Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/1EU4nzwzsNBm_yFes7aebDJ-pxI.roa
File: 1EU4nzwzsNBm_yFes7aebDJ-pxI.roa (raw, json)
Hash identifier: Bq1CulnXV2mtH1BGg92pPi2sy7Q8DyT57mb6Rq1MlvE=
Subject key identifier: D4:45:38:9F:3C:33:B0:D0:66:FF:21:5E:B3:B6:9E:6C:32:7E:A7:12
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 330B1A74
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/1EU4nzwzsNBm_yFes7aebDJ-pxI.roa
Signing time: Sat 01 Jan 2022 09:58:41 +0000
ROA not before: Sat 01 Jan 2022 09:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210340
IP address blocks: 195.114.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 856365684 (0x330b1a74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 09:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d445389f3c33b0d066ff215eb3b69e6c327ea712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:74:b5:7b:45:c2:9f:6b:03:78:04:8a:61:ce:
75:9e:9f:e5:d3:60:ff:33:54:eb:9a:5d:57:56:fe:
fd:aa:4d:31:55:8a:18:07:de:03:c6:e8:15:6c:2d:
fb:49:99:c9:6b:d8:64:21:f0:89:00:9d:1a:ed:40:
6d:91:53:a4:c7:15:8c:5d:ad:e5:9f:c6:14:09:af:
97:ee:9a:d0:53:5f:65:26:4e:6b:12:66:36:81:80:
5e:23:c3:d4:25:e1:b2:0d:af:da:f9:51:4c:f6:e9:
c9:e8:6b:09:af:f1:3b:81:88:6e:70:dd:79:a6:f0:
79:f5:82:75:5e:01:81:81:65:74:d6:70:4e:36:80:
48:a8:b4:03:87:db:d8:a8:38:8f:86:7c:e3:d8:6c:
a4:17:c2:30:29:60:7d:75:22:f9:3d:79:d4:33:28:
f8:82:13:bf:81:8f:55:55:8e:b8:9f:e8:80:8b:a8:
4a:d6:f8:ab:96:0e:43:e4:0c:68:8a:3c:29:ae:3e:
94:c3:b5:22:8e:f4:13:cd:ca:57:cb:97:ff:50:3e:
44:70:8f:7a:e6:9a:32:31:c2:0e:ed:da:30:2c:e5:
de:d7:21:95:5c:27:d9:b1:98:26:b3:6c:72:23:d0:
40:c5:a8:eb:de:2d:9d:47:49:0d:65:80:89:e9:b8:
3c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:45:38:9F:3C:33:B0:D0:66:FF:21:5E:B3:B6:9E:6C:32:7E:A7:12
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/1EU4nzwzsNBm_yFes7aebDJ-pxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.134.0/24
Signature Algorithm: sha256WithRSAEncryption
84:f5:7d:c6:8d:cb:ed:b4:8c:6b:79:5c:c8:e8:8b:2e:24:cd:
0e:9b:39:1e:ff:e7:cb:66:89:1a:83:46:03:4f:38:98:59:1c:
10:d5:77:cf:71:91:f6:ef:bc:dc:45:ed:27:a3:43:5f:51:cd:
7a:25:6f:68:19:69:f1:4e:86:6c:c5:0a:9d:28:cf:e3:1e:ef:
ef:7e:35:79:2b:7d:80:83:89:84:56:1c:f5:ca:ad:98:79:82:
1f:03:86:a1:94:dc:d8:27:ae:a1:7a:f1:0d:04:56:5d:f2:d7:
a1:28:36:50:db:8d:a1:f6:78:b1:8e:ca:98:44:51:a7:d4:ee:
ef:43:46:7e:42:18:10:2a:cc:11:4f:3d:e2:86:db:d9:c9:64:
6f:24:e3:46:b7:c0:c7:b3:e8:66:8e:41:89:d2:c0:3c:6e:8a:
92:79:a2:3a:d3:94:4b:64:04:32:e2:15:9b:d2:52:7c:99:54:
38:5e:f6:41:d6:10:34:76:75:e6:33:86:2a:42:a9:0c:59:3a:
06:76:9f:d6:d4:7f:a6:b6:78:44:d4:f8:e0:c1:c4:c5:e1:1c:
0b:9f:3b:c8:0a:ab:da:4e:e4:be:7a:d0:e0:13:94:61:e4:c8:
0d:fa:62:7f:d8:a8:4b:72:68:36:67:ec:e5:69:34:d6:09:2c:
31:f5:66:8a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMwsadDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YmM4ZGJlNTIwODNhZDMzNWM5ZjFmZGU2MDE2ZWM4YjQ5MjkzMTQwMB4XDTIyMDEw
MTA5NTg0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDQ0NTM4OWYzYzMz
YjBkMDY2ZmYyMTVlYjNiNjllNmMzMjdlYTcxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMl0tXtFwp9rA3gEimHOdZ6f5dNg/zNU65pdV1b+/apNMVWK
GAfeA8boFWwt+0mZyWvYZCHwiQCdGu1AbZFTpMcVjF2t5Z/GFAmvl+6a0FNfZSZO
axJmNoGAXiPD1CXhsg2v2vlRTPbpyehrCa/xO4GIbnDdeabwefWCdV4BgYFldNZw
TjaASKi0A4fb2Kg4j4Z849hspBfCMClgfXUi+T151DMo+IITv4GPVVWOuJ/ogIuo
Stb4q5YOQ+QMaIo8Ka4+lMO1Io70E83KV8uX/1A+RHCPeuaaMjHCDu3aMCzl3tch
lVwn2bGYJrNsciPQQMWo694tnUdJDWWAiem4PPMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTURTifPDOw0Gb/IV6ztp5sMn6nEjAfBgNVHSMEGDAWgBSryNvlIIOtM1yf
H95gFuyLSSkxQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3E4amI1U0NEclROY254X2VZQmJzaTBrcE1VQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvY2U2Y2NiLTI1Y2YtNDkxNy1iM2NkLTMwNTZhZjlhMzM1ZS8x
LzFFVTRuend6c05CbV95RmVzN2FlYkRKLXB4SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
Y2U2Y2NiLTI1Y2YtNDkxNy1iM2NkLTMwNTZhZjlhMzM1ZS8xL3E4amI1U0NEclRO
Y254X2VZQmJzaTBrcE1VQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNyhjANBgkqhkiG9w0BAQsFAAOC
AQEAhPV9xo3L7bSMa3lcyOiLLiTNDps5Hv/ny2aJGoNGA084mFkcENV3z3GR9u+8
3EXtJ6NDX1HNeiVvaBlp8U6GbMUKnSjP4x7v7341eSt9gIOJhFYc9cqtmHmCHwOG
oZTc2CeuoXrxDQRWXfLXoSg2UNuNofZ4sY7KmERRp9Tu70NGfkIYECrMEU894obb
2clkbyTjRrfAx7PoZo5BidLAPG6KknmiOtOUS2QEMuIVm9JSfJlUOF72QdYQNHZ1
5jOGKkKpDFk6Bnaf1tR/prZ4RNT44MHExeEcC587yAqr2k7kvnrQ4BOUYeTIDfpi
f9ioS3JoNmfs5Wk01gksMfVmig==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org