Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/hDPhaKtyz7QFxE8QxW6RCK_fTJE.roa
File: hDPhaKtyz7QFxE8QxW6RCK_fTJE.roa (raw, json)
Hash identifier: +yvrPAWwXIyidgQl59WPlgj8JZLs0M/aj2i/My8Lko4=
Subject key identifier: 84:33:E1:68:AB:72:CF:B4:05:C4:4F:10:C5:6E:91:08:AF:DF:4C:91
Certificate issuer: /CN=1a93849bff337df8b8b0bd1ae252ee6119d8a61f
Certificate serial: 0F547A3E
Authority key identifier: 1A:93:84:9B:FF:33:7D:F8:B8:B0:BD:1A:E2:52:EE:61:19:D8:A6:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpOEm_8zffi4sL0a4lLuYRnYph8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/hDPhaKtyz7QFxE8QxW6RCK_fTJE.roa
Signing time: Tue 11 Jan 2022 08:39:09 +0000
ROA not before: Tue 11 Jan 2022 08:39:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 195.46.38.0/24 maxlen: 24
91.213.115.0/24 maxlen: 24
91.241.6.0/23 maxlen: 24
2001:678:264::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257194558 (0xf547a3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a93849bff337df8b8b0bd1ae252ee6119d8a61f
Validity
Not Before: Jan 11 08:39:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8433e168ab72cfb405c44f10c56e9108afdf4c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:27:45:8a:7e:7b:e7:2a:d7:d1:5d:fb:ad:d1:
19:ff:f7:67:d4:fe:40:06:8c:c4:be:b8:93:19:8b:
f7:7f:8b:4d:b0:67:bf:dd:9b:e7:d3:50:c6:4a:d8:
41:8b:5b:64:c7:c2:6f:35:c9:49:d3:45:d0:04:91:
d2:be:d3:63:ef:1a:f8:75:b4:a5:cf:80:fd:56:c2:
7c:af:16:40:e0:42:60:34:03:87:15:b2:bb:99:bf:
83:68:39:3f:c3:62:00:37:81:bd:24:78:64:1f:6b:
3f:1e:5b:50:f5:09:3b:0b:61:8f:f1:83:92:ff:09:
d2:8d:93:5e:ce:d0:cc:cf:e1:d8:55:b5:c2:66:a3:
c8:d5:7d:4c:46:dd:16:b6:b9:ac:36:8b:5a:3a:ed:
d5:e0:9f:6b:72:e4:e2:94:df:15:1a:d1:76:bc:48:
17:f1:10:f4:7e:e5:88:10:c5:68:04:b2:5f:11:12:
17:9b:77:f8:35:06:02:14:2d:22:59:dc:e5:4f:35:
0a:d3:0c:fb:70:bc:1c:68:11:f6:e3:5e:75:6e:61:
7c:03:e0:7a:28:dd:49:ec:0e:8f:22:15:f4:bb:8c:
76:38:57:2b:12:39:e6:8a:71:98:0a:5f:34:3c:72:
01:3f:23:ef:eb:45:f2:1c:e0:00:51:da:cc:81:4b:
87:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:33:E1:68:AB:72:CF:B4:05:C4:4F:10:C5:6E:91:08:AF:DF:4C:91
X509v3 Authority Key Identifier:
keyid:1A:93:84:9B:FF:33:7D:F8:B8:B0:BD:1A:E2:52:EE:61:19:D8:A6:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpOEm_8zffi4sL0a4lLuYRnYph8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/hDPhaKtyz7QFxE8QxW6RCK_fTJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/GpOEm_8zffi4sL0a4lLuYRnYph8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.115.0/24
91.241.6.0/23
195.46.38.0/24
IPv6:
2001:678:264::/48
Signature Algorithm: sha256WithRSAEncryption
