Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/u5_-T34CD0hALimV4wOICQHXH4o.roa
File: u5_-T34CD0hALimV4wOICQHXH4o.roa (raw, json)
Hash identifier: vRIPyL+xJrLZyjekmGcIpclQ0gbomfQRjhUU/pGsAYI=
Subject key identifier: BB:9F:FE:4F:7E:02:0F:48:40:2E:29:95:E3:03:88:09:01:D7:1F:8A
Certificate issuer: /CN=da834df1dafa7fe6ead360b3ee75a2931af1ffe9
Certificate serial: 06DE7590
Authority key identifier: DA:83:4D:F1:DA:FA:7F:E6:EA:D3:60:B3:EE:75:A2:93:1A:F1:FF:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2oNN8dr6f-bq02Cz7nWikxrx_-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/u5_-T34CD0hALimV4wOICQHXH4o.roa
Signing time: Sat 01 Jan 2022 07:52:41 +0000
ROA not before: Sat 01 Jan 2022 07:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199484
IP address blocks: 185.195.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115242384 (0x6de7590)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da834df1dafa7fe6ead360b3ee75a2931af1ffe9
Validity
Not Before: Jan 1 07:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb9ffe4f7e020f48402e2995e303880901d71f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:ec:59:b4:56:8a:a8:d0:3b:a4:2d:39:5f:
9e:2c:bd:38:0e:f9:f3:7f:a6:5c:d5:44:d5:52:19:
ca:c6:d9:c3:03:b4:24:4e:09:2a:24:78:af:5f:74:
17:71:1a:e6:c9:c9:2d:83:86:1f:4e:c7:91:d5:26:
e9:d6:69:f9:e2:6e:6d:f1:03:47:c4:3e:64:d6:f5:
11:1c:b9:08:b9:75:da:35:68:c4:b5:5d:4a:5a:a0:
ef:87:fe:0a:f9:9c:23:e5:2d:ef:15:73:be:ec:2c:
bf:af:94:32:84:77:ca:e2:6f:30:29:bc:f6:e3:54:
7c:22:83:0a:d3:5e:f7:74:25:fd:5f:91:10:d3:d8:
47:d6:83:18:49:8f:57:86:d0:77:80:42:84:ae:1b:
8c:96:d3:95:b2:77:3e:9e:4c:5b:bb:9f:60:fc:17:
21:51:04:ac:bc:84:d8:5a:16:de:64:cf:e3:c5:dd:
d6:02:05:e2:c8:ad:85:9d:3a:82:cb:f8:d1:d5:26:
1e:d3:86:34:23:d9:ac:8e:23:e9:ba:93:2c:20:88:
6e:7e:1a:51:6a:db:23:bd:87:83:d9:bd:54:ce:4c:
da:3b:4b:6c:44:b6:f8:83:47:21:11:a5:0a:2e:fe:
75:96:7f:8e:d6:55:3c:34:15:24:2e:06:3b:f7:c4:
e6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9F:FE:4F:7E:02:0F:48:40:2E:29:95:E3:03:88:09:01:D7:1F:8A
X509v3 Authority Key Identifier:
keyid:DA:83:4D:F1:DA:FA:7F:E6:EA:D3:60:B3:EE:75:A2:93:1A:F1:FF:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2oNN8dr6f-bq02Cz7nWikxrx_-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/u5_-T34CD0hALimV4wOICQHXH4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/2oNN8dr6f-bq02Cz7nWikxrx_-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.230.0/24
Signature Algorithm: sha256WithRSAEncryption
