Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/c42160-d6f4-482c-bf62-62140b202eb4/1/i7cv_40jPuews0syt7xGrxiSq48.roa
File: i7cv_40jPuews0syt7xGrxiSq48.roa (raw, json)
Hash identifier: ebHmMV7sP7nFCFA7vbdqo0o3BapXkdUuMWPEn4MPWFc=
Subject key identifier: 8B:B7:2F:FF:8D:23:3E:E7:B0:B3:4B:32:B7:BC:46:AF:18:92:AB:8F
Certificate issuer: /CN=ea7503b83fa09a75bcb91075400f8307a667b8ed
Certificate serial: DDE1
Authority key identifier: EA:75:03:B8:3F:A0:9A:75:BC:B9:10:75:40:0F:83:07:A6:67:B8:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6nUDuD-gmnW8uRB1QA-DB6ZnuO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/c42160-d6f4-482c-bf62-62140b202eb4/1/i7cv_40jPuews0syt7xGrxiSq48.roa
Signing time: Thu 21 Apr 2022 14:10:35 +0000
ROA not before: Thu 21 Apr 2022 14:10:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41807
IP address blocks: 195.8.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56801 (0xdde1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea7503b83fa09a75bcb91075400f8307a667b8ed
Validity
Not Before: Apr 21 14:10:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bb72fff8d233ee7b0b34b32b7bc46af1892ab8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:45:ad:fa:16:08:c6:f5:f7:8f:02:5a:35:87:
85:93:76:99:b4:c8:c6:5b:d8:bf:d8:d1:4f:72:e1:
46:2a:d5:2e:70:0d:79:08:b2:92:d2:27:0d:ea:22:
dd:9b:26:79:8a:a8:70:2e:bc:50:60:32:c1:bf:eb:
bf:6e:e0:88:99:12:49:20:3a:8a:9c:53:6f:31:1b:
3a:82:43:e9:8f:1e:ad:53:52:e3:01:7f:fc:40:e9:
aa:55:96:84:d0:d2:94:f5:b5:56:fc:d1:c8:d0:c2:
42:50:15:04:19:36:12:a3:10:2c:00:a2:eb:69:3a:
05:c6:91:4c:59:12:81:25:c6:ad:95:b9:0a:7e:e7:
ad:fe:55:00:a9:c2:81:bb:94:36:50:21:82:f5:78:
b1:91:e4:51:3c:4c:8a:08:5a:59:3f:ec:b4:f0:a7:
3b:79:8f:37:53:a9:5d:ae:85:89:84:16:1c:bd:0a:
95:63:58:60:a1:0f:b5:f9:5b:1b:10:a5:bb:0f:cc:
c9:21:e8:fe:5c:4c:90:4c:c2:b5:69:3b:e4:d7:fe:
e9:05:af:ad:20:b8:3d:8c:14:73:d9:42:ff:b7:69:
bf:12:e5:b4:f9:ef:4a:31:82:a3:1e:6a:0b:44:f1:
78:24:bf:47:c3:75:2a:40:6a:d6:64:2e:8a:76:1e:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B7:2F:FF:8D:23:3E:E7:B0:B3:4B:32:B7:BC:46:AF:18:92:AB:8F
X509v3 Authority Key Identifier:
keyid:EA:75:03:B8:3F:A0:9A:75:BC:B9:10:75:40:0F:83:07:A6:67:B8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6nUDuD-gmnW8uRB1QA-DB6ZnuO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c42160-d6f4-482c-bf62-62140b202eb4/1/i7cv_40jPuews0syt7xGrxiSq48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c42160-d6f4-482c-bf62-62140b202eb4/1/6nUDuD-gmnW8uRB1QA-DB6ZnuO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.206.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:1f:34:d4:d5:bb:a3:d4:71:1a:3f:3d:7a:7c:ce:0b:53:24:
