Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/CUYiMMHOfaAXKGnZ6Lo5LDNhkJg.roa
File: CUYiMMHOfaAXKGnZ6Lo5LDNhkJg.roa (raw, json)
Hash identifier: xCb0XPntoY+HSYFSOcdwEEvGydEjFhKMC/mrCovMDZM=
Subject key identifier: 09:46:22:30:C1:CE:7D:A0:17:28:69:D9:E8:BA:39:2C:33:61:90:98
Certificate issuer: /CN=485375191d1c2e50982108fdd407bbcf73e9795c
Certificate serial: 0127E03F
Authority key identifier: 48:53:75:19:1D:1C:2E:50:98:21:08:FD:D4:07:BB:CF:73:E9:79:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFN1GR0cLlCYIQj91Ae7z3PpeVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/CUYiMMHOfaAXKGnZ6Lo5LDNhkJg.roa
Signing time: Sat 01 Jan 2022 14:05:37 +0000
ROA not before: Sat 01 Jan 2022 14:05:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17350
IP address blocks: 204.13.56.0/22 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19390527 (0x127e03f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=485375191d1c2e50982108fdd407bbcf73e9795c
Validity
Not Before: Jan 1 14:05:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09462230c1ce7da0172869d9e8ba392c33619098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e7:34:cb:9d:b0:f5:e8:e3:ca:41:dc:d7:52:
cb:5b:71:8a:6a:ce:12:47:43:63:31:00:c6:95:52:
8e:f1:61:7c:db:5c:22:8c:42:0a:07:da:01:e1:fb:
04:5b:22:38:82:6a:19:d9:ae:8c:fc:34:bf:2a:69:
73:20:f1:48:65:1c:64:98:62:fb:12:de:de:f1:6d:
b4:8a:90:45:3a:37:31:8c:32:7b:87:30:8b:47:00:
7d:25:03:80:11:6b:e9:75:8c:e2:58:88:dd:23:70:
75:07:7a:82:48:a2:2b:97:a8:80:84:83:d0:1d:1b:
78:cb:64:7f:05:6d:e6:63:a3:0f:7d:bc:1e:66:9c:
75:18:ff:00:f8:99:5b:0b:21:c5:41:d9:6c:b1:71:
45:40:0c:9b:21:88:7e:f5:a4:22:e7:2c:88:bd:bb:
cf:9c:63:35:1a:c8:ed:a4:d2:e3:32:6d:3e:9f:e1:
8a:94:84:39:84:3b:e9:38:cd:df:bc:c5:99:0a:41:
49:3f:25:9b:f1:29:a9:d5:c8:18:e3:bd:5b:49:1e:
d7:29:2c:70:58:d8:cc:6a:e9:f5:9d:18:f1:de:b5:
75:83:fb:9a:69:c7:4a:79:38:f7:87:ed:f3:32:d3:
3e:4c:71:04:91:04:ed:59:36:4f:b7:60:3a:b6:04:
19:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:46:22:30:C1:CE:7D:A0:17:28:69:D9:E8:BA:39:2C:33:61:90:98
X509v3 Authority Key Identifier:
keyid:48:53:75:19:1D:1C:2E:50:98:21:08:FD:D4:07:BB:CF:73:E9:79:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFN1GR0cLlCYIQj91Ae7z3PpeVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/CUYiMMHOfaAXKGnZ6Lo5LDNhkJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/SFN1GR0cLlCYIQj91Ae7z3PpeVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.13.56.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:38:71:28:ba:36:a2:fe:68:66:d0:06:1a:2a:b3:16:ef:ab:
