Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/4d-SpFDTCWM1aobp_XJtAR3hIJQ.roa
File: 4d-SpFDTCWM1aobp_XJtAR3hIJQ.roa (raw, json)
Hash identifier: kZRgOwGMB26y9+V403ps81VL5J5V1Zpa/cxbvAp8wGI=
Subject key identifier: E1:DF:92:A4:50:D3:09:63:35:6A:86:E9:FD:72:6D:01:1D:E1:20:94
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018C22728C5D01ACCE416831EFA89864F23D
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/4d-SpFDTCWM1aobp_XJtAR3hIJQ.roa
Signing time: Thu 30 Nov 2023 22:56:21 +0000
ROA not before: Thu 30 Nov 2023 22:56:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 188.93.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:22:72:8c:5d:01:ac:ce:41:68:31:ef:a8:98:64:f2:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Nov 30 22:56:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1df92a450d30963356a86e9fd726d011de12094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:86:8f:b5:c1:8b:4b:cf:ef:12:ea:97:82:7b:
0d:ea:f3:0f:bd:b8:b5:ed:ec:cb:07:ce:20:cf:fa:
78:fa:9d:cd:7c:86:cb:ed:3a:69:1b:07:96:c9:2d:
4d:a1:61:84:42:06:66:4d:fd:da:0e:ea:16:05:bb:
f1:3e:ca:be:fc:2e:07:10:11:14:a1:d0:a3:6b:df:
c2:45:53:86:44:7b:f0:e9:1f:e4:1d:2c:c9:46:61:
1d:4e:11:11:04:49:25:65:ea:a8:d1:fb:ec:06:e8:
33:29:76:ca:2e:d3:e4:40:b3:63:22:21:1b:5b:6c:
c8:4f:05:fb:83:b1:3c:a7:91:a0:7f:61:7f:e9:7a:
58:66:86:79:74:11:b5:55:b6:2f:07:13:b9:6d:09:
47:85:90:a9:79:b3:dc:fb:28:d2:37:db:c9:74:91:
d6:cb:cc:f6:78:ac:6d:ee:59:b3:77:64:e0:a4:6a:
38:49:e5:2b:7a:dc:b6:72:ee:93:d4:f9:aa:3b:73:
32:0d:9e:e0:fc:8e:3a:ad:91:4a:31:45:c1:04:37:
51:93:ee:6c:fa:6a:64:b1:b9:4f:18:e9:76:9c:7f:
b8:98:42:f6:87:42:7f:fa:b3:4e:e7:95:c3:20:44:
84:95:2b:f0:3e:f6:ef:9e:98:77:9d:1d:1c:09:4d:
22:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:DF:92:A4:50:D3:09:63:35:6A:86:E9:FD:72:6D:01:1D:E1:20:94
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/4d-SpFDTCWM1aobp_XJtAR3hIJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.138.0/24
Signature Algorithm: sha256WithRSAEncryption
55:cb:5d:63:21:14:97:9e:54:4e:b1:74:47:69:6b:e7:52:f9:
6a:90:8a:82:3a:fc:8e:9b:3a:52:3e:d1:76:56:3d:d6:1f:90:
8f:9b:66:0c:31:11:40:e4:3a:30:44:3b:50:d1:6b:e6:c2:12:
33:80:2b:ad:80:2a:60:91:6e:24:4e:fb:30:9b:8f:05:df:bd:
5f:7f:41:ab:3c:f6:a6:62:cb:f7:93:6e:8a:3e:39:cd:74:27:
11:dd:01:64:0c:42:a6:18:ed:67:75:32:e3:b6:57:7e:e7:88:
c5:bb:17:07:a3:bd:83:e0:64:e5:a6:61:65:f8:8a:a4:fa:81:
e8:c4:58:52:14:60:b9:91:b9:bc:8a:02:cb:3c:b7:4d:2a:2a:
42:f2:f9:57:a9:56:c7:44:b9:51:20:34:a3:92:35:1a:9d:4c:
79:8b:ee:ed:ca:ae:86:99:6f:af:0f:b5:fa:cf:f3:13:50:96:
84:85:6a:4f:1c:f9:a4:ea:72:98:ea:af:6d:62:3e:8d:3f:1e:
36:91:53:41:c1:38:75:e9:cd:ab:19:77:50:13:db:12:b4:01:
06:37:9c:b4:20:08:0f:c5:9b:b5:06:f8:78:4a:1f:a8:70:28:
54:a7:82:f1:ce:20:30:54:14:c3:80:b5:12:e2:15:b0:56:07:
2d:78:d7:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwicoxdAazOQWgx76iYZPI9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0
ZGIwYTUwHhcNMjMxMTMwMjI1NjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMWRmOTJhNDUwZDMwOTYzMzU2YTg2ZTlmZDcyNmQwMTFkZTEyMDk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYaPtcGLS8/vEuqXgnsN6vMPvbi1
7ezLB84gz/p4+p3NfIbL7TppGweWyS1NoWGEQgZmTf3aDuoWBbvxPsq+/C4HEBEU
odCja9/CRVOGRHvw6R/kHSzJRmEdThERBEklZeqo0fvsBugzKXbKLtPkQLNjIiEb
W2zITwX7g7E8p5Ggf2F/6XpYZoZ5dBG1VbYvBxO5bQlHhZCpebPc+yjSN9vJdJHW
y8z2eKxt7lmzd2TgpGo4SeUrety2cu6T1PmqO3MyDZ7g/I46rZFKMUXBBDdRk+5s
+mpksblPGOl2nH+4mEL2h0J/+rNO55XDIESElSvwPvbvnph3nR0cCU0i0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOHfkqRQ0wljNWqG6f1ybQEd4SCUMB8GA1UdIwQY
MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt
YmFmYmRmYzgxMzJhLzEvNGQtU3BGRFRDV00xYW9icF9YSnRBUjNoSUpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh
LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvF2KMA0G
CSqGSIb3DQEBCwUAA4IBAQBVy11jIRSXnlROsXRHaWvnUvlqkIqCOvyOmzpSPtF2
Vj3WH5CPm2YMMRFA5DowRDtQ0WvmwhIzgCutgCpgkW4kTvswm48F371ff0GrPPam
Ysv3k26KPjnNdCcR3QFkDEKmGO1ndTLjtld+54jFuxcHo72D4GTlpmFl+Iqk+oHo
xFhSFGC5kbm8igLLPLdNKipC8vlXqVbHRLlRIDSjkjUanUx5i+7tyq6GmW+vD7X6
z/MTUJaEhWpPHPmk6nKY6q9tYj6NPx42kVNBwTh16c2rGXdQE9sStAEGN5y0IAgP
xZu1Bvh4Sh+ocChUp4LxziAwVBTDgLUS4hWwVgcteNdn
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:22 2025 by rpki-client