Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/wJS0zZC56-k039Wo8Dj6QtIEuiQ.roa
File: wJS0zZC56-k039Wo8Dj6QtIEuiQ.roa (raw, json)
Hash identifier: 00t56LkHfC5ZdcN1C28ZNrU5Eo+WU23AaLK/i6pKmp8=
Subject key identifier: C0:94:B4:CD:90:B9:EB:E9:34:DF:D5:A8:F0:38:FA:42:D2:04:BA:24
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A251D6B
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/wJS0zZC56-k039Wo8Dj6QtIEuiQ.roa
Signing time: Thu 28 Apr 2022 07:53:09 +0000
ROA not before: Thu 28 Apr 2022 07:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200533
IP address blocks: 85.14.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170204523 (0xa251d6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c094b4cd90b9ebe934dfd5a8f038fa42d204ba24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:a4:7a:69:1b:90:c6:b3:3b:19:26:e2:ca:
61:d4:55:61:3c:7f:54:2a:41:0e:34:1a:4f:71:30:
06:f8:59:06:02:d7:8b:1e:c2:ce:f4:8f:8e:86:c5:
20:e8:ee:36:46:22:d1:79:39:32:48:2c:19:ba:9b:
6f:15:a9:95:02:43:65:66:fd:e1:6d:07:40:22:f3:
3b:78:f8:64:2f:d3:f5:7d:f9:50:21:bc:ff:16:dd:
1b:0d:91:cd:85:62:49:63:4d:ad:8c:0c:ac:51:a8:
f8:bc:d9:6f:37:9d:05:bf:49:32:87:04:ba:2b:eb:
72:d1:60:50:ee:7c:76:52:fe:58:72:79:13:4c:88:
31:46:ab:56:5c:1d:77:fd:07:a0:a8:cc:78:99:61:
30:70:cf:2a:eb:a6:28:39:73:0d:19:20:77:b8:54:
ea:99:fc:ab:6a:bc:e3:4f:85:fa:a1:cf:0a:27:64:
86:51:14:9a:94:40:f3:91:97:34:f5:9e:e1:02:34:
b9:3d:16:5f:9e:bf:ed:14:03:f7:a7:67:a7:20:76:
7c:f1:c8:a3:06:3f:1d:7d:75:e7:d3:c8:b8:c4:65:
c6:7e:2c:37:2e:0e:fa:66:8d:50:e7:fe:92:a1:e8:
ca:76:04:84:33:aa:7b:ef:49:54:e0:97:7a:6f:f3:
93:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:94:B4:CD:90:B9:EB:E9:34:DF:D5:A8:F0:38:FA:42:D2:04:BA:24
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/wJS0zZC56-k039Wo8Dj6QtIEuiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.14.7.0/24
Signature Algorithm: sha256WithRSAEncryption
42:9b:39:e7:f9:46:7d:f3:9a:32:bc:29:63:2e:d4:75:74:2c:
ae:bb:9e:1a:af:d9:a0:84:70:0e:d2:28:c1:54:2b:03:65:11:
b2:ce:f4:c6:b6:3e:92:bd:e1:a1:bd:1e:af:70:68:d4:26:1d:
9c:3f:65:d4:1d:84:f1:15:de:0e:83:b0:91:25:4d:f0:ab:f1:
ce:c1:ef:cc:50:a1:85:7b:89:09:37:eb:8d:cf:87:06:b7:bd:
29:69:a0:61:7a:a7:a4:68:50:75:4e:91:34:61:b2:cb:a9:48:
4a:35:8b:58:c7:c6:32:46:be:0c:94:97:3d:ef:c0:33:85:f7:
b7:b4:50:c0:d7:77:7f:18:98:72:02:5f:2b:bc:db:81:e1:48:
45:82:c9:ca:0c:5f:e3:f0:c9:86:09:bd:36:aa:a2:26:c9:3e:
50:c3:53:e1:13:c6:bb:d8:3a:2b:77:8a:92:ec:53:08:f7:24:
9c:46:b1:45:1b:65:3c:e2:34:64:e9:c5:2d:6d:83:3d:46:98:
66:6b:8e:d3:be:78:8a:3d:47:3f:03:67:5b:60:52:f2:0c:3d:
86:fb:98:8e:0c:0b:a3:f7:62:79:4d:3e:c4:8c:81:93:a8:96:
fd:b9:c0:e4:a1:84:b5:5b:5e:16:e0:15:ff:b9:74:aa:a1:c8:
06:26:8e:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECiUdazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTA0YTQwODIxYzQxNzZjYzQyZTI1NWVmNmMxNzI3NDczYzNmMDBhMB4XDTIyMDQy
ODA3NTMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzA5NGI0Y2Q5MGI5
ZWJlOTM0ZGZkNWE4ZjAzOGZhNDJkMjA0YmEyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMV0pHppG5DGszsZJuLKYdRVYTx/VCpBDjQaT3EwBvhZBgLX
ix7CzvSPjobFIOjuNkYi0Xk5MkgsGbqbbxWplQJDZWb94W0HQCLzO3j4ZC/T9X35
UCG8/xbdGw2RzYViSWNNrYwMrFGo+LzZbzedBb9JMocEuivrctFgUO58dlL+WHJ5
E0yIMUarVlwdd/0HoKjMeJlhMHDPKuumKDlzDRkgd7hU6pn8q2q840+F+qHPCidk
hlEUmpRA85GXNPWe4QI0uT0WX56/7RQD96dnpyB2fPHIowY/HX1159PIuMRlxn4s
Ny4O+maNUOf+kqHoynYEhDOqe+9JVOCXem/zky8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTAlLTNkLnr6TTf1ajwOPpC0gS6JDAfBgNVHSMEGDAWgBRBBKQIIcQXbMQu
JV72wXJ0c8PwCjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FRU2tDQ0hFRjJ6RUxpVmU5c0Z5ZEhQRDhBby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2EvOTY5OTYyLTEyZDMtNDFiMi1hYjQzLWIyN2Q2ZTI3OGUxOC8x
L3dKUzB6WkM1Ni1rMDM5V284RGo2UXRJRXVpUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Ev
OTY5OTYyLTEyZDMtNDFiMi1hYjQzLWIyN2Q2ZTI3OGUxOC8xL1FRU2tDQ0hFRjJ6
RUxpVmU5c0Z5ZEhQRDhBby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFUOBzANBgkqhkiG9w0BAQsFAAOC
AQEAQps55/lGffOaMrwpYy7UdXQsrrueGq/ZoIRwDtIowVQrA2URss70xrY+kr3h
ob0er3Bo1CYdnD9l1B2E8RXeDoOwkSVN8KvxzsHvzFChhXuJCTfrjc+HBre9KWmg
YXqnpGhQdU6RNGGyy6lISjWLWMfGMka+DJSXPe/AM4X3t7RQwNd3fxiYcgJfK7zb
geFIRYLJygxf4/DJhgm9NqqiJsk+UMNT4RPGu9g6K3eKkuxTCPcknEaxRRtlPOI0
ZOnFLW2DPUaYZmuO0754ij1HPwNnW2BS8gw9hvuYjgwLo/dieU0+xIyBk6iW/bnA
5KGEtVteFuAV/7l0qqHIBiaOng==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org