02:da:57:dc:6e:7f:ad:20:c3:c7:ad:ac:c2:9e:ff:a8:96:20:
48:4e:eb:52:5b:ce:dc:a0:65:e3:d7:a1:dc:e0:1a:de:11:15:
6f:ad:ce:bf:6d:f5:0d:68:5c:48:43:c2:60:d7:cb:04:29:84:
8e:5c:b5:59:69:50:c1:24:1e:13:a6:e3:e0:fd:d9:fe:47:93:
89:65:ca:af:c2:c9:e9:6f:eb:d5:f0:0c:39:db:26:ff:7f:0f:
7b:e0:f0:81:b5:2b:5d:c9:40:db:b1:d8:38:9c:74:d6:c6:17:
fb:00:f3:e7:d2:73:c7:bc:c9:7a:51:5e:0e:1a:52:25:c0:df:
e7:90:04:21:34:fe:b4:b5:2e:9e:f0:cf:1d:3a:7e:b0:6c:de:
7f:d0:bc:92:fa:7c:5d:b0:ec:39:1b:02:b9:b3:3d:38:a2:b9:
6c:c7:73:6c:ad:48:a9:09:76:7c:09:34:82:1a:a1:47:c5:5d:
b4:80:a5:a7:8b:f6:5f:33:58:42:dd:4c:0b:63:f2:ab:aa:25:
4e:06:61:11:aa:c9:7c:a5:72:74:42:d4:dc:2c:81:77:b0:05:
89:bd:32:d9:0a:53:6e:d3:5e:78:cb:b4:86:4b:bd:97:8a:80:
b0:a1:2d:71
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEASfgPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ODUzNzUxOTFkMWMyZTUwOTgyMTA4ZmRkNDA3YmJjZjczZTk3OTVjMB4XDTIyMDEw
MTE0MDUzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDk0NjIyMzBjMWNl
N2RhMDE3Mjg2OWQ5ZThiYTM5MmMzMzYxOTA5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMLnNMudsPXo48pB3NdSy1tximrOEkdDYzEAxpVSjvFhfNtc
IoxCCgfaAeH7BFsiOIJqGdmujPw0vyppcyDxSGUcZJhi+xLe3vFttIqQRTo3MYwy
e4cwi0cAfSUDgBFr6XWM4liI3SNwdQd6gkiiK5eogISD0B0beMtkfwVt5mOjD328
HmacdRj/APiZWwshxUHZbLFxRUAMmyGIfvWkIucsiL27z5xjNRrI7aTS4zJtPp/h
ipSEOYQ76TjN37zFmQpBST8lm/EpqdXIGOO9W0ke1ykscFjYzGrp9Z0Y8d61dYP7
mmnHSnk494ft8zLTPkxxBJEE7Vk2T7dgOrYEGYUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQJRiIwwc59oBcoadnoujksM2GQmDAfBgNVHSMEGDAWgBRIU3UZHRwuUJgh
CP3UB7vPc+l5XDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NGTjFHUjBjTGxDWUlRajkxQWU3ejNQcGVWdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYjI2MDliLWFlMzktNDI5Zi1hNTA1LTZlYmZmNjRiY2ExYy8x
L0NVWWlNTUhPZmFBWEtHblo2TG81TEROaGtKZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
YjI2MDliLWFlMzktNDI5Zi1hNTA1LTZlYmZmNjRiY2ExYy8xL1NGTjFHUjBjTGxD
WUlRajkxQWU3ejNQcGVWdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAswNODANBgkqhkiG9w0BAQsFAAOC
AQEAtDhxKLo2ov5oZtAGGiqzFu+rAtpX3G5/rSDDx62swp7/qJYgSE7rUlvO3KBl
49eh3OAa3hEVb63Ov231DWhcSEPCYNfLBCmEjly1WWlQwSQeE6bj4P3Z/keTiWXK
r8LJ6W/r1fAMOdsm/38Pe+DwgbUrXclA27HYOJx01sYX+wDz59Jzx7zJelFeDhpS
JcDf55AEITT+tLUunvDPHTp+sGzef9C8kvp8XbDsORsCubM9OKK5bMdzbK1IqQl2
fAk0ghqhR8VdtIClp4v2XzNYQt1MC2Pyq6olTgZhEarJfKVydELU3CyBd7AFib0y
2QpTbtNeeMu0hku9l4qAsKEtcQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org