Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/pp9tJNWjbp6xZe7oH9H9OFubnc8.roa
File: pp9tJNWjbp6xZe7oH9H9OFubnc8.roa (raw, json)
Hash identifier: FpdfqM7NIU0tqkMr4XozSEgpIxA0McnvtC0EnOL/DE4=
Subject key identifier: A6:9F:6D:24:D5:A3:6E:9E:B1:65:EE:E8:1F:D1:FD:38:5B:9B:9D:CF
Certificate issuer: /CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb
Certificate serial: 0736A892
Authority key identifier: 30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/pp9tJNWjbp6xZe7oH9H9OFubnc8.roa
Signing time: Sat 01 Jan 2022 12:06:00 +0000
ROA not before: Sat 01 Jan 2022 12:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48663
IP address blocks: 188.246.192.0/23 maxlen: 23
193.108.199.0/26 maxlen: 26
2a03:9800:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121022610 (0x736a892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb
Validity
Not Before: Jan 1 12:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a69f6d24d5a36e9eb165eee81fd1fd385b9b9dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:45:76:42:83:b2:97:fd:6b:dc:6d:b3:72:1b:
c7:97:bb:a4:17:c4:50:e5:3d:23:6d:1f:a5:dd:89:
f6:bc:a4:49:b1:c0:e6:2a:f5:b8:6b:b3:6c:06:13:
3b:69:7f:0b:3e:94:b0:dd:37:8b:16:58:02:81:e0:
ca:95:bd:71:f9:18:35:21:f3:ac:aa:4b:ba:08:17:
f0:f3:31:4f:1b:4c:a1:ce:8d:e7:c2:1b:86:9c:cd:
90:ac:79:d5:8a:c5:4e:50:5c:ae:cd:83:e3:28:ad:
75:3e:94:d7:79:f0:c7:77:48:f8:59:c0:86:79:cb:
a1:1c:3e:07:43:8d:57:4b:0f:39:6c:67:d6:8c:db:
04:ec:16:d3:03:c2:38:9d:ef:7b:49:ef:c6:47:3f:
1f:9b:7b:b6:03:9c:fd:9d:4b:6f:e0:30:b5:43:67:
8e:39:61:62:17:92:50:33:33:07:ea:2b:42:ab:2a:
15:38:4a:c2:34:7c:26:fc:14:89:c5:ff:71:18:8c:
9e:47:79:5b:77:75:52:a1:81:01:95:e7:54:1a:cb:
86:0a:10:2e:25:bb:65:45:d4:18:a0:4b:13:41:7c:
e4:ae:99:17:7e:b1:e3:73:f9:9e:72:52:23:00:6a:
fd:43:5c:7b:3d:b6:51:40:7d:10:4b:46:96:99:07:
f8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:9F:6D:24:D5:A3:6E:9E:B1:65:EE:E8:1F:D1:FD:38:5B:9B:9D:CF
X509v3 Authority Key Identifier:
keyid:30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/pp9tJNWjbp6xZe7oH9H9OFubnc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.246.192.0/23
193.108.199.0/26
IPv6:
2a03:9800:1::/48
Signature Algorithm: sha256WithRSAEncryption
2a:aa:4f:3a:6c:1b:fc:1f:3f:fa:47:1b:f2:49:1d:fb:50:d3:
9f:c8:af:e8:c6:dd:0b:54:23:2d:cf:91:c4:e4:1b:3c:45:2f:
d7:82:d7:48:57:f3:be:3b:b8:ab:57:ce:c5:75:33:2a:71:6f:
