Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/3OYTyWqbJJPJ9yNx0xsGOCeXSkI.roa
File: 3OYTyWqbJJPJ9yNx0xsGOCeXSkI.roa (raw, json)
Hash identifier: KXx4/XJWbTpu4w8mhHt53B7iTz2QLL/0Fy/qbuYX0Mw=
Subject key identifier: DC:E6:13:C9:6A:9B:24:93:C9:F7:23:71:D3:1B:06:38:27:97:4A:42
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 047FD94B
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/3OYTyWqbJJPJ9yNx0xsGOCeXSkI.roa
Signing time: Wed 02 Mar 2022 10:29:15 +0000
ROA not before: Wed 02 Mar 2022 10:29:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208491
IP address blocks: 195.187.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75487563 (0x47fd94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:29:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dce613c96a9b2493c9f72371d31b063827974a42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d2:8a:1e:9b:91:07:e0:c2:32:c8:ae:ce:53:
ba:57:d8:b3:01:0b:b0:c2:73:7d:e3:4e:d1:30:3d:
06:c8:c0:1d:ef:87:77:b3:37:3a:91:1b:26:71:9e:
7c:43:19:23:70:f1:57:a6:84:3e:db:46:4b:92:a9:
28:44:f7:95:f9:e2:78:60:ae:9e:59:a5:86:4f:61:
2b:33:31:4a:35:ab:ff:8b:d6:e7:9f:0e:01:6d:f6:
8a:a3:34:65:4e:be:18:ec:df:19:90:8f:ed:3e:4d:
ef:41:26:dd:f4:63:2e:71:99:d3:d7:96:8d:79:c0:
50:4a:ac:01:ff:e8:30:49:88:d6:f3:fc:12:51:a2:
ad:bc:31:58:0a:51:7b:24:78:af:90:97:96:a8:a4:
16:8d:97:5c:bf:f2:f8:e6:04:33:f0:b9:ab:e0:d1:
70:41:ca:58:5c:e5:17:51:be:53:03:97:eb:81:e0:
d8:97:e0:e2:1c:92:90:05:80:c1:59:7d:c5:bf:b5:
7c:75:35:29:85:4c:e3:f6:38:1d:8d:94:ae:bd:a2:
fe:c1:eb:ee:8c:ae:b6:af:76:c7:20:b8:02:0e:40:
a9:03:1f:1f:cb:e6:90:c5:25:31:cd:45:8e:3c:46:
75:0e:94:c5:7f:17:98:d6:de:3b:51:58:f5:6e:3f:
67:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E6:13:C9:6A:9B:24:93:C9:F7:23:71:D3:1B:06:38:27:97:4A:42
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/3OYTyWqbJJPJ9yNx0xsGOCeXSkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.32.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a3:09:e8:f8:99:0b:9f:76:83:ed:1b:d5:13:07:f7:46:46:
26:1c:8f:87:bf:9b:b3:c1:15:dd:62:ad:49:5c:14:a2:11:d1:
4f:67:71:39:27:f4:4d:94:b5:d2:c7:ee:10:73:e5:b1:28:e6:
9c:cc:22:1f:64:f0:0e:f8:a7:57:af:6a:0e:31:e1:79:af:0f:
d5:f0:0c:21:30:c6:fd:e8:44:a1:7e:4a:8d:d2:dc:36:77:89:
fa:b4:ed:1e:bc:cc:ad:af:7c:74:ee:14:23:67:72:1f:bc:92:
61:21:29:b3:e0:af:9b:b3:48:4c:d6:18:63:f9:d0:92:db:33:
23:03:26:1c:37:6a:fd:7a:8b:29:03:13:25:22:f3:f2:4d:36:
f2:f8:92:cb:c2:d8:5d:fd:96:14:27:59:93:3d:9e:96:d1:31:
93:07:6d:c9:33:43:ad:bc:83:ba:19:2b:4f:0b:cb:6d:80:e3:
8a:00:71:13:c1:4e:0c:28:96:6b:4a:81:58:00:d1:4c:cb:73:
3e:44:54:ab:ea:c2:4c:92:d8:a3:c7:fd:dd:03:e1:3e:11:59:
ea:eb:9e:4a:4b:57:68:91:2b:ac:a9:ba:7a:42:39:a1:90:af:
3f:44:34:9c:cd:3e:0e:a2:7b:fb:5c:45:35:b3:da:fb:17:5d:
b1:c6:20:b7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBH/ZSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MGM0MDk2MTNmZWEwYTJiNDQyY2UxMTJlOWNiZGI0ODVlMDExODhmMB4XDTIyMDMw
MjEwMjkxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGNlNjEzYzk2YTli
MjQ5M2M5ZjcyMzcxZDMxYjA2MzgyNzk3NGE0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLSih6bkQfgwjLIrs5TulfYswELsMJzfeNO0TA9BsjAHe+H
d7M3OpEbJnGefEMZI3DxV6aEPttGS5KpKET3lfnieGCunlmlhk9hKzMxSjWr/4vW
558OAW32iqM0ZU6+GOzfGZCP7T5N70Em3fRjLnGZ09eWjXnAUEqsAf/oMEmI1vP8
ElGirbwxWApReyR4r5CXlqikFo2XXL/y+OYEM/C5q+DRcEHKWFzlF1G+UwOX64Hg
2Jfg4hySkAWAwVl9xb+1fHU1KYVM4/Y4HY2Urr2i/sHr7oyutq92xyC4Ag5AqQMf
H8vmkMUlMc1FjjxGdQ6UxX8XmNbeO1FY9W4/Z1kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTc5hPJapskk8n3I3HTGwY4J5dKQjAfBgNVHSMEGDAWgBQwxAlhP+oKK0Qs
4RLpy9tIXgEYjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01NUUpZVF9xQ2l0RUxPRVM2Y3ZiU0Y0QkdJOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvYjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8x
LzNPWVR5V3FiSkpQSjl5TngweHNHT0NlWFNrSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
Yjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8xL01NUUpZVF9xQ2l0
RUxPRVM2Y3ZiU0Y0QkdJOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMO7IDANBgkqhkiG9w0BAQsFAAOC
AQEAe6MJ6PiZC592g+0b1RMH90ZGJhyPh7+bs8EV3WKtSVwUohHRT2dxOSf0TZS1
0sfuEHPlsSjmnMwiH2TwDvinV69qDjHhea8P1fAMITDG/ehEoX5KjdLcNneJ+rTt
HrzMra98dO4UI2dyH7ySYSEps+Cvm7NITNYYY/nQktszIwMmHDdq/XqLKQMTJSLz
8k028viSy8LYXf2WFCdZkz2eltExkwdtyTNDrbyDuhkrTwvLbYDjigBxE8FODCiW
a0qBWADRTMtzPkRUq+rCTJLYo8f93QPhPhFZ6uueSktXaJErrKm6ekI5oZCvP0Q0
nM0+DqJ7+1xFNbPa+xddscYgtw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org