Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/LOFpiiaS1zSV551ImHUeAEmjpUk.roa
File: LOFpiiaS1zSV551ImHUeAEmjpUk.roa (raw, json)
Hash identifier: hfCLmliMC8reX0uYaCOpuCGpaH9nzgHTfdsET1q3pHI=
Subject key identifier: 2C:E1:69:8A:26:92:D7:34:95:E7:9D:48:98:75:1E:00:49:A3:A5:49
Certificate issuer: /CN=72048641d8f7337fcea23ae5332bf6e11a11e22a
Certificate serial: 05AF303C
Authority key identifier: 72:04:86:41:D8:F7:33:7F:CE:A2:3A:E5:33:2B:F6:E1:1A:11:E2:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgSGQdj3M3_OojrlMyv24RoR4io.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/LOFpiiaS1zSV551ImHUeAEmjpUk.roa
Signing time: Sat 01 Jan 2022 11:05:12 +0000
ROA not before: Sat 01 Jan 2022 11:05:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 193.104.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95367228 (0x5af303c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72048641d8f7337fcea23ae5332bf6e11a11e22a
Validity
Not Before: Jan 1 11:05:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ce1698a2692d73495e79d4898751e0049a3a549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:24:0f:1e:58:2e:bb:73:9b:41:29:c9:0f:2f:
78:cf:ad:80:56:59:33:59:70:da:48:40:89:c1:a2:
91:b8:dc:16:ba:7f:8b:24:75:bd:c3:40:9c:07:7d:
cb:11:65:ac:c7:7a:04:10:27:6a:a9:be:b3:8f:d5:
a8:cc:da:7c:cf:f5:8a:7d:cc:6b:ce:22:d6:d7:2b:
cb:e7:9a:d8:d6:b2:d0:b9:f1:25:69:0d:db:e5:9c:
2e:69:8e:33:f4:f9:f8:bd:94:0a:d2:13:c0:1d:bf:
4d:7a:c8:fa:bd:30:89:85:16:4d:bb:16:f4:02:9e:
12:d9:19:9e:9f:f6:9a:37:b4:67:02:63:0b:93:76:
00:b3:79:01:17:3b:55:14:f3:87:a7:fb:1a:c7:91:
4e:17:e8:6d:6d:3f:af:69:a0:61:82:4e:60:79:ab:
7b:60:c9:4c:3f:f6:14:d0:2a:02:da:2a:77:1b:45:
f2:c4:66:47:f2:62:8a:e1:77:b9:88:7f:57:55:ab:
ba:c3:bc:8d:94:5b:8c:82:d8:5a:5f:cc:60:4f:8c:
f4:64:78:5b:ed:ec:4d:2d:0d:e0:04:33:58:88:b9:
69:b4:4e:d3:43:61:16:9f:42:a4:e6:3a:96:46:05:
73:e0:51:6f:62:5a:39:05:a1:1b:39:df:57:9a:01:
bb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E1:69:8A:26:92:D7:34:95:E7:9D:48:98:75:1E:00:49:A3:A5:49
X509v3 Authority Key Identifier:
keyid:72:04:86:41:D8:F7:33:7F:CE:A2:3A:E5:33:2B:F6:E1:1A:11:E2:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgSGQdj3M3_OojrlMyv24RoR4io.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/LOFpiiaS1zSV551ImHUeAEmjpUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/cgSGQdj3M3_OojrlMyv24RoR4io.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
92:d1:b9:a7:8f:75:4f:a1:7f:c2:90:22:47:0a:76:62:e9:0b:
