Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/30879c-9766-4a05-adbf-9ac81ef4592c/1/i3aGJfRROUfNsZr3Z3tnag0WIcc.roa
File: i3aGJfRROUfNsZr3Z3tnag0WIcc.roa (raw, json)
Hash identifier: xVDYkOuf1FHeYmfJaDsedD41Tl+Ohy1/z4hYVAMKlWg=
Subject key identifier: 8B:76:86:25:F4:51:39:47:CD:B1:9A:F7:67:7B:67:6A:0D:16:21:C7
Certificate issuer: /CN=4a4e2cf002d45ff9ade2ab8643adbfe083ca12d0
Certificate serial: 0A382426
Authority key identifier: 4A:4E:2C:F0:02:D4:5F:F9:AD:E2:AB:86:43:AD:BF:E0:83:CA:12:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sk4s8ALUX_mt4quGQ62_4IPKEtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/30879c-9766-4a05-adbf-9ac81ef4592c/1/i3aGJfRROUfNsZr3Z3tnag0WIcc.roa
Signing time: Mon 16 May 2022 05:04:40 +0000
ROA not before: Mon 16 May 2022 05:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202462
IP address blocks: 194.113.240.0/23 maxlen: 23
2001:67c:97c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171451430 (0xa382426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a4e2cf002d45ff9ade2ab8643adbfe083ca12d0
Validity
Not Before: May 16 05:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b768625f4513947cdb19af7677b676a0d1621c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3e:29:b2:a0:15:58:a4:ee:0f:9f:99:e5:75:
16:ea:c6:3d:a6:e0:88:38:7c:cb:fb:ac:cb:51:9e:
34:38:82:6a:60:16:f3:70:c9:e0:b0:b6:c6:08:45:
41:4b:84:9c:7c:b3:81:80:10:82:4c:72:49:d6:c7:
7e:36:f2:b2:39:6b:06:c4:6c:f7:0b:af:c2:03:7d:
d9:9f:ff:15:05:ec:cf:2e:32:19:0c:f4:62:af:2c:
84:f4:6a:8d:43:30:38:a3:2a:2d:a3:21:6a:e4:78:
93:35:1a:bf:d2:ef:00:fa:4e:59:03:e9:c5:4d:34:
31:39:19:d3:a8:d1:cf:cd:4c:98:9e:bc:bb:aa:b6:
09:a1:67:69:02:7e:a2:d4:55:f1:06:0e:42:b3:26:
c9:e9:4d:8a:15:3f:bb:69:1e:9d:5c:e6:18:ef:cd:
8d:ed:83:2a:2d:e0:bf:a1:bf:e4:86:59:20:f1:1b:
2b:82:cf:10:21:55:32:04:a7:8a:88:6f:f1:e5:b0:
9a:48:e4:fb:29:27:d1:1d:0d:8d:6c:5d:72:d2:0f:
b2:bc:27:b3:bd:29:f3:bf:26:89:88:41:13:9f:72:
fc:91:3a:1b:b1:21:5e:3e:91:18:10:9f:40:05:4c:
23:77:75:eb:40:4d:5b:f4:9c:00:dd:ac:c3:e7:26:
66:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:76:86:25:F4:51:39:47:CD:B1:9A:F7:67:7B:67:6A:0D:16:21:C7
X509v3 Authority Key Identifier:
keyid:4A:4E:2C:F0:02:D4:5F:F9:AD:E2:AB:86:43:AD:BF:E0:83:CA:12:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sk4s8ALUX_mt4quGQ62_4IPKEtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/30879c-9766-4a05-adbf-9ac81ef4592c/1/i3aGJfRROUfNsZr3Z3tnag0WIcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/30879c-9766-4a05-adbf-9ac81ef4592c/1/Sk4s8ALUX_mt4quGQ62_4IPKEtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.240.0/23
