Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/s3LkijKvpV048UrdGevYbMUwQhA.roa
File: s3LkijKvpV048UrdGevYbMUwQhA.roa (raw, json)
Hash identifier: Fp1rguL8lvdS5qUgnbA0Bv0kvZMJQ7wUrZlo8xbq3Sg=
Subject key identifier: B3:72:E4:8A:32:AF:A5:5D:38:F1:4A:DD:19:EB:D8:6C:C5:30:42:10
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 029AA59E
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/s3LkijKvpV048UrdGevYbMUwQhA.roa
Signing time: Sat 01 Jan 2022 14:08:41 +0000
ROA not before: Sat 01 Jan 2022 14:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31500
IP address blocks: 95.140.80.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43689374 (0x29aa59e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Jan 1 14:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b372e48a32afa55d38f14add19ebd86cc5304210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6b:97:70:d9:2f:15:b6:23:7c:3d:be:61:ed:
56:7c:a7:ab:dc:5d:c3:cf:a9:2c:8e:b6:51:56:21:
27:c0:a2:b1:88:4a:22:3d:ac:ee:72:fa:3e:ca:a1:
fd:9c:45:63:9c:a6:bd:7d:72:61:ac:74:ca:47:1c:
d7:58:46:3f:c3:d3:01:c5:0f:90:fa:9a:5e:13:29:
5b:90:a6:4b:c5:dd:6a:70:24:11:ec:95:0e:19:d2:
07:ed:d6:25:fa:3f:25:9d:74:ea:8a:6f:52:00:90:
fc:d5:0d:01:5e:7f:1a:c7:06:90:15:50:35:eb:62:
a0:2c:f0:6d:ed:bc:f9:57:a6:cc:ca:fa:08:71:77:
e9:a6:cf:d0:a5:26:e0:e6:86:03:a7:77:5e:ae:23:
e7:6d:0d:9d:8e:e2:85:07:da:b3:98:17:70:11:06:
8c:e8:ab:c5:cf:73:2b:b8:ef:26:b8:6a:6c:fa:05:
9e:71:22:a7:ae:db:41:24:56:60:9f:9c:91:fa:4c:
a0:12:eb:65:03:29:04:10:08:10:ea:9f:49:a6:8e:
fc:c7:6a:ce:0b:c9:c7:49:21:e3:31:a9:ac:78:84:
cf:12:a1:49:34:c4:48:27:bd:5f:19:e0:0a:6c:7f:
8b:56:24:9d:b2:0f:c0:da:ac:8c:87:7f:c8:d6:a7:
0b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:72:E4:8A:32:AF:A5:5D:38:F1:4A:DD:19:EB:D8:6C:C5:30:42:10
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/s3LkijKvpV048UrdGevYbMUwQhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.80.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:1a:3a:5e:b7:bb:5d:9e:05:86:a8:be:96:60:11:7f:2c:28:
9f:9d:f4:a6:26:cb:22:3f:80:8e:ab:02:52:0d:1a:75:f7:02:
b3:7a:6b:d6:3f:97:1e:ac:4f:46:15:5e:d6:20:5d:16:f4:d9:
b4:81:09:cd:1d:76:4f:25:e6:5d:9f:e2:dd:66:85:96:59:d3:
bb:de:d9:05:f3:ff:f4:1f:3c:a2:0e:58:79:81:56:39:27:9f:
94:29:08:04:4c:5e:6a:9f:90:6f:1f:ee:47:ef:3b:01:e9:d1:
48:2f:c2:78:ba:37:f0:de:80:72:49:6c:5f:0b:04:65:cc:96:
ad:94:6d:d6:25:46:44:5a:d0:d3:b4:fd:2e:02:3b:57:7d:68:
00:1b:c3:1c:3e:c6:93:af:ed:b5:53:a4:3f:73:a6:ed:cd:6a:
8d:df:d1:60:c2:89:cb:33:f0:3f:16:5f:06:f2:f5:85:ab:b4:
3e:de:d6:7a:e7:d1:b3:1d:a5:18:bb:3f:2c:d4:08:dd:ce:ea:
d2:cb:6a:43:4b:6f:84:25:1a:6e:66:a5:7a:86:a1:37:c8:09:
56:93:ef:04:d8:45:89:5d:60:d8:86:f3:b7:d9:36:8c:55:fa:
ed:dc:8b:c8:a2:1b:e3:3d:99:58:cf:98:45:04:79:1f:2c:ac:
0c:70:93:f7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEApqlnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MjI4ZTdlMDFmYWRhNDljMWE1MmZhMTNmMzYyNmM0MWI0MWE1MWI4MB4XDTIyMDEw
MTE0MDg0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjM3MmU0OGEzMmFm
YTU1ZDM4ZjE0YWRkMTllYmQ4NmNjNTMwNDIxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNrl3DZLxW2I3w9vmHtVnynq9xdw8+pLI62UVYhJ8CisYhK
Ij2s7nL6Psqh/ZxFY5ymvX1yYax0ykcc11hGP8PTAcUPkPqaXhMpW5CmS8XdanAk
EeyVDhnSB+3WJfo/JZ106opvUgCQ/NUNAV5/GscGkBVQNetioCzwbe28+VemzMr6
CHF36abP0KUm4OaGA6d3Xq4j520NnY7ihQfas5gXcBEGjOirxc9zK7jvJrhqbPoF
nnEip67bQSRWYJ+ckfpMoBLrZQMpBBAIEOqfSaaO/MdqzgvJx0kh4zGprHiEzxKh
STTESCe9XxngCmx/i1YknbIPwNqsjId/yNanCxsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSzcuSKMq+lXTjxSt0Z69hsxTBCEDAfBgNVHSMEGDAWgBRiKOfgH62knBpS
+hPzYmxBtBpRuDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lpam40Qi10cEp3YVV2b1Q4MkpzUWJRYVViZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvYmFhZmYzLWFlYjQtNDYxNi04ZmI1LTc2NzQxNjUyNTEwZC8x
L3MzTGtpakt2cFYwNDhVcmRHZXZZYk1Vd1FoQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUv
YmFhZmYzLWFlYjQtNDYxNi04ZmI1LTc2NzQxNjUyNTEwZC8xL1lpam40Qi10cEp3
YVV2b1Q4MkpzUWJRYVViZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF+MUDANBgkqhkiG9w0BAQsFAAOC
AQEAtho6Xre7XZ4Fhqi+lmARfywon530pibLIj+AjqsCUg0adfcCs3pr1j+XHqxP
RhVe1iBdFvTZtIEJzR12TyXmXZ/i3WaFllnTu97ZBfP/9B88og5YeYFWOSeflCkI
BExeap+Qbx/uR+87AenRSC/CeLo38N6AcklsXwsEZcyWrZRt1iVGRFrQ07T9LgI7
V31oABvDHD7Gk6/ttVOkP3Om7c1qjd/RYMKJyzPwPxZfBvL1hau0Pt7WeufRsx2l
GLs/LNQI3c7q0stqQ0tvhCUabmaleoahN8gJVpPvBNhFiV1g2Ibzt9k2jFX67dyL
yKIb4z2ZWM+YRQR5HyysDHCT9w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:49 2023 by rpki-client on console-fra.rpki-client.org