Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7fa9ed-b087-40cd-a016-d957b8c54c94/1/sMktRopWMMKioD4qcO6igg7_jIE.roa
File: sMktRopWMMKioD4qcO6igg7_jIE.roa (raw, json)
Hash identifier: NFQoBROLENCoACfQJPzgMFILIc2aj+WNH/3bWEpuBMo=
Subject key identifier: B0:C9:2D:46:8A:56:30:C2:A2:A0:3E:2A:70:EE:A2:82:0E:FF:8C:81
Certificate issuer: /CN=f6aed6d5ce415797c1285f7ef6fd043c6466e7de
Certificate serial: 01841879AB0FD7A40819D3749C5D523BD894
Authority key identifier: F6:AE:D6:D5:CE:41:57:97:C1:28:5F:7E:F6:FD:04:3C:64:66:E7:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9q7W1c5BV5fBKF9-9v0EPGRm594.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7fa9ed-b087-40cd-a016-d957b8c54c94/1/sMktRopWMMKioD4qcO6igg7_jIE.roa
Signing time: Thu 27 Oct 2022 08:05:37 +0000
ROA not before: Thu 27 Oct 2022 08:05:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207777
IP address blocks: 195.182.29.0/24 maxlen: 24
195.182.27.0/24 maxlen: 24
195.182.37.0/24 maxlen: 24
195.182.24.0/24 maxlen: 24
2a13:7c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:79:ab:0f:d7:a4:08:19:d3:74:9c:5d:52:3b:d8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6aed6d5ce415797c1285f7ef6fd043c6466e7de
Validity
Not Before: Oct 27 08:05:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0c92d468a5630c2a2a03e2a70eea2820eff8c81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:68:d4:c4:29:7e:f4:82:cd:14:fe:b2:2d:12:
89:68:d7:ed:1b:e4:b1:86:b8:89:6e:ef:e0:83:72:
be:df:95:67:ef:5c:bd:7b:a1:82:b1:64:69:1e:91:
6f:4b:72:51:16:96:de:64:2a:78:3b:c9:02:7b:89:
cc:e9:9b:d4:7f:0d:7e:f1:ee:13:30:b3:39:9e:a8:
bd:45:8d:64:61:1c:8f:2f:d9:b4:43:09:77:aa:f1:
7f:cc:c2:9c:f3:42:69:5c:95:21:f1:03:d2:92:19:
f9:47:70:34:f3:61:08:8e:84:0a:c2:37:6e:37:23:
54:99:3c:3a:18:10:b2:e1:da:46:dd:77:bc:e8:ea:
59:2c:a0:e1:fc:bb:25:65:58:b6:99:8d:9f:bc:10:
a4:65:6f:79:c1:f8:f2:87:42:83:de:51:3c:d8:b7:
2d:c3:5a:38:8d:92:20:93:2f:45:91:d9:53:de:5d:
02:bf:2f:42:c2:95:cf:33:84:aa:05:62:bf:cc:b5:
b9:27:13:f7:c4:f0:94:8a:65:82:5d:4d:de:c9:b6:
a2:26:77:e3:96:25:68:04:2c:be:58:69:1c:32:55:
4e:71:58:22:d5:c1:dc:4f:62:83:77:59:91:ce:41:
7d:30:c7:4f:7c:e6:24:a0:13:80:d7:8d:78:46:db:
72:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C9:2D:46:8A:56:30:C2:A2:A0:3E:2A:70:EE:A2:82:0E:FF:8C:81
X509v3 Authority Key Identifier:
keyid:F6:AE:D6:D5:CE:41:57:97:C1:28:5F:7E:F6:FD:04:3C:64:66:E7:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9q7W1c5BV5fBKF9-9v0EPGRm594.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7fa9ed-b087-40cd-a016-d957b8c54c94/1/sMktRopWMMKioD4qcO6igg7_jIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7fa9ed-b087-40cd-a016-d957b8c54c94/1/9q7W1c5BV5fBKF9-9v0EPGRm594.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.24.0/24
