Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ecb197-e0f5-438d-8fc5-e4d45971b13d/1/068CBOr9IufVtQzyc4YdztZVfC8.roa
File: 068CBOr9IufVtQzyc4YdztZVfC8.roa (raw, json)
Hash identifier: SnoxKQfFJsk3tvTDhimfd5CSObquny3dzMTXTL1dwVc=
Subject key identifier: D3:AF:02:04:EA:FD:22:E7:D5:B5:0C:F2:73:86:1D:CE:D6:55:7C:2F
Certificate issuer: /CN=7b827acc680aa29ddac823889d87863e414b2411
Certificate serial: 41186CA6
Authority key identifier: 7B:82:7A:CC:68:0A:A2:9D:DA:C8:23:88:9D:87:86:3E:41:4B:24:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4J6zGgKop3ayCOInYeGPkFLJBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ecb197-e0f5-438d-8fc5-e4d45971b13d/1/068CBOr9IufVtQzyc4YdztZVfC8.roa
Signing time: Sat 01 Jan 2022 15:58:50 +0000
ROA not before: Sat 01 Jan 2022 15:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59752
IP address blocks: 185.95.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1092119718 (0x41186ca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b827acc680aa29ddac823889d87863e414b2411
Validity
Not Before: Jan 1 15:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3af0204eafd22e7d5b50cf273861dced6557c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8a:33:78:b4:35:97:23:b1:f7:9d:dc:37:de:
c9:51:d6:2f:bc:31:ff:af:e5:61:64:f4:69:6e:05:
04:5a:9f:e5:d0:73:57:fa:9d:89:69:bc:7c:86:8e:
70:a1:d5:b2:b2:37:2f:69:af:78:f7:b9:89:94:dc:
7d:35:e5:32:8a:2d:49:72:e6:1b:4f:ed:a4:63:59:
3b:2f:e3:14:2b:0e:f8:42:ca:fa:9d:c7:26:95:df:
7b:71:bb:41:ad:a7:19:1f:33:9a:fa:f6:40:c4:b6:
89:1d:fe:6b:74:fd:d2:12:d2:56:52:21:bd:83:88:
43:3d:86:a1:62:a7:91:d6:ab:6f:89:62:ab:0e:61:
15:a7:30:8c:cd:75:13:ae:d5:5d:33:66:3b:1c:72:
04:fc:0f:fc:65:f3:89:90:2b:10:98:a4:d0:f4:7f:
5d:04:85:ba:11:a3:63:f1:79:30:fc:ce:6b:06:d0:
d3:ad:43:63:a5:2f:91:d6:3a:3c:45:3a:3e:2e:0e:
6b:d3:bd:ae:52:62:76:f4:d5:c4:bd:4c:8d:99:a0:
15:56:ba:82:29:45:55:4e:56:ac:7b:9a:72:84:84:
77:2d:00:ec:a5:1e:38:dc:2c:37:79:95:74:c6:ca:
ce:24:13:db:59:c8:c8:ab:9f:bb:19:fd:46:74:8e:
c9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AF:02:04:EA:FD:22:E7:D5:B5:0C:F2:73:86:1D:CE:D6:55:7C:2F
X509v3 Authority Key Identifier:
keyid:7B:82:7A:CC:68:0A:A2:9D:DA:C8:23:88:9D:87:86:3E:41:4B:24:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4J6zGgKop3ayCOInYeGPkFLJBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ecb197-e0f5-438d-8fc5-e4d45971b13d/1/068CBOr9IufVtQzyc4YdztZVfC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ecb197-e0f5-438d-8fc5-e4d45971b13d/1/e4J6zGgKop3ayCOInYeGPkFLJBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.128.0/22
