Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/54fd84-6e96-47b2-97a5-f2b556ed6990/1/tAxUj83GmVB9OHkMcNOI8-02a10.roa
File: tAxUj83GmVB9OHkMcNOI8-02a10.roa (raw, json)
Hash identifier: bmQHodHUwzwty2kmiBU9zhiEjLjrOFSmLEGxk+n9ukg=
Subject key identifier: B4:0C:54:8F:CD:C6:99:50:7D:38:79:0C:70:D3:88:F3:ED:36:6B:5D
Certificate issuer: /CN=5a8655ebf944500025a5f075ba7bde641584fda6
Certificate serial: 01D13D4B
Authority key identifier: 5A:86:55:EB:F9:44:50:00:25:A5:F0:75:BA:7B:DE:64:15:84:FD:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WoZV6_lEUAAlpfB1unveZBWE_aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/54fd84-6e96-47b2-97a5-f2b556ed6990/1/tAxUj83GmVB9OHkMcNOI8-02a10.roa
Signing time: Sat 01 Jan 2022 13:59:46 +0000
ROA not before: Sat 01 Jan 2022 13:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212274
IP address blocks: 195.144.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30489931 (0x1d13d4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a8655ebf944500025a5f075ba7bde641584fda6
Validity
Not Before: Jan 1 13:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b40c548fcdc699507d38790c70d388f3ed366b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:af:c7:1e:eb:68:5a:f9:51:69:65:6a:57:60:
9e:58:86:22:36:c6:b4:6b:94:47:63:9b:93:d0:97:
02:59:e8:fc:53:36:ed:fe:1c:1f:a5:25:fb:30:e0:
5e:ed:7e:fc:22:bf:22:b7:f9:9a:01:a4:b5:fb:05:
c8:ea:a0:08:b7:5f:58:62:29:07:6c:b8:59:39:72:
fa:10:2c:92:95:f8:4d:d8:65:14:b1:e0:83:ec:18:
09:95:83:d0:c5:8e:53:03:cb:2a:fc:44:ec:e2:c9:
50:63:05:0d:8d:a2:21:4a:28:8d:b3:0e:23:7d:73:
41:fd:3c:b9:f6:3f:12:8f:f9:d4:a0:cd:70:81:d0:
e1:2b:90:38:46:61:9a:72:26:b8:63:2d:80:f8:9a:
a5:0d:07:7c:be:17:19:c7:08:32:8c:4d:ba:91:26:
0c:21:57:48:a1:1d:05:86:73:5d:de:6c:27:86:59:
b2:ff:cc:d5:94:44:49:40:92:e1:ff:b9:b8:ae:07:
c5:8c:62:3f:29:bd:97:d7:47:ec:cc:9a:9a:e0:53:
be:33:c1:80:a2:96:4a:09:23:12:18:39:d2:3c:b5:
9d:22:fa:78:1f:83:e2:70:ef:da:6e:79:ef:94:ca:
21:80:e0:9b:26:ca:97:03:eb:a0:2c:a4:40:eb:be:
14:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0C:54:8F:CD:C6:99:50:7D:38:79:0C:70:D3:88:F3:ED:36:6B:5D
X509v3 Authority Key Identifier:
keyid:5A:86:55:EB:F9:44:50:00:25:A5:F0:75:BA:7B:DE:64:15:84:FD:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WoZV6_lEUAAlpfB1unveZBWE_aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/54fd84-6e96-47b2-97a5-f2b556ed6990/1/tAxUj83GmVB9OHkMcNOI8-02a10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/54fd84-6e96-47b2-97a5-f2b556ed6990/1/WoZV6_lEUAAlpfB1unveZBWE_aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.144.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:a2:c7:ad:13:20:bc:9f:af:62:0d:eb:79:dc:f5:7a:ae:f0:
