Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/1-R2CAjj749jR6Y4jE_FLDQXsjns.roa
File: 1-R2CAjj749jR6Y4jE_FLDQXsjns.roa (raw, json)
Hash identifier: MmN2XZLSAq/sQElGokMkTFpwFE7IlcvgxpwUnduaeHE=
Subject key identifier: F9:1D:82:02:38:FB:E3:D8:D1:E9:8E:23:13:F1:4B:0D:05:EC:8E:7B
Certificate issuer: /CN=f440e5eba2f8bfc8fe8fe56cc88a4289652390ba
Certificate serial: 0130B97B
Authority key identifier: F4:40:E5:EB:A2:F8:BF:C8:FE:8F:E5:6C:C8:8A:42:89:65:23:90:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9EDl66L4v8j-j-VsyIpCiWUjkLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/1-R2CAjj749jR6Y4jE_FLDQXsjns.roa
Signing time: Sat 28 May 2022 06:17:13 +0000
ROA not before: Sat 28 May 2022 06:17:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204300
IP address blocks: 195.225.128.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19970427 (0x130b97b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f440e5eba2f8bfc8fe8fe56cc88a4289652390ba
Validity
Not Before: May 28 06:17:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f91d820238fbe3d8d1e98e2313f14b0d05ec8e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:a1:ab:87:73:14:4a:86:e4:1d:b0:9b:0b:
0e:10:59:4b:36:37:cf:4e:ec:5d:9f:28:5d:12:36:
6c:a7:c4:70:00:31:83:10:b1:a5:45:f0:72:8e:48:
29:68:e2:e8:19:f8:46:4a:e6:a9:f9:7e:0f:21:ec:
99:ce:3e:8a:64:40:61:9f:3c:a0:61:10:66:72:22:
44:a7:0b:69:cb:e4:3e:6b:c5:01:2b:c5:99:2c:12:
e6:e7:98:43:12:40:44:55:89:bc:c3:d6:fc:7e:bb:
de:f3:64:c3:fa:eb:f2:a7:09:3f:7b:ae:0d:db:53:
11:76:c9:32:3d:87:e5:c8:22:7f:de:23:f4:88:64:
04:85:43:a7:56:6f:e8:84:1b:1e:b8:60:d3:8d:d4:
47:98:cb:37:20:a3:c1:ef:7e:b7:ca:00:f8:3c:5f:
46:1e:10:4b:1a:96:90:13:76:00:fa:ef:1f:17:75:
58:46:fc:34:5c:9a:e4:0f:e1:9c:0d:b4:d6:da:59:
0a:cd:44:c1:b6:1f:18:6a:ed:1b:54:06:56:5e:9d:
6c:03:84:6c:6d:c2:d9:12:09:3a:12:60:e8:55:4b:
d5:04:40:fc:a6:d0:9c:2d:73:8e:67:ab:81:9f:6f:
9e:f7:a2:b9:4e:75:9a:ac:7c:f0:4c:04:d4:a3:c2:
60:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:1D:82:02:38:FB:E3:D8:D1:E9:8E:23:13:F1:4B:0D:05:EC:8E:7B
X509v3 Authority Key Identifier:
keyid:F4:40:E5:EB:A2:F8:BF:C8:FE:8F:E5:6C:C8:8A:42:89:65:23:90:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9EDl66L4v8j-j-VsyIpCiWUjkLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/1-R2CAjj749jR6Y4jE_FLDQXsjns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/9EDl66L4v8j-j-VsyIpCiWUjkLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.128.0/23
Signature Algorithm: sha256WithRSAEncryption
