Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/34MHYlM_TRpLWsd64jqwQs3ig80.roa
File: 34MHYlM_TRpLWsd64jqwQs3ig80.roa (raw, json)
Hash identifier: RdgtkexHJMTvktwF2OZF25qeuO32dSPgos4htkn2zpE=
Subject key identifier: DF:83:07:62:53:3F:4D:1A:4B:5A:C7:7A:E2:3A:B0:42:CD:E2:83:CD
Certificate issuer: /CN=5949b31ebb6e4cbbd0cc770cc6f4d50f78f0eb7b
Certificate serial: 0918220F
Authority key identifier: 59:49:B3:1E:BB:6E:4C:BB:D0:CC:77:0C:C6:F4:D5:0F:78:F0:EB:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WUmzHrtuTLvQzHcMxvTVD3jw63s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/34MHYlM_TRpLWsd64jqwQs3ig80.roa
Signing time: Mon 07 Feb 2022 15:22:28 +0000
ROA not before: Mon 07 Feb 2022 15:22:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16236
IP address blocks: 194.104.191.0/24 maxlen: 24
2a00:ec20::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152576527 (0x918220f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5949b31ebb6e4cbbd0cc770cc6f4d50f78f0eb7b
Validity
Not Before: Feb 7 15:22:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df830762533f4d1a4b5ac77ae23ab042cde283cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:99:a2:30:9b:3e:69:87:9a:a8:1f:ab:cf:db:
48:a8:82:5c:64:14:5a:91:db:60:fc:00:91:9a:53:
20:42:49:94:46:f2:d8:4f:b3:6d:b8:c5:a6:43:1b:
1d:85:f9:1a:40:f8:f6:6b:80:8e:51:5d:b0:03:c2:
08:ea:5c:a2:42:da:d8:44:37:ab:3c:91:35:76:5d:
d7:21:17:39:f6:a9:64:13:4c:03:7a:fa:cb:85:65:
92:fa:fd:d4:df:fa:f0:18:ba:8e:e2:b1:99:2c:58:
07:05:6c:21:c3:50:d4:39:1d:99:c7:71:38:a3:2d:
eb:63:68:c5:0e:62:6d:73:45:08:e6:e7:97:75:d0:
f3:e5:a4:5b:2d:eb:5e:5f:60:54:09:fd:ef:75:1a:
f0:24:a5:53:63:68:58:36:de:8f:ed:bd:a8:d4:f8:
05:8a:5f:5f:41:90:cb:e9:fd:10:93:31:28:a2:70:
ce:69:33:0b:bd:ef:9c:5c:72:d2:de:cc:e5:2f:10:
e6:c9:17:ee:f3:6c:88:16:f6:79:b8:0a:d1:47:9a:
78:e5:2e:ab:a7:8b:45:ff:dc:24:df:7b:7e:30:90:
92:91:ac:39:86:71:6d:ba:fc:a5:7d:98:79:be:33:
b0:fa:25:32:67:29:60:6d:6b:6c:9e:76:24:a4:f6:
22:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:83:07:62:53:3F:4D:1A:4B:5A:C7:7A:E2:3A:B0:42:CD:E2:83:CD
X509v3 Authority Key Identifier:
keyid:59:49:B3:1E:BB:6E:4C:BB:D0:CC:77:0C:C6:F4:D5:0F:78:F0:EB:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WUmzHrtuTLvQzHcMxvTVD3jw63s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/34MHYlM_TRpLWsd64jqwQs3ig80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/WUmzHrtuTLvQzHcMxvTVD3jw63s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.191.0/24
IPv6:
2a00:ec20::/32
Signature Algorithm: sha256WithRSAEncryption
