Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/lGzefhOT9vbKetB21bVNf14JU1M.roa
File: lGzefhOT9vbKetB21bVNf14JU1M.roa (raw, json)
Hash identifier: wKcrl7Cn7j02akiugDwbszTupHj3Xlxf3hwUESDGkKI=
Subject key identifier: 94:6C:DE:7E:13:93:F6:F6:CA:7A:D0:76:D5:B5:4D:7F:5E:09:53:53
Certificate issuer: /CN=fc2a6347b531e30f55551d0b6edf60dc8b808b91
Certificate serial: 0AA57564
Authority key identifier: FC:2A:63:47:B5:31:E3:0F:55:55:1D:0B:6E:DF:60:DC:8B:80:8B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/lGzefhOT9vbKetB21bVNf14JU1M.roa
Signing time: Sat 01 Jan 2022 16:05:44 +0000
ROA not before: Sat 01 Jan 2022 16:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200311
IP address blocks: 194.60.214.0/24 maxlen: 24
194.60.215.0/24 maxlen: 24
194.60.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178615652 (0xaa57564)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc2a6347b531e30f55551d0b6edf60dc8b808b91
Validity
Not Before: Jan 1 16:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=946cde7e1393f6f6ca7ad076d5b54d7f5e095353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:68:12:32:59:72:5e:8a:ad:5b:a1:a7:d8:bd:
f6:2d:70:b4:3c:4c:08:22:8d:b4:a8:d3:50:77:b7:
cf:9f:3e:db:d3:4b:cf:60:4d:4b:08:f9:d6:f3:7e:
e5:a6:d7:b5:88:e3:f7:d1:a1:ad:f7:c5:b4:5e:af:
e9:ec:bc:4a:2e:64:56:21:bb:17:bd:78:12:2c:17:
1a:f4:af:86:10:41:a5:88:4e:51:89:81:1f:ad:e5:
f5:7e:9c:1f:ba:a7:1f:6e:20:24:dd:a1:f5:97:47:
de:66:eb:1c:a9:52:f8:70:d4:f7:17:d6:7f:8b:8b:
ee:3d:b2:48:d5:b6:5d:4f:2c:09:a5:a6:b4:77:53:
3f:20:ac:0f:61:34:f3:70:fc:3e:f9:65:a9:a0:6a:
80:ff:86:67:fc:d3:1a:cf:01:ad:8f:d0:9e:68:2b:
42:a6:52:d9:d5:89:cf:fa:fd:ab:f2:85:c2:a0:0b:
08:c5:15:73:2b:43:03:5d:e3:3f:c2:76:02:a7:c3:
87:ca:29:37:03:84:90:1c:3a:05:8c:1e:b4:7d:01:
0d:59:28:20:b0:42:dc:13:90:c5:4f:48:d6:b4:4e:
c1:df:50:e1:07:93:0b:cb:e5:5f:50:e1:82:19:46:
2f:e6:d0:5a:a8:26:a7:4c:b5:85:e4:6c:62:77:04:
55:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:6C:DE:7E:13:93:F6:F6:CA:7A:D0:76:D5:B5:4D:7F:5E:09:53:53
X509v3 Authority Key Identifier:
keyid:FC:2A:63:47:B5:31:E3:0F:55:55:1D:0B:6E:DF:60:DC:8B:80:8B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/lGzefhOT9vbKetB21bVNf14JU1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.213.0-194.60.215.255
Signature Algorithm: sha256WithRSAEncryption
1f:3a:41:4e:16:e5:4c:9e:f9:82:16:3b:58:ff:33:b9:84:04:
7e:ae:0d:e5:b1:82:55:c8:16:51:51:ae:19:e0:e2:56:e4:b0:
