFZf+gz0+8lNS07z9bH6ASfC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org