Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/c52953-f96d-4e4c-8ddb-1bf0f7b4df30/1/Ch8KerWcNm_UQWLmYyd0wWkxp0I.roa
File: Ch8KerWcNm_UQWLmYyd0wWkxp0I.roa (raw, json)
Hash identifier: F5O1bUi51Cy9neF3mgMrPsD5iwYcqPyMN66kumjrUTQ=
Subject key identifier: 0A:1F:0A:7A:B5:9C:36:6F:D4:41:62:E6:63:27:74:C1:69:31:A7:42
Certificate issuer: /CN=a430942203aa2f8d390a8dae50b85a984504fd9c
Certificate serial: 0152BA19
Authority key identifier: A4:30:94:22:03:AA:2F:8D:39:0A:8D:AE:50:B8:5A:98:45:04:FD:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDCUIgOqL405Co2uULhamEUE_Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/c52953-f96d-4e4c-8ddb-1bf0f7b4df30/1/Ch8KerWcNm_UQWLmYyd0wWkxp0I.roa
Signing time: Sat 01 Jan 2022 12:02:17 +0000
ROA not before: Sat 01 Jan 2022 12:02:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197843
IP address blocks: 195.216.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22198809 (0x152ba19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a430942203aa2f8d390a8dae50b85a984504fd9c
Validity
Not Before: Jan 1 12:02:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a1f0a7ab59c366fd44162e6632774c16931a742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2a:6a:3b:9e:ff:f2:7d:d6:73:ad:70:44:f0:
55:32:ea:38:d9:0c:6e:c7:6f:0d:ab:00:15:cd:0d:
b3:b5:d6:36:9f:a8:ca:14:c6:96:ef:f6:58:aa:a7:
65:9b:ff:28:f7:f0:c3:57:e9:0b:8e:60:6d:99:2f:
38:4d:9b:e5:29:02:34:b3:ff:07:db:ef:98:94:0d:
ac:f0:1e:3d:0c:f7:cf:11:5f:79:57:56:30:6a:07:
5d:46:d8:12:13:bc:e0:00:2f:30:da:4b:64:51:95:
c7:51:2f:c7:01:60:a5:61:d2:55:a7:26:ca:df:43:
d2:1e:6a:c7:fb:e9:fd:8d:15:48:67:af:db:3c:ad:
c7:67:38:17:27:3d:c9:99:7c:8b:cc:12:49:7b:88:
0e:93:c4:78:e2:ce:af:a4:92:d8:ef:e4:e6:1b:ef:
12:62:76:2b:21:a6:72:ee:d0:e4:ee:fc:91:78:67:
a0:19:df:c0:09:58:e8:75:f1:64:d6:c7:d9:b7:1a:
95:6c:3b:42:f5:b3:d3:1a:f0:bf:6c:76:cc:80:1c:
a4:42:74:2f:eb:1d:eb:db:9f:9d:40:28:39:83:8b:
d1:80:c6:16:25:3c:8f:7e:e7:01:d5:5d:ba:f9:e7:
65:ac:79:3d:4b:04:b5:ba:ea:95:87:73:7c:b3:ea:
6d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1F:0A:7A:B5:9C:36:6F:D4:41:62:E6:63:27:74:C1:69:31:A7:42
X509v3 Authority Key Identifier:
keyid:A4:30:94:22:03:AA:2F:8D:39:0A:8D:AE:50:B8:5A:98:45:04:FD:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDCUIgOqL405Co2uULhamEUE_Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/c52953-f96d-4e4c-8ddb-1bf0f7b4df30/1/Ch8KerWcNm_UQWLmYyd0wWkxp0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/c52953-f96d-4e4c-8ddb-1bf0f7b4df30/1/pDCUIgOqL405Co2uULhamEUE_Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.253.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:10:6e:09:b8:fa:ab:47:58:03:0d:a7:61:ee:a9:f6:d0:3c:
