Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/g0bInaZkt6srVNrsYwRh-qpAY8c.roa
File: g0bInaZkt6srVNrsYwRh-qpAY8c.roa (raw, json)
Hash identifier: q0PH5p9IuDJGLA0qSurrJullqQR6vKloaEzmpmwKiA4=
Subject key identifier: 83:46:C8:9D:A6:64:B7:AB:2B:54:DA:EC:63:04:61:FA:AA:40:63:C7
Certificate issuer: /CN=9f5646f7d8afc0a933fb33333f37013d83a04d00
Certificate serial: 062A27FF
Authority key identifier: 9F:56:46:F7:D8:AF:C0:A9:33:FB:33:33:3F:37:01:3D:83:A0:4D:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n1ZG99ivwKkz-zMzPzcBPYOgTQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/g0bInaZkt6srVNrsYwRh-qpAY8c.roa
Signing time: Sat 01 Jan 2022 14:58:31 +0000
ROA not before: Sat 01 Jan 2022 14:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201841
IP address blocks: 195.146.135.0/24 maxlen: 24
195.146.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103426047 (0x62a27ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f5646f7d8afc0a933fb33333f37013d83a04d00
Validity
Not Before: Jan 1 14:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8346c89da664b7ab2b54daec630461faaa4063c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:26:0c:c0:2e:92:52:c6:44:b8:1e:f3:ba:01:
61:05:8d:27:3f:1c:60:25:5b:df:20:dd:97:3e:82:
48:91:23:62:46:af:f3:5e:78:7d:f8:56:b2:04:2d:
34:06:48:99:9c:7a:90:2a:ea:6c:68:ab:24:00:a5:
bb:4b:b8:6b:25:23:5e:30:43:fe:f7:04:8d:3c:dc:
62:51:2e:db:34:4b:82:c1:27:f2:17:0f:fc:0d:42:
ef:48:65:c9:c8:ca:9e:0a:cd:fe:63:42:2b:27:d2:
7a:19:9f:51:ad:71:1c:94:b4:45:80:e2:9a:06:70:
d8:f4:81:70:44:2f:e0:ac:e5:31:b8:73:1b:1b:51:
cd:59:28:e5:aa:74:f0:5f:45:e1:43:64:f6:e0:de:
44:3e:bc:88:a3:8c:2a:49:0b:de:7c:e4:93:60:70:
d8:00:87:f5:a5:57:b4:00:98:be:13:e1:b4:03:5d:
a4:52:6f:08:c9:08:9f:b3:1f:b9:5c:f3:dd:a6:5b:
0d:4d:71:3a:3e:3d:dc:6a:8e:fa:82:f6:b3:34:ab:
22:ce:82:94:08:77:ed:d6:5b:bf:84:99:16:62:67:
e0:78:ed:dc:57:b1:c7:33:9f:92:00:74:bc:35:c3:
1d:b8:39:81:66:23:72:ae:67:ec:de:2a:ac:59:e8:
d0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:46:C8:9D:A6:64:B7:AB:2B:54:DA:EC:63:04:61:FA:AA:40:63:C7
X509v3 Authority Key Identifier:
keyid:9F:56:46:F7:D8:AF:C0:A9:33:FB:33:33:3F:37:01:3D:83:A0:4D:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n1ZG99ivwKkz-zMzPzcBPYOgTQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/g0bInaZkt6srVNrsYwRh-qpAY8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/n1ZG99ivwKkz-zMzPzcBPYOgTQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.146.135.0/24
195.146.144.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:7e:0a:a6:d8:24:06:ea:54:d9:82:67:4e:69:25:fb:27:7b:
