Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/kCRpfczWVHp19TfAIGj_-e-nzOU.roa
File: kCRpfczWVHp19TfAIGj_-e-nzOU.roa (raw, json)
Hash identifier: XCrQbEVslxR2f+2z0kgfnIueLrj5Wry/AF9UFdHrCSc=
Subject key identifier: 90:24:69:7D:CC:D6:54:7A:75:F5:37:C0:20:68:FF:F9:EF:A7:CC:E5
Certificate issuer: /CN=d0799179e6398b8abf99c2d451d1f7ce5fca8672
Certificate serial: 0743AC47
Authority key identifier: D0:79:91:79:E6:39:8B:8A:BF:99:C2:D4:51:D1:F7:CE:5F:CA:86:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HmReeY5i4q_mcLUUdH3zl_KhnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/kCRpfczWVHp19TfAIGj_-e-nzOU.roa
Signing time: Sat 01 Jan 2022 05:53:55 +0000
ROA not before: Sat 01 Jan 2022 05:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 194.49.16.0/23 maxlen: 23
194.49.16.0/24 maxlen: 24
194.49.17.0/24 maxlen: 24
194.49.4.0/24 maxlen: 24
194.49.4.0/23 maxlen: 23
194.49.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121875527 (0x743ac47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0799179e6398b8abf99c2d451d1f7ce5fca8672
Validity
Not Before: Jan 1 05:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9024697dccd6547a75f537c02068fff9efa7cce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:1e:f8:64:b7:4f:78:5a:97:c3:dd:39:f7:5d:
34:e3:c5:64:dc:a1:de:41:f7:b5:c2:9c:1b:84:86:
86:c6:92:d0:95:ae:38:9d:a5:db:47:f9:17:ae:1e:
65:91:d4:97:1a:bd:19:64:9f:d9:3d:77:a9:9f:11:
ea:cb:54:91:df:83:db:6a:ce:09:be:d0:4f:ae:ac:
0a:49:81:74:26:8f:ef:6d:66:35:8c:a7:e0:41:6d:
24:a4:a2:fa:de:3b:6b:4e:c9:df:44:b5:b9:af:31:
7f:e2:aa:2e:c0:3a:b6:9b:74:0b:b7:10:05:57:b9:
66:0a:cb:5f:17:9d:7c:9d:be:73:08:37:83:d1:50:
33:fc:7b:81:a3:af:bc:aa:1f:38:63:7f:11:f4:b8:
19:66:d3:51:54:f9:35:63:c8:34:a3:e1:68:6c:fe:
08:d7:90:b1:40:c8:7c:da:dd:5a:c9:aa:67:b9:4c:
62:ae:d0:43:b1:3d:63:b7:49:40:e1:07:85:22:18:
d0:e3:bb:6c:67:96:b2:34:08:77:88:a2:19:aa:23:
9f:1a:be:ac:a5:6b:63:17:2b:fb:35:a1:49:ca:e0:
4e:2a:87:a4:14:28:79:1d:9c:3a:fd:72:41:bd:8a:
b2:99:dd:31:05:a6:0a:e4:92:4d:ba:3c:05:40:6e:
bf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:24:69:7D:CC:D6:54:7A:75:F5:37:C0:20:68:FF:F9:EF:A7:CC:E5
X509v3 Authority Key Identifier:
keyid:D0:79:91:79:E6:39:8B:8A:BF:99:C2:D4:51:D1:F7:CE:5F:CA:86:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HmReeY5i4q_mcLUUdH3zl_KhnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/kCRpfczWVHp19TfAIGj_-e-nzOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/0HmReeY5i4q_mcLUUdH3zl_KhnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.4.0/23