6d:dd:8a:24:1a:85:f0:b4:a5:b8:06:bc:ea:7a:b6:a7:98:c4:
d0:f6:d7:9e:0f:fc:43:1b:24:90:00:31:7a:c0:c6:80:8f:a1:
11:0d:de:2a:bf:e3:9a:69:be:d0:52:80:3e:73:70:11:12:c0:
ac:80:06:9c:44:48:4a:2a:f0:54:b3:1a:91:68:6c:96:04:03:
e5:6d:96:95:f7:7f:75:6d:fb:90:bf:6d:40:aa:6b:5d:5d:64:
e2:02:b2:1f:80:81:3c:1e:07:ca:37:d3:5e:29:54:06:80:af:
7b:d7:69:32:53:ec:09:40:5f:3c:0f:f5:1a:4b:9c:52:10:66:
47:7b:51:db:36:e8:4d:ab:1e:e8:78:bb:fd:a6:fe:3f:d7:a6:
42:13:95:bf:d4:82:b7:fa:10:42:73:e9:a2:aa:38:1a:cb:64:
0c:b9:21:1c:28:51:e2:d0:0b:18:a0:2c:3e:1d:f0:28:0e:14:
e4:1e:d4:97:49:d3:ce:a4:72:97:ee:81:68:b9:ee:49:dc:5b:
96:c1:1e:7a:39:87:43:08:dd:b3:d8:46:8e:44:10:6a:e9:40:
d5:60:13:ac:b9:f8:6e:dd:ea:6d:17:f2:2b:18:70:bd:8c:91:
42:20:ee:93:91:f4:f2:17:36:7b:48:57:03:75:db:24:a7:a3:
42:a7:39:73
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECRgiDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
OTQ5YjMxZWJiNmU0Y2JiZDBjYzc3MGNjNmY0ZDUwZjc4ZjBlYjdiMB4XDTIyMDIw
NzE1MjIyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGY4MzA3NjI1MzNm
NGQxYTRiNWFjNzdhZTIzYWIwNDJjZGUyODNjZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKaZojCbPmmHmqgfq8/bSKiCXGQUWpHbYPwAkZpTIEJJlEby
2E+zbbjFpkMbHYX5GkD49muAjlFdsAPCCOpcokLa2EQ3qzyRNXZd1yEXOfapZBNM
A3r6y4Vlkvr91N/68Bi6juKxmSxYBwVsIcNQ1DkdmcdxOKMt62NoxQ5ibXNFCObn
l3XQ8+WkWy3rXl9gVAn973Ua8CSlU2NoWDbej+29qNT4BYpfX0GQy+n9EJMxKKJw
zmkzC73vnFxy0t7M5S8Q5skX7vNsiBb2ebgK0UeaeOUuq6eLRf/cJN97fjCQkpGs
OYZxbbr8pX2Yeb4zsPolMmcpYG1rbJ52JKT2IncCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTfgwdiUz9NGktax3riOrBCzeKDzTAfBgNVHSMEGDAWgBRZSbMeu25Mu9DM
dwzG9NUPePDrezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dVbXpIcnR1VEx2UXpIY014dlRWRDNqdzYzcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDgvZGU1YWRkLWFjNjgtNGZiMS04NDE5LTMxODBhZTQyNzRmMy8x
LzM0TUhZbE1fVFJwTFdzZDY0anF3UXMzaWc4MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgv
ZGU1YWRkLWFjNjgtNGZiMS04NDE5LTMxODBhZTQyNzRmMy8xL1dVbXpIcnR1VEx2
UXpIY014dlRWRDNqdzYzcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMJovzANBAIAAjAHAwUAKgDsIDAN
BgkqhkiG9w0BAQsFAAOCAQEAbd2KJBqF8LSluAa86nq2p5jE0PbXng/8QxskkAAx
esDGgI+hEQ3eKr/jmmm+0FKAPnNwERLArIAGnERISirwVLMakWhslgQD5W2Wlfd/
dW37kL9tQKprXV1k4gKyH4CBPB4HyjfTXilUBoCve9dpMlPsCUBfPA/1GkucUhBm
R3tR2zboTase6Hi7/ab+P9emQhOVv9SCt/oQQnPpoqo4GstkDLkhHChR4tALGKAs
Ph3wKA4U5B7Ul0nTzqRyl+6BaLnuSdxblsEeejmHQwjds9hGjkQQaulA1WATrLn4
bt3qbRfyKxhwvYyRQiDuk5H08hc2e0hXA3XbJKejQqc5cw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:03 2024 by rpki-client on console-ams.rpki-client.org