195.182.27.0/24
195.182.29.0/24
195.182.37.0/24
IPv6:
2a13:7c0::/29
Signature Algorithm: sha256WithRSAEncryption
46:0e:da:27:11:c0:ed:65:10:05:5b:b8:96:b2:5c:f4:33:ac:
d0:1e:47:05:2e:c9:b8:07:5e:c8:04:9e:76:30:3c:f2:b7:74:
28:38:90:b6:94:e0:f7:b1:5f:6e:b0:14:00:55:9a:4a:c9:77:
75:3f:c2:4d:ec:a4:8d:87:c2:a4:bf:e4:b6:a9:61:2b:2f:a1:
9e:ea:ec:2a:cd:80:25:f4:5f:b5:cf:37:7a:f1:bf:05:3a:1f:
58:d6:d1:3c:95:da:a6:0f:45:89:5e:88:80:78:6d:65:d6:46:
f3:61:5b:04:d2:f2:7d:33:39:ac:4d:36:ee:a2:fe:99:5b:a0:
17:40:8f:97:2a:7e:e7:55:15:98:77:76:a4:29:57:d6:a6:e2:
09:44:f9:dd:22:cc:ca:b0:7a:3b:9a:26:96:c1:07:5b:c9:a9:
c1:74:9f:e3:15:08:76:3d:0a:a8:c9:82:7b:cb:4b:15:52:3c:
5e:55:85:6b:6c:51:bc:cf:d3:67:38:7e:c6:2a:51:08:62:2b:
a8:39:c1:5e:bd:71:9f:ba:7a:06:83:fe:b8:07:cf:41:f7:e5:
8d:7e:60:5d:1f:02:b7:6b:38:ae:d9:49:2a:6e:90:e0:f1:81:
8a:be:46:51:6f:a5:e5:34:3a:f1:63:73:87:1e:26:3e:90:83:
5d:e8:a2:6c
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYQYeasP16QIGdN0nF1SO9iUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2YWVkNmQ1Y2U0MTU3OTdjMTI4NWY3ZWY2ZmQwNDNjNjQ2
NmU3ZGUwHhcNMjIxMDI3MDgwNTM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGM5MmQ0NjhhNTYzMGMyYTJhMDNlMmE3MGVlYTI4MjBlZmY4YzgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2jUxCl+9ILNFP6yLRKJaNftG+Sx
hriJbu/gg3K+35Vn71y9e6GCsWRpHpFvS3JRFpbeZCp4O8kCe4nM6ZvUfw1+8e4T
MLM5nqi9RY1kYRyPL9m0Qwl3qvF/zMKc80JpXJUh8QPSkhn5R3A082EIjoQKwjdu
NyNUmTw6GBCy4dpG3Xe86OpZLKDh/LslZVi2mY2fvBCkZW95wfjyh0KD3lE82Lct
w1o4jZIgky9FkdlT3l0Cvy9CwpXPM4SqBWK/zLW5JxP3xPCUimWCXU3eybaiJnfj
liVoBCy+WGkcMlVOcVgi1cHcT2KDd1mRzkF9MMdPfOYkoBOA1414RttyNwIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFLDJLUaKVjDCoqA+KnDuooIO/4yBMB8GA1UdIwQY
MBaAFPau1tXOQVeXwShffvb9BDxkZufeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXE3VzFjNUJWNWZCS0Y5LTl2MEVQR1JtNTk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC83ZmE5ZWQtYjA4Ny00MGNkLWEwMTYt
ZDk1N2I4YzU0Yzk0LzEvc01rdFJvcFdNTUtpb0Q0cWNPNmlnZzdfaklFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC83ZmE5ZWQtYjA4Ny00MGNkLWEwMTYtZDk1N2I4YzU0Yzk0
LzEvOXE3VzFjNUJWNWZCS0Y5LTl2MEVQR1JtNTk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQAw7YYAwQA
w7YbAwQAw7YdAwQAw7YlMA0EAgACMAcDBQMqEwfAMA0GCSqGSIb3DQEBCwUAA4IB
AQBGDtonEcDtZRAFW7iWslz0M6zQHkcFLsm4B17IBJ52MDzyt3QoOJC2lOD3sV9u
sBQAVZpKyXd1P8JN7KSNh8Kkv+S2qWErL6Ge6uwqzYAl9F+1zzd68b8FOh9Y1tE8
ldqmD0WJXoiAeG1l1kbzYVsE0vJ9MzmsTTbuov6ZW6AXQI+XKn7nVRWYd3akKVfW
puIJRPndIszKsHo7miaWwQdbyanBdJ/jFQh2PQqoyYJ7y0sVUjxeVYVrbFG8z9Nn
OH7GKlEIYiuoOcFevXGfunoGg/64B89B9+WNfmBdHwK3aziu2UkqbpDg8YGKvkZR
b6XlNDrxY3OHHiY+kINd6KJs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:46 2024 by rpki-client on console-fra.rpki-client.org