Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/Lr3LGZ4jBi3l4a6GUV6nmMLj4Pg.roa
File: Lr3LGZ4jBi3l4a6GUV6nmMLj4Pg.roa (raw, json)
Hash identifier: 7cbkMf+XpSDItmc5OglnKWIPYqWM0Ybgf7n1UeKw4PA=
Subject key identifier: 2E:BD:CB:19:9E:23:06:2D:E5:E1:AE:86:51:5E:A7:98:C2:E3:E0:F8
Certificate issuer: /CN=5d656b2013e851516b942fa90706c72090dcddef
Certificate serial: 0AA51872
Authority key identifier: 5D:65:6B:20:13:E8:51:51:6B:94:2F:A9:07:06:C7:20:90:DC:DD:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWVrIBPoUVFrlC-pBwbHIJDc3e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/Lr3LGZ4jBi3l4a6GUV6nmMLj4Pg.roa
Signing time: Sat 01 Jan 2022 10:01:59 +0000
ROA not before: Sat 01 Jan 2022 10:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206347
IP address blocks: 194.49.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178591858 (0xaa51872)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d656b2013e851516b942fa90706c72090dcddef
Validity
Not Before: Jan 1 10:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ebdcb199e23062de5e1ae86515ea798c2e3e0f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ec:58:6e:30:c1:ca:c6:be:b9:92:63:16:ad:
22:45:de:bb:20:01:a5:19:6d:28:f4:91:41:96:47:
9a:68:48:30:9d:6e:87:10:73:bf:f4:a2:26:a0:05:
50:a6:5b:f5:0e:ac:a4:1a:82:1d:76:03:44:f6:e0:
38:c8:e3:15:a5:34:02:64:dc:5d:9a:8e:f9:05:d4:
d7:a7:a2:c0:b2:28:3a:e3:1e:a4:26:f9:19:26:48:
6f:97:9b:d0:de:0b:47:db:d6:05:01:de:44:6a:7c:
42:5e:b7:05:29:b1:d0:4d:d5:6b:be:dd:69:5b:6c:
fb:c0:be:a2:ad:ba:49:0a:bd:15:35:bd:80:8e:b9:
07:91:d0:32:ae:fc:ef:b7:89:cb:5d:1d:2c:d3:f4:
5a:53:46:1f:81:8e:1e:5c:3f:fc:22:6e:a2:5f:7e:
98:62:04:3a:42:be:f9:92:97:ff:10:e7:19:af:ea:
06:0b:ef:63:60:dd:8a:f6:49:59:3d:ea:e4:91:67:
cf:c6:ac:92:91:98:6d:9c:89:4b:54:0c:90:c3:6a:
8b:fe:7c:13:4e:26:b8:99:f0:2e:6c:93:41:3d:3a:
bf:c7:71:7b:a3:5b:e8:78:54:41:42:e6:d6:3f:a6:
5a:14:58:f7:fc:c7:60:57:4b:d3:3c:ca:95:e7:7b:
e2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:BD:CB:19:9E:23:06:2D:E5:E1:AE:86:51:5E:A7:98:C2:E3:E0:F8
X509v3 Authority Key Identifier:
keyid:5D:65:6B:20:13:E8:51:51:6B:94:2F:A9:07:06:C7:20:90:DC:DD:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWVrIBPoUVFrlC-pBwbHIJDc3e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/Lr3LGZ4jBi3l4a6GUV6nmMLj4Pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/XWVrIBPoUVFrlC-pBwbHIJDc3e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.12.0/22
Signature Algorithm: sha256WithRSAEncryption
