Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/cEvCYx3CES1jyElyHS0djI8cOms.roa
File: cEvCYx3CES1jyElyHS0djI8cOms.roa (raw, json)
Hash identifier: OW6saz3lxBPwBWCN5E2Q9NhfPiPXgOPONu4BWdL0yag=
Subject key identifier: 70:4B:C2:63:1D:C2:11:2D:63:C8:49:72:1D:2D:1D:8C:8F:1C:3A:6B
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 01B44954
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/cEvCYx3CES1jyElyHS0djI8cOms.roa
Signing time: Fri 04 Mar 2022 11:21:30 +0000
ROA not before: Fri 04 Mar 2022 11:21:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207088
IP address blocks: 195.210.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28592468 (0x1b44954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Mar 4 11:21:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=704bc2631dc2112d63c849721d2d1d8c8f1c3a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4a:40:2f:91:0a:fa:14:65:fd:c7:22:6e:2f:
12:90:d6:f7:1e:0b:03:45:25:b6:0a:79:5c:fa:dd:
1d:7f:1a:6b:e7:8d:64:ee:91:c8:58:2a:74:ec:6d:
cc:05:37:dc:aa:61:7f:79:97:20:d0:c0:57:22:db:
55:3a:7e:d5:f6:b1:91:ab:8d:e1:4c:52:0c:15:20:
ea:ca:79:b9:8a:d4:3e:96:62:4e:0d:cd:b1:0b:a3:
2a:46:1a:03:fb:c3:64:ee:9c:c7:0a:ec:a6:f8:7b:
c0:2f:07:a5:be:71:d4:71:18:bd:9f:85:28:a2:b4:
ba:30:82:f8:30:98:bc:08:75:66:7b:94:37:09:a0:
7d:f9:6f:5f:a8:ff:0d:c2:fe:b6:85:83:c5:3f:9e:
a8:d0:6c:73:47:53:ab:7b:1f:02:f3:8f:2a:1c:82:
99:d8:bb:23:96:ed:38:da:8c:cf:2d:77:8e:cd:99:
66:04:e2:e0:aa:fe:33:07:28:cf:bb:13:f1:47:07:
3f:d2:4d:43:04:d7:cd:9a:ac:63:42:cf:d9:a5:57:
06:16:59:05:c2:69:23:e1:ea:fb:bd:e8:91:c9:95:
11:72:84:62:6b:45:41:d2:d1:49:0d:35:49:85:ff:
b3:cf:43:cc:43:b1:ef:7d:c1:61:4f:1e:d2:87:2c:
43:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4B:C2:63:1D:C2:11:2D:63:C8:49:72:1D:2D:1D:8C:8F:1C:3A:6B
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/cEvCYx3CES1jyElyHS0djI8cOms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.120.0/22
Signature Algorithm: sha256WithRSAEncryption
30:ef:fe:43:9a:d9:fc:41:1c:5f:04:99:3e:c8:fc:fe:2b:43:
14:0e:ff:1b:02:e2:41:a5:0d:6c:12:42:de:70:2e:46:08:01:
4b:10:bd:c1:fd:f8:bd:97:97:29:85:12:3f:d6:30:df:3a:20:
9c:26:b8:cd:f3:05:5b:67:c5:db:92:34:15:88:4e:38:89:05:
89:d1:a2:fe:2b:53:46:e8:95:90:06:99:ec:2d:b3:bf:93:25:
2c:ff:64:2d:3f:d8:bb:5e:ce:80:45:69:ea:85:c5:df:d3:11:
ac:a3:b4:1e:17:1f:f9:81:ed:d2:0a:e5:0b:40:0e:f3:88:ff:
94:55:40:0b:f0:6d:fd:e0:ad:e6:85:8e:e6:ec:56:a8:1e:3e:
76:de:35:e5:7c:84:91:7f:a5:06:24:30:f3:87:02:ba:1b:83:
84:59:0d:74:9b:ab:f9:f7:cd:39:17:66:aa:51:b8:7b:49:57:
75:c2:fc:ae:76:da:f8:60:93:cd:c1:6c:30:34:b4:87:23:8d:
a5:e0:ab:df:5a:35:6a:aa:b8:6e:20:9e:23:b6:96:0a:4c:6e:
7e:ac:b9:4b:8d:59:4e:53:e0:58:25:0e:d0:8b:45:11:c7:7a:
14:83:1d:c8:d0:55:22:d8:43:45:15:35:56:1a:79:cd:3d:88:
ee:22:54:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAbRJVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWI4NGQ5ZjhmOWUzMzE1NjU4OWE1ZWJmNzIyMjAzYTg5OWUwYTUxMB4XDTIyMDMw
NDExMjEzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzA0YmMyNjMxZGMy
MTEyZDYzYzg0OTcyMWQyZDFkOGM4ZjFjM2E2YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK1KQC+RCvoUZf3HIm4vEpDW9x4LA0Ultgp5XPrdHX8aa+eN
ZO6RyFgqdOxtzAU33Kphf3mXINDAVyLbVTp+1faxkauN4UxSDBUg6sp5uYrUPpZi
Tg3NsQujKkYaA/vDZO6cxwrspvh7wC8Hpb5x1HEYvZ+FKKK0ujCC+DCYvAh1ZnuU
NwmgfflvX6j/DcL+toWDxT+eqNBsc0dTq3sfAvOPKhyCmdi7I5btONqMzy13js2Z
ZgTi4Kr+Mwcoz7sT8UcHP9JNQwTXzZqsY0LP2aVXBhZZBcJpI+Hq+73okcmVEXKE
YmtFQdLRSQ01SYX/s89DzEOx733BYU8e0ocsQ1cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRwS8JjHcIRLWPISXIdLR2Mjxw6azAfBgNVHSMEGDAWgBT+uE2fj54zFWWJ
pev3IiA6iZ4KUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yaE5uNC1lTXhWbGlhWHI5eUlnT29tZUNsRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjYvNjE0ZTVjLTI5OWItNGZkNC1hMGJjLWFmMWNjMjMxN2UzOS8x
L2NFdkNZeDNDRVMxanlFbHlIUzBkakk4Y09tcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYv
NjE0ZTVjLTI5OWItNGZkNC1hMGJjLWFmMWNjMjMxN2UzOS8xL19yaE5uNC1lTXhW
bGlhWHI5eUlnT29tZUNsRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsPSeDANBgkqhkiG9w0BAQsFAAOC
AQEAMO/+Q5rZ/EEcXwSZPsj8/itDFA7/GwLiQaUNbBJC3nAuRggBSxC9wf34vZeX
KYUSP9Yw3zognCa4zfMFW2fF25I0FYhOOIkFidGi/itTRuiVkAaZ7C2zv5MlLP9k
LT/Yu17OgEVp6oXF39MRrKO0Hhcf+YHt0grlC0AO84j/lFVAC/Bt/eCt5oWO5uxW
qB4+dt415XyEkX+lBiQw84cCuhuDhFkNdJur+ffNORdmqlG4e0lXdcL8rnba+GCT
zcFsMDS0hyONpeCr31o1aqq4biCeI7aWCkxufqy5S41ZTlPgWCUO0ItFEcd6FIMd
yNBVIthDRRU1Vhp5zT2I7iJUwQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:48 2024 by rpki-client on console-ams.rpki-client.org