Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ETbWjgU-JM8hYTO9is8xgDbiwpo.roa
File: ETbWjgU-JM8hYTO9is8xgDbiwpo.roa (raw, json)
Hash identifier: cwKYehrOK0Skg7uhVY40S+j4vC9kSayIwYKBMECoKvQ=
Subject key identifier: 11:36:D6:8E:05:3E:24:CF:21:61:33:BD:8A:CF:31:80:36:E2:C2:9A
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 014A7E6D
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ETbWjgU-JM8hYTO9is8xgDbiwpo.roa
Signing time: Mon 17 Jan 2022 14:01:01 +0000
ROA not before: Mon 17 Jan 2022 14:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 195.210.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21659245 (0x14a7e6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Jan 17 14:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1136d68e053e24cf216133bd8acf318036e2c29a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:01:81:2b:f1:8c:8e:b1:80:1c:cf:19:bc:3e:
ab:de:f1:10:58:ca:2a:1e:bd:fb:5c:77:1c:62:38:
1b:5b:31:3e:20:87:76:fc:60:33:83:f9:6b:51:5c:
b0:6f:b0:d3:54:55:36:28:0b:07:46:ff:d9:35:15:
be:ca:3a:fe:ef:89:a5:a2:e7:98:7b:69:3b:8c:e5:
1a:86:dd:0e:80:b9:61:6f:01:79:81:21:bb:47:d4:
01:6c:b5:af:08:f9:21:0c:43:a5:34:6a:d1:23:52:
c8:af:fd:1c:22:ff:ed:47:9f:a6:bb:f8:07:e0:11:
9c:2b:f9:06:a2:ab:5b:58:a7:bf:5e:b8:06:a8:86:
2c:34:b1:ea:db:bd:87:69:c9:2d:f4:76:a5:95:94:
95:8d:0b:23:57:20:6f:54:1b:c9:88:c4:04:4f:7f:
cc:a9:60:6d:58:38:67:d4:4d:b0:f6:7e:1e:b1:87:
d3:f6:31:d8:b7:71:25:a6:d5:99:32:c5:81:30:cb:
ba:ed:53:d0:27:e0:68:3d:4e:fd:6e:d2:c2:97:6c:
24:ce:e7:d1:8a:f5:e6:62:27:0c:40:e2:39:1f:20:
c6:33:d1:9f:86:36:40:c9:25:62:67:63:91:c6:0a:
3a:dd:6f:73:bd:be:36:0a:b9:ed:e9:ea:e2:04:f3:
7c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:36:D6:8E:05:3E:24:CF:21:61:33:BD:8A:CF:31:80:36:E2:C2:9A
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ETbWjgU-JM8hYTO9is8xgDbiwpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.112.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:91:c9:a6:c0:72:d5:65:a3:04:75:cf:e4:c8:d8:79:9d:28:
d6:af:5b:24:d9:d0:9d:53:4b:33:35:1f:18:ec:eb:56:b0:d4:
12:c9:7a:c8:ca:74:71:11:a1:d7:05:f2:a7:d7:21:b2:2f:07:
37:f3:c9:6b:f2:78:99:46:8e:cf:78:b6:3d:6c:1e:60:e0:55:
30:8d:5c:0f:99:ac:d7:72:2a:8c:78:91:a5:69:10:de:35:f4:
0c:ce:4f:ce:23:4b:5f:39:77:72:03:85:cc:fe:9a:bd:8c:0b:
ea:bf:f6:9a:33:ab:73:7a:7f:64:d0:9c:dd:54:f0:0e:66:96:
0f:6c:df:d9:24:7a:70:cb:06:8a:57:e7:4c:47:61:12:67:fd:
6a:ea:f8:73:8a:2e:7d:7b:51:34:77:6d:ec:ed:2b:b5:32:31:
04:32:3f:56:5b:85:78:f1:18:b1:4b:a8:96:e3:50:55:d9:39:
4b:15:31:2f:30:e8:94:9d:41:7c:56:3f:89:11:22:a7:20:48:
85:0b:d7:b9:78:cc:f0:ff:3a:34:53:70:10:84:c8:af:05:4c:
af:52:e4:29:4e:a4:19:80:74:28:4e:ae:ae:1d:7c:47:80:be:
98:bf:d5:d9:b3:8b:8c:9c:32:20:81:ae:3d:a8:1e:c2:a3:15:
54:3a:5c:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAUp+bTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWI4NGQ5ZjhmOWUzMzE1NjU4OWE1ZWJmNzIyMjAzYTg5OWUwYTUxMB4XDTIyMDEx
NzE0MDEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTEzNmQ2OGUwNTNl
MjRjZjIxNjEzM2JkOGFjZjMxODAzNmUyYzI5YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANUBgSvxjI6xgBzPGbw+q97xEFjKKh69+1x3HGI4G1sxPiCH
dvxgM4P5a1FcsG+w01RVNigLB0b/2TUVvso6/u+JpaLnmHtpO4zlGobdDoC5YW8B
eYEhu0fUAWy1rwj5IQxDpTRq0SNSyK/9HCL/7Uefprv4B+ARnCv5BqKrW1inv164
BqiGLDSx6tu9h2nJLfR2pZWUlY0LI1cgb1QbyYjEBE9/zKlgbVg4Z9RNsPZ+HrGH
0/Yx2LdxJabVmTLFgTDLuu1T0CfgaD1O/W7SwpdsJM7n0Yr15mInDEDiOR8gxjPR
n4Y2QMklYmdjkcYKOt1vc72+Ngq57enq4gTzfFMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQRNtaOBT4kzyFhM72KzzGANuLCmjAfBgNVHSMEGDAWgBT+uE2fj54zFWWJ
pev3IiA6iZ4KUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yaE5uNC1lTXhWbGlhWHI5eUlnT29tZUNsRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjYvNjE0ZTVjLTI5OWItNGZkNC1hMGJjLWFmMWNjMjMxN2UzOS8x
L0VUYldqZ1UtSk04aFlUTzlpczh4Z0RiaXdwby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYv
NjE0ZTVjLTI5OWItNGZkNC1hMGJjLWFmMWNjMjMxN2UzOS8xL19yaE5uNC1lTXhW
bGlhWHI5eUlnT29tZUNsRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsPScDANBgkqhkiG9w0BAQsFAAOC
AQEAjJHJpsBy1WWjBHXP5MjYeZ0o1q9bJNnQnVNLMzUfGOzrVrDUEsl6yMp0cRGh
1wXyp9chsi8HN/PJa/J4mUaOz3i2PWweYOBVMI1cD5ms13IqjHiRpWkQ3jX0DM5P
ziNLXzl3cgOFzP6avYwL6r/2mjOrc3p/ZNCc3VTwDmaWD2zf2SR6cMsGilfnTEdh
Emf9aur4c4oufXtRNHdt7O0rtTIxBDI/VluFePEYsUuoluNQVdk5SxUxLzDolJ1B
fFY/iREipyBIhQvXuXjM8P86NFNwEITIrwVMr1LkKU6kGYB0KE6urh18R4C+mL/V
2bOLjJwyIIGuPagewqMVVDpcjg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:49 2024 by rpki-client on console-fra.rpki-client.org