Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/174860-0c5a-44f0-97e7-fab85ee5702a/1/a9ESyTTTc9850JmfepQN2-T3kJw.roa
File: a9ESyTTTc9850JmfepQN2-T3kJw.roa (raw, json)
Hash identifier: regFXzfnOK0vro4MwpbAnaVC/g003pQDk6v7jsT7NzE=
Subject key identifier: 6B:D1:12:C9:34:D3:73:DF:39:D0:99:9F:7A:94:0D:DB:E4:F7:90:9C
Certificate issuer: /CN=f56403bc1c874eef09b8a1344155abc3f0575b15
Certificate serial: EF662D
Authority key identifier: F5:64:03:BC:1C:87:4E:EF:09:B8:A1:34:41:55:AB:C3:F0:57:5B:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9WQDvByHTu8JuKE0QVWrw_BXWxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/174860-0c5a-44f0-97e7-fab85ee5702a/1/a9ESyTTTc9850JmfepQN2-T3kJw.roa
Signing time: Sat 01 Jan 2022 07:02:02 +0000
ROA not before: Sat 01 Jan 2022 07:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 195.190.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15689261 (0xef662d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f56403bc1c874eef09b8a1344155abc3f0575b15
Validity
Not Before: Jan 1 07:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bd112c934d373df39d0999f7a940ddbe4f7909c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:19:c8:28:f0:df:95:61:3d:41:df:2b:12:
8c:2f:7d:a8:91:8b:de:34:0d:fa:dd:01:22:44:18:
25:52:54:fe:97:cb:31:7c:c5:78:7e:b6:ef:8c:ab:
40:b7:60:8d:61:29:66:38:00:8d:9c:6e:6b:1a:bc:
b3:fd:9b:50:e9:87:70:c1:c7:4a:3e:07:9a:40:02:
de:97:42:3f:99:20:97:4a:5c:9a:8c:3e:bf:a0:ae:
30:dc:e4:8b:b7:a9:29:f7:79:ce:4c:28:ca:21:4f:
bd:ab:03:bc:ab:97:f0:93:79:1f:97:61:59:6d:65:
c9:d4:5a:da:e3:ad:f8:35:17:28:79:ed:31:f8:f0:
3d:b5:ae:10:38:57:a6:48:8c:82:44:33:4d:d7:4e:
19:b7:e7:74:c2:b6:4b:a5:77:b3:84:51:ad:d4:0a:
40:8d:c1:5e:03:d9:d9:e9:81:9a:b3:e2:2c:2d:9e:
09:85:69:de:c7:a1:7f:b3:1b:63:3c:d1:c9:42:e1:
81:5d:60:87:5c:86:23:f6:18:00:ac:c7:79:06:51:
80:8a:a3:b0:f6:75:c9:9f:14:d6:e7:b7:89:17:8b:
fc:92:55:45:ec:79:f1:b2:34:fe:bd:49:cc:a2:d3:
05:39:11:77:11:35:cd:07:f6:4d:9f:0b:6a:a1:dc:
cd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D1:12:C9:34:D3:73:DF:39:D0:99:9F:7A:94:0D:DB:E4:F7:90:9C
X509v3 Authority Key Identifier:
keyid:F5:64:03:BC:1C:87:4E:EF:09:B8:A1:34:41:55:AB:C3:F0:57:5B:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9WQDvByHTu8JuKE0QVWrw_BXWxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/174860-0c5a-44f0-97e7-fab85ee5702a/1/a9ESyTTTc9850JmfepQN2-T3kJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/174860-0c5a-44f0-97e7-fab85ee5702a/1/9WQDvByHTu8JuKE0QVWrw_BXWxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.131.0/24