42:7a:06:ec:34:9c:c4:30:45:24:11:54:21:b9:b4:fe:44:f5:
9c:2e:89:d5:15:e5:d8:c3:6c:b4:e1:3d:dd:3d:bf:2a:56:ac:
62:29:d6:35:d9:c4:b2:fc:b9:7e:01:a6:61:f4:c1:78:78:3b:
ef:01:ce:80:6d:9d:06:10:68:34:4f:e5:c2:a3:fd:3f:5c:5a:
d9:3c:6f:9b:54:c1:26:e7:14:ef:18:da:ed:80:f3:68:b0:5b:
43:9a:91:60:0a:1f:7d:07:43:3f:7d:52:19:4e:e9:8f:ab:73:
a7:cd:ea:ba:16:dd:1b:c5:3b:a2:4d:c0:ce:41:be:15:d8:29:
80:64:ed:be:8b:b7:ed:e9:10:e9:63:5d:c6:d8:28:65:66:b1:
c3:2c:71:7c:7b:a7:66:86:d3:8b:81:3b:4f:84:b5:3d:77:85:
c6:6d:2d:8c:b7:b1:57:36:8c:45:0e:e1:74:21:89:c1:5b:45:
bb:20:6e:09:6a:de:20:00:9f:70:7f:16:6d:02:d2:09:aa:11:
92:ba:49:ec:17:2c:b8:df:b8:7c:88:88:54:c7:7e:63:bc:76:
03:c6:30:91:98:ec:c1:41:8b:4a:83:10:78:f3:36:27:88:c2:
f6:24:3d:cf
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAN3hMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGVh
NzUwM2I4M2ZhMDlhNzViY2I5MTA3NTQwMGY4MzA3YTY2N2I4ZWQwHhcNMjIwNDIx
MTQxMDM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4YmI3MmZmZjhkMjMz
ZWU3YjBiMzRiMzJiN2JjNDZhZjE4OTJhYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAiUWt+hYIxvX3jwJaNYeFk3aZtMjGW9i/2NFPcuFGKtUucA15
CLKS0icN6iLdmyZ5iqhwLrxQYDLBv+u/buCImRJJIDqKnFNvMRs6gkPpjx6tU1Lj
AX/8QOmqVZaE0NKU9bVW/NHI0MJCUBUEGTYSoxAsAKLraToFxpFMWRKBJcatlbkK
fuet/lUAqcKBu5Q2UCGC9XixkeRRPEyKCFpZP+y08Kc7eY83U6ldroWJhBYcvQqV
Y1hgoQ+1+VsbEKW7D8zJIej+XEyQTMK1aTvk1/7pBa+tILg9jBRz2UL/t2m/EuW0
+e9KMYKjHmoLRPF4JL9Hw3UqQGrWZC6Kdh4VuQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFIu3L/+NIz7nsLNLMre8Rq8YkquPMB8GA1UdIwQYMBaAFOp1A7g/oJp1vLkQ
dUAPgwemZ7jtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Nm5VRHVELWdtblc4dVJCMVFBLURCNlpudU8wLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zOS9jNDIxNjAtZDZmNC00ODJjLWJmNjItNjIxNDBiMjAyZWI0LzEv
aTdjdl80MGpQdWV3czBzeXQ3eEdyeGlTcTQ4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9j
NDIxNjAtZDZmNC00ODJjLWJmNjItNjIxNDBiMjAyZWI0LzEvNm5VRHVELWdtblc4
dVJCMVFBLURCNlpudU8wLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwwjOMA0GCSqGSIb3DQEBCwUAA4IB
AQCwHzTU1buj1HEaPz16fM4LUyRCegbsNJzEMEUkEVQhubT+RPWcLonVFeXYw2y0
4T3dPb8qVqxiKdY12cSy/Ll+AaZh9MF4eDvvAc6AbZ0GEGg0T+XCo/0/XFrZPG+b
VMEm5xTvGNrtgPNosFtDmpFgCh99B0M/fVIZTumPq3Onzeq6Ft0bxTuiTcDOQb4V
2CmAZO2+i7ft6RDpY13G2ChlZrHDLHF8e6dmhtOLgTtPhLU9d4XGbS2Mt7FXNoxF
DuF0IYnBW0W7IG4Jat4gAJ9wfxZtAtIJqhGSuknsFyy437h8iIhUx35jvHYDxjCR
mOzBQYtKgxB48zYniML2JD3P
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:27 2023 by rpki-client on console-ams.rpki-client.org