Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/ac7949-a1ca-47f4-b393-2bf34c5262e7/1/W99fiRk_y6CpyYy_P-2nb36FnYQ.roa
File: W99fiRk_y6CpyYy_P-2nb36FnYQ.roa (raw, json)
Hash identifier: w8V+fNqIHyuAVy10IY9jsffSehvB1PZoHNxXHw+dnEc=
Subject key identifier: 5B:DF:5F:89:19:3F:CB:A0:A9:C9:8C:BF:3F:ED:A7:6F:7E:85:9D:84
Certificate issuer: /CN=3cff1f2b1175f0605d025e51017369c1ca8b1a46
Certificate serial: 08E41750
Authority key identifier: 3C:FF:1F:2B:11:75:F0:60:5D:02:5E:51:01:73:69:C1:CA:8B:1A:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PP8fKxF18GBdAl5RAXNpwcqLGkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/ac7949-a1ca-47f4-b393-2bf34c5262e7/1/W99fiRk_y6CpyYy_P-2nb36FnYQ.roa
Signing time: Sat 01 Jan 2022 10:59:57 +0000
ROA not before: Sat 01 Jan 2022 10:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12803
IP address blocks: 195.200.250.0/24 maxlen: 24
195.200.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149165904 (0x8e41750)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cff1f2b1175f0605d025e51017369c1ca8b1a46
Validity
Not Before: Jan 1 10:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bdf5f89193fcba0a9c98cbf3feda76f7e859d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:23:55:74:31:76:5f:46:25:3a:aa:c0:4b:14:
f7:e5:95:fb:d8:01:d1:8d:49:ad:0a:fe:95:61:e1:
5b:cc:f8:89:9e:26:17:cb:73:ac:5e:09:71:95:43:
17:b6:af:16:b6:0c:96:6a:6c:4a:1b:cc:51:d5:92:
ab:46:0f:8e:ac:8f:9e:f1:0d:66:b7:7c:ea:90:f7:
82:75:8b:d5:2d:b7:c1:0f:db:63:de:fa:88:41:b5:
cc:6e:af:18:ab:2c:8e:eb:90:a2:12:18:84:74:83:
5d:8c:b1:24:b7:32:bc:d9:e2:69:64:23:d2:f9:db:
aa:23:6b:a9:7f:c5:1a:24:34:16:de:32:39:3f:ed:
9d:64:37:c3:8a:0d:2e:f2:ad:31:67:e8:04:6d:ee:
c7:d7:dc:f8:98:3d:8a:2f:76:bb:dd:75:45:5d:87:
74:82:6d:4d:70:95:34:20:11:e6:3b:69:bf:ae:e1:
03:3a:54:9a:52:72:4a:80:31:09:94:fa:ec:31:c9:
c0:ff:df:48:db:c0:e8:70:43:6f:e6:a1:58:db:f9:
33:2e:6e:44:0d:22:ee:f3:04:7b:f6:09:e7:b3:aa:
02:ee:74:67:92:05:3e:a6:7e:ea:dc:63:2e:68:c1:
5e:52:b0:0e:79:1f:41:38:4c:42:27:3f:32:0f:47:
8a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DF:5F:89:19:3F:CB:A0:A9:C9:8C:BF:3F:ED:A7:6F:7E:85:9D:84
X509v3 Authority Key Identifier:
keyid:3C:FF:1F:2B:11:75:F0:60:5D:02:5E:51:01:73:69:C1:CA:8B:1A:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PP8fKxF18GBdAl5RAXNpwcqLGkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/ac7949-a1ca-47f4-b393-2bf34c5262e7/1/W99fiRk_y6CpyYy_P-2nb36FnYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/ac7949-a1ca-47f4-b393-2bf34c5262e7/1/PP8fKxF18GBdAl5RAXNpwcqLGkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.250.0/23
