Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/1-JYdShOBhAUdR_T-O3nvu5jBk_o.roa
File: 1-JYdShOBhAUdR_T-O3nvu5jBk_o.roa (raw, json)
Hash identifier: Y9dWtLZ+vFH4NOZbIrYF9tKNktQpT7w6VR7or3LpB84=
Subject key identifier: F8:96:1D:4A:13:81:84:05:1D:47:F4:FE:3B:79:EF:BB:98:C1:93:FA
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 036832B2
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/1-JYdShOBhAUdR_T-O3nvu5jBk_o.roa
Signing time: Tue 29 Mar 2022 13:02:01 +0000
ROA not before: Tue 29 Mar 2022 13:02:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212566
IP address blocks: 95.161.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57160370 (0x36832b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Mar 29 13:02:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8961d4a138184051d47f4fe3b79efbb98c193fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:c2:d3:76:54:75:2f:63:33:0f:00:ca:4c:
46:a1:26:d4:71:11:db:71:6f:7f:ba:1d:ba:e4:35:
48:48:e8:94:12:68:62:4d:bb:26:86:9f:aa:de:36:
fb:40:91:50:57:63:48:47:47:7c:c6:9e:40:fa:fb:
76:f6:26:c3:d3:b4:db:33:d5:7c:7c:62:84:6e:25:
97:a6:8d:91:6d:74:5b:4b:91:5b:2a:ee:69:70:ff:
03:4e:28:a9:27:70:41:40:8a:0e:44:be:c0:b4:b6:
77:03:42:b9:12:95:23:62:65:f4:65:b0:c3:a0:be:
04:7e:e9:b4:65:7f:4b:ab:75:da:78:41:f3:98:a9:
d0:b4:2a:3b:63:a9:9f:30:5e:4b:8f:55:32:90:87:
91:3c:ad:68:c7:58:1d:86:20:f3:6b:90:2f:74:3b:
eb:58:b3:d0:61:a1:f7:9f:48:ea:55:9d:e6:41:68:
27:08:4d:13:54:1f:17:f0:87:59:ee:f7:73:64:59:
10:7d:9e:21:c6:5b:d8:fa:b2:e6:46:01:3c:4a:3a:
e5:f1:b2:39:ab:53:be:7a:49:3e:cc:e7:7b:c7:10:
1e:80:99:99:43:a7:b6:4c:58:de:02:93:8a:19:d8:
70:21:b8:ce:b2:1d:54:f3:46:e8:cc:56:8c:ac:cf:
5f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:96:1D:4A:13:81:84:05:1D:47:F4:FE:3B:79:EF:BB:98:C1:93:FA
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/1-JYdShOBhAUdR_T-O3nvu5jBk_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.161.83.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:2d:11:84:44:60:f6:33:e9:68:c3:e7:55:7d:01:11:c3:62:
35:68:e4:a4:08:94:af:d0:a0:67:94:fb:d9:02:ae:cb:16:d1:
e0:5b:8b:63:24:8a:cf:9c:ef:eb:d7:ef:d4:9b:d2:55:c5:ff:
e8:5a:78:51:df:46:31:4f:c8:bf:6e:46:9e:43:ac:45:ef:84:
8c:5a:0b:92:cf:72:6f:a7:2a:9e:3e:0e:de:ba:99:59:3e:5c:
fe:5c:48:d1:ec:dd:04:cd:0e:84:a7:8a:ca:02:ad:3a:d5:fe:
4b:b4:67:0f:29:ad:50:88:2d:ae:c9:bb:21:02:3f:d5:00:3b:
06:ba:98:92:2a:59:6b:ba:ef:44:11:22:2f:8a:94:fe:52:82:
fa:5d:99:93:15:81:a4:11:be:d1:41:44:82:2c:c3:d6:51:d0:
85:ac:8c:d3:4e:ff:c7:48:55:c3:19:b0:93:bd:34:5b:8a:db:
6a:00:84:8b:7c:b8:78:54:4a:56:0c:58:15:eb:6b:d5:7e:8c:
8e:ca:81:ba:e3:01:f7:26:93:63:1f:41:c9:0e:7b:e9:cf:73:
1c:8b:0b:9d:1c:d9:0d:84:17:c4:68:3e:f5:a7:04:c5:1a:97:
72:53:07:fd:3c:57:f2:e5:f3:20:f4:22:d4:94:24:f3:29:0f:
2d:75:40:02
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEA2gysjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MjI4ZTdlMDFmYWRhNDljMWE1MmZhMTNmMzYyNmM0MWI0MWE1MWI4MB4XDTIyMDMy
OTEzMDIwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjg5NjFkNGExMzgx
ODQwNTFkNDdmNGZlM2I3OWVmYmI5OGMxOTNmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKrHwtN2VHUvYzMPAMpMRqEm1HER23Fvf7oduuQ1SEjolBJo
Yk27Joafqt42+0CRUFdjSEdHfMaeQPr7dvYmw9O02zPVfHxihG4ll6aNkW10W0uR
WyruaXD/A04oqSdwQUCKDkS+wLS2dwNCuRKVI2Jl9GWww6C+BH7ptGV/S6t12nhB
85ip0LQqO2OpnzBeS49VMpCHkTytaMdYHYYg82uQL3Q761iz0GGh959I6lWd5kFo
JwhNE1QfF/CHWe73c2RZEH2eIcZb2Pqy5kYBPEo65fGyOatTvnpJPszne8cQHoCZ
mUOntkxY3gKTihnYcCG4zrIdVPNG6MxWjKzPX1MCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT4lh1KE4GEBR1H9P47ee+7mMGT+jAfBgNVHSMEGDAWgBRiKOfgH62knBpS
+hPzYmxBtBpRuDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lpam40Qi10cEp3YVV2b1Q4MkpzUWJRYVViZy5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvYmFhZmYzLWFlYjQtNDYxNi04ZmI1LTc2NzQxNjUyNTEwZC8x
LzEtSllkU2hPQmhBVWRSX1QtTzNudnU1akJrX28ucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBl
L2JhYWZmMy1hZWI0LTQ2MTYtOGZiNS03Njc0MTY1MjUxMGQvMS9ZaWpuNEItdHBK
d2FVdm9UODJKc1FiUWFVYmcuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABfoVMwDQYJKoZIhvcNAQELBQAD
ggEBAG0tEYREYPYz6WjD51V9ARHDYjVo5KQIlK/QoGeU+9kCrssW0eBbi2Mkis+c
7+vX79Sb0lXF/+haeFHfRjFPyL9uRp5DrEXvhIxaC5LPcm+nKp4+Dt66mVk+XP5c
SNHs3QTNDoSnisoCrTrV/ku0Zw8prVCILa7JuyECP9UAOwa6mJIqWWu670QRIi+K
lP5SgvpdmZMVgaQRvtFBRIIsw9ZR0IWsjNNO/8dIVcMZsJO9NFuK22oAhIt8uHhU
SlYMWBXra9V+jI7KgbrjAfcmk2MfQckOe+nPcxyLC50c2Q2EF8RoPvWnBMUal3JT
B/08V/Ll8yD0ItSUJPMpDy11QAI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:49 2023 by rpki-client on console-fra.rpki-client.org