Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/cb3e6b-a444-49dd-9f64-17c12273c54a/1/dInzuSZvdI0a2bjj7blVFs-RgZ8.roa
File: dInzuSZvdI0a2bjj7blVFs-RgZ8.roa (raw, json)
Hash identifier: sehrl3YzfhJao99fZ2EVHNjtf/NVMvwyqW5Qz3wT3iw=
Subject key identifier: 74:89:F3:B9:26:6F:74:8D:1A:D9:B8:E3:ED:B9:55:16:CF:91:81:9F
Certificate issuer: /CN=4e0a19d48c3547c2adb9f8effdeac6ad9e4f9d19
Certificate serial: C59F
Authority key identifier: 4E:0A:19:D4:8C:35:47:C2:AD:B9:F8:EF:FD:EA:C6:AD:9E:4F:9D:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TgoZ1Iw1R8Ktufjv_erGrZ5PnRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/cb3e6b-a444-49dd-9f64-17c12273c54a/1/dInzuSZvdI0a2bjj7blVFs-RgZ8.roa
Signing time: Fri 27 May 2022 14:07:13 +0000
ROA not before: Fri 27 May 2022 14:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42731
IP address blocks: 194.110.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50591 (0xc59f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e0a19d48c3547c2adb9f8effdeac6ad9e4f9d19
Validity
Not Before: May 27 14:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7489f3b9266f748d1ad9b8e3edb95516cf91819f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b1:54:8c:c5:2a:d4:bf:a8:cc:1e:85:46:d6:
70:e3:05:f0:99:52:32:e2:5c:7b:7c:de:f2:3d:d0:
79:1f:bc:a0:c9:ca:17:de:27:d3:e7:b8:d3:1e:c0:
6a:f9:b0:ec:b9:fd:3e:d0:22:af:ef:f1:c1:c6:1f:
4c:20:10:47:3a:68:7b:94:8b:be:88:b4:69:c4:c0:
85:08:92:fd:eb:dc:d7:94:96:3c:57:72:fa:7d:e8:
bd:09:75:79:ee:3b:62:c5:60:2d:9a:8f:c9:4e:be:
ee:99:1c:a8:50:a1:63:54:bd:98:21:e9:b0:7d:9f:
6e:a6:85:4e:04:24:f9:5f:b9:93:7d:1a:6d:ec:be:
8f:1d:55:6d:97:0c:15:11:7e:a7:7b:3f:4e:36:90:
8a:11:e3:06:e3:2e:1d:7e:ac:f9:be:d7:71:12:a1:
69:8f:15:dd:a7:ce:b1:be:2a:ff:34:9f:ed:86:6b:
d0:b6:7a:e0:d7:a8:85:4d:4d:00:29:a3:62:f3:d1:
7c:ff:cf:d6:e8:84:14:ef:21:41:a5:c3:29:a3:e0:
64:65:23:27:1f:4a:51:39:8c:e7:9c:50:13:05:08:
02:48:ad:be:23:00:83:24:15:b2:30:bd:1d:ff:8d:
6c:9a:c0:5a:9e:a5:ad:73:e3:3c:af:13:58:cd:1a:
94:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:89:F3:B9:26:6F:74:8D:1A:D9:B8:E3:ED:B9:55:16:CF:91:81:9F
X509v3 Authority Key Identifier:
keyid:4E:0A:19:D4:8C:35:47:C2:AD:B9:F8:EF:FD:EA:C6:AD:9E:4F:9D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TgoZ1Iw1R8Ktufjv_erGrZ5PnRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/cb3e6b-a444-49dd-9f64-17c12273c54a/1/dInzuSZvdI0a2bjj7blVFs-RgZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/cb3e6b-a444-49dd-9f64-17c12273c54a/1/TgoZ1Iw1R8Ktufjv_erGrZ5PnRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.212.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:7e:d3:fe:dc:72:e3:d6:b9:02:fc:09:5f:7b:33:e9:02:ed:
