Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/JDEtU2w02slYpsINMbiqBG6ivWk.roa
File: JDEtU2w02slYpsINMbiqBG6ivWk.roa (raw, json)
Hash identifier: 9EOsmr0S46nnztfEs4CHQQwKjjQSKi2h5W0Qd85peIk=
Subject key identifier: 24:31:2D:53:6C:34:DA:C9:58:A6:C2:0D:31:B8:AA:04:6E:A2:BD:69
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 051A4F16
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/JDEtU2w02slYpsINMbiqBG6ivWk.roa
Signing time: Sat 01 Jan 2022 05:52:59 +0000
ROA not before: Sat 01 Jan 2022 05:52:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12888
IP address blocks: 195.27.162.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85610262 (0x51a4f16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: Jan 1 05:52:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24312d536c34dac958a6c20d31b8aa046ea2bd69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5a:8f:d2:3a:09:86:6f:ed:35:3c:66:86:60:
14:bb:fa:d0:f8:bd:3b:37:09:5b:7d:20:bb:00:b9:
bf:b2:ce:0f:97:4e:f8:8b:9a:d6:17:2c:1c:ab:f3:
2b:43:18:cc:ec:9f:eb:90:2c:90:f3:62:f4:6a:ca:
e5:89:cd:79:80:90:f9:d8:7f:14:9f:19:a7:2d:0c:
05:6b:7e:ad:84:55:0c:11:51:ac:c0:7b:44:34:bd:
be:d0:b7:67:df:92:f6:0c:37:bc:ab:c2:91:70:1f:
c6:70:8d:35:64:8f:04:86:f1:59:bd:ca:55:0a:53:
e2:c9:22:d5:02:3d:9f:23:08:6c:9d:8c:af:b3:46:
a0:03:dc:2f:7d:b9:29:e7:57:bd:20:ce:00:8b:85:
18:26:f2:80:7f:87:0c:30:60:f0:75:5e:9d:4a:a1:
7f:a4:f7:f1:8e:c5:34:e3:41:31:5f:ba:e6:27:92:
81:4a:ab:21:79:0c:fb:81:5c:84:4b:32:47:0c:19:
eb:04:71:32:7e:ad:ed:d1:42:98:bc:4e:9e:e3:0f:
65:a5:1b:d8:a5:f0:44:d4:64:57:8e:46:20:58:65:
b6:31:d4:5d:2f:da:20:a0:4f:8d:18:46:ca:2b:c2:
12:73:b5:ec:8d:e8:b0:5c:f4:7f:81:ab:56:c3:32:
58:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:31:2D:53:6C:34:DA:C9:58:A6:C2:0D:31:B8:AA:04:6E:A2:BD:69
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/JDEtU2w02slYpsINMbiqBG6ivWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.27.162.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:67:c6:08:cf:2e:b8:f9:93:81:1e:31:5f:d5:a1:09:e4:37:
43:d0:95:39:ed:09:3a:b9:99:59:d3:90:19:c9:a4:e2:9c:36:
37:3f:ce:5e:f7:9b:11:cc:57:d2:bd:63:c2:8e:cf:ac:a7:89:
ce:eb:3a:6e:9e:29:40:4f:d2:b0:82:e4:85:2a:25:44:68:ee:
dc:4b:47:29:2c:95:50:88:99:c0:e4:64:84:e8:83:a4:22:10:
c7:6d:5e:cf:9f:84:ce:5b:ac:fa:c6:21:0b:71:cf:ef:80:91:
02:c8:ac:13:f7:81:1a:3b:fd:6c:93:57:d3:ff:f8:6e:20:c6:
4f:44:aa:a0:9d:0a:2c:d2:30:37:b9:77:dc:78:0e:ba:12:0d:
35:4e:06:7a:ac:0e:ce:7d:0c:7f:1c:60:95:5e:5a:d8:bc:d2:
e7:31:28:4a:14:a0:46:7d:5d:02:13:26:47:76:06:82:20:a4:
73:c8:04:c4:5e:13:83:61:96:0c:48:3b:17:6e:98:88:a5:d6:
d7:9a:4b:6d:19:0a:df:7c:71:d7:5d:51:f3:3b:b3:ec:7e:ce:
02:b4:b5:4f:3b:e7:d3:a4:37:e2:1e:9b:f8:25:26:8e:7d:eb:
45:f2:7c:99:3d:81:0e:ee:f6:1f:0b:09:d8:ea:f3:23:fe:bc:
f5:e9:23:35
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBRpPFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YTg3NDZhNzZjZGE4MzY5MDA5ZDI4OTQxZWYxNTYyMzljNmE2M2ExMB4XDTIyMDEw
MTA1NTI1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjQzMTJkNTM2YzM0
ZGFjOTU4YTZjMjBkMzFiOGFhMDQ2ZWEyYmQ2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVaj9I6CYZv7TU8ZoZgFLv60Pi9OzcJW30guwC5v7LOD5dO
+Iua1hcsHKvzK0MYzOyf65AskPNi9GrK5YnNeYCQ+dh/FJ8Zpy0MBWt+rYRVDBFR
rMB7RDS9vtC3Z9+S9gw3vKvCkXAfxnCNNWSPBIbxWb3KVQpT4ski1QI9nyMIbJ2M
r7NGoAPcL325KedXvSDOAIuFGCbygH+HDDBg8HVenUqhf6T38Y7FNONBMV+65ieS
gUqrIXkM+4FchEsyRwwZ6wRxMn6t7dFCmLxOnuMPZaUb2KXwRNRkV45GIFhltjHU
XS/aIKBPjRhGyivCEnO17I3osFz0f4GrVsMyWLcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQkMS1TbDTayVimwg0xuKoEbqK9aTAfBgNVHSMEGDAWgBR6h0anbNqDaQCd
KJQe8VYjnGpjoTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VvZEdwMnphZzJrQW5TaVVIdkZXSTV4cVk2RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvOTEzZTEyLWY1ZWQtNDZmNC05ODJjLTUyZGVkZGRlZTM5My8x
L0pERXRVMncwMnNsWXBzSU5NYmlxQkc2aXZXay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
OTEzZTEyLWY1ZWQtNDZmNC05ODJjLTUyZGVkZGRlZTM5My8xL2VvZEdwMnphZzJr
QW5TaVVIdkZXSTV4cVk2RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcMbojANBgkqhkiG9w0BAQsFAAOC
AQEAjGfGCM8uuPmTgR4xX9WhCeQ3Q9CVOe0JOrmZWdOQGcmk4pw2Nz/OXvebEcxX
0r1jwo7PrKeJzus6bp4pQE/SsILkhSolRGju3EtHKSyVUIiZwORkhOiDpCIQx21e
z5+Ezlus+sYhC3HP74CRAsisE/eBGjv9bJNX0//4biDGT0SqoJ0KLNIwN7l33HgO
uhINNU4GeqwOzn0MfxxglV5a2LzS5zEoShSgRn1dAhMmR3YGgiCkc8gExF4Tg2GW
DEg7F26YiKXW15pLbRkK33xx111R8zuz7H7OArS1Tzvn06Q34h6b+CUmjn3rRfJ8
mT2BDu72HwsJ2OrzI/689ekjNQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:22 2024 by rpki-client on console-ams.rpki-client.org