Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/3gt7IYEuCT-DaXZc-pdSTqaeaqM.roa
File: 3gt7IYEuCT-DaXZc-pdSTqaeaqM.roa (raw, json)
Hash identifier: kxTNOWyE/4h7LtyAZvo6xBN2+c7hInIrHPy/YMFPF0Y=
Subject key identifier: DE:0B:7B:21:81:2E:09:3F:83:69:76:5C:FA:97:52:4E:A6:9E:6A:A3
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C85B57D
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/3gt7IYEuCT-DaXZc-pdSTqaeaqM.roa
Signing time: Wed 16 Mar 2022 07:56:58 +0000
ROA not before: Wed 16 Mar 2022 07:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211459
IP address blocks: 194.233.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210089341 (0xc85b57d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 16 07:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de0b7b21812e093f8369765cfa97524ea69e6aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:be:cc:81:bf:49:ad:df:4f:75:89:6a:85:65:
c1:fb:74:b8:4b:ff:56:37:7f:a6:cc:45:bd:1d:05:
2d:02:c9:e2:f4:91:8c:2b:29:4b:8f:94:e6:02:93:
a6:98:f1:9d:1d:6c:b6:57:ac:f1:73:d4:05:f4:fa:
b8:cc:48:3a:a1:20:9f:8c:fb:b0:10:94:1e:5e:5d:
2c:c0:4d:ee:00:1b:04:31:1a:09:de:31:15:9a:8c:
5c:85:f4:f3:2f:ba:e6:7e:1a:b1:36:0d:ba:be:6b:
af:c7:5a:10:e7:95:c0:47:a5:c2:01:e4:d5:ba:a7:
67:2f:37:e9:df:a2:81:bf:bd:90:91:08:b4:d2:0c:
64:0f:5e:06:e4:ee:61:23:45:db:e4:5a:84:6d:6b:
b9:21:d3:59:97:03:b4:ec:9a:37:02:56:4b:7c:1f:
d9:f9:7d:a4:b9:60:df:f0:8d:62:43:3d:42:53:db:
87:d7:0e:a3:99:46:67:30:fb:58:a4:7b:57:55:96:
41:b0:09:5f:b5:8a:ab:ec:2d:00:31:4b:75:92:3e:
81:70:72:ad:1e:7e:7b:1a:d5:3b:28:30:b2:15:12:
c8:5e:9c:26:aa:a7:0b:57:89:ab:0f:50:62:1f:98:
6a:b0:ab:1f:c6:3f:d5:75:1e:34:5a:73:45:df:c8:
61:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0B:7B:21:81:2E:09:3F:83:69:76:5C:FA:97:52:4E:A6:9E:6A:A3
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/3gt7IYEuCT-DaXZc-pdSTqaeaqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
88:fd:e4:70:99:49:e6:fb:98:f1:52:01:17:00:40:32:d6:42:
69:f6:b0:d2:33:c5:f1:3b:87:e2:93:32:bb:ca:ff:c1:ea:48:
e0:ae:cd:92:60:7e:ea:a5:e5:f6:2f:90:57:34:0a:ec:81:84:
e5:18:79:7e:a1:90:b9:dc:b0:aa:5f:24:ef:84:f7:9c:39:79:
08:43:31:cf:97:bf:e9:c9:d5:c4:02:80:40:e5:43:38:89:46:
4e:1d:8d:69:a7:8e:ac:89:35:57:6e:74:fa:ac:b3:07:0a:81:
a5:91:5a:01:0d:26:1c:4f:a8:37:d7:f0:82:f6:f4:0c:e1:6d:
51:39:30:e7:22:38:ae:35:4a:a9:23:46:bd:9b:9d:64:9f:db:
98:04:6d:85:1b:87:4c:0f:3c:7d:ca:ea:a4:1c:6a:32:e0:31:
01:32:7d:16:de:03:10:2f:5b:a6:5b:9e:bb:5c:58:59:8a:ed:
bd:ae:c2:fc:ce:c2:74:12:a9:9a:5e:14:1e:22:98:1b:21:cd:
f0:dc:63:0e:f8:dc:fd:6e:bf:dd:e6:fa:97:64:fb:0d:92:12:
94:6a:12:db:ff:08:46:cc:5c:dd:20:de:71:c5:2f:1e:49:e9:
ea:d6:69:5d:eb:0f:7e:8a:1d:a2:1b:ae:ae:4f:43:ad:84:5d:
43:b7:df:c9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDIW1fTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDMx
NjA3NTY1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGUwYjdiMjE4MTJl
MDkzZjgzNjk3NjVjZmE5NzUyNGVhNjllNmFhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJK+zIG/Sa3fT3WJaoVlwft0uEv/Vjd/psxFvR0FLQLJ4vSR
jCspS4+U5gKTppjxnR1stles8XPUBfT6uMxIOqEgn4z7sBCUHl5dLMBN7gAbBDEa
Cd4xFZqMXIX08y+65n4asTYNur5rr8daEOeVwEelwgHk1bqnZy836d+igb+9kJEI
tNIMZA9eBuTuYSNF2+RahG1ruSHTWZcDtOyaNwJWS3wf2fl9pLlg3/CNYkM9QlPb
h9cOo5lGZzD7WKR7V1WWQbAJX7WKq+wtADFLdZI+gXByrR5+exrVOygwshUSyF6c
JqqnC1eJqw9QYh+YarCrH8Y/1XUeNFpzRd/IYXECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTeC3shgS4JP4Npdlz6l1JOpp5qozAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
LzNndDdJWUV1Q1QtRGFYWmMtcGRTVHFhZWFxTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMLplzANBgkqhkiG9w0BAQsFAAOC
AQEAiP3kcJlJ5vuY8VIBFwBAMtZCafaw0jPF8TuH4pMyu8r/wepI4K7NkmB+6qXl
9i+QVzQK7IGE5Rh5fqGQudywql8k74T3nDl5CEMxz5e/6cnVxAKAQOVDOIlGTh2N
aaeOrIk1V250+qyzBwqBpZFaAQ0mHE+oN9fwgvb0DOFtUTkw5yI4rjVKqSNGvZud
ZJ/bmARthRuHTA88fcrqpBxqMuAxATJ9Ft4DEC9bplueu1xYWYrtva7C/M7CdBKp
ml4UHiKYGyHN8NxjDvjc/W6/3eb6l2T7DZISlGoS2/8IRsxc3SDeccUvHknp6tZp
XesPfoodohuurk9DrYRdQ7ffyQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org