Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rrpcsNLL066We4WCkQ61aBgvYhg.roa
File: rrpcsNLL066We4WCkQ61aBgvYhg.roa (raw, json)
Hash identifier: 8pA13X0vGvMAjRqLOI03XwOUz4IMbVCVRfcFLgyJIr8=
Subject key identifier: AE:BA:5C:B0:D2:CB:D3:AE:96:7B:85:82:91:0E:B5:68:18:2F:62:18
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37F7AA7A
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rrpcsNLL066We4WCkQ61aBgvYhg.roa
Signing time: Thu 28 Apr 2022 12:17:52 +0000
ROA not before: Thu 28 Apr 2022 12:17:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51383
IP address blocks: 195.34.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938977914 (0x37f7aa7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:17:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aeba5cb0d2cbd3ae967b8582910eb568182f6218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:90:4e:4c:21:13:73:83:3c:6d:1c:e3:a7:02:
c4:72:62:b5:20:34:3f:92:64:8f:eb:f8:4b:31:91:
5f:52:0d:62:ce:bd:f1:b9:21:10:94:dd:6a:25:df:
b0:07:1f:53:e0:11:c4:a9:56:f5:fc:6c:51:a5:b9:
19:c9:c6:62:01:fe:7e:08:d3:62:15:e7:c4:0f:92:
4a:61:78:d2:1a:74:28:23:f9:47:94:d4:c9:e2:2d:
58:c4:1a:91:fa:de:5d:34:f1:e9:7a:80:54:64:c5:
fe:55:2c:18:17:3a:3f:dc:2f:05:a1:97:ad:30:b5:
b1:f8:41:18:c5:0e:c8:a4:8b:30:40:06:59:2d:f7:
8b:a3:d0:60:a6:38:8b:46:a8:82:58:e7:de:a2:fc:
15:af:56:50:36:56:96:0d:27:ca:71:58:af:b7:5a:
9f:db:48:53:e0:de:a2:a6:5c:ae:15:9f:51:cd:e9:
d5:5e:1c:c5:c8:a5:d1:5f:bc:5a:e2:00:d3:89:be:
87:92:f5:6d:3c:55:de:cd:b3:c8:78:55:29:c7:32:
4d:21:2b:c4:44:62:a2:a5:37:f2:62:38:bf:1c:56:
32:e7:d9:2e:30:1f:b2:1a:bd:54:cf:2b:34:c4:b4:
0e:ef:ba:04:91:25:b4:01:b9:25:f4:d4:c6:bf:90:
0c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:BA:5C:B0:D2:CB:D3:AE:96:7B:85:82:91:0E:B5:68:18:2F:62:18
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rrpcsNLL066We4WCkQ61aBgvYhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.34.97.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:6c:fe:92:9e:ab:7b:d1:0b:b2:06:cb:51:d4:a2:c0:af:39:
bb:34:d7:77:db:eb:c4:07:8d:96:92:f3:b5:f2:a9:7c:7a:c6:
63:76:c5:c5:d9:ec:d4:d8:12:60:b3:52:c6:d2:3d:00:1a:d7:
d0:13:29:22:e3:8c:fd:05:e0:c1:57:f0:a2:3a:7a:30:c9:de:
71:5e:47:5e:9d:8b:84:b0:be:eb:22:f6:2a:73:a2:6f:21:da:
e3:e2:7e:5d:c8:d3:3a:4e:9c:0a:6e:64:8e:73:85:4e:80:20:
2e:09:b1:6c:f0:f3:23:7a:57:d5:c3:54:85:b3:c3:05:04:0b:
75:05:b7:d7:32:87:c8:5c:db:e6:73:fc:f8:d4:39:24:89:40:
f0:91:4b:92:0f:e6:15:6a:64:86:04:be:ae:08:99:75:5a:15:
91:9b:65:c0:ca:22:3e:14:15:07:91:18:6b:6e:c3:08:d1:3d:
9f:96:84:1e:ea:3f:ba:78:1f:a2:b0:93:f7:f2:71:f7:4e:21:
bb:b2:b5:63:e3:3b:0a:b6:3b:0d:11:11:54:7c:42:98:1c:f5:
a1:0d:8c:d9:64:12:a1:48:58:6d:56:96:8d:76:20:c2:c7:1b:
c0:e2:42:46:a8:ec:d0:1b:8c:7b:33:82:72:72:bf:70:63:a6:
c4:7a:df:a7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN/eqejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDQy
ODEyMTc1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWViYTVjYjBkMmNi
ZDNhZTk2N2I4NTgyOTEwZWI1NjgxODJmNjIxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMaQTkwhE3ODPG0c46cCxHJitSA0P5Jkj+v4SzGRX1INYs69
8bkhEJTdaiXfsAcfU+ARxKlW9fxsUaW5GcnGYgH+fgjTYhXnxA+SSmF40hp0KCP5
R5TUyeItWMQakfreXTTx6XqAVGTF/lUsGBc6P9wvBaGXrTC1sfhBGMUOyKSLMEAG
WS33i6PQYKY4i0aogljn3qL8Fa9WUDZWlg0nynFYr7dan9tIU+DeoqZcrhWfUc3p
1V4cxcil0V+8WuIA04m+h5L1bTxV3s2zyHhVKccyTSErxERioqU38mI4vxxWMufZ
LjAfshq9VM8rNMS0Du+6BJEltAG5JfTUxr+QDAMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSuulyw0svTrpZ7hYKRDrVoGC9iGDAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
L3JycGNzTkxMMDY2V2U0V0NrUTYxYUJndlloZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMiYTANBgkqhkiG9w0BAQsFAAOC
AQEAemz+kp6re9ELsgbLUdSiwK85uzTXd9vrxAeNlpLztfKpfHrGY3bFxdns1NgS
YLNSxtI9ABrX0BMpIuOM/QXgwVfwojp6MMnecV5HXp2LhLC+6yL2KnOibyHa4+J+
XcjTOk6cCm5kjnOFToAgLgmxbPDzI3pX1cNUhbPDBQQLdQW31zKHyFzb5nP8+NQ5
JIlA8JFLkg/mFWpkhgS+rgiZdVoVkZtlwMoiPhQVB5EYa27DCNE9n5aEHuo/ungf
orCT9/Jx904hu7K1Y+M7CrY7DRERVHxCmBz1oQ2M2WQSoUhYbVaWjXYgwscbwOJC
Rqjs0BuMezOCcnK/cGOmxHrfpw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:21 2023 by rpki-client on console-fra.rpki-client.org