Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/payOIUFEFFYWXGWthJoWPp50bK8.roa
File: payOIUFEFFYWXGWthJoWPp50bK8.roa (raw, json)
Hash identifier: f2dGCp83KXnSAaTFd/ZS+d79ZJSkLhMnCuAN+HPxaZw=
Subject key identifier: A5:AC:8E:21:41:44:14:56:16:5C:65:AD:84:9A:16:3E:9E:74:6C:AF
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 139EE944
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/payOIUFEFFYWXGWthJoWPp50bK8.roa
Signing time: Sat 30 Apr 2022 08:40:09 +0000
ROA not before: Sat 30 Apr 2022 08:40:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48359
IP address blocks: 109.232.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329181508 (0x139ee944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Apr 30 08:40:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5ac8e2141441456165c65ad849a163e9e746caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c3:10:2a:29:04:95:b2:47:c8:df:21:05:94:
aa:05:85:34:ed:4d:5f:10:65:b1:07:45:fb:ac:82:
6c:c5:0a:b1:a6:6c:ad:a4:19:91:b9:d1:d4:d1:72:
f1:cf:e6:22:de:09:2f:80:26:dc:c7:60:90:fc:c2:
49:f0:80:a4:a1:3e:77:85:fb:2a:7e:22:28:e0:62:
b3:92:09:67:b9:88:dd:d2:b7:30:51:97:36:dc:9e:
88:57:ff:56:4b:4b:58:d3:27:16:61:70:26:de:9f:
62:bf:39:84:88:a8:73:f0:78:a2:ff:9b:7f:c4:76:
2a:a1:b9:7c:ed:fd:3a:28:84:d1:00:9f:83:e8:d4:
44:2b:55:e1:c1:07:11:8b:f6:6c:e1:38:0c:bc:07:
78:c8:1a:9c:95:f6:8f:3b:c4:35:97:33:e9:f6:6e:
09:b3:1d:d3:cd:dd:29:3c:36:ff:c0:8c:f6:3c:c0:
49:ef:95:96:56:15:a1:7b:aa:f4:c1:ff:42:7e:76:
06:da:9a:85:d4:d2:37:b7:ad:4b:33:99:b5:dd:9a:
b3:c6:31:49:c2:d9:3b:aa:8a:fb:3f:a1:e2:af:cd:
31:0e:5e:f8:0d:be:1a:54:1e:81:3d:ef:4c:82:72:
45:51:f1:48:6c:29:ab:81:ea:22:89:76:65:b0:de:
e0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AC:8E:21:41:44:14:56:16:5C:65:AD:84:9A:16:3E:9E:74:6C:AF
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/payOIUFEFFYWXGWthJoWPp50bK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.232.5.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:f5:7e:85:fc:81:e6:67:c7:80:21:04:8e:fd:93:a8:bf:d8:
bd:66:f5:7b:33:7d:72:aa:63:bc:8b:cb:95:58:b0:c9:18:02:
85:5d:45:96:c3:d9:31:1b:61:4e:db:1e:58:d5:79:e8:4f:d0:
fc:94:42:97:ce:99:79:e1:e2:c4:1f:f2:3f:a2:9c:46:20:d0:
47:fa:35:fd:f9:b9:72:3d:0b:14:8f:91:7b:cf:cd:7a:18:ba:
64:72:c8:9d:f9:70:5c:35:78:5c:3d:7f:0a:3a:93:e3:1a:05:
88:42:4c:10:2a:89:93:1a:97:a3:bd:2f:9c:fd:0a:fe:6d:c6:
ac:4d:7b:b6:80:ef:08:08:11:d8:4f:2d:56:ba:de:1d:82:81:
83:c9:d1:e2:f9:3a:03:71:f7:7d:86:85:ee:35:2f:3a:38:dd:
f1:fb:2c:31:f7:f6:7b:7e:26:7d:13:fe:4b:3d:76:c2:e3:3f:
9b:cb:31:65:97:a8:80:8a:37:40:48:58:90:c3:8b:75:ea:78:
5a:2e:ee:9f:1d:47:dc:29:af:7d:ec:f3:64:29:dd:71:62:cb:
5d:05:3c:eb:5f:f9:c4:de:76:d8:ec:2b:9b:5e:d1:27:93:fc:
ea:9c:a7:6c:8d:21:60:8b:82:3c:4e:94:8c:0d:33:ab:ab:db:
40:38:25:ae
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEE57pRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YTFlNjkzNjhhYmQzNDUzOGZlNzdkZGFhYmNkYzgzNWFmNTk1ZWJhMB4XDTIyMDQz
MDA4NDAwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTVhYzhlMjE0MTQ0
MTQ1NjE2NWM2NWFkODQ5YTE2M2U5ZTc0NmNhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMPDECopBJWyR8jfIQWUqgWFNO1NXxBlsQdF+6yCbMUKsaZs
raQZkbnR1NFy8c/mIt4JL4Am3MdgkPzCSfCApKE+d4X7Kn4iKOBis5IJZ7mI3dK3
MFGXNtyeiFf/VktLWNMnFmFwJt6fYr85hIioc/B4ov+bf8R2KqG5fO39OiiE0QCf
g+jURCtV4cEHEYv2bOE4DLwHeMganJX2jzvENZcz6fZuCbMd083dKTw2/8CM9jzA
Se+VllYVoXuq9MH/Qn52BtqahdTSN7etSzOZtd2as8YxScLZO6qK+z+h4q/NMQ5e
+A2+GlQegT3vTIJyRVHxSGwpq4HqIol2ZbDe4LkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSlrI4hQUQUVhZcZa2EmhY+nnRsrzAfBgNVHSMEGDAWgBSaHmk2ir00U4/n
fdqrzcg1r1leujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21oNXBOb3E5TkZPUDUzM2FxODNJTmE5Wlhyby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzg4NmY0LTVmY2MtNGQ0NC1iZDYyLTEwOTgyZTA0MGQ1My8x
L3BheU9JVUZFRkZZV1hHV3RoSm9XUHA1MGJLOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
Nzg4NmY0LTVmY2MtNGQ0NC1iZDYyLTEwOTgyZTA0MGQ1My8xL21oNXBOb3E5TkZP
UDUzM2FxODNJTmE5Wlhyby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG3oBTANBgkqhkiG9w0BAQsFAAOC
AQEAbfV+hfyB5mfHgCEEjv2TqL/YvWb1ezN9cqpjvIvLlViwyRgChV1FlsPZMRth
TtseWNV56E/Q/JRCl86ZeeHixB/yP6KcRiDQR/o1/fm5cj0LFI+Re8/Nehi6ZHLI
nflwXDV4XD1/CjqT4xoFiEJMECqJkxqXo70vnP0K/m3GrE17toDvCAgR2E8tVrre
HYKBg8nR4vk6A3H3fYaF7jUvOjjd8fssMff2e34mfRP+Sz12wuM/m8sxZZeogIo3
QEhYkMOLdep4Wi7unx1H3CmvfezzZCndcWLLXQU861/5xN522Owrm17RJ5P86pyn
bI0hYIuCPE6UjA0zq6vbQDglrg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:34 2024 by rpki-client on console-ams.rpki-client.org