Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/VrOZ4_6mRFONAfCej68VqC4ClTE.roa
File: VrOZ4_6mRFONAfCej68VqC4ClTE.roa (raw, json)
Hash identifier: CgvNEpJJxFBqOvwOPnzT/bzFx5Bl+BzFFJYMnfSLsQ8=
Subject key identifier: 56:B3:99:E3:FE:A6:44:53:8D:01:F0:9E:8F:AF:15:A8:2E:02:95:31
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 018FA91D
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/VrOZ4_6mRFONAfCej68VqC4ClTE.roa
Signing time: Sat 01 Jan 2022 05:52:56 +0000
ROA not before: Sat 01 Jan 2022 05:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 135330
IP address blocks: 194.180.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26192157 (0x18fa91d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 05:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56b399e3fea644538d01f09e8faf15a82e029531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1d:dd:25:bc:b8:23:be:f8:b9:46:58:f0:dd:
72:06:e5:0d:57:ef:bf:44:86:59:03:0f:6b:23:6d:
d8:60:61:94:a5:6c:7b:04:30:02:6c:79:87:57:e7:
f7:3d:e1:1b:54:ed:7d:60:1c:7c:b2:0b:04:a7:df:
72:20:b0:66:4b:9f:14:7b:9d:80:a5:79:94:aa:54:
5b:30:a4:c8:1d:69:1a:52:d6:79:cb:c6:39:ec:28:
4c:04:5b:ad:47:35:59:ba:1c:57:be:d7:77:4b:4c:
32:64:04:80:de:fc:ce:8c:4d:55:0b:97:19:62:da:
5b:65:bd:5d:f3:fb:1b:52:84:97:d3:7e:f3:f3:e8:
7f:2e:1a:3b:ab:70:62:3a:28:85:85:98:d0:d9:ba:
f7:20:7f:35:57:25:70:b1:a9:0b:1b:14:dd:ac:49:
0f:c7:b1:f2:6d:10:ae:42:a5:a4:93:89:ea:96:03:
35:09:b3:41:0e:f4:de:c1:78:ea:ed:1a:74:bb:0e:
fa:ab:22:b2:a9:6e:09:92:c1:51:b4:8b:90:a0:42:
60:6e:4b:eb:b6:0f:c2:fe:a0:b3:d4:9b:1d:10:cf:
7b:bb:bf:02:72:fd:b2:ee:4f:ab:c2:b2:84:de:11:
25:9d:a6:cc:2a:d7:70:90:eb:22:f1:b3:ea:b7:e8:
3e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B3:99:E3:FE:A6:44:53:8D:01:F0:9E:8F:AF:15:A8:2E:02:95:31
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/VrOZ4_6mRFONAfCej68VqC4ClTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.209.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ce:65:58:ff:a2:b7:e9:10:6a:7f:56:33:26:b6:04:b8:53:
46:38:7e:51:6a:22:bd:71:86:f5:ea:f2:25:71:4b:8f:07:38:
af:d7:4e:b3:49:17:88:1d:14:1e:80:77:89:58:1c:04:ee:c2:
cb:00:80:51:87:0a:70:f6:b0:92:cf:92:9e:3c:15:cb:00:b8:
19:4c:bb:29:2f:c6:52:7c:75:8e:de:60:5d:f6:fc:2a:2d:ce:
09:c6:5a:c7:41:a2:91:11:1a:1f:00:b6:4c:ac:75:26:41:b2:
79:92:5c:2f:c6:36:85:e0:c5:90:b1:b5:c4:03:53:53:a2:9b:
31:ee:7f:f0:43:a6:75:0b:1b:2b:d5:a1:2e:2a:13:e9:fe:b4:
9e:97:65:48:53:30:37:99:46:2f:57:bf:05:c3:ad:b5:54:33:
22:be:89:9e:a9:a1:b2:18:71:fc:f3:ca:24:e6:8a:cc:6e:a2:
e0:6b:68:c4:d8:ec:d5:4d:ea:88:70:a7:b6:9d:5c:0e:c6:5f:
77:f4:62:bf:a8:b8:4a:5e:d0:8d:9f:e7:b6:86:aa:b4:49:75:
55:10:e6:d1:1b:3d:c8:00:c3:13:44:59:48:b8:f8:24:8c:db:
47:ab:ab:bd:f3:6e:61:6f:04:50:50:ab:6e:3a:38:bc:4d:25:
a2:36:cf:91
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAY+pHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ODdiNTk0ZTVlNjcxM2E1YjgwYTU0ODFhNWNlNzFlNjUyZDg0NTczMB4XDTIyMDEw
MTA1NTI1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTZiMzk5ZTNmZWE2
NDQ1MzhkMDFmMDllOGZhZjE1YTgyZTAyOTUzMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOcd3SW8uCO++LlGWPDdcgblDVfvv0SGWQMPayNt2GBhlKVs
ewQwAmx5h1fn9z3hG1TtfWAcfLILBKffciCwZkufFHudgKV5lKpUWzCkyB1pGlLW
ecvGOewoTARbrUc1WbocV77Xd0tMMmQEgN78zoxNVQuXGWLaW2W9XfP7G1KEl9N+
8/Pofy4aO6twYjoohYWY0Nm69yB/NVclcLGpCxsU3axJD8ex8m0QrkKlpJOJ6pYD
NQmzQQ703sF46u0adLsO+qsisqluCZLBUbSLkKBCYG5L67YPwv6gs9SbHRDPe7u/
AnL9su5Pq8KyhN4RJZ2mzCrXcJDrIvGz6rfoPkUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRWs5nj/qZEU40B8J6PrxWoLgKVMTAfBgNVHSMEGDAWgBTIe1lOXmcTpbgK
VIGlznHmUthFczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lIdFpUbDVuRTZXNENsU0JwYzV4NWxMWVJYTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjIvODI0Zjc4LWRlZTItNDdiYy1hZjJmLTM4Y2I2ZTQxNmYzYS8x
L1ZyT1o0XzZtUkZPTkFmQ2VqNjhWcUM0Q2xURS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIv
ODI0Zjc4LWRlZTItNDdiYy1hZjJmLTM4Y2I2ZTQxNmYzYS8xL3lIdFpUbDVuRTZX
NENsU0JwYzV4NWxMWVJYTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMK00TANBgkqhkiG9w0BAQsFAAOC
AQEAZM5lWP+it+kQan9WMya2BLhTRjh+UWoivXGG9eryJXFLjwc4r9dOs0kXiB0U
HoB3iVgcBO7CywCAUYcKcPawks+SnjwVywC4GUy7KS/GUnx1jt5gXfb8Ki3OCcZa
x0GikREaHwC2TKx1JkGyeZJcL8Y2heDFkLG1xANTU6KbMe5/8EOmdQsbK9WhLioT
6f60npdlSFMwN5lGL1e/BcOttVQzIr6Jnqmhshhx/PPKJOaKzG6i4GtoxNjs1U3q
iHCntp1cDsZfd/Riv6i4Sl7QjZ/ntoaqtEl1VRDm0Rs9yADDE0RZSLj4JIzbR6ur
vfNuYW8EUFCrbjo4vE0lojbPkQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org