Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/1-B2dHPw_IsRGh8igqCpQfDYzfhA.roa
File: 1-B2dHPw_IsRGh8igqCpQfDYzfhA.roa (raw, json)
Hash identifier: Csiqzho3UxFj8lQbZeTMz7BNcdh8x4EJwy6H+dsZ3Rs=
Subject key identifier: F8:1D:9D:1C:FC:3F:22:C4:46:87:C8:A0:A8:2A:50:7C:36:33:7E:10
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 0182B6A7A27836DDF1FCFF7BB853D6BC5AF4
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/1-B2dHPw_IsRGh8igqCpQfDYzfhA.roa
Signing time: Fri 19 Aug 2022 15:10:15 +0000
ROA not before: Fri 19 Aug 2022 15:10:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210367
IP address blocks: 195.234.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b6:a7:a2:78:36:dd:f1:fc:ff:7b:b8:53:d6:bc:5a:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Aug 19 15:10:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f81d9d1cfc3f22c44687c8a0a82a507c36337e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:54:bd:64:6c:e7:c1:87:ae:d6:05:20:6d:f6:
10:76:67:6e:a0:e7:72:60:12:e8:1a:16:58:e1:6e:
c5:a9:41:e0:59:75:14:08:a7:69:0c:0a:a8:a4:4f:
e0:bb:85:82:1d:74:9e:9c:17:78:3b:11:05:fd:05:
d9:e9:2c:c1:58:a2:c1:81:b8:ca:a8:f3:7d:df:3e:
54:26:77:ec:35:7c:ab:0c:12:0e:3e:02:ec:8f:4b:
10:98:48:cf:10:b0:9b:54:dc:cb:43:68:d3:bd:7d:
4a:7c:f4:2e:e9:d1:6e:56:31:e8:1d:68:ef:14:db:
8f:00:2f:72:59:08:8d:20:c0:08:eb:94:ed:a7:96:
59:28:5c:fc:63:21:66:ac:3c:fc:6e:6c:c5:b3:ea:
01:72:d0:70:a3:39:77:21:51:af:b4:2b:b5:58:b6:
36:83:57:bb:60:5f:0b:af:3b:fa:51:c9:e3:a1:6d:
3b:36:33:4f:60:08:b1:31:4f:20:30:79:b1:f4:5c:
47:60:e3:9a:7b:c5:a5:fa:64:ec:52:7c:65:e5:3f:
09:2a:a8:36:b1:aa:ec:9d:13:bb:ce:6a:ca:7b:6f:
18:8e:2b:24:d5:c9:00:1a:c8:1f:87:66:69:98:5e:
63:97:e0:53:51:54:dd:2b:09:60:a4:18:0d:4e:19:
62:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1D:9D:1C:FC:3F:22:C4:46:87:C8:A0:A8:2A:50:7C:36:33:7E:10
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/1-B2dHPw_IsRGh8igqCpQfDYzfhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.49.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:59:2f:1c:8e:49:15:56:ba:1e:a1:aa:89:cd:24:58:88:22:
72:02:46:05:ff:52:d4:66:ae:d4:7e:88:16:26:ad:f1:a8:11:
13:8f:9c:eb:cb:c8:89:f9:74:be:c1:d4:76:cd:cd:6e:e1:16:
1a:01:12:1d:65:32:69:1b:64:76:ee:a8:ae:1a:75:22:fb:c7:
42:43:3b:0f:40:73:51:36:ea:23:67:37:fd:44:18:ec:ed:d8:
bf:62:df:04:00:b5:f7:ec:5d:77:1d:b8:c0:90:61:d9:5b:88:
6d:4d:f1:f8:f9:50:5b:35:a7:6a:06:73:32:b9:8d:6a:ae:68:
d8:35:d7:e1:a1:c8:ed:b3:0b:38:53:5b:0b:e7:ec:04:b4:23:
f4:15:ec:e8:77:a8:70:78:e7:a9:7b:27:4d:74:75:f4:b3:78:
e3:b4:ad:45:ec:a2:c9:c7:b4:76:cc:76:3a:ea:f2:19:d2:f7:
37:d4:57:cd:9c:e8:e7:cc:29:c6:79:b3:2b:74:c6:4f:12:d7:
57:eb:a8:48:1c:6a:a4:e0:f9:0e:48:87:68:56:f3:f6:f4:33:
d5:24:11:0d:92:f4:0c:55:17:d7:e9:de:f7:db:1d:e0:9d:63:
45:01:82:e2:20:2b:be:58:38:f4:f3:3b:81:b3:47:08:3a:06:
01:ba:65:90
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYK2p6J4Nt3x/P97uFPWvFr0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwMTdiMGJkOTA4MjdkZTA4ZDI0ZmVmNjFiY2M0NDg2MjAy
NGJmN2UwHhcNMjIwODE5MTUxMDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODFkOWQxY2ZjM2YyMmM0NDY4N2M4YTBhODJhNTA3YzM2MzM3ZTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVS9ZGznwYeu1gUgbfYQdmduoOdy
YBLoGhZY4W7FqUHgWXUUCKdpDAqopE/gu4WCHXSenBd4OxEF/QXZ6SzBWKLBgbjK
qPN93z5UJnfsNXyrDBIOPgLsj0sQmEjPELCbVNzLQ2jTvX1KfPQu6dFuVjHoHWjv
FNuPAC9yWQiNIMAI65Ttp5ZZKFz8YyFmrDz8bmzFs+oBctBwozl3IVGvtCu1WLY2
g1e7YF8Lrzv6UcnjoW07NjNPYAixMU8gMHmx9FxHYOOae8Wl+mTsUnxl5T8JKqg2
sarsnRO7zmrKe28Yjisk1ckAGsgfh2ZpmF5jl+BTUVTdKwlgpBgNThliWwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPgdnRz8PyLERofIoKgqUHw2M34QMB8GA1UdIwQY
MBaAFJAXsL2Qgn3gjST+9hvMRIYgJL9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9iYjU2MGEtNDI4NC00ZmMwLWIwNWQt
YThiZTk5MzJhYTg5LzEvMS1CMmRIUHdfSXNSR2g4aWdxQ3BRZkRZemZoQS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODMvYmI1NjBhLTQyODQtNGZjMC1iMDVkLWE4YmU5OTMyYWE4
OS8xL2tCZXd2WkNDZmVDTkpQNzJHOHhFaGlBa3YzNC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMPqMTAN
BgkqhkiG9w0BAQsFAAOCAQEAalkvHI5JFVa6HqGqic0kWIgicgJGBf9S1Gau1H6I
Fiat8agRE4+c68vIifl0vsHUds3NbuEWGgESHWUyaRtkdu6orhp1IvvHQkM7D0Bz
UTbqI2c3/UQY7O3Yv2LfBAC19+xddx24wJBh2VuIbU3x+PlQWzWnagZzMrmNaq5o
2DXX4aHI7bMLOFNbC+fsBLQj9BXs6HeocHjnqXsnTXR19LN447StReyiyce0dsx2
OuryGdL3N9RXzZzo58wpxnmzK3TGTxLXV+uoSBxqpOD5DkiHaFbz9vQz1SQRDZL0
DFUX1+ne99sd4J1jRQGC4iArvlg49PM7gbNHCDoGAbplkA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:19 2024 by rpki-client on console-fra.rpki-client.org