Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/vXTCTfvgJWerwBJoKhsAkNcpsoc.roa
File: vXTCTfvgJWerwBJoKhsAkNcpsoc.roa (raw, json)
Hash identifier: opo0wvACwPB5eu6PLTJUvSJQ0hMg/IQja3tw8d9Y1xY=
Subject key identifier: BD:74:C2:4D:FB:E0:25:67:AB:C0:12:68:2A:1B:00:90:D7:29:B2:87
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 047E8D9E
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/vXTCTfvgJWerwBJoKhsAkNcpsoc.roa
Signing time: Wed 02 Mar 2022 10:29:14 +0000
ROA not before: Wed 02 Mar 2022 10:29:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204388
IP address blocks: 195.187.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75402654 (0x47e8d9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:29:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd74c24dfbe02567abc012682a1b0090d729b287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:36:ef:44:d0:07:eb:8a:d1:e4:ee:53:62:41:
16:6c:7e:74:76:b5:10:a2:4d:03:69:15:f9:56:e7:
1c:e2:07:bb:5b:2d:87:83:07:64:61:99:aa:34:cb:
fc:32:81:5d:9e:86:c7:f2:05:e4:af:f5:c9:ca:d1:
c8:03:20:2d:d4:aa:4b:9f:cb:2c:2b:49:59:34:27:
aa:83:2c:1b:23:89:8f:4c:59:5a:32:0a:8e:25:7c:
6a:0e:7e:b1:a6:f5:50:5b:61:0e:d4:37:98:3d:c5:
70:b5:c1:00:c7:c1:d4:28:0e:91:8d:5d:0b:58:5a:
b7:7d:c2:ff:a6:de:6f:8b:1a:70:ed:f0:dc:fd:70:
2a:b8:93:a9:aa:eb:e7:3c:1a:9a:4d:dd:cb:7c:a3:
68:f2:07:f3:92:0e:e6:b3:36:aa:1a:37:ed:64:ae:
3f:dc:e4:ea:c8:34:57:01:0a:58:6e:a4:c3:1b:4b:
4c:a6:1b:52:f1:49:37:e7:de:0d:91:72:d2:29:15:
7e:2d:d4:65:8e:09:bd:e0:17:d3:06:8e:f6:e1:f6:
5e:32:7c:17:0f:55:d5:73:0c:32:41:b8:0f:03:93:
c4:0d:96:8b:b7:56:ff:7d:20:00:62:7d:08:9a:80:
2b:ae:2f:b6:f1:be:bb:2d:8c:cc:02:6b:0b:8c:83:
e1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:74:C2:4D:FB:E0:25:67:AB:C0:12:68:2A:1B:00:90:D7:29:B2:87
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/vXTCTfvgJWerwBJoKhsAkNcpsoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.42.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:b5:f5:6d:28:07:2c:54:04:2d:62:78:fa:57:1b:b4:e5:59:
98:53:a2:dd:5e:08:0c:31:70:39:32:53:7a:fc:17:4c:e5:d6:
4c:3b:6c:dc:84:f0:45:4e:a6:2f:35:ff:eb:a8:4a:35:17:1d:
e8:11:e1:58:5c:53:b5:38:30:55:eb:46:97:c4:f3:23:1e:94:
52:a0:87:dc:da:fb:82:1e:3e:9d:15:e4:cc:bf:e0:ed:79:44:
ba:4f:8a:47:1d:9a:c5:d7:45:a1:eb:b1:27:ee:3e:1d:9d:fb:
ed:67:f4:79:2d:df:69:45:c1:b1:65:42:f4:8f:4c:25:b8:46:
ac:00:0b:1d:d1:cb:6e:5e:8e:a8:b8:ea:a2:67:4f:cf:05:45:
06:6f:91:27:67:81:0b:1d:e1:04:eb:cd:ed:58:65:09:81:61:
3e:cc:bf:84:e7:c5:a6:10:33:a3:74:06:cf:d8:ac:6c:0e:36:
63:45:9b:b4:fe:22:c8:11:93:87:10:e7:1f:b0:e3:5a:43:b2:
e3:99:e0:34:be:b8:4a:6d:c6:2a:6b:76:c2:11:f5:8b:c6:4c:
22:3f:de:36:a0:68:31:e9:8e:dc:25:e9:e5:3a:71:c8:35:43:
33:e1:b5:90:9e:b4:ed:60:d1:61:f1:d0:61:c4:76:92:ee:6a:
07:d4:4e:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBH6NnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MGM0MDk2MTNmZWEwYTJiNDQyY2UxMTJlOWNiZGI0ODVlMDExODhmMB4XDTIyMDMw
MjEwMjkxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQ3NGMyNGRmYmUw
MjU2N2FiYzAxMjY4MmExYjAwOTBkNzI5YjI4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKU270TQB+uK0eTuU2JBFmx+dHa1EKJNA2kV+VbnHOIHu1st
h4MHZGGZqjTL/DKBXZ6Gx/IF5K/1ycrRyAMgLdSqS5/LLCtJWTQnqoMsGyOJj0xZ
WjIKjiV8ag5+sab1UFthDtQ3mD3FcLXBAMfB1CgOkY1dC1hat33C/6beb4sacO3w
3P1wKriTqarr5zwamk3dy3yjaPIH85IO5rM2qho37WSuP9zk6sg0VwEKWG6kwxtL
TKYbUvFJN+feDZFy0ikVfi3UZY4JveAX0waO9uH2XjJ8Fw9V1XMMMkG4DwOTxA2W
i7dW/30gAGJ9CJqAK64vtvG+uy2MzAJrC4yD4ckCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS9dMJN++AlZ6vAEmgqGwCQ1ymyhzAfBgNVHSMEGDAWgBQwxAlhP+oKK0Qs
4RLpy9tIXgEYjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01NUUpZVF9xQ2l0RUxPRVM2Y3ZiU0Y0QkdJOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvYjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8x
L3ZYVENUZnZnSldlcndCSm9LaHNBa05jcHNvYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
Yjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8xL01NUUpZVF9xQ2l0
RUxPRVM2Y3ZiU0Y0QkdJOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMO7KjANBgkqhkiG9w0BAQsFAAOC
AQEAjbX1bSgHLFQELWJ4+lcbtOVZmFOi3V4IDDFwOTJTevwXTOXWTDts3ITwRU6m
LzX/66hKNRcd6BHhWFxTtTgwVetGl8TzIx6UUqCH3Nr7gh4+nRXkzL/g7XlEuk+K
Rx2axddFoeuxJ+4+HZ377Wf0eS3faUXBsWVC9I9MJbhGrAALHdHLbl6OqLjqomdP
zwVFBm+RJ2eBCx3hBOvN7VhlCYFhPsy/hOfFphAzo3QGz9isbA42Y0WbtP4iyBGT
hxDnH7DjWkOy45ngNL64Sm3GKmt2whH1i8ZMIj/eNqBoMemO3CXp5TpxyDVDM+G1
kJ607WDRYfHQYcR2ku5qB9ROUw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org