19:f3:c8:2c:87:e0:ba:88:6e:8f:41:42:d0:d1:72:82:cb:90:
07:a1:aa:85:2f:c5:d9:73:a6:ea:38:c7:6b:d4:a5:fe:91:c6:
14:54:4f:97:fc:1d:8a:14:83:47:9d:9b:35:58:12:32:2c:e9:
5a:d4:8d:d8:e8:ba:c9:c1:29:6a:63:da:f5:e2:28:d6:11:c6:
3e:62:92:ef:c4:22:4c:8f:fa:28:7c:0d:a2:f2:39:c6:03:11:
1d:20:8e:05:35:f9:90:af:af:45:10:7b:07:83:73:fb:d2:a8:
ee:e3:58:59:7d:cf:41:d1:94:96:1c:74:79:07:f3:1b:2f:39:
27:85:41:76:62:fc:cc:94:04:07:f1:22:48:05:a2:4a:56:16:
a9:d7:4b:8d:12:1c:8c:6e:71:e4:60:2a:db:d2:db:4e:52:8f:
f1:37:23:f3:b4:a0:c6:15:65:fd:5c:0c:5c:bb:24:50:ce:95:
01:b0:c6:13:93:c7:5a:f4:e3:a1:99:55:1d:16:b5:85:48:8c:
45:06:3c:bb:df:22:82:23:4c:5c:ce:3c:72:99:d3:a6:85:d2:
3f:14:55:66:ee:84:c2:ca:4b:58:45:d7:6b:ae:af:b5:39:7a:
18:d2:e3:37:a8:39:fb:30:10:a3:a9:09:72:75:75:3b:47:a5:
8a:75:19:54
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIED1R6PjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YTkzODQ5YmZmMzM3ZGY4YjhiMGJkMWFlMjUyZWU2MTE5ZDhhNjFmMB4XDTIyMDEx
MTA4MzkwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQzM2UxNjhhYjcy
Y2ZiNDA1YzQ0ZjEwYzU2ZTkxMDhhZmRmNGM5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANcnRYp+e+cq19Fd+63RGf/3Z9T+QAaMxL64kxmL93+LTbBn
v92b59NQxkrYQYtbZMfCbzXJSdNF0ASR0r7TY+8a+HW0pc+A/VbCfK8WQOBCYDQD
hxWyu5m/g2g5P8NiADeBvSR4ZB9rPx5bUPUJOwthj/GDkv8J0o2TXs7QzM/h2FW1
wmajyNV9TEbdFra5rDaLWjrt1eCfa3Lk4pTfFRrRdrxIF/EQ9H7liBDFaASyXxES
F5t3+DUGAhQtIlnc5U81CtMM+3C8HGgR9uNedW5hfAPgeijdSewOjyIV9LuMdjhX
KxI55opxmApfNDxyAT8j7+tF8hzgAFHazIFLh4cCAwEAAaOCAiYwggIiMB0GA1Ud
DgQWBBSEM+Foq3LPtAXETxDFbpEIr99MkTAfBgNVHSMEGDAWgBQak4Sb/zN9+Liw
vRriUu5hGdimHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dwT0VtXzh6ZmZpNHNMMGE0bEx1WVJuWXBoOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvZDQ0OTdhLTExZjItNDlhYy1hZWY5LTQzZTY3ZDVkMGE4NS8x
L2hEUGhhS3R5ejdRRnhFOFF4VzZSQ0tfZlRKRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
ZDQ0OTdhLTExZjItNDlhYy1hZWY5LTQzZTY3ZDVkMGE4NS8xL0dwT0VtXzh6ZmZp
NHNMMGE0bEx1WVJuWXBoOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA8
BggrBgEFBQcBBwEB/wQtMCswGAQCAAEwEgMEAFvVcwMEAVvxBgMEAMMuJjAPBAIA
AjAJAwcAIAEGeAJkMA0GCSqGSIb3DQEBCwUAA4IBAQAZ88gsh+C6iG6PQULQ0XKC
y5AHoaqFL8XZc6bqOMdr1KX+kcYUVE+X/B2KFINHnZs1WBIyLOla1I3Y6LrJwSlq
Y9r14ijWEcY+YpLvxCJMj/oofA2i8jnGAxEdII4FNfmQr69FEHsHg3P70qju41hZ
fc9B0ZSWHHR5B/MbLzknhUF2YvzMlAQH8SJIBaJKVhap10uNEhyMbnHkYCrb0ttO
Uo/xNyPztKDGFWX9XAxcuyRQzpUBsMYTk8da9OOhmVUdFrWFSIxFBjy73yKCI0xc
zjxymdOmhdI/FFVm7oTCyktYRddrrq+1OXoY0uM3qDn7MBCjqQlydXU7R6WKdRlU
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:48 2024 by rpki-client on console-ams.rpki-client.org