Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2f4c80-6ec0-480a-a809-1ef920875e37/1/etF-Tjvz63k5Hmx-wS5XE3N0cLc.roa
File: etF-Tjvz63k5Hmx-wS5XE3N0cLc.roa (raw, json)
Hash identifier: j4SHMyQ90mPcGWfdVk/4VCKVtxGPI1G/sPdv2MPyKaw=
Subject key identifier: 7A:D1:7E:4E:3B:F3:EB:79:39:1E:6C:7E:C1:2E:57:13:73:74:70:B7
Certificate issuer: /CN=c075b143b2c78a039db25bb8ee18fe9254fc90f3
Certificate serial: 015F33
Authority key identifier: C0:75:B1:43:B2:C7:8A:03:9D:B2:5B:B8:EE:18:FE:92:54:FC:90:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHWxQ7LHigOdslu47hj-klT8kPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2f4c80-6ec0-480a-a809-1ef920875e37/1/etF-Tjvz63k5Hmx-wS5XE3N0cLc.roa
Signing time: Sun 03 Apr 2022 09:51:14 +0000
ROA not before: Sun 03 Apr 2022 09:51:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 195.64.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89907 (0x15f33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c075b143b2c78a039db25bb8ee18fe9254fc90f3
Validity
Not Before: Apr 3 09:51:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ad17e4e3bf3eb79391e6c7ec12e5713737470b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:72:11:ff:cd:52:fe:d4:c2:39:a5:30:a3:38:
53:cc:3f:f4:ac:57:b2:c4:d6:ab:5e:ba:63:84:93:
75:f0:4a:33:06:8e:15:bc:20:2f:c3:dc:34:9f:1a:
c8:79:19:57:b9:2a:e0:35:8d:4b:51:5f:ae:81:c4:
44:a9:54:e3:ee:7b:39:19:b7:a6:0d:6b:3d:7f:c9:
79:5c:f0:59:3c:04:04:e8:91:f1:33:59:1a:0e:6d:
2b:6b:ae:dc:23:b9:3d:6b:92:a5:f5:5d:0f:62:f2:
5f:64:c1:bd:15:5f:5b:87:bf:73:64:cc:8c:02:48:
e9:a6:42:07:c6:46:e6:ac:94:b5:25:01:c6:49:5e:
8d:37:d0:cd:31:20:4f:53:80:66:ed:b8:1e:2b:f1:
3d:65:69:3b:4d:43:26:f4:5d:af:81:f6:c2:eb:ba:
80:20:c6:b7:7d:ab:1a:26:c7:af:5e:d6:f8:18:ca:
6a:96:ba:a9:8c:68:a5:64:b1:d2:e6:d4:0d:40:de:
a7:81:39:c9:c7:4d:0e:94:57:77:74:fb:d5:de:86:
7f:a4:7e:b8:3e:3d:56:21:d1:dc:15:77:f9:0f:11:
a2:86:e0:98:b6:27:0b:a2:fd:5c:8f:6c:f4:c2:ce:
4d:8e:40:61:66:77:4a:8f:88:ac:0f:85:43:5f:ea:
12:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D1:7E:4E:3B:F3:EB:79:39:1E:6C:7E:C1:2E:57:13:73:74:70:B7
X509v3 Authority Key Identifier:
keyid:C0:75:B1:43:B2:C7:8A:03:9D:B2:5B:B8:EE:18:FE:92:54:FC:90:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHWxQ7LHigOdslu47hj-klT8kPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2f4c80-6ec0-480a-a809-1ef920875e37/1/etF-Tjvz63k5Hmx-wS5XE3N0cLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2f4c80-6ec0-480a-a809-1ef920875e37/1/wHWxQ7LHigOdslu47hj-klT8kPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.96.0/24