Signature Algorithm: sha256WithRSAEncryption
68:ee:de:89:0e:f7:1b:d5:2c:38:7a:20:16:5a:d8:ca:90:40:
af:98:58:4e:9b:d2:da:82:d3:0a:12:ab:83:27:d7:aa:68:f3:
47:f1:77:c8:b7:67:c0:5e:44:f1:9e:ef:94:76:33:79:da:fd:
66:7e:15:87:ea:6b:c8:8f:a8:8f:3a:10:d9:87:90:9d:aa:55:
28:44:17:b9:75:57:3e:dd:02:b1:fc:9b:61:d6:42:14:e6:63:
04:f5:77:a2:5d:a1:58:47:eb:d5:fb:fa:6f:aa:4b:8b:c7:2f:
48:cb:c0:67:ab:95:38:70:5e:38:e8:56:c2:51:7d:c6:9a:96:
94:42:28:2a:02:99:c9:63:1f:94:fd:e2:b4:f9:07:87:80:7c:
c8:2d:ee:f1:0c:d9:c7:52:dc:de:a5:47:9c:1a:9a:df:7a:86:
3e:ca:91:6d:d4:c1:6b:d9:c2:52:71:cd:78:25:91:c8:9f:ab:
b8:53:92:d5:1e:93:df:4a:48:fa:19:9f:be:30:a0:cf:e9:61:
e2:9f:2e:07:c8:a0:54:ec:70:e8:fe:af:58:9e:ec:d8:ce:35:
dc:fd:bd:cf:34:ea:ea:c2:3b:03:ea:6d:70:13:39:cf:be:d9:
0a:71:7d:95:2a:ff:13:2c:5f:a5:d0:57:d7:a3:71:39:21:df:
23:84:ea:b7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAO9mLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NTY0MDNiYzFjODc0ZWVmMDliOGExMzQ0MTU1YWJjM2YwNTc1YjE1MB4XDTIyMDEw
MTA3MDIwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmJkMTEyYzkzNGQz
NzNkZjM5ZDA5OTlmN2E5NDBkZGJlNGY3OTA5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKtUGcgo8N+VYT1B3ysSjC99qJGL3jQN+t0BIkQYJVJU/pfL
MXzFeH6274yrQLdgjWEpZjgAjZxuaxq8s/2bUOmHcMHHSj4HmkAC3pdCP5kgl0pc
mow+v6CuMNzki7epKfd5zkwoyiFPvasDvKuX8JN5H5dhWW1lydRa2uOt+DUXKHnt
MfjwPbWuEDhXpkiMgkQzTddOGbfndMK2S6V3s4RRrdQKQI3BXgPZ2emBmrPiLC2e
CYVp3sehf7MbYzzRyULhgV1gh1yGI/YYAKzHeQZRgIqjsPZ1yZ8U1ue3iReL/JJV
Rex58bI0/r1JzKLTBTkRdxE1zQf2TZ8LaqHczbECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRr0RLJNNNz3znQmZ96lA3b5PeQnDAfBgNVHSMEGDAWgBT1ZAO8HIdO7wm4
oTRBVavD8FdbFTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlXUUR2QnlIVHU4SnVLRTBRVldyd19CWFd4VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmMvMTc0ODYwLTBjNWEtNDRmMC05N2U3LWZhYjg1ZWU1NzAyYS8x
L2E5RVN5VFRUYzk4NTBKbWZlcFFOMi1UM2tKdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMv
MTc0ODYwLTBjNWEtNDRmMC05N2U3LWZhYjg1ZWU1NzAyYS8xLzlXUUR2QnlIVHU4
SnVLRTBRVldyd19CWFd4VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMO+gzANBgkqhkiG9w0BAQsFAAOC
AQEAaO7eiQ73G9UsOHogFlrYypBAr5hYTpvS2oLTChKrgyfXqmjzR/F3yLdnwF5E
8Z7vlHYzedr9Zn4Vh+pryI+ojzoQ2YeQnapVKEQXuXVXPt0CsfybYdZCFOZjBPV3
ol2hWEfr1fv6b6pLi8cvSMvAZ6uVOHBeOOhWwlF9xpqWlEIoKgKZyWMflP3itPkH
h4B8yC3u8QzZx1Lc3qVHnBqa33qGPsqRbdTBa9nCUnHNeCWRyJ+ruFOS1R6T30pI
+hmfvjCgz+lh4p8uB8igVOxw6P6vWJ7s2M413P29zzTq6sI7A+ptcBM5z77ZCnF9
lSr/EyxfpdBX16NxOSHfI4Tqtw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-fra.rpki-client.org