194.49.16.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:c0:0f:fc:84:f1:69:48:5e:71:0b:ea:b2:d8:5e:ca:ae:3e:
ff:87:d0:d5:9a:46:55:c3:59:ef:25:57:4f:6c:fa:b5:9c:11:
e5:fe:8a:e8:36:96:99:bb:dc:ec:55:bc:59:f9:ed:54:f5:c0:
31:bc:79:13:a5:89:e9:f9:d6:5d:eb:ed:21:21:00:6a:6b:c3:
80:a2:5e:a0:e3:3e:e2:9e:b7:ec:ef:e0:08:5f:42:72:af:ae:
01:e6:ce:14:59:6a:a6:56:91:85:fd:c5:6e:74:1f:dc:3a:e2:
ca:db:91:c9:8d:6e:9a:18:23:3a:d2:9f:b6:89:4a:d5:40:54:
68:16:a2:56:4f:97:f2:e6:01:87:a2:57:f6:43:3a:16:2f:98:
67:ce:35:04:36:62:75:42:e9:e5:d5:15:5e:b9:19:1e:27:a6:
36:9f:9c:ff:9c:e9:07:26:2e:df:0e:a3:d8:c5:94:12:05:bb:
3f:27:ff:f9:48:d9:8a:37:7a:70:f1:2a:17:3e:af:49:a3:16:
45:0a:66:0c:4f:03:4a:62:1e:b6:35:65:f3:7c:e0:be:f2:0f:
1c:32:27:2f:a2:32:53:e5:5c:69:e9:04:79:9c:9e:39:b2:99:
66:79:cf:cc:b6:3e:b9:23:e6:cf:92:55:8b:3f:00:31:04:48:
78:21:bf:cf
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB0OsRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDc5OTE3OWU2Mzk4YjhhYmY5OWMyZDQ1MWQxZjdjZTVmY2E4NjcyMB4XDTIyMDEw
MTA1NTM1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTAyNDY5N2RjY2Q2
NTQ3YTc1ZjUzN2MwMjA2OGZmZjllZmE3Y2NlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPMe+GS3T3hal8PdOfddNOPFZNyh3kH3tcKcG4SGhsaS0JWu
OJ2l20f5F64eZZHUlxq9GWSf2T13qZ8R6stUkd+D22rOCb7QT66sCkmBdCaP721m
NYyn4EFtJKSi+t47a07J30S1ua8xf+KqLsA6tpt0C7cQBVe5ZgrLXxedfJ2+cwg3
g9FQM/x7gaOvvKofOGN/EfS4GWbTUVT5NWPINKPhaGz+CNeQsUDIfNrdWsmqZ7lM
Yq7QQ7E9Y7dJQOEHhSIY0OO7bGeWsjQId4iiGaojnxq+rKVrYxcr+zWhScrgTiqH
pBQoeR2cOv1yQb2KspndMQWmCuSSTbo8BUBuv/UCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSQJGl9zNZUenX1N8AgaP/576fM5TAfBgNVHSMEGDAWgBTQeZF55jmLir+Z
wtRR0ffOX8qGcjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBIbVJlZVk1aTRxX21jTFVVZEgzemxfS2huSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTgvN2MyMWMyLThhMjgtNDI0My1iNjVkLWEwNTcyNWY5ZDc4MC8x
L2tDUnBmY3pXVkhwMTlUZkFJR2pfLWUtbnpPVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTgv
N2MyMWMyLThhMjgtNDI0My1iNjVkLWEwNTcyNWY5ZDc4MC8xLzBIbVJlZVk1aTRx
X21jTFVVZEgzemxfS2huSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcIxBAMEAcIxEDANBgkqhkiG9w0B
AQsFAAOCAQEAPMAP/ITxaUhecQvqstheyq4+/4fQ1ZpGVcNZ7yVXT2z6tZwR5f6K
6DaWmbvc7FW8WfntVPXAMbx5E6WJ6fnWXevtISEAamvDgKJeoOM+4p637O/gCF9C
cq+uAebOFFlqplaRhf3FbnQf3DriytuRyY1umhgjOtKftolK1UBUaBaiVk+X8uYB
h6JX9kM6Fi+YZ841BDZidULp5dUVXrkZHiemNp+c/5zpByYu3w6j2MWUEgW7Pyf/
+UjZijd6cPEqFz6vSaMWRQpmDE8DSmIetjVl83zgvvIPHDInL6IyU+VcaekEeZye
ObKZZnnPzLY+uSPmz5JViz8AMQRIeCG/zw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:52 2024 by rpki-client on console-fra.rpki-client.org