Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/474Qog1B2aQqiRe50C4Eqezpfrk.roa
File: 474Qog1B2aQqiRe50C4Eqezpfrk.roa (raw, json)
Hash identifier: mc+kYif7HMZDl46UBhbE9skaV6txGcdHheyLh5vguxU=
Subject key identifier: E3:BE:10:A2:0D:41:D9:A4:2A:89:17:B9:D0:2E:04:A9:EC:E9:7E:B9
Certificate issuer: /CN=925069a5d764da255954db2ee9d1243de16b9101
Certificate serial: 028EFA2A
Authority key identifier: 92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/474Qog1B2aQqiRe50C4Eqezpfrk.roa
Signing time: Sat 01 Jan 2022 07:59:46 +0000
ROA not before: Sat 01 Jan 2022 07:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 194.5.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42924586 (0x28efa2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=925069a5d764da255954db2ee9d1243de16b9101
Validity
Not Before: Jan 1 07:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3be10a20d41d9a42a8917b9d02e04a9ece97eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:23:22:89:50:8a:1b:dd:e6:b9:28:76:4a:2e:
f2:91:77:21:ca:11:7d:b7:84:fd:69:d6:7d:26:85:
12:56:f4:6d:69:9c:1c:f7:ac:e8:83:55:38:60:b7:
ff:b9:c1:47:e4:56:76:61:64:7a:73:b4:b7:da:ea:
88:2a:2c:bf:38:cd:57:ec:f0:bd:48:b0:63:ca:2c:
f0:b4:e0:a3:e3:ec:8e:9f:f6:87:3d:35:27:3e:d5:
f0:62:53:82:f8:7f:f0:d0:40:03:48:a0:d1:92:ba:
d3:a7:cd:6e:82:cb:92:f5:bc:c3:32:ee:28:02:e9:
9d:7c:b8:86:0f:01:e6:58:1c:46:fd:03:e1:38:37:
a3:86:70:eb:0b:fb:b9:9e:10:7e:48:51:94:24:75:
79:9f:fc:91:6d:dc:3d:74:2b:43:4f:3c:c8:7d:36:
d0:3c:e1:77:a8:74:55:8b:d2:91:ca:50:c4:8f:08:
fe:bf:35:90:5f:9a:1a:ce:0e:c3:5b:3d:50:dd:26:
fb:a5:18:06:1f:e8:ce:6f:83:90:1c:5d:7d:47:b5:
da:8a:3d:4f:de:37:4b:95:80:c8:b4:5d:89:37:6f:
50:6f:5b:6a:b5:4e:ad:87:bc:29:86:d2:55:bb:d6:
57:2a:0a:cc:01:05:46:3e:58:57:1e:c5:d8:62:e2:
03:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BE:10:A2:0D:41:D9:A4:2A:89:17:B9:D0:2E:04:A9:EC:E9:7E:B9
X509v3 Authority Key Identifier:
keyid:92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/474Qog1B2aQqiRe50C4Eqezpfrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/klBppddk2iVZVNsu6dEkPeFrkQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.248.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:7e:77:1d:19:a9:a2:06:c1:1d:ea:1b:13:32:07:11:a9:e5:
82:e6:01:d3:53:0a:3d:04:1a:04:db:b8:07:23:6f:6c:d2:b3:
05:c9:28:be:1e:36:67:b2:d3:9f:ff:d1:68:3e:4e:77:b3:d9:
92:e7:ac:f7:c5:7f:cf:49:2b:d5:8b:59:98:e0:43:e3:d1:44:
fc:c9:f3:10:4e:ff:79:75:fc:43:9c:d7:f5:fc:34:1d:06:7a:
be:1b:c0:16:f8:e2:a2:ce:6f:eb:fc:1d:a3:56:2f:b5:ed:e0:
4c:41:26:9d:d2:a4:ba:e6:98:58:dc:e6:a1:81:31:2f:67:f5:
87:c3:7a:8d:d1:2b:91:59:7c:5e:fa:9a:c6:bf:81:ac:39:18:
c6:3e:fe:bf:cb:c1:09:86:8e:8a:24:34:a9:0e:08:5a:bb:40:
ca:b5:e9:f1:a0:96:ec:8a:0b:09:8a:07:5e:c5:37:cc:21:93:
be:52:c0:c3:95:c0:cb:95:e6:0e:ec:f3:b5:3d:31:0f:b2:2c:
ea:c2:94:ee:74:90:aa:f0:66:e0:6c:a6:e2:f6:98:21:4d:0a:
53:ee:27:14:d4:07:9a:4e:38:f4:7a:47:48:b8:b1:c8:d6:df:
d6:5a:31:54:25:f9:6d:d2:18:0f:f0:2a:c8:c9:b3:38:10:d0:
4e:cc:58:9d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAo76KjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MjUwNjlhNWQ3NjRkYTI1NTk1NGRiMmVlOWQxMjQzZGUxNmI5MTAxMB4XDTIyMDEw
MTA3NTk0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTNiZTEwYTIwZDQx
ZDlhNDJhODkxN2I5ZDAyZTA0YTllY2U5N2ViOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKsjIolQihvd5rkodkou8pF3IcoRfbeE/WnWfSaFElb0bWmc
HPes6INVOGC3/7nBR+RWdmFkenO0t9rqiCosvzjNV+zwvUiwY8os8LTgo+Psjp/2
hz01Jz7V8GJTgvh/8NBAA0ig0ZK606fNboLLkvW8wzLuKALpnXy4hg8B5lgcRv0D
4Tg3o4Zw6wv7uZ4QfkhRlCR1eZ/8kW3cPXQrQ088yH020Dzhd6h0VYvSkcpQxI8I
/r81kF+aGs4Ow1s9UN0m+6UYBh/ozm+DkBxdfUe12oo9T943S5WAyLRdiTdvUG9b
arVOrYe8KYbSVbvWVyoKzAEFRj5YVx7F2GLiA2kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTjvhCiDUHZpCqJF7nQLgSp7Ol+uTAfBgNVHSMEGDAWgBSSUGml12TaJVlU
2y7p0SQ94WuRATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tsQnBwZGRrMmlWWlZOc3U2ZEVrUGVGcmtRRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGUvNjc4OGY1LTQ4ODktNGJlNy1iYjE5LWE5YjhkZTYxMWE5Ni8x
LzQ3NFFvZzFCMmFRcWlSZTUwQzRFcWV6cGZyay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGUv
Njc4OGY1LTQ4ODktNGJlNy1iYjE5LWE5YjhkZTYxMWE5Ni8xL2tsQnBwZGRrMmlW
WlZOc3U2ZEVrUGVGcmtRRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIF+DANBgkqhkiG9w0BAQsFAAOC
AQEAm353HRmpogbBHeobEzIHEanlguYB01MKPQQaBNu4ByNvbNKzBckovh42Z7LT
n//RaD5Od7PZkues98V/z0kr1YtZmOBD49FE/MnzEE7/eXX8Q5zX9fw0HQZ6vhvA
Fvjios5v6/wdo1Yvte3gTEEmndKkuuaYWNzmoYExL2f1h8N6jdErkVl8Xvqaxr+B
rDkYxj7+v8vBCYaOiiQ0qQ4IWrtAyrXp8aCW7IoLCYoHXsU3zCGTvlLAw5XAy5Xm
DuzztT0xD7Is6sKU7nSQqvBm4Gym4vaYIU0KU+4nFNQHmk449HpHSLixyNbf1lox
VCX5bdIYD/AqyMmzOBDQTsxYnQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:34 2024 by rpki-client on console-fra.rpki-client.org