Signature Algorithm: sha256WithRSAEncryption
47:a6:9e:65:de:9c:f2:c0:fa:76:7d:c7:63:0b:f1:5c:b2:8f:
98:df:61:21:a3:91:f9:46:37:1e:67:25:6d:22:90:8d:d6:f9:
fb:4b:91:24:b3:96:db:f7:3a:4b:25:36:c4:e2:7f:87:4a:8b:
d2:1a:ed:8a:6a:0d:e7:cc:a2:ab:59:46:e6:9b:d4:b4:b9:6d:
e3:a6:6c:1b:06:e5:17:39:7b:47:77:55:a8:a2:01:4f:2a:68:
92:62:f2:7a:12:40:d1:f2:4f:08:1e:eb:6b:28:3f:b3:8d:87:
ae:f9:a1:30:0c:1c:20:bf:39:69:e9:4f:3b:35:d0:2e:84:ff:
c2:f0:b8:8c:b9:a8:79:dc:db:58:c8:73:56:73:56:7b:71:da:
38:32:7d:15:d8:ed:44:9f:e3:04:88:91:f1:a4:fc:da:31:47:
49:79:5f:74:17:21:0e:e0:4b:2c:f6:32:28:00:25:fe:28:df:
92:cc:e4:17:b7:d3:a9:10:0b:32:ac:61:a7:55:56:e6:54:29:
61:54:27:10:e0:ab:36:6a:1a:e3:ab:be:b9:4a:a6:46:cb:66:
1b:5d:5e:da:d1:2a:84:3b:ae:45:f6:2a:85:6b:1e:b5:4a:55:
28:29:4f:1b:98:87:24:c3:05:d4:d5:8a:6d:9e:f6:43:f0:64:
d4:a9:c1:10
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAV8zMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMw
NzViMTQzYjJjNzhhMDM5ZGIyNWJiOGVlMThmZTkyNTRmYzkwZjMwHhcNMjIwNDAz
MDk1MTE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3YWQxN2U0ZTNiZjNl
Yjc5MzkxZTZjN2VjMTJlNTcxMzczNzQ3MGI3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtHIR/81S/tTCOaUwozhTzD/0rFeyxNarXrpjhJN18EozBo4V
vCAvw9w0nxrIeRlXuSrgNY1LUV+ugcREqVTj7ns5GbemDWs9f8l5XPBZPAQE6JHx
M1kaDm0ra67cI7k9a5Kl9V0PYvJfZMG9FV9bh79zZMyMAkjppkIHxkbmrJS1JQHG
SV6NN9DNMSBPU4Bm7bgeK/E9ZWk7TUMm9F2vgfbC67qAIMa3fasaJsevXtb4GMpq
lrqpjGilZLHS5tQNQN6ngTnJx00OlFd3dPvV3oZ/pH64Pj1WIdHcFXf5DxGihuCY
ticLov1cj2z0ws5NjkBhZndKj4isD4VDX+oSxwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFHrRfk478+t5OR5sfsEuVxNzdHC3MB8GA1UdIwQYMBaAFMB1sUOyx4oDnbJb
uO4Y/pJU/JDzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
d0hXeFE3TEhpZ09kc2x1NDdoai1rbFQ4a1BNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82MC8yZjRjODAtNmVjMC00ODBhLWE4MDktMWVmOTIwODc1ZTM3LzEv
ZXRGLVRqdno2M2s1SG14LXdTNVhFM04wY0xjLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8y
ZjRjODAtNmVjMC00ODBhLWE4MDktMWVmOTIwODc1ZTM3LzEvd0hXeFE3TEhpZ09k
c2x1NDdoai1rbFQ4a1BNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0BgMA0GCSqGSIb3DQEBCwUAA4IB
AQBHpp5l3pzywPp2fcdjC/Fcso+Y32Eho5H5RjceZyVtIpCN1vn7S5Eks5bb9zpL
JTbE4n+HSovSGu2Kag3nzKKrWUbmm9S0uW3jpmwbBuUXOXtHd1WoogFPKmiSYvJ6
EkDR8k8IHutrKD+zjYeu+aEwDBwgvzlp6U87NdAuhP/C8LiMuah53NtYyHNWc1Z7
cdo4Mn0V2O1En+MEiJHxpPzaMUdJeV90FyEO4Ess9jIoACX+KN+SzOQXt9OpEAsy
rGGnVVbmVClhVCcQ4Ks2ahrjq765SqZGy2YbXV7a0SqEO65F9iqFax61SlUoKU8b
mIckwwXU1YptnvZD8GTUqcEQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:15 2024 by rpki-client on console-fra.rpki-client.org