Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/crAapP6T90bucc0-ME1mRdi3Ycs.roa
File: crAapP6T90bucc0-ME1mRdi3Ycs.roa (raw, json)
Hash identifier: FpRC0hvnGcPsD7MRdAuq4dFlYcO2cPbbDZW7ZyRz0Co=
Subject key identifier: 72:B0:1A:A4:FE:93:F7:46:EE:71:CD:3E:30:4D:66:45:D8:B7:61:CB
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B5B4CE3
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/crAapP6T90bucc0-ME1mRdi3Ycs.roa
Signing time: Sat 01 Jan 2022 08:58:35 +0000
ROA not before: Sat 01 Jan 2022 08:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34684
IP address blocks: 195.87.49.0/24 maxlen: 24
195.87.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190532835 (0xb5b4ce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72b01aa4fe93f746ee71cd3e304d6645d8b761cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:64:6b:20:43:9d:f4:ea:f9:63:65:c0:e4:e1:
ca:66:dc:1d:0c:de:48:0a:a8:03:e9:f4:80:b5:6d:
24:bb:9f:8f:9f:26:19:8b:0d:94:25:f8:ab:eb:ca:
74:01:ed:8f:0a:b6:8e:5a:4a:10:ea:67:f4:4e:47:
90:86:1a:b8:6a:31:d6:19:2b:c1:f0:17:89:53:a1:
08:e9:19:b9:4a:47:d3:7f:17:30:72:55:4f:38:30:
e9:90:62:af:69:dc:94:70:a1:9f:9b:2b:e5:37:ee:
8f:5a:73:58:45:06:94:6b:09:3d:d4:77:f9:cb:57:
43:f6:fc:fd:23:f2:13:dc:63:49:fb:4b:4c:0e:2f:
84:13:be:c6:8e:18:8e:85:c2:12:32:24:ec:16:ea:
f2:fc:21:38:a2:58:f1:fa:64:8e:87:69:71:e7:79:
04:32:ad:e8:47:79:6f:f8:f1:a2:27:92:58:76:64:
27:ff:3d:44:d1:a5:06:e5:09:73:76:cb:93:49:95:
fa:c1:08:b6:88:35:e8:e5:e7:30:17:a9:d9:49:76:
a9:ec:24:1e:04:af:ec:bc:d1:c0:ec:e7:b6:e2:58:
b1:55:66:8c:aa:6b:4b:56:89:16:d9:a4:d7:2a:9b:
93:72:63:d0:78:ec:5e:4e:30:b4:38:b3:33:75:52:
c8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B0:1A:A4:FE:93:F7:46:EE:71:CD:3E:30:4D:66:45:D8:B7:61:CB
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/crAapP6T90bucc0-ME1mRdi3Ycs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.87.47.0/24
195.87.49.0/24
Signature Algorithm: sha256WithRSAEncryption
52:51:3e:0d:62:46:fb:22:67:6a:ba:eb:b5:6c:c9:0c:29:8c:
26:5b:ac:fa:f1:e1:89:b0:01:c1:d8:2f:9a:ac:75:4e:41:44:
33:75:00:48:ce:b5:a5:2f:6d:bb:97:eb:3f:9b:dd:d2:44:cd:
90:ea:2d:63:79:73:98:36:0b:b5:cc:49:eb:7f:26:99:d6:c4:
59:bb:52:9a:96:20:1b:d6:fe:20:b6:d1:fd:41:76:c7:83:dc:
f3:56:ba:aa:9b:2e:d9:2d:bd:e3:2b:e6:61:1f:b1:db:e9:c2:
1b:5c:00:63:a3:ec:3f:a7:28:19:54:d7:d6:6e:98:6a:9a:ea:
8b:de:08:c4:86:cd:d1:53:d8:18:19:b4:f9:20:1f:88:c7:fd:
04:98:f9:0d:25:15:26:a3:aa:ef:10:d4:f0:e5:53:78:77:18:
07:0e:7e:da:d1:32:a6:94:8d:c9:75:25:3d:d7:cb:09:bf:1c:
19:e8:8b:4e:cc:ce:98:11:45:d0:a9:2d:05:d5:da:df:68:98:
74:ea:91:22:de:3b:d5:dd:e3:d8:1f:6c:41:28:c3:6d:ea:7d:
3c:1a:cc:be:2f:47:c1:52:61:1e:2e:41:5f:12:48:66:39:b8:
1a:16:a1:06:c3:c9:cf:2b:47:37:af:00:bd:03:2a:c9:56:4d:
d5:b8:22:34
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEC1tM4zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NjhmZTM1Y2M5NjI2MzNhMjc1N2FmMTBhMGU2ZThhYjZkMDFmNGM5MB4XDTIyMDEw
MTA4NTgzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJiMDFhYTRmZTkz
Zjc0NmVlNzFjZDNlMzA0ZDY2NDVkOGI3NjFjYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPVkayBDnfTq+WNlwOThymbcHQzeSAqoA+n0gLVtJLufj58m
GYsNlCX4q+vKdAHtjwq2jlpKEOpn9E5HkIYauGox1hkrwfAXiVOhCOkZuUpH038X
MHJVTzgw6ZBir2nclHChn5sr5Tfuj1pzWEUGlGsJPdR3+ctXQ/b8/SPyE9xjSftL
TA4vhBO+xo4YjoXCEjIk7Bbq8vwhOKJY8fpkjodpced5BDKt6Ed5b/jxoieSWHZk
J/89RNGlBuUJc3bLk0mV+sEItog16OXnMBep2Ul2qewkHgSv7LzRwOzntuJYsVVm
jKprS1aJFtmk1yqbk3Jj0HjsXk4wtDizM3VSyCUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRysBqk/pP3Ru5xzT4wTWZF2LdhyzAfBgNVHSMEGDAWgBRWj+NcyWJjOidX
rxCg5uirbQH0yTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZvX2pYTWxpWXpvblY2OFFvT2JvcTIwQjlNay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvMzdlYmU2LThiZmUtNGMxZi1hMTgzLTgzZDY0OGY3OTc0Ni8x
L2NyQWFwUDZUOTBidWNjMC1NRTFtUmRpM1ljcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
MzdlYmU2LThiZmUtNGMxZi1hMTgzLTgzZDY0OGY3OTc0Ni8xL1ZvX2pYTWxpWXpv
blY2OFFvT2JvcTIwQjlNay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMNXLwMEAMNXMTANBgkqhkiG9w0B
AQsFAAOCAQEAUlE+DWJG+yJnarrrtWzJDCmMJlus+vHhibABwdgvmqx1TkFEM3UA
SM61pS9tu5frP5vd0kTNkOotY3lzmDYLtcxJ638mmdbEWbtSmpYgG9b+ILbR/UF2
x4Pc81a6qpsu2S294yvmYR+x2+nCG1wAY6PsP6coGVTX1m6Yaprqi94IxIbN0VPY
GBm0+SAfiMf9BJj5DSUVJqOq7xDU8OVTeHcYBw5+2tEyppSNyXUlPdfLCb8cGeiL
TszOmBFF0KktBdXa32iYdOqRIt471d3j2B9sQSjDbep9PBrMvi9HwVJhHi5BXxJI
Zjm4GhahBsPJzytHN68AvQMqyVZN1bgiNA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org