70:ca:0b:44:f9:1b:99:a3:cd:de:00:c2:b2:fb:93:81:9c:75:
e8:28:38:3e:1e:fa:4c:1d:77:8b:1c:cb:61:ba:36:59:47:da:
a3:66:1a:7e:74:fe:24:22:a3:44:7e:80:f3:81:df:e6:a0:b4:
c6:dd:c5:d6:71:77:97:64:22:9e:96:63:6d:93:d5:1a:fc:b7:
cd:d9:cc:60:5f:78:93:2c:0b:69:9e:17:e3:a2:68:3b:10:6f:
2f:96:78:37:a8:28:19:6b:b1:6e:18:ec:5d:40:1e:89:c7:04:
75:a5:a9:31:db:43:ae:42:0c:3c:94:65:2a:fb:39:27:a7:43:
6b:91:fe:d5:0b:2a:ff:a9:cd:3c:d0:db:e2:32:8b:ac:bf:64:
6e:36:db:be:5f:af:0b:02:e2:ef:41:85:de:f8:c3:0f:6a:94:
48:90:8e:34:b6:36:94:73:b9:63:92:67:4c:3e:67:c3:32:2a:
9d:d5:74:4c:d5:9b:45:05:ed:48:0d:d7:d7:9e:f1:41:93:b1:
a2:a4:9c:64:75:43:44:cd:bf:dc:f8:aa:b9:c5:d1:3c:53:f2:
a6:a8:b9:68:1a:a2:d4:30:99:a0:04:d4:e3:dd:45:92:99:83:
a1:c4:6f:9e:0a:f0:76:b4:db:0b:a5:2d:df:c8:b3:cc:62:38:
f0:96:9e:0d
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEATC5ezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NDQwZTVlYmEyZjhiZmM4ZmU4ZmU1NmNjODhhNDI4OTY1MjM5MGJhMB4XDTIyMDUy
ODA2MTcxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjkxZDgyMDIzOGZi
ZTNkOGQxZTk4ZTIzMTNmMTRiMGQwNWVjOGU3YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKaWoauHcxRKhuQdsJsLDhBZSzY3z07sXZ8oXRI2bKfEcAAx
gxCxpUXwco5IKWji6Bn4Rkrmqfl+DyHsmc4+imRAYZ88oGEQZnIiRKcLacvkPmvF
ASvFmSwS5ueYQxJARFWJvMPW/H673vNkw/rr8qcJP3uuDdtTEXbJMj2H5cgif94j
9IhkBIVDp1Zv6IQbHrhg043UR5jLNyCjwe9+t8oA+DxfRh4QSxqWkBN2APrvHxd1
WEb8NFya5A/hnA201tpZCs1EwbYfGGrtG1QGVl6dbAOEbG3C2RIJOhJg6FVL1QRA
/KbQnC1zjmergZ9vnveiuU51mqx88EwE1KPCYBECAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT5HYICOPvj2NHpjiMT8UsNBeyOezAfBgNVHSMEGDAWgBT0QOXrovi/yP6P
5WzIikKJZSOQujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlFRGw2Nkw0djhqLWotVnN5SXBDaVdVamtMby5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvZGU4NjYyLTk5M2YtNDdmNy1hMjdmLTAwYjkyYzFjMWVmNC8x
LzEtUjJDQWpqNzQ5alI2WTRqRV9GTERRWHNqbnMucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA0
L2RlODY2Mi05OTNmLTQ3ZjctYTI3Zi0wMGI5MmMxYzFlZjQvMS85RURsNjZMNHY4
ai1qLVZzeUlwQ2lXVWprTG8uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHD4YAwDQYJKoZIhvcNAQELBQAD
ggEBAHDKC0T5G5mjzd4AwrL7k4GcdegoOD4e+kwdd4scy2G6NllH2qNmGn50/iQi
o0R+gPOB3+agtMbdxdZxd5dkIp6WY22T1Rr8t83ZzGBfeJMsC2meF+OiaDsQby+W
eDeoKBlrsW4Y7F1AHonHBHWlqTHbQ65CDDyUZSr7OSenQ2uR/tULKv+pzTzQ2+Iy
i6y/ZG42275frwsC4u9Bhd74ww9qlEiQjjS2NpRzuWOSZ0w+Z8MyKp3VdEzVm0UF
7UgN19ee8UGTsaKknGR1Q0TNv9z4qrnF0TxT8qaouWgaotQwmaAE1OPdRZKZg6HE
b54K8Ha02wulLd/Is8xiOPCWng0=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:56 2023 by rpki-client on console-fra.rpki-client.org