Signature Algorithm: sha256WithRSAEncryption
25:28:33:58:8e:e4:18:1b:46:59:8c:e5:95:20:9a:cf:2b:b5:
32:fe:a0:50:a2:3f:7d:22:59:c6:f5:00:2e:6b:05:ce:b0:9c:
29:44:05:4f:f9:be:ce:00:29:bc:c5:7c:84:b1:08:16:4e:0f:
36:18:33:10:63:82:0f:18:d2:8e:b1:74:60:09:b6:bd:41:f2:
96:ec:38:91:b5:47:9d:ea:9c:35:d1:19:d5:e8:37:33:27:09:
90:44:cf:92:b7:60:95:bb:4a:8d:17:1d:25:08:02:f5:61:b5:
fa:de:a0:a0:67:45:dc:f4:92:c7:02:8b:35:6b:7e:e8:4f:95:
92:1f:40:e2:e0:cb:99:7a:24:d5:f2:a8:0f:45:84:3e:cd:50:
ba:91:65:b3:ce:74:da:ed:b8:e3:54:ce:76:67:54:0d:7a:af:
c7:a2:de:f3:d4:40:1a:0e:21:b0:86:e5:80:e8:5a:44:70:14:
0a:10:92:ae:f5:f1:b6:f1:58:e7:00:97:75:59:ea:05:d9:a8:
d0:61:0b:91:08:44:2b:d5:dc:39:4c:55:1e:1f:cc:f7:1f:7b:
ef:a1:40:d4:a9:93:3a:4b:34:14:d1:ae:14:44:61:d4:17:9a:
72:10:68:0c:1e:73:02:63:66:d9:6e:b1:3d:e6:66:2d:a5:76:
51:46:3d:6a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEQRhspjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YjgyN2FjYzY4MGFhMjlkZGFjODIzODg5ZDg3ODYzZTQxNGIyNDExMB4XDTIyMDEw
MTE1NTg1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDNhZjAyMDRlYWZk
MjJlN2Q1YjUwY2YyNzM4NjFkY2VkNjU1N2MyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6KM3i0NZcjsfed3DfeyVHWL7wx/6/lYWT0aW4FBFqf5dBz
V/qdiWm8fIaOcKHVsrI3L2mvePe5iZTcfTXlMootSXLmG0/tpGNZOy/jFCsO+ELK
+p3HJpXfe3G7Qa2nGR8zmvr2QMS2iR3+a3T90hLSVlIhvYOIQz2GoWKnkdarb4li
qw5hFacwjM11E67VXTNmOxxyBPwP/GXziZArEJik0PR/XQSFuhGjY/F5MPzOawbQ
061DY6UvkdY6PEU6Pi4Oa9O9rlJidvTVxL1MjZmgFVa6gilFVU5WrHuacoSEdy0A
7KUeONwsN3mVdMbKziQT21nIyKufuxn9RnSOyW8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTTrwIE6v0i59W1DPJzhh3O1lV8LzAfBgNVHSMEGDAWgBR7gnrMaAqindrI
I4idh4Y+QUskETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2U0SjZ6R2dLb3AzYXlDT0luWWVHUGtGTEpCRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvZWNiMTk3LWUwZjUtNDM4ZC04ZmM1LWU0ZDQ1OTcxYjEzZC8x
LzA2OENCT3I5SXVmVnRRenljNFlkenRaVmZDOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
ZWNiMTk3LWUwZjUtNDM4ZC04ZmM1LWU0ZDQ1OTcxYjEzZC8xL2U0SjZ6R2dLb3Az
YXlDT0luWWVHUGtGTEpCRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlfgDANBgkqhkiG9w0BAQsFAAOC
AQEAJSgzWI7kGBtGWYzllSCazyu1Mv6gUKI/fSJZxvUALmsFzrCcKUQFT/m+zgAp
vMV8hLEIFk4PNhgzEGOCDxjSjrF0YAm2vUHyluw4kbVHneqcNdEZ1eg3MycJkETP
krdglbtKjRcdJQgC9WG1+t6goGdF3PSSxwKLNWt+6E+Vkh9A4uDLmXok1fKoD0WE
Ps1QupFls8502u2441TOdmdUDXqvx6Le89RAGg4hsIblgOhaRHAUChCSrvXxtvFY
5wCXdVnqBdmo0GELkQhEK9XcOUxVHh/M9x9776FA1KmTOks0FNGuFERh1BeachBo
DB5zAmNm2W6xPeZmLaV2UUY9ag==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:27 2024 by rpki-client on console-ams.rpki-client.org