f2:ba:79:6a:40:5c:f4:7c:83:48:bb:fa:04:39:c6:41:68:4e:
a7:06:8e:6f:28:f5:82:dd:ed:ae:72:02:d6:6e:bf:50:08:6c:
f7:cb:01:64:27:7e:04:ab:ba:c2:07:fd:46:62:84:74:0f:b1:
29:e9:36:75:ff:9f:ba:06:4a:cf:f5:9f:d8:64:05:49:cd:2c:
95:4c:e6:46:3e:d3:4a:60:6a:cd:c1:54:12:c2:e4:69:41:ab:
bc:69:f8:b7:90:84:3b:1a:0d:76:cf:d1:ac:ce:01:38:a6:a4:
fe:80:66:3c:ac:f8:76:6a:76:53:27:af:62:1b:b1:ab:7c:dc:
79:45:8f:21:9c:b6:48:43:bd:06:f9:40:48:05:59:b9:47:1d:
ea:7d:59:23:7e:25:75:f5:ea:79:4a:1a:9b:1e:85:51:01:e5:
3b:ec:da:02:b3:20:38:1d:14:c2:70:78:88:ca:55:1f:49:a1:
47:be:36:f6:86:e8:0a:a4:76:3f:c3:7b:67:f7:1e:36:3d:32:
11:0b:3f:2c:33:e2:04:8c:fb:b7:b7:64:ff:a2:e7:54:87:20:
25:fc:a8:b0:92:e2:f4:6a:94:5c:4c:c9:f7:7f:3f:87:ef:d5:
5d:29:1c:6a
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAMWfMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDRl
MGExOWQ0OGMzNTQ3YzJhZGI5ZjhlZmZkZWFjNmFkOWU0ZjlkMTkwHhcNMjIwNTI3
MTQwNzEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3NDg5ZjNiOTI2NmY3
NDhkMWFkOWI4ZTNlZGI5NTUxNmNmOTE4MTlmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApLFUjMUq1L+ozB6FRtZw4wXwmVIy4lx7fN7yPdB5H7ygycoX
3ifT57jTHsBq+bDsuf0+0CKv7/HBxh9MIBBHOmh7lIu+iLRpxMCFCJL969zXlJY8
V3L6fei9CXV57jtixWAtmo/JTr7umRyoUKFjVL2YIemwfZ9upoVOBCT5X7mTfRpt
7L6PHVVtlwwVEX6nez9ONpCKEeMG4y4dfqz5vtdxEqFpjxXdp86xvir/NJ/thmvQ
tnrg16iFTU0AKaNi89F8/8/W6IQU7yFBpcMpo+BkZSMnH0pROYznnFATBQgCSK2+
IwCDJBWyML0d/41smsBanqWtc+M8rxNYzRqU3QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFHSJ87kmb3SNGtm44+25VRbPkYGfMB8GA1UdIwQYMBaAFE4KGdSMNUfCrbn4
7/3qxq2eT50ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VGdvWjFJdzFSOEt0dWZqdl9lckdyWjVQblJrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zOS9jYjNlNmItYTQ0NC00OWRkLTlmNjQtMTdjMTIyNzNjNTRhLzEv
ZEluenVTWnZkSTBhMmJqajdibFZGcy1SZ1o4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9j
YjNlNmItYTQ0NC00OWRkLTlmNjQtMTdjMTIyNzNjNTRhLzEvVGdvWjFJdzFSOEt0
dWZqdl9lckdyWjVQblJrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwm7UMA0GCSqGSIb3DQEBCwUAA4IB
AQCrftP+3HLj1rkC/AlfezPpAu3yunlqQFz0fINIu/oEOcZBaE6nBo5vKPWC3e2u
cgLWbr9QCGz3ywFkJ34Eq7rCB/1GYoR0D7Ep6TZ1/5+6BkrP9Z/YZAVJzSyVTOZG
PtNKYGrNwVQSwuRpQau8afi3kIQ7Gg12z9GszgE4pqT+gGY8rPh2anZTJ69iG7Gr
fNx5RY8hnLZIQ70G+UBIBVm5Rx3qfVkjfiV19ep5ShqbHoVRAeU77NoCsyA4HRTC
cHiIylUfSaFHvjb2hugKpHY/w3tn9x42PTIRCz8sM+IEjPu3t2T/oudUhyAl/Kiw
kuL0apRcTMn3fz+H79VdKRxq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org