Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JXiFRcxSAZPzkKBsBqWcQjlI9PI.roa
File: JXiFRcxSAZPzkKBsBqWcQjlI9PI.roa (raw, json)
Hash identifier: QYU5kSxKOdemj4n+ulVp2LPwQmgRJZe8j9pakchULuA=
Subject key identifier: 25:78:85:45:CC:52:01:93:F3:90:A0:6C:06:A5:9C:42:39:48:F4:F2
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018269E0529EB6A33B816B93E50C138E202F
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JXiFRcxSAZPzkKBsBqWcQjlI9PI.roa
Signing time: Thu 04 Aug 2022 17:21:25 +0000
ROA not before: Thu 04 Aug 2022 17:21:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210993
IP address blocks: 193.232.65.0/24 maxlen: 24
62.76.141.0/24 maxlen: 24
195.19.93.0/24 maxlen: 24
194.226.42.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:69:e0:52:9e:b6:a3:3b:81:6b:93:e5:0c:13:8e:20:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Aug 4 17:21:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25788545cc520193f390a06c06a59c423948f4f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fc:ae:99:b1:df:df:2b:e0:f3:1d:b7:90:2f:
95:be:79:59:43:55:2e:e4:da:ca:09:ae:0b:c0:be:
d6:10:05:5d:83:4a:c0:c2:bb:65:11:9f:7e:a4:b2:
a6:16:48:94:cb:9e:b9:92:aa:db:7b:e7:27:cc:a0:
e4:e4:53:e7:24:26:35:98:37:07:13:56:0b:72:b1:
14:ef:4d:81:50:90:31:26:ab:d2:89:2a:f5:5b:8b:
3d:50:ad:29:2e:db:2d:a5:fd:8f:7c:77:5e:05:09:
6f:30:a2:20:48:20:1a:e2:53:74:5f:cd:7f:42:f4:
ab:5a:28:b9:6d:f5:9a:f6:b7:a1:10:39:06:26:37:
6c:d0:cf:f9:02:3d:cb:5a:c6:27:5d:ff:43:56:1b:
53:fd:cd:b9:4c:7f:35:e3:32:0b:1a:18:b7:6d:ee:
c1:63:7d:bb:37:5f:c0:ae:ee:b5:cc:bc:02:e7:ef:
0e:6a:32:b0:d8:b1:ca:c4:94:04:07:71:70:cf:e7:
f7:9f:14:ef:92:d2:5d:ff:18:fe:d0:12:ad:20:05:
1a:69:b6:96:f2:e9:0e:0d:77:75:22:63:a6:a2:38:
1b:8d:dc:a2:24:56:39:60:8a:df:72:e5:c0:33:a6:
63:5a:7e:71:68:d6:fc:d0:fc:6f:b8:ec:14:6b:5d:
87:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:78:85:45:CC:52:01:93:F3:90:A0:6C:06:A5:9C:42:39:48:F4:F2
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JXiFRcxSAZPzkKBsBqWcQjlI9PI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.141.0/24
193.232.65.0/24
194.226.42.0/24
195.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:eb:c2:dd:2e:fa:a6:b2:4c:14:21:c4:f8:00:08:93:b8:bb:
f7:d9:f5:e2:dd:b1:58:ad:af:c5:2b:20:b0:4b:fe:32:e5:5d:
42:81:bd:74:53:07:a5:58:a3:f3:27:b9:0c:cb:fc:6f:85:f4:
ce:95:0b:5b:8f:c3:bc:80:7d:28:c0:a0:25:ce:8d:9d:51:c0:
63:a4:1a:ec:cf:65:b4:5e:d1:75:56:0e:30:e1:c0:3c:95:05:
6f:2d:08:24:7a:59:5a:18:e0:9e:69:fc:34:9a:ac:85:40:bf:
5c:80:e1:90:33:1e:e9:19:9e:5f:27:40:15:05:00:22:b1:47:
bc:eb:30:97:0b:71:22:bf:6c:42:32:ad:a3:3d:da:32:74:53:
70:1b:87:04:88:24:9d:61:a8:98:0d:8e:db:0c:a9:aa:8b:cf:
8b:52:6b:7a:6c:7d:f0:df:64:60:44:ae:14:e8:7b:a0:7c:05:
c4:3f:d4:f3:59:ee:aa:63:70:05:dd:4e:26:4c:df:d0:a2:0b:
40:96:a1:69:73:16:b4:d9:4e:19:5e:5c:64:56:92:af:4c:42:
3d:ea:c0:9a:b5:c0:51:32:63:5b:1d:18:08:cf:18:c7:3c:d0:
9b:cf:6e:92:e8:e2:a4:7a:a5:05:e8:40:07:87:6d:aa:f6:01:
a6:67:13:39
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYJp4FKetqM7gWuT5QwTjiAvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjIwODA0MTcyMTI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTc4ODU0NWNjNTIwMTkzZjM5MGEwNmMwNmE1OWM0MjM5NDhmNGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/yumbHf3yvg8x23kC+VvnlZQ1Uu
5NrKCa4LwL7WEAVdg0rAwrtlEZ9+pLKmFkiUy565kqrbe+cnzKDk5FPnJCY1mDcH
E1YLcrEU702BUJAxJqvSiSr1W4s9UK0pLtstpf2PfHdeBQlvMKIgSCAa4lN0X81/
QvSrWii5bfWa9rehEDkGJjds0M/5Aj3LWsYnXf9DVhtT/c25TH814zILGhi3be7B
Y327N1/Aru61zLwC5+8OajKw2LHKxJQEB3Fwz+f3nxTvktJd/xj+0BKtIAUaabaW
8ukODXd1ImOmojgbjdyiJFY5YIrfcuXAM6ZjWn5xaNb80PxvuOwUa12HHwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFCV4hUXMUgGT85CgbAalnEI5SPTyMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvSlhpRlJjeFNBWlB6a0tCc0JxV2NRamxJOVBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAPkyNAwQA
wehBAwQAwuIqAwQAwxNdMA0GCSqGSIb3DQEBCwUAA4IBAQBt68LdLvqmskwUIcT4
AAiTuLv32fXi3bFYra/FKyCwS/4y5V1Cgb10UwelWKPzJ7kMy/xvhfTOlQtbj8O8
gH0owKAlzo2dUcBjpBrsz2W0XtF1Vg4w4cA8lQVvLQgkellaGOCeafw0mqyFQL9c
gOGQMx7pGZ5fJ0AVBQAisUe86zCXC3Eiv2xCMq2jPdoydFNwG4cEiCSdYaiYDY7b
DKmqi8+LUmt6bH3w32RgRK4U6HugfAXEP9TzWe6qY3AF3U4mTN/QogtAlqFpcxa0
2U4ZXlxkVpKvTEI96sCatcBRMmNbHRgIzxjHPNCbz26S6OKkeqUF6EAHh22q9gGm
ZxM5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org