da:03:da:44:12:9a:ff:1e:99:43:f6:10:21:bf:b3:85:f9:6e:
4c:f8:cf:bc:30:bd:cc:74:10:45:2a:9a:62:c0:44:8c:73:9c:
f9:d1:19:aa:e8:0e:d7:b9:71:06:f6:35:9a:9c:9d:7d:60:82:
eb:f7:97:da:f1:d0:8f:0b:8a:b4:b3:5b:00:60:61:16:cc:e7:
b6:5f:dd:9b:a7:d1:6f:41:d5:24:a9:61:04:da:3c:4c:5e:91:
57:c9:cd:64:cd:29:04:3c:56:ab:c6:26:7c:6a:fc:9b:0d:52:
b9:4b:08:f2:35:a4:7d:45:67:b5:83:38:8e:26:fd:c1:02:8e:
40:1e:0c:c6:34:df:98:ad:a7:bd:d6:6d:e0:cf:b9:b4:19:23:
47:ff:9f:65:9a:05:78:74:23:c5:f2:e8:fc:0a:9c:b3:64:34:
75:1f:fc:ea:92:a9:65:5a:6f:21:36:2f:15:80:d9:9f:fe:31:
f8:86:e1:44:09:9b:7a:c8:2b:d3:f5:eb:75:4e:63:5c:ba:78:
e5:9f:d1:23:80:9a:f5:20:44:f2:d0:58:ca:56:ff:dd:54:fe:
1f:a1:88:bf
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIECqV1ZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YzJhNjM0N2I1MzFlMzBmNTU1NTFkMGI2ZWRmNjBkYzhiODA4YjkxMB4XDTIyMDEw
MTE2MDU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTQ2Y2RlN2UxMzkz
ZjZmNmNhN2FkMDc2ZDViNTRkN2Y1ZTA5NTM1MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKJoEjJZcl6KrVuhp9i99i1wtDxMCCKNtKjTUHe3z58+29NL
z2BNSwj51vN+5abXtYjj99GhrffFtF6v6ey8Si5kViG7F714EiwXGvSvhhBBpYhO
UYmBH63l9X6cH7qnH24gJN2h9ZdH3mbrHKlS+HDU9xfWf4uL7j2ySNW2XU8sCaWm
tHdTPyCsD2E083D8PvllqaBqgP+GZ/zTGs8BrY/QnmgrQqZS2dWJz/r9q/KFwqAL
CMUVcytDA13jP8J2AqfDh8opNwOEkBw6BYwetH0BDVkoILBC3BOQxU9I1rROwd9Q
4QeTC8vlX1DhghlGL+bQWqgmp0y1heRsYncEVdUCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBSUbN5+E5P29sp60HbVtU1/XglTUzAfBgNVHSMEGDAWgBT8KmNHtTHjD1VV
HQtu32Dci4CLkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19DcGpSN1V4NHc5VlZSMExidDlnM0l1QWk1RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvMzU0NWU2LThjZGUtNDUzMy05NjA1LWZhZjJiOWYwNGRlZi8x
L2xHemVmaE9UOXZiS2V0QjIxYlZOZjE0SlUxTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
MzU0NWU2LThjZGUtNDUzMy05NjA1LWZhZjJiOWYwNGRlZi8xL19DcGpSN1V4NHc5
VlZSMExidDlnM0l1QWk1RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAwjzVAwQDwjzQMA0GCSqGSIb3
DQEBCwUAA4IBAQAfOkFOFuVMnvmCFjtY/zO5hAR+rg3lsYJVyBZRUa4Z4OJW5LDa
A9pEEpr/HplD9hAhv7OF+W5M+M+8ML3MdBBFKppiwESMc5z50Rmq6A7XuXEG9jWa
nJ19YILr95fa8dCPC4q0s1sAYGEWzOe2X92bp9FvQdUkqWEE2jxMXpFXyc1kzSkE
PFarxiZ8avybDVK5SwjyNaR9RWe1gziOJv3BAo5AHgzGNN+Yrae91m3gz7m0GSNH
/59lmgV4dCPF8uj8CpyzZDR1H/zqkqllWm8hNi8VgNmf/jH4huFECZt6yCvT9et1
TmNcunjln9EjgJr1IETy0FjKVv/dVP4foYi/
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:23 2023 by rpki-client on console.sobornost.net