Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/1-s_oBk_PPo8AuOdyNFC6VpgwmEc.roa
File: 1-s_oBk_PPo8AuOdyNFC6VpgwmEc.roa (raw, json)
Hash identifier: 2I+f3vIAoju6l+MILmMp82EoFKXZT+ABswuxtiNAU7k=
Subject key identifier: FA:CF:E8:06:4F:CF:3E:8F:00:B8:E7:72:34:50:BA:56:98:30:98:47
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 1B5E6815
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/1-s_oBk_PPo8AuOdyNFC6VpgwmEc.roa
Signing time: Sat 01 Jan 2022 10:56:02 +0000
ROA not before: Sat 01 Jan 2022 10:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62057
IP address blocks: 78.153.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459171861 (0x1b5e6815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jan 1 10:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=facfe8064fcf3e8f00b8e7723450ba5698309847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4c:ae:97:4c:c0:a2:88:29:df:b1:ce:e3:9d:
d3:07:14:c9:b4:c9:98:9b:2d:44:5d:4f:9b:9a:95:
27:2d:b2:05:68:98:d8:27:dc:96:1c:f3:06:10:ec:
6a:20:80:6f:fd:cb:9d:c2:dd:d3:3e:2c:52:43:b1:
35:21:bf:b6:73:9f:1e:ac:e8:27:8e:51:06:7b:a7:
f7:9e:e4:e5:0a:ef:d6:99:78:93:0d:df:be:6b:6c:
75:0f:5a:49:08:91:41:bf:ee:03:b5:58:bd:c4:5c:
cb:36:f6:c5:4f:46:1b:b7:36:a6:89:cc:a5:e8:a2:
66:8f:4f:68:99:82:b1:25:84:a8:5a:4d:63:49:0c:
04:4b:f5:d5:97:c5:da:ed:56:b3:03:47:2e:55:03:
0c:cb:75:ef:38:5c:57:de:ec:0c:3d:4e:4a:16:62:
89:63:2f:f7:2b:4f:47:cd:0d:01:92:06:26:e5:78:
4d:48:3c:bb:a5:dc:ea:7a:b6:0f:28:ae:37:44:a5:
2e:4b:e5:04:c5:d3:1b:40:fd:01:ea:85:84:5e:ef:
fa:5d:4f:88:53:65:af:69:44:b5:c0:16:d8:f9:e1:
cf:a4:4e:c7:6e:7f:72:dd:32:aa:c1:41:2e:19:03:
f1:d0:88:f2:be:7a:b0:8b:22:cd:af:c8:10:93:87:
0b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CF:E8:06:4F:CF:3E:8F:00:B8:E7:72:34:50:BA:56:98:30:98:47
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/1-s_oBk_PPo8AuOdyNFC6VpgwmEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.153.247.0/24
Signature Algorithm: sha256WithRSAEncryption
17:00:a4:5e:49:24:84:80:49:f3:98:0b:18:78:4b:21:71:b9:
b3:79:dd:71:9d:a7:fd:88:0f:32:d6:67:2b:90:b7:3f:32:d6:
d0:75:e1:c0:f3:55:c8:b2:e3:ff:5d:e4:6d:0d:e3:c2:6a:3d:
86:11:c8:55:6e:6a:f0:01:82:a2:89:cc:fd:c4:dc:7c:1d:47:
4e:20:0e:97:a0:5f:9b:45:fd:b8:f9:19:91:28:ec:c0:aa:22:
3c:c6:73:49:a6:93:98:39:92:9a:19:4e:31:1e:8c:9c:fa:4d:
ce:35:ae:17:b9:bd:25:ec:d7:af:75:b7:ed:d3:5b:5c:64:7e:
a1:36:73:5f:1f:dd:2a:b7:44:04:41:ad:f2:f2:74:1b:c8:d2:
af:59:e0:e6:3f:d7:9b:4b:8b:0c:ff:31:e5:d9:df:16:d7:ab:
46:20:d3:7b:ec:85:0c:8d:ee:b3:41:a9:db:1e:1c:21:ed:61:
7e:e9:d9:02:93:c7:9d:54:60:f6:9c:93:b3:97:14:a5:11:22:
62:f5:fd:8f:f7:de:07:e7:21:b0:59:bb:f5:3d:81:d6:42:28:
d8:a3:0d:86:fb:cf:74:d0:4d:5e:37:c1:25:a4:c3:2f:9a:95:
62:57:d4:de:6b:ce:6c:7f:c7:9d:95:21:79:09:b1:be:39:c5:
c8:ed:b6:c0
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEG15oFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OTA5ZWUzZDYxODk3NGRhMGNiZDgwNWEyZGE4MDQxMGE0OTg5ODgxMB4XDTIyMDEw
MTEwNTYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmFjZmU4MDY0ZmNm
M2U4ZjAwYjhlNzcyMzQ1MGJhNTY5ODMwOTg0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIhMrpdMwKKIKd+xzuOd0wcUybTJmJstRF1Pm5qVJy2yBWiY
2CfclhzzBhDsaiCAb/3LncLd0z4sUkOxNSG/tnOfHqzoJ45RBnun957k5Qrv1pl4
kw3fvmtsdQ9aSQiRQb/uA7VYvcRcyzb2xU9GG7c2ponMpeiiZo9PaJmCsSWEqFpN
Y0kMBEv11ZfF2u1WswNHLlUDDMt17zhcV97sDD1OShZiiWMv9ytPR80NAZIGJuV4
TUg8u6Xc6nq2DyiuN0SlLkvlBMXTG0D9AeqFhF7v+l1PiFNlr2lEtcAW2Pnhz6RO
x25/ct0yqsFBLhkD8dCI8r56sIsiza/IEJOHC+cCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT6z+gGT88+jwC453I0ULpWmDCYRzAfBgNVHSMEGDAWgBTpCe49YYl02gy9
gFotqAQQpJiYgTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZRbnVQV0dKZE5vTXZZQmFMYWdFRUtTWW1JRS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWUvMmI1ZjVmLWJiOTYtNGIzMS04YTZhLWRkMTE1ZjllMzMwMS8x
LzEtc19vQmtfUFBvOEF1T2R5TkZDNlZwZ3dtRWMucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFl
LzJiNWY1Zi1iYjk2LTRiMzEtOGE2YS1kZDExNWY5ZTMzMDEvMS82UW51UFdHSmRO
b012WUJhTGFnRUVLU1ltSUUuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABOmfcwDQYJKoZIhvcNAQELBQAD
ggEBABcApF5JJISASfOYCxh4SyFxubN53XGdp/2IDzLWZyuQtz8y1tB14cDzVciy
4/9d5G0N48JqPYYRyFVuavABgqKJzP3E3HwdR04gDpegX5tF/bj5GZEo7MCqIjzG
c0mmk5g5kpoZTjEejJz6Tc41rhe5vSXs1691t+3TW1xkfqE2c18f3Sq3RARBrfLy
dBvI0q9Z4OY/15tLiwz/MeXZ3xbXq0Yg03vshQyN7rNBqdseHCHtYX7p2QKTx51U
YPack7OXFKURImL1/Y/33gfnIbBZu/U9gdZCKNijDYb7z3TQTV43wSWkwy+alWJX
1N5rzmx/x52VIXkJsb45xcjttsA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org