Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/7k-rjicnKwA2TJx_t8ckKHLpO2A.roa
File: 7k-rjicnKwA2TJx_t8ckKHLpO2A.roa (raw, json)
Hash identifier: bPjfKzCwKGTAX7zsfrSA/1kRjeADMRLKpQNM4R8ZmXo=
Subject key identifier: EE:4F:AB:8E:27:27:2B:00:36:4C:9C:7F:B7:C7:24:28:72:E9:3B:60
Certificate issuer: /CN=b7601d7cc820dc71915ea930673ef47f241a71c8
Certificate serial: 0823D228
Authority key identifier: B7:60:1D:7C:C8:20:DC:71:91:5E:A9:30:67:3E:F4:7F:24:1A:71:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t2AdfMgg3HGRXqkwZz70fyQaccg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/7k-rjicnKwA2TJx_t8ckKHLpO2A.roa
Signing time: Sat 01 Jan 2022 07:53:47 +0000
ROA not before: Sat 01 Jan 2022 07:53:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51695
IP address blocks: 195.191.118.0/24 maxlen: 24
193.202.120.0/24 maxlen: 24
193.23.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136565288 (0x823d228)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7601d7cc820dc71915ea930673ef47f241a71c8
Validity
Not Before: Jan 1 07:53:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee4fab8e27272b00364c9c7fb7c7242872e93b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:38:52:ba:b9:4e:a7:72:82:14:40:cd:c9:90:
a4:94:1c:19:b8:dd:fe:0b:8e:af:5e:86:49:77:8b:
88:70:27:84:6d:90:6f:64:d7:0c:14:c8:21:83:d1:
b8:c5:cd:21:ac:1a:4e:25:6e:10:aa:d0:df:32:34:
97:60:b8:7c:bb:6e:04:0d:a9:bc:43:10:14:e1:19:
77:92:47:2e:43:ef:88:70:2e:48:27:66:f5:c9:7d:
ac:c5:db:60:53:f1:80:e8:0a:39:3f:1a:e2:b1:75:
62:2c:58:df:24:70:a6:98:2f:8d:44:7a:a1:09:f7:
f6:8e:5c:fd:1d:13:91:7e:34:cd:ed:70:08:98:cc:
fb:78:b2:8d:b4:e4:bd:c0:d5:f5:c6:09:3a:a0:91:
9c:ab:15:43:6f:e0:b1:6b:ff:1e:ca:24:a9:3c:81:
21:5f:dd:21:35:36:12:bb:40:7d:19:9f:0f:72:13:
dd:16:eb:e6:20:4b:ec:74:c3:04:59:eb:83:e5:5a:
f8:90:4f:84:46:7e:52:f5:5f:c7:9c:c7:09:43:db:
36:58:dc:65:77:99:8e:8c:f6:b9:dc:dd:9e:38:42:
97:70:f8:ea:be:d9:8d:e1:1b:e1:60:de:42:ae:f4:
62:43:11:90:6b:5f:03:00:22:c0:3a:7f:be:73:8f:
11:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4F:AB:8E:27:27:2B:00:36:4C:9C:7F:B7:C7:24:28:72:E9:3B:60
X509v3 Authority Key Identifier:
keyid:B7:60:1D:7C:C8:20:DC:71:91:5E:A9:30:67:3E:F4:7F:24:1A:71:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t2AdfMgg3HGRXqkwZz70fyQaccg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/7k-rjicnKwA2TJx_t8ckKHLpO2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/t2AdfMgg3HGRXqkwZz70fyQaccg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.156.0/24
193.202.120.0/24
