Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/vV2ynOLiKBq89B0QdilQo7kHIcg.roa
File: vV2ynOLiKBq89B0QdilQo7kHIcg.roa (raw, json)
Hash identifier: qqdRaftm/Vmi2qKPsuoO8R2sVY1BXRU3JT8ONHe+q1Q=
Subject key identifier: BD:5D:B2:9C:E2:E2:28:1A:BC:F4:1D:10:76:29:50:A3:B9:07:21:C8
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: AEC61E
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/vV2ynOLiKBq89B0QdilQo7kHIcg.roa
Signing time: Mon 18 Apr 2022 08:41:33 +0000
ROA not before: Mon 18 Apr 2022 08:41:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206448
IP address blocks: 192.109.243.0/24 maxlen: 24
192.109.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11453982 (0xaec61e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Apr 18 08:41:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd5db29ce2e2281abcf41d10762950a3b90721c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b9:63:f6:4c:74:b1:0f:c7:46:d2:23:7e:60:
1f:79:6f:8d:dd:04:be:dc:ca:2d:da:a4:6f:8c:b9:
f0:33:38:03:5a:61:a2:1f:31:c0:53:33:8e:bf:74:
ab:2f:f2:94:06:02:9e:81:42:be:d2:ac:0f:33:c9:
b5:44:c2:ab:4f:06:cb:d5:10:d1:1f:7d:91:92:46:
77:da:4e:b8:ad:63:d0:9d:fd:dc:10:ac:a5:8f:09:
08:12:4f:44:a0:17:c9:d9:a8:30:ce:5d:d5:9a:c6:
46:63:18:8b:e3:9f:bf:40:b2:7d:2a:26:9f:e5:96:
33:b5:b0:d5:40:52:da:0c:bf:82:63:49:54:b0:30:
dd:8d:4d:1f:9d:ad:65:99:80:ea:3e:5d:1b:db:26:
5c:95:95:ab:23:ef:97:9f:69:f5:52:aa:6c:c6:8b:
87:37:c2:ea:ee:26:f7:ac:79:64:a8:e0:29:a5:b9:
e7:60:40:00:c7:e8:c4:61:d1:8d:73:e6:83:1b:4f:
e3:fe:08:f0:d4:74:40:50:2f:53:4f:a0:5b:1f:14:
e4:04:f7:b2:89:16:08:11:9a:de:9c:d9:f3:66:b8:
cd:3c:60:50:bf:a2:7c:8a:b4:1f:4a:fc:41:19:56:
12:54:8d:d1:39:76:b0:7d:3f:14:dc:77:dd:4e:47:
5e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5D:B2:9C:E2:E2:28:1A:BC:F4:1D:10:76:29:50:A3:B9:07:21:C8
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/vV2ynOLiKBq89B0QdilQo7kHIcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.243.0/24
192.109.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:58:47:78:3a:e3:3b:6e:e1:27:32:9e:f4:bd:93:5f:0e:f8:
b6:b8:b9:db:64:07:6c:d4:3e:14:2b:a6:dd:3b:62:66:18:33:
6d:ce:d1:77:fa:fc:a9:b4:69:f9:1e:0d:1e:64:ec:79:71:78:
2e:35:18:3b:d4:e0:ff:57:6a:6e:71:27:ee:f3:d7:fa:62:04:
bd:46:17:12:0e:29:aa:f0:a4:31:75:bb:7f:1c:2b:60:94:6e:
f8:1f:43:ef:37:f8:39:35:da:f6:c3:0b:8e:19:96:6d:35:5a:
c1:79:43:1c:0d:d1:aa:cb:26:8f:5b:3c:a4:60:2d:92:d1:2f:
0b:f8:2a:eb:03:7c:0a:d7:da:ee:89:85:ce:b6:ce:14:48:17:
1e:28:0e:38:e9:c8:7a:c4:2e:93:37:7c:07:66:41:3f:60:bf:
31:71:53:6f:d6:69:3c:a0:72:6e:da:2f:da:43:1c:7c:7f:43:
5c:a6:78:53:3a:07:88:dc:c6:3f:94:ac:84:ed:ad:68:e7:2d:
58:cf:e4:52:52:54:41:25:da:d8:62:79:ff:d4:ff:74:d7:d4:
88:e9:0d:59:be:c5:45:4f:6a:5a:8e:0b:12:ea:d6:d4:42:18:
4d:54:86:f1:ea:28:92:35:21:33:d9:6c:79:2c:c3:11:68:9c:
17:b2:5d:3e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAK7GHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZjFkZjY2NjdkYTM4ZTU3YTI1YjE5NDVmYTQwZTU5M2U1YWRmYTAwMB4XDTIyMDQx
ODA4NDEzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQ1ZGIyOWNlMmUy
MjgxYWJjZjQxZDEwNzYyOTUwYTNiOTA3MjFjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+5Y/ZMdLEPx0bSI35gH3lvjd0EvtzKLdqkb4y58DM4A1ph
oh8xwFMzjr90qy/ylAYCnoFCvtKsDzPJtUTCq08Gy9UQ0R99kZJGd9pOuK1j0J39
3BCspY8JCBJPRKAXydmoMM5d1ZrGRmMYi+Ofv0CyfSomn+WWM7Ww1UBS2gy/gmNJ
VLAw3Y1NH52tZZmA6j5dG9smXJWVqyPvl59p9VKqbMaLhzfC6u4m96x5ZKjgKaW5
52BAAMfoxGHRjXPmgxtP4/4I8NR0QFAvU0+gWx8U5AT3sokWCBGa3pzZ82a4zTxg
UL+ifIq0H0r8QRlWElSN0Tl2sH0/FNx33U5HXg0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBS9XbKc4uIoGrz0HRB2KVCjuQchyDAfBgNVHSMEGDAWgBTPHfZmfaOOV6Jb
GUX6QOWT5a36ADAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3p4MzJabjJqamxlaVd4bEYta0Rsay1XdC1nQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmYvZTU3ODlhLTE2MGQtNDg5Ni1hMjVhLThkZjM2MzM3ZTZiYy8x
L3ZWMnluT0xpS0JxODlCMFFkaWxRbzdrSEljZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmYv
ZTU3ODlhLTE2MGQtNDg5Ni1hMjVhLThkZjM2MzM3ZTZiYy8xL3p4MzJabjJqamxl
aVd4bEYta0Rsay1XdC1nQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMBt8wMEAMBt+jANBgkqhkiG9w0B
AQsFAAOCAQEAoVhHeDrjO27hJzKe9L2TXw74tri522QHbNQ+FCum3TtiZhgzbc7R
d/r8qbRp+R4NHmTseXF4LjUYO9Tg/1dqbnEn7vPX+mIEvUYXEg4pqvCkMXW7fxwr
YJRu+B9D7zf4OTXa9sMLjhmWbTVawXlDHA3Rqssmj1s8pGAtktEvC/gq6wN8Ctfa
7omFzrbOFEgXHigOOOnIesQukzd8B2ZBP2C/MXFTb9ZpPKBybtov2kMcfH9DXKZ4
UzoHiNzGP5SshO2taOctWM/kUlJUQSXa2GJ5/9T/dNfUiOkNWb7FRU9qWo4LEurW
1EIYTVSG8eookjUhM9lseSzDEWicF7JdPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:53 2024 by rpki-client on console-ams.rpki-client.org