Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/9GDhWyL58DOXePYxwZBa5sG0pCU.roa
File: 9GDhWyL58DOXePYxwZBa5sG0pCU.roa (raw, json)
Hash identifier: FdqPWqX/u5cKSn3l1WLPBzmmOBAbsIZfscqWABElrXY=
Subject key identifier: F4:60:E1:5B:22:F9:F0:33:97:78:F6:31:C1:90:5A:E6:C1:B4:A4:25
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 069A348B
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/9GDhWyL58DOXePYxwZBa5sG0pCU.roa
Signing time: Sat 01 Jan 2022 11:03:19 +0000
ROA not before: Sat 01 Jan 2022 11:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213395
IP address blocks: 194.180.154.0/24 maxlen: 24
2a10:2e41::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110769291 (0x69a348b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Jan 1 11:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f460e15b22f9f0339778f631c1905ae6c1b4a425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:06:49:b0:c6:96:2f:21:1e:84:03:42:24:b5:
fb:ea:f1:a4:50:74:32:c3:82:71:95:8e:76:5d:f2:
7c:ea:f8:09:2b:86:42:50:58:13:2e:05:e3:82:93:
99:83:1f:90:83:d1:cb:33:cb:56:23:d4:2d:5f:07:
97:d1:0c:cf:b3:a5:d9:1d:30:d6:fd:3a:00:ae:b4:
28:41:85:2b:79:f1:a0:ff:79:de:d0:7b:a6:6e:93:
ec:33:5d:cb:aa:cd:63:e8:09:e8:e6:78:74:fc:10:
09:a6:30:77:ee:dd:f6:b1:a6:93:ee:33:16:75:b8:
ad:d7:58:25:50:a4:ec:04:4f:49:15:f3:a6:cd:8c:
28:4d:1c:1d:cd:38:f2:19:8e:88:9e:51:12:8c:bb:
a8:0d:29:e1:fb:9d:f7:cc:04:5e:46:d5:fa:ed:22:
3a:fb:33:87:d6:46:d6:7b:df:07:48:9a:98:f5:df:
97:70:00:b6:f5:25:f0:7c:59:26:c7:04:7d:9a:24:
ca:78:b5:a7:dd:00:fb:6d:8a:f5:e3:3d:7d:38:bd:
98:f3:05:c8:dd:05:59:c5:bb:fb:f9:c6:e5:56:f0:
b0:e1:0b:e5:41:83:80:66:67:f2:e3:80:1e:77:de:
67:96:85:98:91:40:c9:1c:13:40:2a:ed:e9:b0:0e:
f6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:60:E1:5B:22:F9:F0:33:97:78:F6:31:C1:90:5A:E6:C1:B4:A4:25
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/9GDhWyL58DOXePYxwZBa5sG0pCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.154.0/24
IPv6:
2a10:2e41::/32
Signature Algorithm: sha256WithRSAEncryption
0f:52:c3:ef:73:b0:85:b3:6c:10:09:0d:9c:15:66:89:83:fe:
21:87:ab:6d:d7:43:11:ae:b9:02:64:07:d8:54:0d:f7:e0:83:
ff:d9:db:57:49:85:70:d8:42:60:b3:b8:d1:f8:6e:47:58:61:
54:51:1c:51:ea:93:80:16:41:f1:41:29:61:09:cd:de:b9:6a:
83:7e:81:eb:33:50:82:3f:02:2b:d3:53:7c:6e:7b:57:a8:99:
b1:9c:a9:13:2c:d6:b3:b3:e0:36:a7:b0:b0:58:76:1d:9b:02:
4f:0e:3e:d1:eb:59:8e:c2:53:88:2d:ab:4e:b4:f3:0b:38:74:
37:49:e6:a8:7d:c5:d2:ea:83:96:1b:19:95:83:64:a9:6d:7f:
1d:9e:fe:80:1b:d8:11:ed:5b:96:44:6d:ff:5a:8d:0a:ca:03:
03:01:c7:e7:98:e9:e3:f6:bc:70:5d:1d:f3:89:e0:60:cd:f8:
7c:09:0f:06:1c:db:d8:f2:94:df:26:1e:20:cd:4c:7f:53:7a:
51:6d:7c:de:7c:c3:32:16:01:55:ef:29:a0:6e:c9:1e:81:db:
85:28:74:4c:46:88:c1:4e:b9:bd:64:0c:c1:fa:25:37:49:b4:
63:1b:3b:aa:89:b3:3f:50:65:c9:38:4e:4a:46:db:8a:db:7e:
bf:0d:b9:b4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBpo0izANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTU4MDhmM2Y5MjFiYzhjM2VlYTg3Yzc1ODRjNTg0YzEwMDBiMDUxMB4XDTIyMDEw
MTExMDMxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQ2MGUxNWIyMmY5
ZjAzMzk3NzhmNjMxYzE5MDVhZTZjMWI0YTQyNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPAGSbDGli8hHoQDQiS1++rxpFB0MsOCcZWOdl3yfOr4CSuG
QlBYEy4F44KTmYMfkIPRyzPLViPULV8Hl9EMz7Ol2R0w1v06AK60KEGFK3nxoP95
3tB7pm6T7DNdy6rNY+gJ6OZ4dPwQCaYwd+7d9rGmk+4zFnW4rddYJVCk7ARPSRXz
ps2MKE0cHc048hmOiJ5REoy7qA0p4fud98wEXkbV+u0iOvszh9ZG1nvfB0iamPXf
l3AAtvUl8HxZJscEfZokyni1p90A+22K9eM9fTi9mPMFyN0FWcW7+/nG5VbwsOEL
5UGDgGZn8uOAHnfeZ5aFmJFAyRwTQCrt6bAO9lUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBT0YOFbIvnwM5d49jHBkFrmwbSkJTAfBgNVHSMEGDAWgBThWAjz+SG8jD7q
h8dYTFhMEACwUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRWZ0k4X2todkl3LTZvZkhXRXhZVEJBQXNGRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWQvOGU4ZTgyLTUyNzQtNGQyZi04Y2EwLWFiMTlmY2IwY2U2NC8x
LzlHRGhXeUw1OERPWGVQWXh3WkJhNXNHMHBDVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQv
OGU4ZTgyLTUyNzQtNGQyZi04Y2EwLWFiMTlmY2IwY2U2NC8xLzRWZ0k4X2todkl3
LTZvZkhXRXhZVEJBQXNGRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMK0mjANBAIAAjAHAwUAKhAuQTAN
BgkqhkiG9w0BAQsFAAOCAQEAD1LD73OwhbNsEAkNnBVmiYP+IYerbddDEa65AmQH
2FQN9+CD/9nbV0mFcNhCYLO40fhuR1hhVFEcUeqTgBZB8UEpYQnN3rlqg36B6zNQ
gj8CK9NTfG57V6iZsZypEyzWs7PgNqewsFh2HZsCTw4+0etZjsJTiC2rTrTzCzh0
N0nmqH3F0uqDlhsZlYNkqW1/HZ7+gBvYEe1blkRt/1qNCsoDAwHH55jp4/a8cF0d
84ngYM34fAkPBhzb2PKU3yYeIM1Mf1N6UW183nzDMhYBVe8poG7JHoHbhSh0TEaI
wU65vWQMwfolN0m0Yxs7qomzP1BlyThOSkbbitt+vw25tA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:05 2023 by rpki-client on console-fra.rpki-client.org