Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/37514f-14e9-4dbe-b398-c87fab985af8/1/8eEtTBuXFHM8pQ45wt9aqzbN5i8.roa
File: 8eEtTBuXFHM8pQ45wt9aqzbN5i8.roa (raw, json)
Hash identifier: 5yUAN3ntp9/lOez/Pgc+wKdaQaFVpAG72QPUCkYg64k=
Subject key identifier: F1:E1:2D:4C:1B:97:14:73:3C:A5:0E:39:C2:DF:5A:AB:36:CD:E6:2F
Certificate issuer: /CN=3d14528eefc2df93ffb4e74fa1b6503b76ed96ce
Certificate serial: 0B278F32
Authority key identifier: 3D:14:52:8E:EF:C2:DF:93:FF:B4:E7:4F:A1:B6:50:3B:76:ED:96:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRRSju_C35P_tOdPobZQO3btls4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/37514f-14e9-4dbe-b398-c87fab985af8/1/8eEtTBuXFHM8pQ45wt9aqzbN5i8.roa
Signing time: Sat 01 Jan 2022 06:05:48 +0000
ROA not before: Sat 01 Jan 2022 06:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49756
IP address blocks: 194.242.20.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187141938 (0xb278f32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d14528eefc2df93ffb4e74fa1b6503b76ed96ce
Validity
Not Before: Jan 1 06:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1e12d4c1b9714733ca50e39c2df5aab36cde62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6b:c3:05:ef:06:4f:4d:40:1f:e3:ad:25:4b:
af:9a:f4:55:72:75:46:26:a2:fb:95:15:06:1a:d3:
06:e5:6f:4b:56:75:87:ae:e4:0a:57:fb:e3:6e:14:
83:32:17:42:a4:07:93:3e:77:2f:c5:ad:c5:84:cb:
29:06:bb:49:64:ee:77:a1:97:b6:db:eb:5f:74:10:
1c:b0:5c:82:42:0b:fe:a2:38:a2:8c:18:cc:f1:23:
d5:57:c8:10:24:02:75:87:ce:bc:7b:b1:26:94:a7:
be:d5:8a:e8:15:bf:94:56:2a:c8:ea:6e:3a:c5:2d:
4e:84:05:17:a5:b2:22:b1:00:48:e7:ef:b4:07:df:
d7:27:6c:0c:46:d0:e1:f3:f8:f8:ae:57:d9:c4:3d:
80:81:59:70:2f:2c:21:89:18:28:fa:19:1c:a5:19:
2e:fc:56:31:b8:d2:1c:c3:0f:03:54:5f:2f:c6:8b:
11:35:19:84:70:77:d5:64:73:39:e3:d6:d5:74:9f:
1e:43:aa:70:e9:22:89:c3:82:d3:6d:38:a9:27:9a:
d9:f8:20:0a:8a:38:be:08:f3:d2:b6:65:bc:80:07:
8c:aa:03:99:0b:a2:46:9b:86:dd:b9:e2:9a:22:0d:
1a:41:fb:4c:e9:12:52:e7:3b:dc:67:68:8e:e0:e6:
fe:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E1:2D:4C:1B:97:14:73:3C:A5:0E:39:C2:DF:5A:AB:36:CD:E6:2F
X509v3 Authority Key Identifier:
keyid:3D:14:52:8E:EF:C2:DF:93:FF:B4:E7:4F:A1:B6:50:3B:76:ED:96:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRRSju_C35P_tOdPobZQO3btls4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/37514f-14e9-4dbe-b398-c87fab985af8/1/8eEtTBuXFHM8pQ45wt9aqzbN5i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/37514f-14e9-4dbe-b398-c87fab985af8/1/PRRSju_C35P_tOdPobZQO3btls4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.20.0/23
