Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/nDF4u4ZX0CVkcgEAZXMwX2QcBJ4.roa
File: nDF4u4ZX0CVkcgEAZXMwX2QcBJ4.roa (raw, json)
Hash identifier: K61Pv+oxEdRyyGBJ5CNZeRN8Hia+LVCkxKlDo5SIsFU=
Subject key identifier: 9C:31:78:BB:86:57:D0:25:64:72:01:00:65:73:30:5F:64:1C:04:9E
Certificate issuer: /CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Certificate serial: 0D8974AC
Authority key identifier: E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/nDF4u4ZX0CVkcgEAZXMwX2QcBJ4.roa
Signing time: Sat 01 Jan 2022 04:58:28 +0000
ROA not before: Sat 01 Jan 2022 04:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34736
IP address blocks: 188.119.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227112108 (0xd8974ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Validity
Not Before: Jan 1 04:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c3178bb8657d025647201006573305f641c049e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:03:9e:35:aa:b8:d5:74:03:4c:18:11:6a:c3:
5c:6b:0d:4c:6b:19:5a:4c:df:4e:07:3c:1a:8f:70:
17:d7:9f:71:fb:19:19:64:a3:3d:df:bc:bd:0a:33:
b9:96:48:14:f8:7b:11:52:c0:ef:13:88:19:15:19:
3c:2e:7c:ed:9b:ce:60:cb:75:18:db:4d:39:50:0d:
48:95:83:d7:50:57:a7:41:74:75:83:ef:1f:e6:e4:
81:2b:a9:ae:b6:15:d3:64:d3:b4:fd:77:1b:19:dd:
9d:2d:38:b4:83:9e:57:82:c3:dc:e6:9d:83:ed:e6:
b0:87:0b:b9:9a:0e:df:f8:57:4b:79:cd:1a:00:0f:
b5:a1:3e:72:fa:41:1c:90:6d:a8:31:33:fa:1c:06:
6b:2b:b3:7e:b1:70:e8:84:4e:a9:60:d4:e3:42:82:
bb:95:f7:80:84:84:3f:33:c4:c7:6c:1c:fc:3e:b3:
e8:dc:fd:23:cb:61:ed:53:f9:dc:d9:18:74:cc:86:
61:52:71:3b:61:8c:07:c4:4f:7e:d2:b6:07:c7:3c:
af:16:5d:c6:b4:4b:e2:f2:bf:71:6d:ea:86:e2:45:
41:cd:41:8d:9e:8b:c0:ad:72:85:b3:fa:c3:22:77:
46:65:eb:95:61:d8:3b:c5:b2:07:e1:35:1b:49:da:
63:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:31:78:BB:86:57:D0:25:64:72:01:00:65:73:30:5F:64:1C:04:9E
X509v3 Authority Key Identifier:
keyid:E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/nDF4u4ZX0CVkcgEAZXMwX2QcBJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.28.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a1:f7:bc:72:eb:0b:9c:7d:27:8d:f0:0f:f1:1b:43:16:25:
c9:d9:49:63:32:3d:55:51:fa:95:78:b0:a9:96:26:5d:b6:99:
52:b0:56:b8:fb:51:ca:88:83:a9:7b:3b:bf:5b:e1:22:ed:6c:
df:d7:b5:08:2d:68:53:61:74:6a:07:a8:7c:30:1c:08:b1:d7:
e5:88:02:02:b4:3b:5c:ff:cf:f3:3b:1b:cd:71:fe:e3:13:f1:
c3:78:79:01:35:41:2a:ca:e5:e7:0d:2e:1a:9c:a3:5d:3d:9d:
04:ba:bc:ff:c6:13:4f:7a:84:a6:d8:7e:d6:9e:3e:e8:d7:d9:
d5:da:82:d3:1e:dd:f6:30:d4:63:ab:d1:b6:bc:a7:c2:27:cb:
1a:f9:68:59:b2:5e:24:98:d2:31:64:c3:47:1e:b9:54:a2:16:
4e:41:5a:84:40:b9:83:bc:dd:b5:cb:e2:67:6f:f8:c0:07:aa:
db:c6:e8:62:6f:18:59:b6:8a:0e:4b:04:a9:31:20:72:63:ae:
4e:1b:2c:e4:91:7f:1e:3b:de:92:4d:01:95:98:de:26:c9:8e:
54:88:68:51:28:29:c8:97:78:df:b3:29:3c:8a:b3:de:99:81:
b8:f2:f1:ff:24:e0:91:77:f5:e7:05:17:1d:bf:87:fd:a2:6b:
97:fb:95:c3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDYl0rDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTBkNWMyOWEzNDM5NzAzZDg5YjVhYmYwM2E3NWQ4NjE3NzFiZWY0MB4XDTIyMDEw
MTA0NTgyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWMzMTc4YmI4NjU3
ZDAyNTY0NzIwMTAwNjU3MzMwNWY2NDFjMDQ5ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOoDnjWquNV0A0wYEWrDXGsNTGsZWkzfTgc8Go9wF9efcfsZ
GWSjPd+8vQozuZZIFPh7EVLA7xOIGRUZPC587ZvOYMt1GNtNOVANSJWD11BXp0F0
dYPvH+bkgSuprrYV02TTtP13GxndnS04tIOeV4LD3Oadg+3msIcLuZoO3/hXS3nN
GgAPtaE+cvpBHJBtqDEz+hwGayuzfrFw6IROqWDU40KCu5X3gISEPzPEx2wc/D6z
6Nz9I8th7VP53NkYdMyGYVJxO2GMB8RPftK2B8c8rxZdxrRL4vK/cW3qhuJFQc1B
jZ6LwK1yhbP6wyJ3RmXrlWHYO8WyB+E1G0naY/UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBScMXi7hlfQJWRyAQBlczBfZBwEnjAfBgNVHSMEGDAWgBThDVwpo0OXA9ib
Wr8Dp12GF3G+9DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRRMWNLYU5EbHdQWW0xcV9BNmRkaGhkeHZ2US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvM2VkYjQ3LWZkNmUtNGM1OS1hN2FiLWU0MmE1ODA2NGE2My8x
L25ERjR1NFpYMENWa2NnRUFaWE13WDJRY0JKNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
M2VkYjQ3LWZkNmUtNGM1OS1hN2FiLWU0MmE1ODA2NGE2My8xLzRRMWNLYU5EbHdQ
WW0xcV9BNmRkaGhkeHZ2US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALx3HDANBgkqhkiG9w0BAQsFAAOC
AQEALaH3vHLrC5x9J43wD/EbQxYlydlJYzI9VVH6lXiwqZYmXbaZUrBWuPtRyoiD
qXs7v1vhIu1s39e1CC1oU2F0ageofDAcCLHX5YgCArQ7XP/P8zsbzXH+4xPxw3h5
ATVBKsrl5w0uGpyjXT2dBLq8/8YTT3qEpth+1p4+6NfZ1dqC0x7d9jDUY6vRtryn
wifLGvloWbJeJJjSMWTDRx65VKIWTkFahEC5g7zdtcviZ2/4wAeq28boYm8YWbaK
DksEqTEgcmOuThss5JF/Hjvekk0BlZjeJsmOVIhoUSgpyJd437MpPIqz3pmBuPLx
/yTgkXf15wUXHb+H/aJrl/uVww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:23 2024 by rpki-client on console-ams.rpki-client.org