Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/hGWoy7QIj6uB6GKjaDBkP_VuvJ4.roa
File: hGWoy7QIj6uB6GKjaDBkP_VuvJ4.roa (raw, json)
Hash identifier: lrrCdjbDmXqS+WetFhZ9qC/B9/19bxM2YjbFb9hZovM=
Subject key identifier: 84:65:A8:CB:B4:08:8F:AB:81:E8:62:A3:68:30:64:3F:F5:6E:BC:9E
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 330C43EB
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/hGWoy7QIj6uB6GKjaDBkP_VuvJ4.roa
Signing time: Sat 01 Jan 2022 09:58:42 +0000
ROA not before: Sat 01 Jan 2022 09:58:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210613
IP address blocks: 195.114.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 856441835 (0x330c43eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 09:58:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8465a8cbb4088fab81e862a36830643ff56ebc9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d0:46:21:5e:a1:df:8a:11:02:18:52:00:41:
aa:11:95:87:b4:fd:f2:ec:5b:41:32:f5:5f:39:8a:
77:2a:da:97:78:fa:5a:5e:59:58:15:ac:8c:1b:1e:
c7:92:ad:33:73:24:f6:69:ee:e0:7c:f2:b1:fe:e3:
7c:e1:1a:d9:0d:e6:a3:6b:79:79:0a:6a:f9:d4:60:
5b:c5:a6:fa:4f:b6:b7:11:9d:e1:a4:f4:7d:52:7f:
94:1f:90:47:93:0c:e2:fb:63:92:3b:9f:76:1d:37:
b9:06:27:9b:f7:26:e7:e9:30:3c:02:3c:54:57:65:
a8:c6:fd:78:0a:17:87:e2:e4:87:bd:c7:dd:2f:1e:
16:83:80:3f:8f:1d:d4:73:3a:c0:81:ce:4f:85:30:
5f:1c:cb:10:42:31:8d:49:2e:97:9d:a9:06:c5:08:
02:f1:de:90:41:74:c2:7e:20:90:36:43:b1:bd:6d:
5e:87:69:7d:2a:d5:b1:cf:db:83:b1:b7:16:d8:f8:
ce:19:ff:e4:86:8f:f2:f7:af:60:63:ef:af:18:92:
3f:d7:6c:e0:52:90:c9:5e:f9:5c:fd:c4:08:51:7b:
b9:f0:36:f8:60:d2:b6:e7:1e:a4:2d:5d:bc:8d:dc:
69:00:fc:07:ce:92:e3:00:c2:33:04:c3:04:8c:b4:
b9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:65:A8:CB:B4:08:8F:AB:81:E8:62:A3:68:30:64:3F:F5:6E:BC:9E
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/hGWoy7QIj6uB6GKjaDBkP_VuvJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.132.0/24
Signature Algorithm: sha256WithRSAEncryption
22:45:5b:41:45:95:95:56:42:ba:73:34:8b:d2:51:b1:30:fc:
77:f2:8a:71:53:83:52:b4:17:80:61:ec:95:5b:d0:0b:67:fd:
36:e0:5f:d5:ba:27:9f:af:ac:21:84:bc:c6:52:1f:0f:51:de:
fc:c0:72:38:5c:20:7f:4f:9a:c8:75:85:db:f5:54:ba:b8:f1:
85:44:d9:d3:ed:74:64:a9:a7:4d:13:14:8b:a2:b8:2a:ef:58:
e8:d2:5c:62:e2:9f:13:9c:b9:6f:f2:ef:c4:25:6b:6f:70:32:
5f:d4:b4:94:ac:c2:e9:a0:ea:5c:b6:71:40:92:db:85:08:d6:
95:af:41:b8:06:d3:dd:b8:1b:c0:1f:04:18:32:7a:a1:8b:e9:
11:d9:04:45:99:f9:31:0e:df:cb:50:84:6e:7d:86:9c:cc:59:
a6:7c:79:05:d0:b5:ca:48:32:00:d9:f3:99:96:cc:ae:15:b3:
42:76:3d:38:1d:85:72:03:28:2e:2d:52:11:10:7b:0a:a1:da:
08:10:5e:cb:ca:08:25:52:85:7f:f4:23:83:5c:4e:fd:de:b7:
13:8f:5f:4a:1c:23:8e:74:18:3b:31:93:09:04:ca:ac:4a:33:
f6:f1:15:17:5f:49:9e:fa:8b:5d:2e:ba:8d:73:2e:34:26:82:
d1:8f:dc:cc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMwxD6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YmM4ZGJlNTIwODNhZDMzNWM5ZjFmZGU2MDE2ZWM4YjQ5MjkzMTQwMB4XDTIyMDEw
MTA5NTg0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQ2NWE4Y2JiNDA4
OGZhYjgxZTg2MmEzNjgzMDY0M2ZmNTZlYmM5ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJfQRiFeod+KEQIYUgBBqhGVh7T98uxbQTL1XzmKdyral3j6
Wl5ZWBWsjBsex5KtM3Mk9mnu4Hzysf7jfOEa2Q3mo2t5eQpq+dRgW8Wm+k+2txGd
4aT0fVJ/lB+QR5MM4vtjkjufdh03uQYnm/cm5+kwPAI8VFdlqMb9eAoXh+Lkh73H
3S8eFoOAP48d1HM6wIHOT4UwXxzLEEIxjUkul52pBsUIAvHekEF0wn4gkDZDsb1t
XodpfSrVsc/bg7G3Ftj4zhn/5IaP8vevYGPvrxiSP9ds4FKQyV75XP3ECFF7ufA2
+GDStucepC1dvI3caQD8B86S4wDCMwTDBIy0uVMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSEZajLtAiPq4HoYqNoMGQ/9W68njAfBgNVHSMEGDAWgBSryNvlIIOtM1yf
H95gFuyLSSkxQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3E4amI1U0NEclROY254X2VZQmJzaTBrcE1VQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvY2U2Y2NiLTI1Y2YtNDkxNy1iM2NkLTMwNTZhZjlhMzM1ZS8x
L2hHV295N1FJajZ1QjZHS2phREJrUF9WdXZKNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
Y2U2Y2NiLTI1Y2YtNDkxNy1iM2NkLTMwNTZhZjlhMzM1ZS8xL3E4amI1U0NEclRO
Y254X2VZQmJzaTBrcE1VQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNyhDANBgkqhkiG9w0BAQsFAAOC
AQEAIkVbQUWVlVZCunM0i9JRsTD8d/KKcVODUrQXgGHslVvQC2f9NuBf1bonn6+s
IYS8xlIfD1He/MByOFwgf0+ayHWF2/VUurjxhUTZ0+10ZKmnTRMUi6K4Ku9Y6NJc
YuKfE5y5b/LvxCVrb3AyX9S0lKzC6aDqXLZxQJLbhQjWla9BuAbT3bgbwB8EGDJ6
oYvpEdkERZn5MQ7fy1CEbn2GnMxZpnx5BdC1ykgyANnzmZbMrhWzQnY9OB2FcgMo
Li1SERB7CqHaCBBey8oIJVKFf/Qjg1xO/d63E49fShwjjnQYOzGTCQTKrEoz9vEV
F19JnvqLXS66jXMuNCaC0Y/czA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org