3b:86:a4:87:c4:30:4a:97:a9:01:d9:ed:b8:44:cb:7b:d2:77:
a9:72:d4:60:86:c1:e7:7a:3d:c0:97:26:b7:bb:89:0f:bd:a2:
a6:9b:d8:bf:40:4d:21:a5:aa:fd:5a:c6:50:45:36:78:3c:06:
8c:3f:31:e0:5f:f4:48:d5:82:45:ee:05:05:26:06:b5:3e:64:
86:66:04:d4:a2:d5:44:f9:e9:44:a8:7d:29:39:dc:de:f7:99:
1c:fd:aa:be:20:a2:dd:32:08:b8:1b:98:c2:5e:08:50:e1:e3:
d2:10:ed:88:f1:47:4b:2f:f4:b4:67:12:c9:af:f8:53:70:f6:
44:0a:90:b5:a6:a0:c7:45:f9:4c:8e:76:55:95:b2:2f:f8:6e:
f8:81:17:5c:37:f2:d8:60:fa:d2:eb:68:4b:6d:0e:4f:cd:0b:
45:85:5a:fe:ac:6f:c1:40:cd:55:ab:2c:a6:d6:aa:34:e0:f2:
3b:6a:fd:dc:db:71:42:20:f6:c3:14:87:89:38:28:ce:78:6e:
7a:65:a6:b8:9b:38:1d:2b:bc:a2:57:02:f7:21:de:87:82:24:
3d:cc:3f:07:8e:e6:1d:e2:ec:97:4e:44:54:d0:d5:59:bf:cf:
19:e3:26:1b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVK6GTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NDMwOTQyMjAzYWEyZjhkMzkwYThkYWU1MGI4NWE5ODQ1MDRmZDljMB4XDTIyMDEw
MTEyMDIxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGExZjBhN2FiNTlj
MzY2ZmQ0NDE2MmU2NjMyNzc0YzE2OTMxYTc0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQqajue//J91nOtcETwVTLqONkMbsdvDasAFc0Ns7XWNp+o
yhTGlu/2WKqnZZv/KPfww1fpC45gbZkvOE2b5SkCNLP/B9vvmJQNrPAePQz3zxFf
eVdWMGoHXUbYEhO84AAvMNpLZFGVx1EvxwFgpWHSVacmyt9D0h5qx/vp/Y0VSGev
2zytx2c4Fyc9yZl8i8wSSXuIDpPEeOLOr6SS2O/k5hvvEmJ2KyGmcu7Q5O78kXhn
oBnfwAlY6HXxZNbH2bcalWw7QvWz0xrwv2x2zIAcpEJ0L+sd69ufnUAoOYOL0YDG
FiU8j37nAdVduvnnZax5PUsEtbrqlYdzfLPqbekCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQKHwp6tZw2b9RBYuZjJ3TBaTGnQjAfBgNVHSMEGDAWgBSkMJQiA6ovjTkK
ja5QuFqYRQT9nDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BEQ1VJZ09xTDQwNUNvMnVVTGhhbUVVRV9ady5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvYzUyOTUzLWY5NmQtNGU0Yy04ZGRiLTFiZjBmN2I0ZGYzMC8x
L0NoOEtlcldjTm1fVVFXTG1ZeWQwd1dreHAwSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
YzUyOTUzLWY5NmQtNGU0Yy04ZGRiLTFiZjBmN2I0ZGYzMC8xL3BEQ1VJZ09xTDQw
NUNvMnVVTGhhbUVVRV9ady5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMPY/TANBgkqhkiG9w0BAQsFAAOC
AQEAWhBuCbj6q0dYAw2nYe6p9tA8O4akh8QwSpepAdntuETLe9J3qXLUYIbB53o9
wJcmt7uJD72ippvYv0BNIaWq/VrGUEU2eDwGjD8x4F/0SNWCRe4FBSYGtT5khmYE
1KLVRPnpRKh9KTnc3veZHP2qviCi3TIIuBuYwl4IUOHj0hDtiPFHSy/0tGcSya/4
U3D2RAqQtaagx0X5TI52VZWyL/hu+IEXXDfy2GD60utoS20OT80LRYVa/qxvwUDN
VassptaqNODyO2r93NtxQiD2wxSHiTgoznhuemWmuJs4HSu8olcC9yHeh4IkPcw/
B47mHeLsl05EVNDVWb/PGeMmGw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org