c2:9f:88:a4:65:94:a0:8a:83:c5:c0:a3:02:0a:ee:53:cb:e9:
c4:95:08:71:67:a9:84:01:1c:af:a0:c3:0a:94:98:31:68:64:
48:7e:d5:bc:c8:d6:06:d7:7b:50:ed:f8:db:bb:7d:09:11:91:
db:5f:93:a6:51:49:79:d9:85:d4:64:7d:b2:6a:91:b1:e4:38:
90:bd:d5:36:35:28:2a:9c:91:52:ec:04:56:ec:a5:54:fe:e5:
f9:87:00:2d:3f:f9:d9:13:cc:2d:ce:32:8a:95:61:5c:8d:ae:
30:e6:79:04:a4:b6:a1:af:5b:6f:44:7a:b5:dd:54:49:dc:97:
12:69:93:b9:fd:e3:20:56:bd:da:65:8b:aa:fa:84:d6:67:b6:
7e:95:57:4d:df:fe:8b:b4:01:4b:62:7e:70:ba:77:00:c6:cc:
7b:9e:ac:65:01:cb:21:b2:c5:3f:a5:81:a4:1d:37:47:9e:f6:
62:44:bf:d9:22:1b:7e:a8:d2:af:53:2c:82:e5:8c:6f:63:75:
88:20:27:0f:6d:41:f2:b6:dd:df:ac:5e:6b:a2:69:32:1f:8e:
70:35:2b:39:4c:cb:28:5b:ba:96:5c:51:62:5a:c1:91:9e:a1:
c2:cf:aa:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAdE9SzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YTg2NTVlYmY5NDQ1MDAwMjVhNWYwNzViYTdiZGU2NDE1ODRmZGE2MB4XDTIyMDEw
MTEzNTk0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQwYzU0OGZjZGM2
OTk1MDdkMzg3OTBjNzBkMzg4ZjNlZDM2NmI1ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6vxx7raFr5UWllaldgnliGIjbGtGuUR2Obk9CXAlno/FM2
7f4cH6Ul+zDgXu1+/CK/Irf5mgGktfsFyOqgCLdfWGIpB2y4WTly+hAskpX4Tdhl
FLHgg+wYCZWD0MWOUwPLKvxE7OLJUGMFDY2iIUoojbMOI31zQf08ufY/Eo/51KDN
cIHQ4SuQOEZhmnImuGMtgPiapQ0HfL4XGccIMoxNupEmDCFXSKEdBYZzXd5sJ4ZZ
sv/M1ZRESUCS4f+5uK4HxYxiPym9l9dH7MyamuBTvjPBgKKWSgkjEhg50jy1nSL6
eB+D4nDv2m5575TKIYDgmybKlwProCykQOu+FEcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS0DFSPzcaZUH04eQxw04jz7TZrXTAfBgNVHSMEGDAWgBRahlXr+URQACWl
8HW6e95kFYT9pjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dvWlY2X2xFVUFBbHBmQjF1bnZlWkJXRV9hWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWQvNTRmZDg0LTZlOTYtNDdiMi05N2E1LWYyYjU1NmVkNjk5MC8x
L3RBeFVqODNHbVZCOU9Ia01jTk9JOC0wMmExMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQv
NTRmZDg0LTZlOTYtNDdiMi05N2E1LWYyYjU1NmVkNjk5MC8xL1dvWlY2X2xFVUFB
bHBmQjF1bnZlWkJXRV9hWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMOQEDANBgkqhkiG9w0BAQsFAAOC
AQEAoKLHrRMgvJ+vYg3redz1eq7wwp+IpGWUoIqDxcCjAgruU8vpxJUIcWephAEc
r6DDCpSYMWhkSH7VvMjWBtd7UO3427t9CRGR21+TplFJedmF1GR9smqRseQ4kL3V
NjUoKpyRUuwEVuylVP7l+YcALT/52RPMLc4yipVhXI2uMOZ5BKS2oa9bb0R6td1U
SdyXEmmTuf3jIFa92mWLqvqE1me2fpVXTd/+i7QBS2J+cLp3AMbMe56sZQHLIbLF
P6WBpB03R572YkS/2SIbfqjSr1MsguWMb2N1iCAnD21B8rbd36xea6JpMh+OcDUr
OUzLKFu6llxRYlrBkZ6hws+q2g==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net