Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/84bbe3-4c61-4033-b9af-9320fe13e5fe/1/4vkcSk5LpC5yo9XOcsIMM3l4Kro.roa
File: 4vkcSk5LpC5yo9XOcsIMM3l4Kro.roa (raw, json)
Hash identifier: sTd7vJToEFGtvNmVWyRNAyBXZ36294/eaKtbVAb49Ek=
Subject key identifier: E2:F9:1C:4A:4E:4B:A4:2E:72:A3:D5:CE:72:C2:0C:33:79:78:2A:BA
Certificate issuer: /CN=4c39f8b8febab6d209a24981e399fd60432e1cc9
Certificate serial: 0184BEC790DD8D1BEF5A08A0FB0C3F314A83
Authority key identifier: 4C:39:F8:B8:FE:BA:B6:D2:09:A2:49:81:E3:99:FD:60:43:2E:1C:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDn4uP66ttIJokmB45n9YEMuHMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/84bbe3-4c61-4033-b9af-9320fe13e5fe/1/4vkcSk5LpC5yo9XOcsIMM3l4Kro.roa
Signing time: Mon 28 Nov 2022 15:07:40 +0000
ROA not before: Mon 28 Nov 2022 15:07:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9127
IP address blocks: 195.182.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:c7:90:dd:8d:1b:ef:5a:08:a0:fb:0c:3f:31:4a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c39f8b8febab6d209a24981e399fd60432e1cc9
Validity
Not Before: Nov 28 15:07:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2f91c4a4e4ba42e72a3d5ce72c20c3379782aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fe:4e:3b:cd:ef:4b:93:f3:29:85:ba:a7:d3:
29:59:7b:05:f7:83:69:4d:93:d3:99:de:9b:65:af:
97:11:6d:a9:c3:7c:da:26:72:42:a9:8e:e4:3a:fb:
4b:7c:00:ea:61:92:c7:3c:37:04:42:99:bc:63:49:
6e:50:32:ae:64:75:44:31:65:61:d2:ff:05:4e:39:
7f:75:48:1b:1b:67:79:15:36:40:d0:5d:10:9c:40:
a8:da:74:b2:31:b2:fd:87:6c:04:93:2a:41:e9:f9:
45:e4:71:70:d6:73:c5:27:e4:e2:6e:ea:d3:f0:60:
05:9f:71:de:ba:68:03:42:0b:46:20:0e:45:1a:3e:
84:1b:11:61:54:fa:08:87:03:ce:cd:f4:8a:8f:27:
a1:8b:a1:31:1c:5e:b0:c5:80:e7:2f:f0:fe:06:81:
4a:6c:e9:02:ab:e8:c6:71:e1:e5:1f:79:b5:36:3b:
35:95:c6:0e:bc:5f:05:5d:30:b2:c8:f5:c2:c1:ac:
f2:de:40:6e:6c:e7:96:44:bf:6a:ac:95:32:0e:d7:
d9:cb:0b:90:61:dd:e5:5f:fd:d6:fc:a5:fc:bd:67:
97:3a:b6:23:d3:f0:3d:df:b7:f3:ab:2c:85:d6:e1:
1d:92:85:e9:cf:15:02:a0:b1:63:c7:5b:7d:5d:b3:
22:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F9:1C:4A:4E:4B:A4:2E:72:A3:D5:CE:72:C2:0C:33:79:78:2A:BA
X509v3 Authority Key Identifier:
keyid:4C:39:F8:B8:FE:BA:B6:D2:09:A2:49:81:E3:99:FD:60:43:2E:1C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDn4uP66ttIJokmB45n9YEMuHMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/84bbe3-4c61-4033-b9af-9320fe13e5fe/1/4vkcSk5LpC5yo9XOcsIMM3l4Kro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/84bbe3-4c61-4033-b9af-9320fe13e5fe/1/TDn4uP66ttIJokmB45n9YEMuHMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.41.0/24