29:5a:72:62:81:de:c7:e7:b9:f9:68:22:f3:6e:d1:91:0c:90:
1f:3e:7f:7e:d6:7e:f7:e6:fb:0f:32:13:7a:4e:3e:20:06:cf:
53:f7:21:bd:d7:9e:57:38:81:aa:c7:52:61:f4:72:9f:d6:5f:
60:f5:4f:a7:b3:7c:e1:ad:03:e7:d1:e0:4b:d5:99:cd:73:4c:
46:04:73:40:94:b7:be:c7:2a:04:f6:2d:b0:da:46:ea:d2:c9:
d2:a3:b4:29:72:f3:23:52:dd:c5:e7:ab:1e:f9:41:d8:e1:4d:
03:75:e7:ce:fa:e4:35:2f:f7:f2:3b:ed:6f:b1:77:f7:d2:b7:
7d:bf:42:df:4e:2c:e1:f6:da:28:7e:27:b9:68:45:b0:dd:14:
91:a1:0a:47:c6:d7:d0:69:6f:72:33:ec:61:8f:a1:87:08:e3:
b5:21:b1:10:15:4d:0b:02:4c:db:db:df:00:17:4b:79:0a:e1:
31:24:8c:d4:90:8d:4e:cd:7e:e6:be:fa:99:1a:fc:de:6d:63:
bc:62:27:6e
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEBzaokjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MDI3YTYzMWJiNjczOGViNjhiYjZlYTZjNDI0ZWY0YTdkMTRjM2NiMB4XDTIyMDEw
MTEyMDYwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTY5ZjZkMjRkNWEz
NmU5ZWIxNjVlZWU4MWZkMWZkMzg1YjliOWRjZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOpFdkKDspf9a9xts3Ibx5e7pBfEUOU9I20fpd2J9rykSbHA
5ir1uGuzbAYTO2l/Cz6UsN03ixZYAoHgypW9cfkYNSHzrKpLuggX8PMxTxtMoc6N
58IbhpzNkKx51YrFTlBcrs2D4yitdT6U13nwx3dI+FnAhnnLoRw+B0ONV0sPOWxn
1ozbBOwW0wPCOJ3ve0nvxkc/H5t7tgOc/Z1Lb+AwtUNnjjlhYheSUDMzB+orQqsq
FThKwjR8JvwUicX/cRiMnkd5W3d1UqGBAZXnVBrLhgoQLiW7ZUXUGKBLE0F85K6Z
F36x43P5nnJSIwBq/UNcez22UUB9EEtGlpkH+PECAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBSmn20k1aNunrFl7ugf0f04W5udzzAfBgNVHSMEGDAWgBQwJ6Yxu2c462i7
bqbEJO9KfRTDyzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01DZW1NYnRuT090b3UyNm14Q1R2U24wVXc4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDEvOGQ3OGViLTI4MzItNDA4My1hZTFmLTFkZDZkMjgxYzg4YS8x
L3BwOXRKTldqYnA2eFplN29IOUg5T0Z1Ym5jOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEv
OGQ3OGViLTI4MzItNDA4My1hZTFmLTFkZDZkMjgxYzg4YS8xL01DZW1NYnRuT090
b3UyNm14Q1R2U24wVXc4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwEwQCAAEwDQMEAbz2wAMFBsFsxwAwDwQCAAIwCQMH
ACoDmAAAATANBgkqhkiG9w0BAQsFAAOCAQEAKqpPOmwb/B8/+kcb8kkd+1DTn8iv
6MbdC1QjLc+RxOQbPEUv14LXSFfzvju4q1fOxXUzKnFvKVpyYoHex+e5+Wgi827R
kQyQHz5/ftZ+9+b7DzITek4+IAbPU/chvdeeVziBqsdSYfRyn9ZfYPVPp7N84a0D
59HgS9WZzXNMRgRzQJS3vscqBPYtsNpG6tLJ0qO0KXLzI1LdxeerHvlB2OFNA3Xn
zvrkNS/38jvtb7F399K3fb9C304s4fbaKH4nuWhFsN0UkaEKR8bX0GlvcjPsYY+h
hwjjtSGxEBVNCwJM29vfABdLeQrhMSSM1JCNTs1+5r76mRr83m1jvGInbg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org