a8:e2:4e:2b:b5:d1:af:3f:03:df:32:e2:65:bf:d6:e7:10:17:
9c:ad:d2:a2:3d:c8:81:af:54:79:e4:b7:73:9c:91:26:8e:06:
b4:83:fb:b6:3d:8f:1a:c5:e5:6c:f9:7e:9f:cb:89:7a:d5:f4:
81:07:8a:07:ef:11:fd:8b:8e:c4:46:27:1e:1e:95:ca:ac:d1:
93:f4:3e:75:ed:15:32:73:41:35:1e:33:0b:d2:e4:4c:d6:4e:
d0:d0:1b:7e:ab:58:2a:f9:3a:17:b3:9f:9f:2d:34:75:d2:62:
d0:96:62:42:74:83:cd:05:73:f2:35:5f:8b:82:48:73:53:e7:
44:80:e7:fb:49:50:ba:1c:0c:d4:90:9e:d6:20:ef:c7:f4:2e:
7b:76:65:58:f3:e3:0b:8f:e9:cb:e8:35:03:43:cc:26:b1:c5:
74:93:93:0b:00:01:08:93:51:ba:40:ae:90:c5:59:e4:1d:be:
25:8d:d9:6a:72:d8:e3:f4:5f:69:29:5d:49:7b:f3:b1:6f:0d:
6b:9f:60:f5:e2:7d:de:df:36:d0:34:eb:5d:22:4a:dc:f4:cf:
6e:dc:89:9f:7c:49:5f:6f:3f:b9:cf:06:18:70:00:c0:83:12:
de:c0:0e:92
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBa8wPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MjA0ODY0MWQ4ZjczMzdmY2VhMjNhZTUzMzJiZjZlMTFhMTFlMjJhMB4XDTIyMDEw
MTExMDUxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmNlMTY5OGEyNjky
ZDczNDk1ZTc5ZDQ4OTg3NTFlMDA0OWEzYTU0OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4kDx5YLrtzm0EpyQ8veM+tgFZZM1lw2khAicGikbjcFrp/
iyR1vcNAnAd9yxFlrMd6BBAnaqm+s4/VqMzafM/1in3Ma84i1tcry+ea2Nay0Lnx
JWkN2+WcLmmOM/T5+L2UCtITwB2/TXrI+r0wiYUWTbsW9AKeEtkZnp/2mje0ZwJj
C5N2ALN5ARc7VRTzh6f7GseRThfobW0/r2mgYYJOYHmre2DJTD/2FNAqAtoqdxtF
8sRmR/JiiuF3uYh/V1WrusO8jZRbjILYWl/MYE+M9GR4W+3sTS0N4AQzWIi5abRO
00NhFp9CpOY6lkYFc+BRb2JaOQWhGznfV5oBu8UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQs4WmKJpLXNJXnnUiYdR4ASaOlSTAfBgNVHSMEGDAWgBRyBIZB2Pczf86i
OuUzK/bhGhHiKjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NnU0dRZGozTTNfT29qcmxNeXYyNFJvUjRpby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDQvZGYzNzA2LWYzNDctNDAyNS1hN2IzLTFjOGNkNTZjNjE3NC8x
L0xPRnBpaWFTMXpTVjU1MUltSFVlQUVtanBVay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQv
ZGYzNzA2LWYzNDctNDAyNS1hN2IzLTFjOGNkNTZjNjE3NC8xL2NnU0dRZGozTTNf
T29qcmxNeXYyNFJvUjRpby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFogTANBgkqhkiG9w0BAQsFAAOC
AQEAktG5p491T6F/wpAiRwp2YukLqOJOK7XRrz8D3zLiZb/W5xAXnK3Soj3Iga9U
eeS3c5yRJo4GtIP7tj2PGsXlbPl+n8uJetX0gQeKB+8R/YuOxEYnHh6VyqzRk/Q+
de0VMnNBNR4zC9LkTNZO0NAbfqtYKvk6F7Ofny00ddJi0JZiQnSDzQVz8jVfi4JI
c1PnRIDn+0lQuhwM1JCe1iDvx/Que3ZlWPPjC4/py+g1A0PMJrHFdJOTCwABCJNR
ukCukMVZ5B2+JY3ZanLY4/RfaSldSXvzsW8Na59g9eJ93t820DTrXSJK3PTPbtyJ
n3xJX28/uc8GGHAAwIMS3sAOkg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org