Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/1-jqRlxBtNmxYfysLczkYDM9Uauk.roa
File: 1-jqRlxBtNmxYfysLczkYDM9Uauk.roa (raw, json)
Hash identifier: 2vPRd6RtSqgxxC3tN0u3M9veiOeyFC4jBPHVRTUzAEE=
Subject key identifier: FA:3A:91:97:10:6D:36:6C:58:7F:2B:0B:73:39:18:0C:CF:54:6A:E9
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1BE60292
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/1-jqRlxBtNmxYfysLczkYDM9Uauk.roa
Signing time: Tue 25 Jan 2022 09:17:35 +0000
ROA not before: Tue 25 Jan 2022 09:17:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18345
IP address blocks: 176.96.95.0/24 maxlen: 24
93.120.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468058770 (0x1be60292)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 25 09:17:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa3a9197106d366c587f2b0b7339180ccf546ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ba:8a:73:11:7a:24:81:ae:7d:94:ea:20:ae:
5e:cc:81:db:75:fe:b1:fd:8e:5e:9d:1f:a7:bb:87:
ec:dd:e6:6f:ee:83:cf:f9:03:47:e3:e2:8b:86:37:
47:ff:a4:e8:1a:af:e1:2d:9b:a3:ac:69:ab:d7:0b:
bd:74:e6:b4:d8:e4:07:ad:1c:9a:ed:9e:33:71:53:
86:3a:50:b1:8a:6c:ef:57:1b:69:2c:75:c7:ae:a4:
dc:3f:1b:fb:39:ae:25:58:1e:d6:4f:3d:fb:42:34:
c8:8e:d0:a4:db:74:19:2a:37:6a:91:33:e0:d7:a2:
4a:78:61:c4:66:34:f8:34:6b:7d:67:cd:0a:b6:05:
fe:3c:2e:f9:f4:84:58:27:ce:32:56:0e:e8:79:9e:
e8:b4:56:eb:23:bb:d4:cf:a8:88:e6:bd:4c:ef:4b:
3e:d1:ce:2e:93:f0:44:aa:fb:1b:23:13:60:03:38:
00:5e:fd:79:3b:22:09:4d:25:47:57:7e:8f:c3:22:
4c:af:f6:ac:b4:d0:86:f2:19:af:c1:3d:fc:fa:ab:
c8:5e:29:0b:3e:a8:2b:11:6a:3b:42:25:69:5e:fa:
a4:0c:6c:d0:20:c1:bc:02:1b:c8:8a:a2:b0:7c:ab:
d0:b7:26:27:b9:70:e4:58:37:c5:5b:e6:05:6a:d7:
7d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:3A:91:97:10:6D:36:6C:58:7F:2B:0B:73:39:18:0C:CF:54:6A:E9
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/1-jqRlxBtNmxYfysLczkYDM9Uauk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.120.46.0/24
176.96.95.0/24
Signature Algorithm: sha256WithRSAEncryption
24:13:a8:82:e7:74:b9:eb:0d:ad:9c:a1:2e:20:5a:fc:55:42:
72:04:9b:94:6b:bc:17:f7:2f:a1:5a:c0:cc:c5:92:2b:48:f8:
27:4a:0b:84:14:75:6a:23:bf:f6:ee:be:0d:3d:ff:18:33:ac:
52:fa:05:da:be:0c:07:5d:47:b5:94:cd:bc:f4:ea:d0:98:53:
b0:88:0e:0a:4e:6b:c8:4e:6b:82:27:8c:18:a3:97:e1:c3:69:
c8:d9:ba:23:5f:e0:ef:1d:d4:b6:bc:d1:51:ec:b2:3f:60:9c:
b0:ca:3d:cf:dc:8f:ff:00:a4:d7:e9:dc:ec:e3:82:f2:ad:be:
3e:9e:db:a4:51:0b:22:eb:e0:80:72:1e:9c:c3:4c:f6:ed:45:
e6:dd:4a:c9:6d:09:fb:40:4b:b6:7c:4a:12:4b:4a:6c:9b:05:
a7:4b:f4:1e:f3:b6:b3:15:3e:f2:b9:4f:07:f5:45:b8:51:68:
eb:5b:01:aa:c6:7a:18:46:c2:29:59:76:52:1e:4d:8a:e4:ac:
28:52:97:6a:2c:eb:71:be:17:4e:ac:d2:07:e9:90:79:7e:e3:
b1:bd:6a:43:80:f4:93:8d:3c:86:14:18:50:38:06:f2:56:6f:
18:24:c7:b0:7f:df:4b:33:08:2b:9b:fd:c6:0e:63:ae:71:2d:
e8:91:9f:6a
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIEG+YCkjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDljYmJkNWMyY2Y0MTk1Y2M2ZWM3ZjIxZjYwNzU4MWEwMjI0ZGFhMB4XDTIyMDEy
NTA5MTczNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmEzYTkxOTcxMDZk
MzY2YzU4N2YyYjBiNzMzOTE4MGNjZjU0NmFlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANi6inMReiSBrn2U6iCuXsyB23X+sf2OXp0fp7uH7N3mb+6D
z/kDR+Pii4Y3R/+k6Bqv4S2bo6xpq9cLvXTmtNjkB60cmu2eM3FThjpQsYps71cb
aSx1x66k3D8b+zmuJVge1k89+0I0yI7QpNt0GSo3apEz4NeiSnhhxGY0+DRrfWfN
CrYF/jwu+fSEWCfOMlYO6Hme6LRW6yO71M+oiOa9TO9LPtHOLpPwRKr7GyMTYAM4
AF79eTsiCU0lR1d+j8MiTK/2rLTQhvIZr8E9/PqryF4pCz6oKxFqO0IlaV76pAxs
0CDBvAIbyIqisHyr0LcmJ7lw5Fg3xVvmBWrXfaMCAwEAAaOCAhAwggIMMB0GA1Ud
DgQWBBT6OpGXEG02bFh/KwtzORgMz1Rq6TAfBgNVHSMEGDAWgBQ0nLvVws9Blcxu
x/IfYHWBoCJNqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05KeTcxY0xQUVpYTWJzZnlIMkIxZ2FBaVRhby5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvY2RmNWY2LTJmMTgtNDJjNy05MzBlLWRjMDZkZDgwNTk2MC8x
LzEtanFSbHhCdE5teFlmeXNMY3prWURNOVVhdWsucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJk
L2NkZjVmNi0yZjE4LTQyYzctOTMwZS1kYzA2ZGQ4MDU5NjAvMS9OSnk3MWNMUFFa
WE1ic2Z5SDJCMWdhQWlUYW8uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
JQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBABdeC4DBACwYF8wDQYJKoZIhvcN
AQELBQADggEBACQTqILndLnrDa2coS4gWvxVQnIEm5RrvBf3L6FawMzFkitI+CdK
C4QUdWojv/buvg09/xgzrFL6Bdq+DAddR7WUzbz06tCYU7CIDgpOa8hOa4InjBij
l+HDacjZuiNf4O8d1La80VHssj9gnLDKPc/cj/8ApNfp3OzjgvKtvj6e26RRCyLr
4IByHpzDTPbtRebdSsltCftAS7Z8ShJLSmybBadL9B7ztrMVPvK5Twf1RbhRaOtb
AarGehhGwilZdlIeTYrkrChSl2os63G+F06s0gfpkHl+47G9akOA9JONPIYUGFA4
BvJWbxgkx7B/30szCCub/cYOY65xLeiRn2o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:47 2024 by rpki-client on console-ams.rpki-client.org