Signature Algorithm: sha256WithRSAEncryption
21:0c:e7:8a:ca:5c:a9:e0:3d:50:fe:ca:94:f5:3b:97:93:93:
b4:e0:ce:c4:1a:24:33:dc:64:8f:f7:9a:ba:28:47:18:58:ec:
68:d6:1b:46:e7:18:a9:73:a3:a6:3e:60:d6:3b:38:d2:29:bd:
12:22:d9:cc:8e:0a:d2:2a:c1:c5:6c:95:9f:c6:4f:22:e4:82:
c7:63:78:a0:11:ec:34:a9:8b:68:0f:a7:07:7d:cf:39:94:d6:
cf:1e:b0:28:21:00:43:93:58:62:7d:9c:57:6a:4e:76:cc:64:
d0:e5:10:36:17:17:60:bb:88:eb:a4:08:2b:7b:72:ef:0b:6b:
9a:94:6a:32:bc:1d:0d:15:04:f2:84:d7:b5:07:bb:40:f1:f6:
e2:ce:b6:54:b7:a2:7a:e1:81:d8:1a:3f:cf:fe:5e:96:7e:a0:
8b:ba:6d:ab:a1:d2:71:7c:55:52:6d:d7:0d:a7:b6:b6:82:df:
9b:7e:af:e9:cc:09:72:af:aa:7b:1e:f1:cf:bb:6c:62:f0:83:
c2:2d:7e:92:ed:63:0e:83:c7:95:55:a8:53:36:b9:a4:66:eb:
21:95:f1:41:1c:58:24:0e:2a:38:de:da:16:d9:f8:5d:5a:7f:
b6:6f:a1:d8:b3:47:85:32:b2:b8:fe:5c:c2:27:fa:26:c0:11:
52:8b:8b:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYS+x5DdjRvvWgig+ww/MUqDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMzlmOGI4ZmViYWI2ZDIwOWEyNDk4MWUzOTlmZDYwNDMy
ZTFjYzkwHhcNMjIxMTI4MTUwNzQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMmY5MWM0YTRlNGJhNDJlNzJhM2Q1Y2U3MmMyMGMzMzc5NzgyYWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjP5OO83vS5PzKYW6p9MpWXsF94Np
TZPTmd6bZa+XEW2pw3zaJnJCqY7kOvtLfADqYZLHPDcEQpm8Y0luUDKuZHVEMWVh
0v8FTjl/dUgbG2d5FTZA0F0QnECo2nSyMbL9h2wEkypB6flF5HFw1nPFJ+TiburT
8GAFn3HeumgDQgtGIA5FGj6EGxFhVPoIhwPOzfSKjyehi6ExHF6wxYDnL/D+BoFK
bOkCq+jGceHlH3m1Njs1lcYOvF8FXTCyyPXCwazy3kBubOeWRL9qrJUyDtfZywuQ
Yd3lX/3W/KX8vWeXOrYj0/A937fzqyyF1uEdkoXpzxUCoLFjx1t9XbMikQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOL5HEpOS6QucqPVznLCDDN5eCq6MB8GA1UdIwQY
MBaAFEw5+Lj+urbSCaJJgeOZ/WBDLhzJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVERuNHVQNjZ0dElKb2ttQjQ1bjlZRU11SE1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi84NGJiZTMtNGM2MS00MDMzLWI5YWYt
OTMyMGZlMTNlNWZlLzEvNHZrY1NrNUxwQzV5bzlYT2NzSU1NM2w0S3JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi84NGJiZTMtNGM2MS00MDMzLWI5YWYtOTMyMGZlMTNlNWZl
LzEvVERuNHVQNjZ0dElKb2ttQjQ1bjlZRU11SE1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7YpMA0G
CSqGSIb3DQEBCwUAA4IBAQAhDOeKylyp4D1Q/sqU9TuXk5O04M7EGiQz3GSP95q6
KEcYWOxo1htG5xipc6OmPmDWOzjSKb0SItnMjgrSKsHFbJWfxk8i5ILHY3igEew0
qYtoD6cHfc85lNbPHrAoIQBDk1hifZxXak52zGTQ5RA2Fxdgu4jrpAgre3LvC2ua
lGoyvB0NFQTyhNe1B7tA8fbizrZUt6J64YHYGj/P/l6WfqCLum2rodJxfFVSbdcN
p7a2gt+bfq/pzAlyr6p7HvHPu2xi8IPCLX6S7WMOg8eVVahTNrmkZushlfFBHFgk
Dio43toW2fhdWn+2b6HYs0eFMrK4/lzCJ/omwBFSi4uq
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:39 2024 by rpki-client on console-ams.rpki-client.org