Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/vmAnZbJLP4dZhJgIciHdcTUYbUU.roa
File: vmAnZbJLP4dZhJgIciHdcTUYbUU.roa (raw, json)
Hash identifier: TbevCpgRbGmoZ315SL/yLccvc8OVUxnayK/1JaWdQdY=
Subject key identifier: BE:60:27:65:B2:4B:3F:87:59:84:98:08:72:21:DD:71:35:18:6D:45
Certificate issuer: /CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Certificate serial: 014ED1
Authority key identifier: 80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/vmAnZbJLP4dZhJgIciHdcTUYbUU.roa
Signing time: Tue 12 Apr 2022 07:56:01 +0000
ROA not before: Tue 12 Apr 2022 07:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39745
IP address blocks: 195.60.78.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85713 (0x14ed1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Validity
Not Before: Apr 12 07:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be602765b24b3f87598498087221dd7135186d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:79:88:93:64:80:bc:b1:a3:46:57:8e:b0:9a:
01:39:d1:ce:92:db:85:d3:20:e9:65:be:ee:0a:96:
e0:dd:5a:d7:54:f6:b0:99:f6:ec:d7:84:d4:22:c2:
c0:6c:70:99:50:c6:23:bd:7b:70:82:0d:d8:e8:5e:
cb:34:7b:a3:d0:d6:b6:4e:58:e7:16:cf:e4:d7:51:
8c:85:9d:e5:bc:1b:96:1e:f0:87:d5:4d:d7:74:b3:
eb:0a:44:36:b6:fd:cc:03:74:22:e0:34:fa:df:8f:
86:11:67:9b:d6:40:11:12:be:6e:43:c1:39:20:9b:
ab:be:d3:77:f1:38:68:7f:9d:86:d6:41:82:61:2b:
b9:43:b5:27:f3:37:47:cd:cc:3a:5b:de:4f:0d:8d:
cb:d3:7b:22:75:d6:9e:a8:fa:45:60:33:42:f8:cf:
13:96:11:7e:7c:68:67:38:ff:e3:77:75:a3:a3:d9:
98:ca:1f:7e:d2:8e:ea:39:9a:6e:7e:b1:e5:4b:23:
9f:48:f7:ab:63:b1:92:9c:e1:7b:65:07:a0:35:d9:
1c:b7:6e:1e:ad:bd:da:a1:cf:c9:64:ed:a5:15:6d:
22:d5:66:d5:ac:5e:de:b5:f9:8c:e9:d6:e0:8b:41:
98:49:df:dd:2d:66:99:06:57:f1:42:78:38:3e:ef:
f3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:60:27:65:B2:4B:3F:87:59:84:98:08:72:21:DD:71:35:18:6D:45
X509v3 Authority Key Identifier:
keyid:80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/vmAnZbJLP4dZhJgIciHdcTUYbUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.78.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:e7:31:fb:05:05:46:50:b7:6c:76:f8:43:3c:6b:57:90:67:
bc:ad:bb:87:de:0e:03:60:b2:c4:b7:5e:15:20:67:e9:b4:79:
8c:86:89:9f:b4:fe:14:c7:e3:84:76:de:e3:27:64:7f:19:36:
25:3e:7a:fb:62:a3:cd:bf:40:b9:2c:6c:8e:bb:28:42:bf:55:
c2:3c:6c:b3:92:70:56:4a:3b:27:a2:34:97:79:21:81:3f:a4:
e8:33:f1:f6:de:f1:1f:d9:03:20:47:28:3e:5c:4b:1b:7b:c6:
57:12:5f:54:40:2b:5e:1d:f7:5e:14:e0:90:b6:82:64:46:b4:
c5:f6:f5:ca:6e:55:16:64:db:c1:54:33:2b:c7:13:98:be:37:
23:21:b1:c3:d8:c6:5f:f7:f1:17:f2:58:a9:2c:9d:34:52:ee:
64:cb:34:bc:41:79:10:4c:9b:ab:9d:62:d5:07:92:5f:68:bf:
51:f5:c3:86:88:8a:ac:63:fc:a8:ed:93:97:88:40:ca:41:d2:
d1:08:42:53:90:10:d0:ba:81:f7:72:13:fa:fe:75:22:f1:bc:
42:61:0b:5d:d1:cc:08:d2:3e:da:3c:88:e2:80:22:3e:d4:d3:
2e:f9:49:81:b4:89:dd:00:7f:5d:29:4d:51:97:72:b2:3d:b8:
24:14:22:ce
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAU7RMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDgw
YzAyOGFkMGU2MGQ3ZWE4OTE0YjEzYzNhNTNkOGYwODkxNjAzMTUwHhcNMjIwNDEy
MDc1NjAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiZTYwMjc2NWIyNGIz
Zjg3NTk4NDk4MDg3MjIxZGQ3MTM1MTg2ZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAs3mIk2SAvLGjRleOsJoBOdHOktuF0yDpZb7uCpbg3VrXVPaw
mfbs14TUIsLAbHCZUMYjvXtwgg3Y6F7LNHuj0Na2TljnFs/k11GMhZ3lvBuWHvCH
1U3XdLPrCkQ2tv3MA3Qi4DT634+GEWeb1kAREr5uQ8E5IJurvtN38Thof52G1kGC
YSu5Q7Un8zdHzcw6W95PDY3L03siddaeqPpFYDNC+M8TlhF+fGhnOP/jd3Wjo9mY
yh9+0o7qOZpufrHlSyOfSPerY7GSnOF7ZQegNdkct24erb3aoc/JZO2lFW0i1WbV
rF7etfmM6dbgi0GYSd/dLWaZBlfxQng4Pu/zawIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFL5gJ2WySz+HWYSYCHIh3XE1GG1FMB8GA1UdIwQYMBaAFIDAKK0OYNfqiRSx
PDpT2PCJFgMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Z01Bb3JRNWcxLXFKRkxFOE9sUFk4SWtXQXhVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kMS9iNWZmNjYtODA3ZC00YmYxLWFiZTktYTNiNGM5MDAyNDFmLzEv
dm1BblpiSkxQNGRaaEpnSWNpSGRjVFVZYlVVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9i
NWZmNjYtODA3ZC00YmYxLWFiZTktYTNiNGM5MDAyNDFmLzEvZ01Bb3JRNWcxLXFK
RkxFOE9sUFk4SWtXQXhVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwzxOMA0GCSqGSIb3DQEBCwUAA4IB
AQA65zH7BQVGULdsdvhDPGtXkGe8rbuH3g4DYLLEt14VIGfptHmMhomftP4Ux+OE
dt7jJ2R/GTYlPnr7YqPNv0C5LGyOuyhCv1XCPGyzknBWSjsnojSXeSGBP6ToM/H2
3vEf2QMgRyg+XEsbe8ZXEl9UQCteHfdeFOCQtoJkRrTF9vXKblUWZNvBVDMrxxOY
vjcjIbHD2MZf9/EX8lipLJ00Uu5kyzS8QXkQTJurnWLVB5JfaL9R9cOGiIqsY/yo
7ZOXiEDKQdLRCEJTkBDQuoH3chP6/nUi8bxCYQtd0cwI0j7aPIjigCI+1NMu+UmB
tIndAH9dKU1Rl3KyPbgkFCLO
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:22 2023 by rpki-client on console-fra.rpki-client.org