Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/OFlkH78hXtj05iMXndA7d0p7Djc.roa
File: OFlkH78hXtj05iMXndA7d0p7Djc.roa (raw, json)
Hash identifier: QOo9F1jWz9INdjisMrqBbTdRO+U59uaK19aXm1xz14M=
Subject key identifier: 38:59:64:1F:BF:21:5E:D8:F4:E6:23:17:9D:D0:3B:77:4A:7B:0E:37
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 180FD66A
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/OFlkH78hXtj05iMXndA7d0p7Djc.roa
Signing time: Sat 01 Jan 2022 04:00:39 +0000
ROA not before: Sat 01 Jan 2022 04:00:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205808
IP address blocks: 95.43.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403691114 (0x180fd66a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3859641fbf215ed8f4e623179dd03b774a7b0e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a2:1c:c5:84:02:f4:1c:bc:3e:f5:23:c6:4f:
69:fc:0e:f4:d9:08:28:e0:9f:7a:60:ac:4a:2c:16:
06:6c:c3:c7:5a:96:74:44:76:e4:5c:22:73:1b:13:
18:67:dd:d3:79:71:9f:4b:3b:f5:bc:bd:4b:1c:c0:
3f:45:7c:1e:b1:69:b2:05:2c:75:6b:b0:fe:b8:61:
fc:36:42:07:ff:33:24:8f:f8:1b:df:bd:37:12:64:
73:9b:4f:42:73:e4:4f:c9:31:43:cb:af:0f:c0:29:
f3:04:38:b4:ce:4a:25:8b:93:ff:57:a8:fb:99:06:
8a:38:75:63:9d:c0:5f:d2:66:4b:42:ef:6a:b9:43:
34:d3:03:e3:d7:99:1a:b4:9f:6e:f9:c8:e6:2d:ea:
db:20:dc:96:0e:96:fd:85:0c:d4:c8:56:f3:25:2f:
c2:61:9a:03:d2:c4:2e:80:c1:8b:11:a0:9f:f1:8d:
37:2c:c1:2b:d1:a4:6f:d0:69:90:dd:b8:ca:41:13:
3e:30:fb:03:51:f0:62:64:f6:c2:5f:3d:7d:c2:44:
82:4d:f1:eb:b2:f0:32:6b:7a:02:d2:64:66:6f:3a:
4f:84:5a:82:0b:b9:cd:db:25:cd:a4:08:ff:16:f5:
62:94:bd:ce:44:da:d9:bb:13:11:03:d6:c0:ca:da:
74:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:59:64:1F:BF:21:5E:D8:F4:E6:23:17:9D:D0:3B:77:4A:7B:0E:37
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/OFlkH78hXtj05iMXndA7d0p7Djc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.202.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:65:9e:0f:e6:70:7d:06:79:5b:09:34:96:c9:22:98:ef:7d:
29:62:cf:83:70:56:05:de:09:65:9f:30:86:8c:5a:2d:e5:ea:
e5:71:9a:49:09:77:dc:07:dc:70:2c:98:83:3e:27:a2:9c:84:
3e:2d:1a:87:28:0a:05:e2:e6:a2:dc:b9:e6:6a:7a:79:86:c7:
3a:60:69:4f:3e:10:32:16:31:3c:9e:35:d7:bd:39:59:a3:eb:
e1:a5:7a:8d:0d:eb:c4:50:a3:9d:6d:79:73:09:97:8c:a5:b7:
8b:ef:b8:45:31:d2:90:a2:59:5e:7b:0b:fb:e0:3d:ac:5b:74:
a1:51:b6:0d:a5:03:22:56:9d:d5:1f:0f:ba:a4:d0:8c:b9:b5:
aa:32:c0:de:c9:94:c9:ed:b5:f5:d1:4f:28:b2:ff:f6:40:e1:
53:a8:9c:33:95:24:f7:6d:9d:10:95:9f:2e:3f:29:75:c7:79:
6b:c6:f0:6a:63:2a:df:2f:33:32:44:96:3f:f8:05:78:7d:dd:
c1:ca:db:d1:9c:a5:0f:55:99:1f:66:7a:15:63:17:6f:a3:d1:
24:19:4e:07:48:e0:e6:01:ae:95:62:70:b1:7d:86:23:17:ea:
1d:81:b8:b6:e8:54:e1:d6:5e:0e:55:03:3f:48:b8:28:b3:cf:
5d:cc:f7:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGA/WajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGIyZjRmYTUxNjNhZjk2MTY4ZTg4ZmJmOWNiNGVkMWVkOGZiNGM0MB4XDTIyMDEw
MTA0MDAzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzg1OTY0MWZiZjIx
NWVkOGY0ZTYyMzE3OWRkMDNiNzc0YTdiMGUzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANKiHMWEAvQcvD71I8ZPafwO9NkIKOCfemCsSiwWBmzDx1qW
dER25FwicxsTGGfd03lxn0s79by9SxzAP0V8HrFpsgUsdWuw/rhh/DZCB/8zJI/4
G9+9NxJkc5tPQnPkT8kxQ8uvD8Ap8wQ4tM5KJYuT/1eo+5kGijh1Y53AX9JmS0Lv
arlDNNMD49eZGrSfbvnI5i3q2yDclg6W/YUM1MhW8yUvwmGaA9LELoDBixGgn/GN
NyzBK9Gkb9BpkN24ykETPjD7A1HwYmT2wl89fcJEgk3x67LwMmt6AtJkZm86T4Ra
ggu5zdslzaQI/xb1YpS9zkTa2bsTEQPWwMradBcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ4WWQfvyFe2PTmIxed0Dt3SnsONzAfBgNVHSMEGDAWgBSEsvT6UWOvlhaO
iPv5y07R7Y+0xDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hMTDAtbEZqcjVZV2pvajctY3RPMGUyUHRNUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8x
L09GbGtINzhoWHRqMDVpTVhuZEE3ZDBwN0RqYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8xL2hMTDAtbEZqcjVZ
V2pvajctY3RPMGUyUHRNUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF8ryjANBgkqhkiG9w0BAQsFAAOC
AQEAs2WeD+ZwfQZ5Wwk0lskimO99KWLPg3BWBd4JZZ8whoxaLeXq5XGaSQl33Afc
cCyYgz4nopyEPi0ahygKBeLmoty55mp6eYbHOmBpTz4QMhYxPJ411705WaPr4aV6
jQ3rxFCjnW15cwmXjKW3i++4RTHSkKJZXnsL++A9rFt0oVG2DaUDIlad1R8PuqTQ
jLm1qjLA3smUye219dFPKLL/9kDhU6icM5Uk922dEJWfLj8pdcd5a8bwamMq3y8z
MkSWP/gFeH3dwcrb0ZylD1WZH2Z6FWMXb6PRJBlOB0jg5gGulWJwsX2GIxfqHYG4
tuhU4dZeDlUDP0i4KLPPXcz38g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org