00:89:8e:71:7f:75:00:86:27:d4:7d:79:f7:15:07:5b:49:b2:
22:3f:6c:9d:dc:27:ed:86:95:a1:ec:14:c0:9d:14:8e:b0:b6:
d6:84:40:e2:d1:fb:b8:3f:ff:c1:0b:7d:72:1c:5b:f3:58:90:
47:82:26:6d:95:18:47:a6:12:75:5b:77:1b:8c:2e:82:2a:85:
bd:9b:f7:38:fc:57:d6:2f:c8:7b:7f:0d:44:83:4a:a8:47:19:
7b:6f:7c:82:ff:49:d2:fa:e0:01:37:bf:3b:d4:d9:0a:1a:45:
6e:52:4d:66:96:46:be:8f:75:9d:cd:53:52:70:ea:8f:be:96:
df:cf:f8:59:c8:5b:2f:8e:e0:6f:c3:52:21:ff:37:cb:67:28:
5a:37:08:a7:27:79:f9:f3:87:7b:cf:b0:b7:0a:fd:c0:3b:37:
af:c6:f0:5d:e6:99:81:80:58:5a:38:6c:6c:2a:95:da:6a:de:
53:20:84:4a:f5:0e:f2:6a:8f:8a:db:a9:4e:c8:2b:b3:08:ab:
ca:30:f7:17:c4:ae:f2:4a:f8:e0:f9:4a:5c:09:75:04:08:42:
ac:92:76:2e:a6:49:fc:eb:8a:fa:f0:4b:ed:2f:b7:94:2f:87:
d4:12:7b:ec:0f:2d:77:d5:a1:bd:e0:98:71:54:e7:41:cd:c5:
c7:95:fe:8d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBt51kDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YTgzNGRmMWRhZmE3ZmU2ZWFkMzYwYjNlZTc1YTI5MzFhZjFmZmU5MB4XDTIyMDEw
MTA3NTI0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmI5ZmZlNGY3ZTAy
MGY0ODQwMmUyOTk1ZTMwMzg4MDkwMWQ3MWY4YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPb7Fm0Voqo0DukLTlfniy9OA7583+mXNVE1VIZysbZwwO0
JE4JKiR4r190F3Ea5snJLYOGH07HkdUm6dZp+eJubfEDR8Q+ZNb1ERy5CLl12jVo
xLVdSlqg74f+CvmcI+Ut7xVzvuwsv6+UMoR3yuJvMCm89uNUfCKDCtNe93Ql/V+R
ENPYR9aDGEmPV4bQd4BChK4bjJbTlbJ3Pp5MW7ufYPwXIVEErLyE2FoW3mTP48Xd
1gIF4sithZ06gsv40dUmHtOGNCPZrI4j6bqTLCCIbn4aUWrbI72Hg9m9VM5M2jtL
bES2+INHIRGlCi7+dZZ/jtZVPDQVJC4GO/fE5t8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS7n/5PfgIPSEAuKZXjA4gJAdcfijAfBgNVHSMEGDAWgBTag03x2vp/5urT
YLPudaKTGvH/6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJvTk44ZHI2Zi1icTAyQ3o3bldpa3hyeF8tay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmMvYjViNGU3LThhNjgtNDY2ZC05ZmM1LTA3NWRjNDYwNGFlZi8x
L3U1Xy1UMzRDRDBoQUxpbVY0d09JQ1FIWEg0by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMv
YjViNGU3LThhNjgtNDY2ZC05ZmM1LTA3NWRjNDYwNGFlZi8xLzJvTk44ZHI2Zi1i
cTAyQ3o3bldpa3hyeF8tay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnD5jANBgkqhkiG9w0BAQsFAAOC
AQEAAImOcX91AIYn1H159xUHW0myIj9sndwn7YaVoewUwJ0UjrC21oRA4tH7uD//
wQt9chxb81iQR4ImbZUYR6YSdVt3G4wugiqFvZv3OPxX1i/Ie38NRINKqEcZe298
gv9J0vrgATe/O9TZChpFblJNZpZGvo91nc1TUnDqj76W38/4WchbL47gb8NSIf83
y2coWjcIpyd5+fOHe8+wtwr9wDs3r8bwXeaZgYBYWjhsbCqV2mreUyCESvUO8mqP
itupTsgrswiryjD3F8Su8kr44PlKXAl1BAhCrJJ2LqZJ/OuK+vBL7S+3lC+H1BJ7
7A8td9WhveCYcVTnQc3Fx5X+jQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:48 2024 by rpki-client on console-fra.rpki-client.org