Signature Algorithm: sha256WithRSAEncryption
06:0f:ff:33:4c:38:a8:e7:31:d9:cf:0c:a8:7c:7a:be:af:61:
50:5a:33:53:c1:95:6d:bf:d6:30:d7:6c:d4:7a:17:58:f0:07:
a0:80:6c:14:1c:76:fc:d0:2c:9c:e9:6a:ed:f2:43:ca:c1:28:
f5:ad:67:5f:d0:96:9f:a0:a4:b4:25:7c:8d:2d:de:d1:28:72:
eb:14:2e:a5:27:17:e8:fd:49:ea:c9:bf:49:eb:4c:e8:74:62:
41:d6:23:a6:e2:07:7b:c8:b1:e3:c6:62:78:19:29:03:dc:6d:
41:69:c5:d2:40:5f:94:13:85:7e:9d:b6:51:18:21:40:b8:48:
77:30:69:e0:b9:68:9b:ee:55:ed:c5:f6:3f:07:05:6f:dc:85:
ae:55:b9:9b:d0:15:ae:fb:0b:f8:15:f3:cd:ca:4d:c7:50:18:
d7:f9:0a:57:c7:d5:6f:05:23:85:77:13:77:65:58:63:8b:a2:
46:ce:b2:04:91:43:3a:0b:e7:8a:30:19:f4:ee:f6:b8:bc:92:
dc:0d:9e:57:6d:a3:d0:be:01:8d:40:86:bb:49:2f:01:5e:ff:
92:fc:ed:7d:fb:de:e1:72:46:56:40:8b:9f:61:6d:de:3e:64:
6d:d2:b8:c7:6a:2d:ea:88:c7:47:92:e5:a6:59:0f:32:dc:8e:
1c:ea:2a:11
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECOQXUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
Y2ZmMWYyYjExNzVmMDYwNWQwMjVlNTEwMTczNjljMWNhOGIxYTQ2MB4XDTIyMDEw
MTEwNTk1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWJkZjVmODkxOTNm
Y2JhMGE5Yzk4Y2JmM2ZlZGE3NmY3ZTg1OWQ4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJIjVXQxdl9GJTqqwEsU9+WV+9gB0Y1JrQr+lWHhW8z4iZ4m
F8tzrF4JcZVDF7avFrYMlmpsShvMUdWSq0YPjqyPnvENZrd86pD3gnWL1S23wQ/b
Y976iEG1zG6vGKssjuuQohIYhHSDXYyxJLcyvNniaWQj0vnbqiNrqX/FGiQ0Ft4y
OT/tnWQ3w4oNLvKtMWfoBG3ux9fc+Jg9ii92u911RV2HdIJtTXCVNCAR5jtpv67h
AzpUmlJySoAxCZT67DHJwP/fSNvA6HBDb+ahWNv5My5uRA0i7vMEe/YJ57OqAu50
Z5IFPqZ+6txjLmjBXlKwDnkfQThMQic/Mg9HimMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRb31+JGT/LoKnJjL8/7advfoWdhDAfBgNVHSMEGDAWgBQ8/x8rEXXwYF0C
XlEBc2nByosaRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BQOGZLeEYxOEdCZEFsNVJBWE5wd2NxTEdrWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjIvYWM3OTQ5LWExY2EtNDdmNC1iMzkzLTJiZjM0YzUyNjJlNy8x
L1c5OWZpUmtfeTZDcHlZeV9QLTJuYjM2Rm5ZUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIv
YWM3OTQ5LWExY2EtNDdmNC1iMzkzLTJiZjM0YzUyNjJlNy8xL1BQOGZLeEYxOEdC
ZEFsNVJBWE5wd2NxTEdrWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcPI+jANBgkqhkiG9w0BAQsFAAOC
AQEABg//M0w4qOcx2c8MqHx6vq9hUFozU8GVbb/WMNds1HoXWPAHoIBsFBx2/NAs
nOlq7fJDysEo9a1nX9CWn6CktCV8jS3e0Shy6xQupScX6P1J6sm/SetM6HRiQdYj
puIHe8ix48ZieBkpA9xtQWnF0kBflBOFfp22URghQLhIdzBp4Llom+5V7cX2PwcF
b9yFrlW5m9AVrvsL+BXzzcpNx1AY1/kKV8fVbwUjhXcTd2VYY4uiRs6yBJFDOgvn
ijAZ9O72uLyS3A2eV22j0L4BjUCGu0kvAV7/kvztffve4XJGVkCLn2Ft3j5kbdK4
x2ot6ojHR5LlplkPMtyOHOoqEQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:20 2024 by rpki-client on console-ams.rpki-client.org