99:87:aa:8b:3c:93:84:42:e9:8d:23:7c:d5:25:31:32:49:74:
41:9f:53:e6:39:b7:8f:6b:89:dc:29:72:9f:04:90:ac:f5:c9:
75:2b:d8:78:dc:55:0e:c9:06:ee:24:3d:50:44:3d:5b:11:09:
03:39:0d:24:79:ef:3c:31:3f:d8:bd:7b:a0:c6:32:03:5d:9a:
bd:f9:56:b7:68:6b:e0:06:cd:5d:3a:c3:97:71:b4:d1:16:56:
9d:42:7d:40:5f:c1:06:03:73:7a:ed:f4:01:4f:36:48:0e:7b:
61:1d:66:7c:59:de:ed:64:fc:0b:d6:bf:9e:03:bc:db:09:38:
b0:73:da:3e:5f:79:76:22:92:fc:a0:68:0b:6d:3a:6e:6f:3e:
90:f1:06:14:df:d6:c0:39:bb:bb:63:ea:e4:28:ab:e5:aa:12:
83:15:dc:3e:6b:2e:23:5b:cd:6d:12:41:64:f1:41:1a:25:fb:
b9:56:50:e0:1d:67:3c:d7:73:09:18:ba:97:ab:41:66:47:fc:
65:c6:1e:67:72:1b:59:cd:ca:1a:86:be:43:7b:a1:79:d1:08:
b5:48:8e:a2:2c:35:5a:66:31:ab:dd:f3:a0:d7:d0:30:0b:48:
18:26:f0:3b:74:3f:49:83:df:a9:8c:78:8d:89:28:bd:6d:dc:
d4:d6:00:c2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECqUYcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZDY1NmIyMDEzZTg1MTUxNmI5NDJmYTkwNzA2YzcyMDkwZGNkZGVmMB4XDTIyMDEw
MTEwMDE1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmViZGNiMTk5ZTIz
MDYyZGU1ZTFhZTg2NTE1ZWE3OThjMmUzZTBmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKLsWG4wwcrGvrmSYxatIkXeuyABpRltKPSRQZZHmmhIMJ1u
hxBzv/SiJqAFUKZb9Q6spBqCHXYDRPbgOMjjFaU0AmTcXZqO+QXU16eiwLIoOuMe
pCb5GSZIb5eb0N4LR9vWBQHeRGp8Ql63BSmx0E3Va77daVts+8C+oq26SQq9FTW9
gI65B5HQMq7877eJy10dLNP0WlNGH4GOHlw//CJuol9+mGIEOkK++ZKX/xDnGa/q
BgvvY2DdivZJWT3q5JFnz8askpGYbZyJS1QMkMNqi/58E04muJnwLmyTQT06v8dx
e6Nb6HhUQULm1j+mWhRY9/zHYFdL0zzKled74q8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQuvcsZniMGLeXhroZRXqeYwuPg+DAfBgNVHSMEGDAWgBRdZWsgE+hRUWuU
L6kHBscgkNzd7zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hXVnJJQlBvVVZGcmxDLXBCd2JISUpEYzNlOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDQvMWRmNzY0LTJiODMtNDM0My05MTAyLTQ3YTlmOTZjYTU4Ni8x
L0xyM0xHWjRqQmkzbDRhNkdVVjZubU1MajRQZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQv
MWRmNzY0LTJiODMtNDM0My05MTAyLTQ3YTlmOTZjYTU4Ni8xL1hXVnJJQlBvVVZG
cmxDLXBCd2JISUpEYzNlOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsIxDDANBgkqhkiG9w0BAQsFAAOC
AQEAmYeqizyThELpjSN81SUxMkl0QZ9T5jm3j2uJ3ClynwSQrPXJdSvYeNxVDskG
7iQ9UEQ9WxEJAzkNJHnvPDE/2L17oMYyA12avflWt2hr4AbNXTrDl3G00RZWnUJ9
QF/BBgNzeu30AU82SA57YR1mfFne7WT8C9a/ngO82wk4sHPaPl95diKS/KBoC206
bm8+kPEGFN/WwDm7u2Pq5Cir5aoSgxXcPmsuI1vNbRJBZPFBGiX7uVZQ4B1nPNdz
CRi6l6tBZkf8ZcYeZ3IbWc3KGoa+Q3uhedEItUiOoiw1WmYxq93zoNfQMAtIGCbw
O3Q/SYPfqYx4jYkovW3c1NYAwg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:17 2024 by rpki-client on console-fra.rpki-client.org