a3:85:d3:da:d4:5d:16:47:26:c7:f5:92:dc:af:9b:51:ac:8b:
b1:4a:83:8f:51:ae:44:1b:14:9f:1a:97:de:91:82:08:90:a9:
ff:08:7d:25:12:0f:89:d7:b0:2c:85:0f:50:6e:83:6a:11:48:
8e:06:e6:2e:30:cf:03:0d:38:ea:c9:04:d7:2d:76:97:1e:d1:
be:3c:08:64:93:99:45:67:64:27:99:8d:b5:13:db:06:42:87:
34:28:1f:10:84:a8:0b:fd:55:2d:31:c5:62:fc:0f:40:47:98:
d4:6d:8c:8a:a2:b4:38:cc:d5:36:0b:c2:d7:6b:0e:6d:80:6e:
f0:4a:23:c8:de:71:7a:9b:52:23:91:11:10:1d:f1:ee:f6:18:
ee:7f:a6:f0:84:ad:74:7f:bf:19:83:25:b8:39:bc:5d:b6:6f:
16:95:c7:4a:05:e2:be:f2:b5:5c:86:11:2a:17:68:7f:52:6d:
fe:79:98:83:a9:6f:dc:84:87:ef:3e:22:32:24:8d:16:8d:92:
7c:91:90:2f:d4:62:88:c3:00:b9:28:ca:c6:fa:5d:40:56:f3:
2a:2b:4c:d8:4a:7b:62:c9:25:5b:36:7b:7c:7e:38:47:07:42:
90:2a:4d:5c
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBion/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZjU2NDZmN2Q4YWZjMGE5MzNmYjMzMzMzZjM3MDEzZDgzYTA0ZDAwMB4XDTIyMDEw
MTE0NTgzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODM0NmM4OWRhNjY0
YjdhYjJiNTRkYWVjNjMwNDYxZmFhYTQwNjNjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANgmDMAuklLGRLge87oBYQWNJz8cYCVb3yDdlz6CSJEjYkav
8154ffhWsgQtNAZImZx6kCrqbGirJAClu0u4ayUjXjBD/vcEjTzcYlEu2zRLgsEn
8hcP/A1C70hlycjKngrN/mNCKyfSehmfUa1xHJS0RYDimgZw2PSBcEQv4KzlMbhz
GxtRzVko5ap08F9F4UNk9uDeRD68iKOMKkkL3nzkk2Bw2ACH9aVXtACYvhPhtANd
pFJvCMkIn7MfuVzz3aZbDU1xOj493GqO+oL2szSrIs6ClAh37dZbv4SZFmJn4Hjt
3FexxzOfkgB0vDXDHbg5gWYjcq5n7N4qrFno0M0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSDRsidpmS3qytU2uxjBGH6qkBjxzAfBgNVHSMEGDAWgBSfVkb32K/AqTP7
MzM/NwE9g6BNADAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L24xWkc5OWl2d0trei16TXpQemNCUFlPZ1RRQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDIvOTE2OTE3LTg4YzUtNGU3Yi04MTFlLTdkMzJjYTA2NWI2Ni8x
L2cwYkluYVprdDZzclZOcnNZd1JoLXFwQVk4Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDIv
OTE2OTE3LTg4YzUtNGU3Yi04MTFlLTdkMzJjYTA2NWI2Ni8xL24xWkc5OWl2d0tr
ei16TXpQemNCUFlPZ1RRQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMOShwMEAMOSkDANBgkqhkiG9w0B
AQsFAAOCAQEALH4KptgkBupU2YJnTmkl+yd7o4XT2tRdFkcmx/WS3K+bUayLsUqD
j1GuRBsUnxqX3pGCCJCp/wh9JRIPidewLIUPUG6DahFIjgbmLjDPAw046skE1y12
lx7RvjwIZJOZRWdkJ5mNtRPbBkKHNCgfEISoC/1VLTHFYvwPQEeY1G2MiqK0OMzV
NgvC12sObYBu8EojyN5xeptSI5EREB3x7vYY7n+m8IStdH+/GYMluDm8XbZvFpXH
SgXivvK1XIYRKhdof1Jt/nmYg6lv3ISH7z4iMiSNFo2SfJGQL9RiiMMAuSjKxvpd
QFbzKitM2Ep7YsklWzZ7fH44RwdCkCpNXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:10 2024 by rpki-client on console-ams.rpki-client.org