195.191.118.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:37:6d:97:51:4a:dd:85:66:6f:89:fa:36:7a:4d:04:d6:6f:
bc:e7:25:9f:1a:f0:81:a6:97:79:75:fb:84:56:c1:31:2b:f3:
60:85:5f:43:bb:a2:04:77:21:48:a1:c9:8d:29:31:af:9b:17:
f3:96:90:52:13:f4:ec:91:c3:78:fe:f8:fa:06:f6:43:90:39:
b1:09:4e:cd:2e:c9:4e:82:55:bf:28:8d:06:f3:73:34:18:ad:
62:2b:c2:b8:9e:2f:a4:4a:9e:d8:ff:03:6e:8b:83:30:45:2d:
e4:50:3b:55:c5:d2:2b:4a:45:82:00:67:95:77:41:5e:77:ce:
5c:37:c6:fe:2c:8e:5b:a2:2f:2a:7c:76:cb:69:a7:93:74:10:
2a:69:37:d2:94:67:b3:2d:08:9c:d2:99:f3:c4:90:e6:22:4d:
cd:37:a7:9b:14:8f:0b:0e:12:80:27:77:eb:46:13:3a:52:a7:
67:4c:15:3f:60:20:bf:d0:61:90:e7:24:1c:d3:24:53:3f:78:
50:59:8d:e3:92:06:30:df:49:b7:86:35:2f:19:5a:02:94:7e:
18:81:4a:d4:7b:36:18:bb:26:79:e7:79:68:18:c6:05:9d:69:
eb:e0:45:1c:61:07:45:39:e7:e9:75:1e:75:73:92:64:31:c4:
0b:f5:39:50
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIECCPSKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NzYwMWQ3Y2M4MjBkYzcxOTE1ZWE5MzA2NzNlZjQ3ZjI0MWE3MWM4MB4XDTIyMDEw
MTA3NTM0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWU0ZmFiOGUyNzI3
MmIwMDM2NGM5YzdmYjdjNzI0Mjg3MmU5M2I2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ84Urq5TqdyghRAzcmQpJQcGbjd/guOr16GSXeLiHAnhG2Q
b2TXDBTIIYPRuMXNIawaTiVuEKrQ3zI0l2C4fLtuBA2pvEMQFOEZd5JHLkPviHAu
SCdm9cl9rMXbYFPxgOgKOT8a4rF1YixY3yRwppgvjUR6oQn39o5c/R0TkX40ze1w
CJjM+3iyjbTkvcDV9cYJOqCRnKsVQ2/gsWv/HsokqTyBIV/dITU2ErtAfRmfD3IT
3Rbr5iBL7HTDBFnrg+Va+JBPhEZ+UvVfx5zHCUPbNljcZXeZjoz2udzdnjhCl3D4
6r7ZjeEb4WDeQq70YkMRkGtfAwAiwDp/vnOPEVUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTuT6uOJycrADZMnH+3xyQocuk7YDAfBgNVHSMEGDAWgBS3YB18yCDccZFe
qTBnPvR/JBpxyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3QyQWRmTWdnM0hHUlhxa3daejcwZnlRYWNjZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvMmY0NWFlLTc1YzAtNDM5Yy1hMzExLTY3MWQ2ODE4ODY4OC8x
LzdrLXJqaWNuS3dBMlRKeF90OGNrS0hMcE8yQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
MmY0NWFlLTc1YzAtNDM5Yy1hMzExLTY3MWQ2ODE4ODY4OC8xL3QyQWRmTWdnM0hH
Ulhxa3daejcwZnlRYWNjZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAMEXnAMEAMHKeAMEAMO/djANBgkq
hkiG9w0BAQsFAAOCAQEAnjdtl1FK3YVmb4n6NnpNBNZvvOclnxrwgaaXeXX7hFbB
MSvzYIVfQ7uiBHchSKHJjSkxr5sX85aQUhP07JHDeP74+gb2Q5A5sQlOzS7JToJV
vyiNBvNzNBitYivCuJ4vpEqe2P8DbouDMEUt5FA7VcXSK0pFggBnlXdBXnfOXDfG
/iyOW6IvKnx2y2mnk3QQKmk30pRnsy0InNKZ88SQ5iJNzTenmxSPCw4SgCd360YT
OlKnZ0wVP2Agv9BhkOckHNMkUz94UFmN45IGMN9Jt4Y1LxlaApR+GIFK1Hs2GLsm
eed5aBjGBZ1p6+BFHGEHRTnn6XUedXOSZDHEC/U5UA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:15 2024 by rpki-client on console-ams.rpki-client.org