Signature Algorithm: sha256WithRSAEncryption
70:e3:5f:85:49:01:6c:bb:a3:de:59:b1:ac:b3:55:8a:44:41:
69:18:d8:52:93:d7:21:76:4a:9e:a9:83:02:94:1e:9e:8e:3e:
78:b8:a6:6f:e7:e5:20:a1:cd:7c:45:35:84:66:6f:96:c0:70:
46:96:7a:06:7f:36:18:40:85:de:7a:5b:b0:51:41:20:47:37:
14:b3:45:e7:90:6a:88:d6:df:b2:26:7c:0c:f9:da:46:c6:1d:
f1:63:cd:3a:f3:cb:06:38:f8:df:61:c9:71:3f:c5:f4:85:4f:
ee:ab:3d:36:e0:f5:53:47:4b:04:ed:bd:d1:c0:a5:f0:c0:27:
4c:d7:88:6d:e1:94:ae:68:04:18:e9:b7:58:21:58:2c:1b:9c:
c9:03:0b:0c:78:7c:ce:05:7c:0c:c5:eb:c0:79:ed:69:4c:5b:
47:2d:0c:08:52:8c:75:90:33:f3:19:27:27:56:21:86:37:59:
27:45:21:96:59:90:48:83:62:13:e6:02:75:75:0f:f0:e3:1c:
e8:dc:c7:e5:76:29:96:8b:e4:bf:2d:79:74:60:73:66:ac:4b:
1b:82:7f:90:ad:be:62:f3:37:55:24:45:73:01:9f:a9:49:e8:
4c:ac:2c:5b:ec:e0:48:bf:a0:11:26:24:bc:cd:06:59:f1:5d:
83:1b:4c:cd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECyePMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDE0NTI4ZWVmYzJkZjkzZmZiNGU3NGZhMWI2NTAzYjc2ZWQ5NmNlMB4XDTIyMDEw
MTA2MDU0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjFlMTJkNGMxYjk3
MTQ3MzNjYTUwZTM5YzJkZjVhYWIzNmNkZTYyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBrwwXvBk9NQB/jrSVLr5r0VXJ1Riai+5UVBhrTBuVvS1Z1
h67kClf7424UgzIXQqQHkz53L8WtxYTLKQa7SWTud6GXttvrX3QQHLBcgkIL/qI4
oowYzPEj1VfIECQCdYfOvHuxJpSnvtWK6BW/lFYqyOpuOsUtToQFF6WyIrEASOfv
tAff1ydsDEbQ4fP4+K5X2cQ9gIFZcC8sIYkYKPoZHKUZLvxWMbjSHMMPA1RfL8aL
ETUZhHB31WRzOePW1XSfHkOqcOkiicOC0204qSea2fggCoo4vgjz0rZlvIAHjKoD
mQuiRpuG3bnimiINGkH7TOkSUuc73GdojuDm/mECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTx4S1MG5cUczylDjnC31qrNs3mLzAfBgNVHSMEGDAWgBQ9FFKO78Lfk/+0
50+htlA7du2WzjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BSUlNqdV9DMzVQX3RPZFBvYlpRTzNidGxzNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTAvMzc1MTRmLTE0ZTktNGRiZS1iMzk4LWM4N2ZhYjk4NWFmOC8x
LzhlRXRUQnVYRkhNOHBRNDV3dDlhcXpiTjVpOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAv
Mzc1MTRmLTE0ZTktNGRiZS1iMzk4LWM4N2ZhYjk4NWFmOC8xL1BSUlNqdV9DMzVQ
X3RPZFBvYlpRTzNidGxzNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcLyFDANBgkqhkiG9w0BAQsFAAOC
AQEAcONfhUkBbLuj3lmxrLNVikRBaRjYUpPXIXZKnqmDApQeno4+eLimb+flIKHN
fEU1hGZvlsBwRpZ6Bn82GECF3npbsFFBIEc3FLNF55BqiNbfsiZ8DPnaRsYd8WPN
OvPLBjj432HJcT/F9IVP7qs9NuD1U0dLBO290cCl8MAnTNeIbeGUrmgEGOm3WCFY
LBucyQMLDHh8zgV8DMXrwHntaUxbRy0MCFKMdZAz8xknJ1YhhjdZJ0UhllmQSINi
E+YCdXUP8OMc6NzH5XYplovkvy15dGBzZqxLG4J/kK2+YvM3VSRFcwGfqUnoTKws
W+zgSL+gESYkvM0GWfFdgxtMzQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:12 2024 by rpki-client on console-fra.rpki-client.org