Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/y_jQUV90s3RLsaR0s7ad_qVAcRM.roa
File: y_jQUV90s3RLsaR0s7ad_qVAcRM.roa (raw, json)
Hash identifier: bZG3lpneRB9/xstupcjfm8sEidMcz/32U+yQyGbw5Lw=
Subject key identifier: CB:F8:D0:51:5F:74:B3:74:4B:B1:A4:74:B3:B6:9D:FE:A5:40:71:13
Certificate issuer: /CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Certificate serial: 3831826F
Authority key identifier: A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/y_jQUV90s3RLsaR0s7ad_qVAcRM.roa
Signing time: Sat 01 Jan 2022 04:57:38 +0000
ROA not before: Sat 01 Jan 2022 04:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201425
IP address blocks: 188.214.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 942768751 (0x3831826f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Validity
Not Before: Jan 1 04:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbf8d0515f74b3744bb1a474b3b69dfea5407113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fe:c9:8a:0a:1f:ff:ce:3f:85:0d:f1:5b:5b:
b1:1b:15:c2:fc:41:7b:90:57:db:80:54:8f:39:1d:
d4:33:e6:49:45:a6:68:c3:ec:1f:66:60:5c:bc:92:
6b:1f:22:50:72:45:63:c6:c5:5d:f2:3f:c3:4a:86:
7b:64:49:9c:2e:48:fc:55:da:f9:0e:4f:ab:ef:44:
4a:2e:8a:5b:5e:dd:40:44:51:8d:9a:8d:31:77:d3:
be:89:21:5c:51:a6:d2:0a:29:3f:dc:57:16:ec:05:
90:06:46:b7:33:a7:4c:5a:d7:1c:cc:00:ce:6a:a5:
30:4e:ac:fe:a3:42:50:b0:11:01:ad:d7:77:68:50:
b6:64:b8:a5:49:cc:2c:3d:c9:3c:77:09:23:f1:64:
7d:4b:c6:9f:77:98:9f:f3:f7:85:3a:c6:6c:63:68:
e4:cc:99:67:22:36:4a:52:a8:7d:1f:d9:eb:a7:e6:
32:17:ef:a5:3b:99:1c:9b:db:bd:fa:8c:90:5c:28:
1a:0f:00:4a:96:e2:2a:12:eb:1f:bf:06:21:2b:69:
52:cf:3f:25:52:93:06:8d:34:c5:c3:80:71:7b:22:
96:8d:f6:bb:38:29:a2:d1:ea:4b:bc:c6:38:bb:96:
1e:2e:f5:1f:15:72:d4:84:31:25:b5:bf:1d:74:75:
ed:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F8:D0:51:5F:74:B3:74:4B:B1:A4:74:B3:B6:9D:FE:A5:40:71:13
X509v3 Authority Key Identifier:
keyid:A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/y_jQUV90s3RLsaR0s7ad_qVAcRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.100.0/24
Signature Algorithm: sha256WithRSAEncryption
29:11:aa:4a:12:a5:c8:d4:69:2d:1a:56:37:bc:fc:eb:3a:96:
1b:3b:ab:bc:3d:74:78:bd:4f:17:3a:20:5d:20:39:80:69:c8:
5a:71:1c:f0:41:29:82:e5:1c:de:7f:bd:12:2c:c4:fa:71:ef:
42:72:63:67:ca:20:39:d3:e2:22:79:7d:e6:34:e7:a4:8e:5c:
38:5f:93:72:25:5b:4f:ed:0e:65:0b:d3:c1:59:8e:b9:06:a4:
4a:0e:5a:7c:18:24:d0:38:8e:ce:55:32:fe:c7:a9:a1:4f:16:
f0:9b:12:03:92:da:25:8d:41:1e:90:b1:4e:86:7b:db:a7:43:
58:d3:3b:dd:9e:46:a9:a1:c2:8a:68:c7:59:43:95:03:a8:ea:
76:e6:f3:25:35:4b:dd:e7:cf:6b:71:9b:24:7f:55:48:6a:ae:
c6:b2:d0:f4:68:fa:bb:fc:8e:f5:02:20:e7:1c:fa:3a:02:c6:
96:09:97:c7:25:ce:ae:4b:5c:4e:1d:27:cf:82:1d:4c:52:10:
c5:90:57:a9:15:22:1d:19:03:9c:cc:b1:b8:1a:16:1a:14:14:
14:92:23:27:3d:6f:c8:1f:dc:52:23:bd:6b:48:43:80:db:37:
de:1c:90:63:f1:a6:cd:81:c4:76:59:36:5b:3a:d6:76:85:cb:
6a:48:68:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEODGCbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MGFmZTFmZWQxZjJiN2RiMjRhMGMyZDFmNjEwMTA2ODRlOTNjYmQ1MB4XDTIyMDEw
MTA0NTczOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2JmOGQwNTE1Zjc0
YjM3NDRiYjFhNDc0YjNiNjlkZmVhNTQwNzExMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMX+yYoKH//OP4UN8VtbsRsVwvxBe5BX24BUjzkd1DPmSUWm
aMPsH2ZgXLySax8iUHJFY8bFXfI/w0qGe2RJnC5I/FXa+Q5Pq+9ESi6KW17dQERR
jZqNMXfTvokhXFGm0gopP9xXFuwFkAZGtzOnTFrXHMwAzmqlME6s/qNCULARAa3X
d2hQtmS4pUnMLD3JPHcJI/FkfUvGn3eYn/P3hTrGbGNo5MyZZyI2SlKofR/Z66fm
MhfvpTuZHJvbvfqMkFwoGg8ASpbiKhLrH78GIStpUs8/JVKTBo00xcOAcXsilo32
uzgpotHqS7zGOLuWHi71HxVy1IQxJbW/HXR17d8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTL+NBRX3SzdEuxpHSztp3+pUBxEzAfBgNVHSMEGDAWgBSgr+H+0fK32ySg
wtH2EBBoTpPL1TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29LX2hfdEh5dDlza29NTFI5aEFRYUU2VHk5VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvMzIwMmFkLTdiNDYtNDIyZC1hNGQyLWVjYTUzYTdmNzc2Mi8x
L3lfalFVVjkwczNSTHNhUjBzN2FkX3FWQWNSTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
MzIwMmFkLTdiNDYtNDIyZC1hNGQyLWVjYTUzYTdmNzc2Mi8xL29LX2hfdEh5dDlz
a29NTFI5aEFRYUU2VHk5VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALzWZDANBgkqhkiG9w0BAQsFAAOC
AQEAKRGqShKlyNRpLRpWN7z86zqWGzurvD10eL1PFzogXSA5gGnIWnEc8EEpguUc
3n+9EizE+nHvQnJjZ8ogOdPiInl95jTnpI5cOF+TciVbT+0OZQvTwVmOuQakSg5a
fBgk0DiOzlUy/sepoU8W8JsSA5LaJY1BHpCxToZ726dDWNM73Z5GqaHCimjHWUOV
A6jqdubzJTVL3efPa3GbJH9VSGquxrLQ9Gj6u/yO9QIg5xz6OgLGlgmXxyXOrktc
Th0nz4IdTFIQxZBXqRUiHRkDnMyxuBoWGhQUFJIjJz1vyB/cUiO9a0hDgNs33hyQ
Y/GmzYHEdlk2WzrWdoXLakhoSA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org