Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/s2Tz7RLeaEV8MSU2t9nksZDeWmM.roa
File: s2Tz7RLeaEV8MSU2t9nksZDeWmM.roa (raw, json)
Hash identifier: qKYX2SUPbx+0YrdtYljlGzJXziaqFrxPlKu868JgrDM=
Subject key identifier: B3:64:F3:ED:12:DE:68:45:7C:31:25:36:B7:D9:E4:B1:90:DE:5A:63
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B54AEB3
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/s2Tz7RLeaEV8MSU2t9nksZDeWmM.roa
Signing time: Sat 01 Jan 2022 08:58:31 +0000
ROA not before: Sat 01 Jan 2022 08:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16069
IP address blocks: 195.46.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190099123 (0xb54aeb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b364f3ed12de68457c312536b7d9e4b190de5a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a6:59:f3:1b:fa:dd:76:7f:c9:d7:3b:f9:02:
d8:04:7a:0b:49:49:7a:79:43:54:ff:19:e8:55:19:
7b:46:ba:6c:de:f3:05:bd:d6:c8:65:21:f8:c6:2f:
f4:52:91:8a:18:db:eb:55:51:a7:96:a2:11:f2:47:
b9:63:ad:94:59:e7:64:be:a0:e4:53:21:6e:17:69:
1a:7a:17:43:6a:ab:44:1a:e9:1c:b5:ac:da:2d:cb:
52:fb:e3:ec:62:1d:5a:f0:df:80:7a:a3:f9:03:bb:
9a:ba:09:19:72:d2:71:5c:c0:ab:85:6d:a7:d8:f3:
bc:6f:1c:81:60:8d:db:0e:32:36:c2:f9:ac:82:6f:
22:82:7a:a3:d5:43:c1:5f:e2:30:32:d7:3a:28:db:
3b:59:f6:bf:ed:95:b2:9a:bc:39:e4:97:d5:57:5b:
a4:83:28:f3:41:30:d8:96:e9:2e:26:a3:2e:c3:3c:
39:3c:c4:6a:8a:87:8f:f4:5e:a2:ae:f3:40:ba:ab:
52:2a:11:71:59:4c:2a:36:5b:7e:66:30:09:95:fa:
8c:fc:19:2e:cb:ff:f2:8b:4a:1a:2d:69:c9:8d:48:
2f:51:90:23:c8:a9:99:bd:13:07:2e:4a:bc:b4:21:
02:e3:ce:40:65:d2:13:a3:ba:70:1c:eb:7d:9c:15:
15:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:64:F3:ED:12:DE:68:45:7C:31:25:36:B7:D9:E4:B1:90:DE:5A:63
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/s2Tz7RLeaEV8MSU2t9nksZDeWmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.46.141.0/24
Signature Algorithm: sha256WithRSAEncryption
50:59:0c:de:f1:ab:e5:60:c7:e1:5a:25:e6:ca:01:0c:77:dc:
66:65:0e:e7:04:55:0a:f8:0c:2f:15:78:4b:85:bc:39:f2:3d:
a4:51:7e:29:a8:71:fd:9d:a7:19:35:60:de:10:fe:b5:14:fc:
59:70:07:b8:1d:a1:f6:a0:91:3d:96:4c:42:fb:d4:69:a6:6c:
af:74:47:53:ee:d8:68:d7:13:df:0a:82:61:f1:c7:72:de:e3:
37:5c:f9:40:ef:76:5d:13:d7:77:2e:95:7b:22:bf:66:1a:a5:
7f:3a:50:82:ba:09:5d:d2:a7:89:99:9b:bf:a4:14:21:ed:58:
39:99:3d:77:a3:7b:9a:0f:8e:51:74:2e:54:96:47:bc:d8:17:
46:53:27:d3:56:44:20:ac:71:7a:17:2e:82:78:24:4c:20:b3:
56:45:f9:15:75:5b:84:1a:24:a5:af:e0:02:9e:90:3e:b7:8a:
40:2d:fd:d8:6d:6c:38:4d:dd:7a:bd:98:a7:9b:50:50:53:13:
0f:ab:e2:2a:e6:62:2a:37:ee:a2:2c:42:75:29:db:5f:f3:5f:
b4:f8:2d:95:f3:92:62:bf:5f:df:1e:40:ef:3e:f7:3f:99:2b:
1c:c4:6b:44:f5:b1:87:01:ac:87:d0:ed:a3:d5:a9:5f:31:9c:
39:7e:78:b2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC1SuszANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NjhmZTM1Y2M5NjI2MzNhMjc1N2FmMTBhMGU2ZThhYjZkMDFmNGM5MB4XDTIyMDEw
MTA4NTgzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjM2NGYzZWQxMmRl
Njg0NTdjMzEyNTM2YjdkOWU0YjE5MGRlNWE2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMimWfMb+t12f8nXO/kC2AR6C0lJenlDVP8Z6FUZe0a6bN7z
Bb3WyGUh+MYv9FKRihjb61VRp5aiEfJHuWOtlFnnZL6g5FMhbhdpGnoXQ2qrRBrp
HLWs2i3LUvvj7GIdWvDfgHqj+QO7mroJGXLScVzAq4Vtp9jzvG8cgWCN2w4yNsL5
rIJvIoJ6o9VDwV/iMDLXOijbO1n2v+2Vspq8OeSX1VdbpIMo80Ew2JbpLiajLsM8
OTzEaoqHj/Reoq7zQLqrUioRcVlMKjZbfmYwCZX6jPwZLsv/8otKGi1pyY1IL1GQ
I8ipmb0TBy5KvLQhAuPOQGXSE6O6cBzrfZwVFYcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSzZPPtEt5oRXwxJTa32eSxkN5aYzAfBgNVHSMEGDAWgBRWj+NcyWJjOidX
rxCg5uirbQH0yTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZvX2pYTWxpWXpvblY2OFFvT2JvcTIwQjlNay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvMzdlYmU2LThiZmUtNGMxZi1hMTgzLTgzZDY0OGY3OTc0Ni8x
L3MyVHo3UkxlYUVWOE1TVTJ0OW5rc1pEZVdtTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
MzdlYmU2LThiZmUtNGMxZi1hMTgzLTgzZDY0OGY3OTc0Ni8xL1ZvX2pYTWxpWXpv
blY2OFFvT2JvcTIwQjlNay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMujTANBgkqhkiG9w0BAQsFAAOC
AQEAUFkM3vGr5WDH4Vol5soBDHfcZmUO5wRVCvgMLxV4S4W8OfI9pFF+Kahx/Z2n
GTVg3hD+tRT8WXAHuB2h9qCRPZZMQvvUaaZsr3RHU+7YaNcT3wqCYfHHct7jN1z5
QO92XRPXdy6VeyK/ZhqlfzpQgroJXdKniZmbv6QUIe1YOZk9d6N7mg+OUXQuVJZH
vNgXRlMn01ZEIKxxehcugngkTCCzVkX5FXVbhBokpa/gAp6QPreKQC392G1sOE3d
er2Yp5tQUFMTD6viKuZiKjfuoixCdSnbX/NftPgtlfOSYr9f3x5A7z73P5krHMRr
RPWxhwGsh9Dto9WpXzGcOX54sg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org