IPv6:
2001:67c:97c::/48
Signature Algorithm: sha256WithRSAEncryption
7f:18:2c:ab:63:83:ce:59:d6:99:e0:e3:f0:29:53:35:9f:17:
e8:c6:48:91:c6:05:ce:c4:a5:fd:81:bf:af:bf:a5:95:b5:1a:
27:fa:79:87:e7:4d:21:bc:7c:97:ab:de:c9:b8:d1:83:58:e1:
e4:9f:44:84:69:5f:fb:a9:4a:34:29:5a:8a:fa:1c:c0:bc:14:
73:89:3d:bd:7e:6e:52:c3:18:80:46:6b:3d:37:5b:86:f9:f5:
d8:22:bf:2a:f3:97:4a:9b:22:6d:39:4e:1b:cf:a9:c1:d7:0f:
67:d5:15:af:d1:44:47:43:62:e5:1f:3d:2b:7c:6b:2c:4f:1f:
c9:d5:ea:93:ac:cd:8d:59:21:b8:e2:bc:bf:ff:e1:90:7f:ba:
4f:c6:ff:6a:15:fd:fe:43:2a:1a:b7:90:a4:be:50:d8:5b:b0:
15:20:de:3e:5a:a5:8c:7c:d5:95:ca:55:76:4f:93:c4:c3:24:
18:e4:e7:88:8a:42:dc:c5:dd:c8:10:aa:a9:b0:a7:b6:d4:b0:
02:ec:59:3c:d7:73:74:d2:d5:79:b8:ca:80:f3:bb:e9:43:6a:
3e:8f:73:d3:1c:94:58:30:db:0d:fa:c2:91:f4:b6:e4:84:7d:
53:7f:df:5c:50:1b:97:ba:44:94:e8:ea:f4:e6:16:d5:6e:fb:
12:8d:30:2a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECjgkJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YTRlMmNmMDAyZDQ1ZmY5YWRlMmFiODY0M2FkYmZlMDgzY2ExMmQwMB4XDTIyMDUx
NjA1MDQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGI3Njg2MjVmNDUx
Mzk0N2NkYjE5YWY3Njc3YjY3NmEwZDE2MjFjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN0+KbKgFVik7g+fmeV1FurGPabgiDh8y/usy1GeNDiCamAW
83DJ4LC2xghFQUuEnHyzgYAQgkxySdbHfjbysjlrBsRs9wuvwgN92Z//FQXszy4y
GQz0Yq8shPRqjUMwOKMqLaMhauR4kzUav9LvAPpOWQPpxU00MTkZ06jRz81MmJ68
u6q2CaFnaQJ+otRV8QYOQrMmyelNihU/u2kenVzmGO/Nje2DKi3gv6G/5IZZIPEb
K4LPECFVMgSniohv8eWwmkjk+ykn0R0NjWxdctIPsrwns70p878miYhBE59y/JE6
G7EhXj6RGBCfQAVMI3d160BNW/ScAN2sw+cmZl0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSLdoYl9FE5R82xmvdne2dqDRYhxzAfBgNVHSMEGDAWgBRKTizwAtRf+a3i
q4ZDrb/gg8oS0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NrNHM4QUxVWF9tdDRxdUdRNjJfNElQS0V0QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWIvMzA4NzljLTk3NjYtNGEwNS1hZGJmLTlhYzgxZWY0NTkyYy8x
L2kzYUdKZlJST1VmTnNacjNaM3RuYWcwV0ljYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIv
MzA4NzljLTk3NjYtNGEwNS1hZGJmLTlhYzgxZWY0NTkyYy8xL1NrNHM4QUxVWF9t
dDRxdUdRNjJfNElQS0V0QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAcJx8DAPBAIAAjAJAwcAIAEGfAl8
MA0GCSqGSIb3DQEBCwUAA4IBAQB/GCyrY4POWdaZ4OPwKVM1nxfoxkiRxgXOxKX9
gb+vv6WVtRon+nmH500hvHyXq97JuNGDWOHkn0SEaV/7qUo0KVqK+hzAvBRziT29
fm5SwxiARms9N1uG+fXYIr8q85dKmyJtOU4bz6nB1w9n1RWv0URHQ2LlHz0rfGss
Tx/J1eqTrM2NWSG44ry//+GQf7pPxv9qFf3+Qyoat5CkvlDYW7AVIN4+WqWMfNWV
ylV2T5PEwyQY5OeIikLcxd3IEKqpsKe21LAC7Fk813N00tV5uMqA87vpQ2o+j3PT
HJRYMNsN+sKR9LbkhH1Tf99cUBuXukSU6Or05hbVbvsSjTAq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:05 2024 by rpki-client on console-fra.rpki-client.org