Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/auzSpZ9oe-5AL11ScNycDp0SiWQ.roa
File: auzSpZ9oe-5AL11ScNycDp0SiWQ.roa (raw, json)
Hash identifier: SOVLKS59KGPIjraiao2ofItROzjf1fB/NpuDe/Uu9FM=
Subject key identifier: 6A:EC:D2:A5:9F:68:7B:EE:40:2F:5D:52:70:DC:9C:0E:9D:12:89:64
Certificate issuer: /CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Certificate serial: 03E98111
Authority key identifier: 23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/auzSpZ9oe-5AL11ScNycDp0SiWQ.roa
Signing time: Sat 01 Jan 2022 06:58:00 +0000
ROA not before: Sat 01 Jan 2022 06:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207479
IP address blocks: 81.95.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65634577 (0x3e98111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Validity
Not Before: Jan 1 06:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6aecd2a59f687bee402f5d5270dc9c0e9d128964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:55:f6:46:c4:3d:3b:7b:8d:03:69:06:5f:ea:
e0:42:50:70:a7:bb:d8:64:39:bb:a3:04:5a:6e:ce:
9f:df:1c:7d:94:c6:69:be:60:f9:87:0c:27:9a:0f:
d7:9f:79:59:f8:4f:45:5a:48:8c:c1:9d:5c:2a:85:
f0:7e:a3:db:f1:c2:1c:8d:e5:ff:bc:d7:4c:26:af:
0e:38:ab:44:1e:28:8e:de:ff:11:26:de:02:8d:43:
ed:5f:29:07:1f:3c:d5:b8:0a:a0:8c:57:2a:77:26:
54:97:27:e7:bc:89:11:0b:e4:c4:89:80:91:da:06:
22:0b:f0:86:4e:ca:0e:b5:c1:22:ed:eb:12:d4:98:
93:ef:6a:e9:a6:a3:67:1c:ce:4e:63:12:9e:19:1a:
3a:70:db:e6:5d:5d:b9:3a:5e:34:56:56:e4:05:03:
e6:79:27:d0:56:c8:25:1a:56:28:3c:4e:4d:d4:68:
b4:e3:7c:d2:42:49:f7:5a:36:82:27:48:fe:84:eb:
0d:39:18:ac:e3:85:9b:51:e7:de:cc:02:63:b6:a4:
fa:fd:0b:b7:0e:e4:0a:48:c9:98:fa:39:d1:a0:54:
9c:b5:bd:12:87:bb:43:02:fc:8a:b3:01:c1:fc:8c:
dc:75:0b:09:76:81:8b:85:b7:cd:ff:95:c1:08:cb:
ba:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EC:D2:A5:9F:68:7B:EE:40:2F:5D:52:70:DC:9C:0E:9D:12:89:64
X509v3 Authority Key Identifier:
keyid:23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/auzSpZ9oe-5AL11ScNycDp0SiWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.43.0/24
Signature Algorithm: sha256WithRSAEncryption
19:70:68:64:60:d9:5f:30:11:26:bc:5b:92:ba:52:49:13:7f:
90:58:60:a8:a5:48:5b:5d:32:ae:33:b8:94:45:4e:bb:ab:11:
07:b8:71:c1:32:69:0c:6c:04:46:04:68:e9:9b:c5:b6:86:87:
5e:7d:6d:50:3f:17:1d:61:1f:ff:71:4a:02:68:2f:96:a4:fc:
36:2d:a3:cb:d4:b2:02:b6:7b:a7:89:90:81:eb:b4:55:3c:f9:
ac:1d:a9:bb:ff:84:f0:df:0c:17:38:42:36:27:ac:88:88:e1:
6e:b4:c0:be:77:bf:d1:92:0f:16:14:3e:31:70:18:7f:65:d3:
35:50:a3:11:d2:3d:19:ff:e2:38:36:eb:c1:37:5d:9c:17:b8:
d0:c4:44:3a:6e:2e:c1:0d:32:9d:0c:65:16:2b:03:92:cd:6c:
3f:28:6f:97:73:d5:27:1e:af:c0:9e:b1:ac:7a:5b:32:85:25:
3f:8d:a9:0d:1d:2d:ef:5a:d4:d2:58:11:00:73:1d:5c:5a:10:
71:17:b1:f0:04:81:53:9d:7f:e8:4d:e8:38:b8:e1:89:78:c0:
ed:5f:2b:b5:7f:a7:24:d3:d5:db:67:62:6f:a5:39:9a:cc:25:
81:49:eb:3a:3b:19:67:8b:68:8c:bf:dd:c8:ab:3d:ee:07:c6:
42:0a:a3:ff
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA+mBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
M2UzZDkyYmZlMTY2MTljYTUwMGMwMzI2N2VmZmE5YWE3Y2EwYzQ3MB4XDTIyMDEw
MTA2NTgwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmFlY2QyYTU5ZjY4
N2JlZTQwMmY1ZDUyNzBkYzljMGU5ZDEyODk2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN9V9kbEPTt7jQNpBl/q4EJQcKe72GQ5u6MEWm7On98cfZTG
ab5g+YcMJ5oP1595WfhPRVpIjMGdXCqF8H6j2/HCHI3l/7zXTCavDjirRB4ojt7/
ESbeAo1D7V8pBx881bgKoIxXKncmVJcn57yJEQvkxImAkdoGIgvwhk7KDrXBIu3r
EtSYk+9q6aajZxzOTmMSnhkaOnDb5l1duTpeNFZW5AUD5nkn0FbIJRpWKDxOTdRo
tON80kJJ91o2gidI/oTrDTkYrOOFm1Hn3swCY7ak+v0Ltw7kCkjJmPo50aBUnLW9
Eoe7QwL8irMBwfyM3HULCXaBi4W3zf+VwQjLuiUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRq7NKln2h77kAvXVJw3JwOnRKJZDAfBgNVHSMEGDAWgBQj49kr/hZhnKUA
wDJn7/qap8oMRzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ktUFpLXzRXWVp5bEFNQXlaLV82bXFmS0RFYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjAvOWMyYzkwLWM3ZDQtNDhiNy05YmFmLWYxYmYwYzMzYTkwOC8x
L2F1elNwWjlvZS01QUwxMVNjTnljRHAwU2lXUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAv
OWMyYzkwLWM3ZDQtNDhiNy05YmFmLWYxYmYwYzMzYTkwOC8xL0ktUFpLXzRXWVp5
bEFNQXlaLV82bXFmS0RFYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFFfKzANBgkqhkiG9w0BAQsFAAOC
AQEAGXBoZGDZXzARJrxbkrpSSRN/kFhgqKVIW10yrjO4lEVOu6sRB7hxwTJpDGwE
RgRo6ZvFtoaHXn1tUD8XHWEf/3FKAmgvlqT8Ni2jy9SyArZ7p4mQgeu0VTz5rB2p
u/+E8N8MFzhCNiesiIjhbrTAvne/0ZIPFhQ+MXAYf2XTNVCjEdI9Gf/iODbrwTdd
nBe40MREOm4uwQ0ynQxlFisDks1sPyhvl3PVJx6vwJ6xrHpbMoUlP42pDR0t71rU
0lgRAHMdXFoQcRex8ASBU51/6E3oOLjhiXjA7V8rtX+nJNPV22dib6U5mswlgUnr
OjsZZ4tojL/dyKs97gfGQgqj/w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:09 2023 by rpki-client on console-fra.rpki-client.org