Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/35ead2-4aa4-4ff0-b5cb-7efaa4a74f97/1/9FP8hLa7k8fdMrtXe69Oo-19ldE.roa
File: 9FP8hLa7k8fdMrtXe69Oo-19ldE.roa (raw, json)
Hash identifier: uwPXmZ2bRd8ko8ruongFDiv29uk4GOvgmeqosXYazbQ=
Subject key identifier: F4:53:FC:84:B6:BB:93:C7:DD:32:BB:57:7B:AF:4E:A3:ED:7D:95:D1
Certificate issuer: /CN=c20e65caddbecd48d2f87787993113842bdfce5d
Certificate serial: 01AADFD8
Authority key identifier: C2:0E:65:CA:DD:BE:CD:48:D2:F8:77:87:99:31:13:84:2B:DF:CE:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wg5lyt2-zUjS-HeHmTEThCvfzl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/35ead2-4aa4-4ff0-b5cb-7efaa4a74f97/1/9FP8hLa7k8fdMrtXe69Oo-19ldE.roa
Signing time: Sat 01 Jan 2022 10:03:52 +0000
ROA not before: Sat 01 Jan 2022 10:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197726
IP address blocks: 195.88.242.0/23 maxlen: 23
91.231.84.0/23 maxlen: 23
91.231.86.0/23 maxlen: 23
195.64.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27975640 (0x1aadfd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c20e65caddbecd48d2f87787993113842bdfce5d
Validity
Not Before: Jan 1 10:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f453fc84b6bb93c7dd32bb577baf4ea3ed7d95d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:83:31:d4:0b:78:09:36:05:c0:37:b4:ef:4e:
f4:5e:aa:7b:3b:18:d2:87:5e:28:be:bc:99:43:60:
75:38:62:ff:37:eb:1e:47:a9:a6:3a:d9:45:e9:92:
20:17:bf:a7:35:00:dd:6f:27:e3:55:24:be:bf:32:
d0:8a:cf:f5:9e:6a:6e:81:6d:f2:55:e4:35:d6:fc:
be:ae:05:47:7f:c3:f4:ee:1a:30:d5:b4:dd:ae:86:
cf:0c:39:40:71:8f:dd:64:8e:65:da:b3:6e:d2:6e:
40:1e:08:b7:60:bd:53:78:a6:c2:11:49:e5:40:71:
5a:dc:0a:64:2e:69:e6:6e:61:22:83:b8:ea:d4:27:
1b:f7:ea:e7:ef:fb:6c:5d:20:e7:47:a1:64:ab:eb:
3b:3c:8a:6a:bf:df:57:62:29:06:78:d6:5e:15:78:
95:40:ab:cc:fd:c1:11:e3:68:56:54:53:53:0d:d0:
63:57:8b:39:81:5c:77:12:69:60:c3:04:dd:3e:01:
2c:31:91:54:c5:0a:72:19:8d:41:8a:ff:bb:e2:3c:
0b:1e:3a:af:aa:f2:48:51:0b:bb:bc:03:19:27:fb:
16:f1:56:00:13:31:8f:ae:04:b1:77:f4:37:8a:4c:
52:b9:43:4f:a0:1f:1e:4c:75:57:e6:32:02:2e:62:
a7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:53:FC:84:B6:BB:93:C7:DD:32:BB:57:7B:AF:4E:A3:ED:7D:95:D1
X509v3 Authority Key Identifier:
keyid:C2:0E:65:CA:DD:BE:CD:48:D2:F8:77:87:99:31:13:84:2B:DF:CE:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wg5lyt2-zUjS-HeHmTEThCvfzl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/35ead2-4aa4-4ff0-b5cb-7efaa4a74f97/1/9FP8hLa7k8fdMrtXe69Oo-19ldE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/35ead2-4aa4-4ff0-b5cb-7efaa4a74f97/1/wg5lyt2-zUjS-HeHmTEThCvfzl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.84.0/22
195.64.154.0/23
195.88.242.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:79:bd:9e:36:94:c4:d3:e9:6d:1e:98:7c:8e:1a:4d:ce:5c:
83:bf:22:15:95:89:fe:ed:2e:76:aa:38:78:13:5f:12:dc:1f:
bc:4e:b4:a6:7f:0d:c0:d3:66:3a:8b:25:b6:52:e1:e9:92:e5:
50:95:20:a7:83:0c:92:48:33:38:7c:a3:78:24:29:4e:4f:96:
e1:35:fd:3d:97:65:53:fd:3d:2e:d4:e2:fe:be:c4:e3:a3:50:
70:46:b8:36:18:db:0c:0a:f5:5c:46:ee:ac:bd:1c:cb:f2:0d:
1a:08:51:d7:25:05:08:98:89:4a:63:20:ca:a7:79:b3:8e:e1:
b5:32:7d:2b:cc:eb:fd:1f:17:88:55:c7:ae:01:bd:23:64:ff:
48:f6:7e:e2:43:7f:fc:2d:ee:86:ed:02:f4:99:08:5e:ba:76:
b9:11:6b:16:cf:71:3e:e6:d6:7c:46:1e:7e:df:83:d5:5d:ca:
43:74:bd:2e:07:2e:88:87:f3:9a:2b:60:2c:0b:60:94:7f:af:
04:b3:90:c5:1e:19:26:bc:db:45:3f:95:6a:71:35:42:75:bb:
35:f2:24:b2:3f:13:5b:bc:bb:0b:ec:06:8d:58:b5:65:c8:c1:
34:28:a8:b3:e3:e1:ad:0d:4e:92:85:9e:8f:90:65:64:ad:07:
2d:58:30:da
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEAarf2DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MjBlNjVjYWRkYmVjZDQ4ZDJmODc3ODc5OTMxMTM4NDJiZGZjZTVkMB4XDTIyMDEw
MTEwMDM1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQ1M2ZjODRiNmJi
OTNjN2RkMzJiYjU3N2JhZjRlYTNlZDdkOTVkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALWDMdQLeAk2BcA3tO9O9F6qezsY0odeKL68mUNgdThi/zfr
HkeppjrZRemSIBe/pzUA3W8n41Ukvr8y0IrP9Z5qboFt8lXkNdb8vq4FR3/D9O4a
MNW03a6Gzww5QHGP3WSOZdqzbtJuQB4It2C9U3imwhFJ5UBxWtwKZC5p5m5hIoO4
6tQnG/fq5+/7bF0g50ehZKvrOzyKar/fV2IpBnjWXhV4lUCrzP3BEeNoVlRTUw3Q
Y1eLOYFcdxJpYMME3T4BLDGRVMUKchmNQYr/u+I8Cx46r6rySFELu7wDGSf7FvFW
ABMxj64EsXf0N4pMUrlDT6AfHkx1V+YyAi5ip4UCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBT0U/yEtruTx90yu1d7r06j7X2V0TAfBgNVHSMEGDAWgBTCDmXK3b7NSNL4
d4eZMROEK9/OXTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dnNWx5dDItelVqUy1IZUhtVEVUaEN2ZnpsMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWQvMzVlYWQyLTRhYTQtNGZmMC1iNWNiLTdlZmFhNGE3NGY5Ny8x
LzlGUDhoTGE3azhmZE1ydFhlNjlPby0xOWxkRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWQv
MzVlYWQyLTRhYTQtNGZmMC1iNWNiLTdlZmFhNGE3NGY5Ny8xL3dnNWx5dDItelVq
Uy1IZUhtVEVUaEN2ZnpsMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlvnVAMEAcNAmgMEAcNY8jANBgkq
hkiG9w0BAQsFAAOCAQEAunm9njaUxNPpbR6YfI4aTc5cg78iFZWJ/u0udqo4eBNf
EtwfvE60pn8NwNNmOosltlLh6ZLlUJUgp4MMkkgzOHyjeCQpTk+W4TX9PZdlU/09
LtTi/r7E46NQcEa4NhjbDAr1XEburL0cy/INGghR1yUFCJiJSmMgyqd5s47htTJ9
K8zr/R8XiFXHrgG9I2T/SPZ+4kN//C3uhu0C9JkIXrp2uRFrFs9xPubWfEYeft+D
1V3KQ3S9LgcuiIfzmitgLAtglH+vBLOQxR4ZJrzbRT+VanE1QnW7NfIksj8TW7y7
C+wGjVi1ZcjBNCios+PhrQ1OkoWej5BlZK0HLVgw2g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org