Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/jiCNJPoAMLtW90p2XA-_df2y5TA.roa
File: jiCNJPoAMLtW90p2XA-_df2y5TA.roa (raw, json)
Hash identifier: NrYevnv/sAleFo+Hxwa5SSho0ARetDZsHeWvQGTBvjI=
Subject key identifier: 8E:20:8D:24:FA:00:30:BB:56:F7:4A:76:5C:0F:BF:75:FD:B2:E5:30
Certificate issuer: /CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Certificate serial: 38304726
Authority key identifier: A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/jiCNJPoAMLtW90p2XA-_df2y5TA.roa
Signing time: Sat 01 Jan 2022 04:57:37 +0000
ROA not before: Sat 01 Jan 2022 04:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48613
IP address blocks: 188.214.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 942688038 (0x38304726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Validity
Not Before: Jan 1 04:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e208d24fa0030bb56f74a765c0fbf75fdb2e530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:69:fc:96:0e:a9:28:69:3c:47:d8:50:ee:58:
8f:a6:d0:ca:80:1a:51:72:63:53:74:0b:0d:4f:0e:
58:b7:f6:a6:82:e1:69:50:0c:18:b6:ba:d6:09:92:
51:9e:41:73:46:84:0b:1b:6c:97:70:8c:8b:a4:9b:
bf:72:34:a6:d3:9a:2a:6a:af:4e:ce:31:c2:db:85:
17:11:a8:aa:f4:3a:86:56:c0:a3:ef:48:10:18:7e:
c4:f7:34:4e:b7:89:96:e0:a6:82:5a:4b:2c:bc:5a:
b5:e9:ab:24:98:d1:d5:21:6d:9e:f0:a9:58:d7:58:
4b:35:67:38:d6:57:09:12:86:0b:ee:01:c6:da:c5:
dc:11:c8:00:04:a5:9c:a8:d0:5d:94:d3:de:99:fe:
9e:68:9d:7b:8d:45:40:72:65:8c:d4:63:d0:0f:54:
05:af:e3:ef:cd:37:bf:ed:69:dc:0d:9d:eb:21:4f:
7e:a5:52:74:45:04:32:bf:a2:7e:27:c6:a2:6b:b1:
0b:22:c8:d0:14:58:7e:00:93:7b:95:1f:66:67:ba:
69:2a:73:ba:dc:c9:2e:e0:cd:73:1a:0c:e7:81:62:
3f:f5:0e:94:82:3d:0a:ef:16:10:46:f4:bb:4f:28:
71:b7:e6:09:4b:6e:47:51:64:0e:5d:e3:8c:2a:05:
39:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:20:8D:24:FA:00:30:BB:56:F7:4A:76:5C:0F:BF:75:FD:B2:E5:30
X509v3 Authority Key Identifier:
keyid:A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/jiCNJPoAMLtW90p2XA-_df2y5TA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.101.0/24
Signature Algorithm: sha256WithRSAEncryption
54:40:66:c1:80:51:be:94:c7:3a:bb:71:a4:99:75:2f:51:24:
dd:34:7d:c5:87:04:b9:9a:37:10:b9:60:62:a8:af:fb:b7:7b:
d1:f1:67:12:3f:4a:1b:62:4e:be:45:a8:76:0d:39:af:53:9c:
93:61:09:ce:d6:8f:e3:69:8a:46:0e:5d:65:d6:b1:d5:5a:dc:
8a:61:a9:f9:32:25:bf:1d:e9:1c:96:b8:42:61:38:88:a9:92:
98:9d:91:75:66:00:3e:3b:ad:ee:a0:6d:65:81:6b:82:19:c7:
98:0e:ce:42:da:6c:af:6c:c1:ad:bc:bf:49:18:39:c9:05:bd:
95:b3:87:4d:3f:d1:06:bd:56:87:73:11:92:63:03:37:e5:ea:
da:7b:46:92:71:ae:7d:f9:a5:0f:66:bd:81:3f:05:26:28:a6:
2a:6c:f7:23:89:5c:b4:37:d2:0f:a9:14:ec:12:3a:36:c5:52:
0a:c6:11:b2:a8:cd:99:54:85:6a:ed:90:be:1c:db:48:ae:86:
ea:33:b8:2c:3c:fe:b6:2f:71:bf:56:e9:a9:10:6e:d6:21:4e:
c0:e3:6c:89:3e:dc:84:59:d4:bb:f4:d5:52:00:d7:2e:39:da:
e0:22:36:f7:b7:86:d6:a0:d4:3e:ba:4b:6d:8b:ba:04:f3:28:
91:b2:6b:37
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEODBHJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MGFmZTFmZWQxZjJiN2RiMjRhMGMyZDFmNjEwMTA2ODRlOTNjYmQ1MB4XDTIyMDEw
MTA0NTczN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGUyMDhkMjRmYTAw
MzBiYjU2Zjc0YTc2NWMwZmJmNzVmZGIyZTUzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOBp/JYOqShpPEfYUO5Yj6bQyoAaUXJjU3QLDU8OWLf2poLh
aVAMGLa61gmSUZ5Bc0aECxtsl3CMi6Sbv3I0ptOaKmqvTs4xwtuFFxGoqvQ6hlbA
o+9IEBh+xPc0TreJluCmglpLLLxatemrJJjR1SFtnvCpWNdYSzVnONZXCRKGC+4B
xtrF3BHIAASlnKjQXZTT3pn+nmide41FQHJljNRj0A9UBa/j7803v+1p3A2d6yFP
fqVSdEUEMr+ififGomuxCyLI0BRYfgCTe5UfZme6aSpzutzJLuDNcxoM54FiP/UO
lII9Cu8WEEb0u08ocbfmCUtuR1FkDl3jjCoFOVkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSOII0k+gAwu1b3SnZcD791/bLlMDAfBgNVHSMEGDAWgBSgr+H+0fK32ySg
wtH2EBBoTpPL1TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29LX2hfdEh5dDlza29NTFI5aEFRYUU2VHk5VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvMzIwMmFkLTdiNDYtNDIyZC1hNGQyLWVjYTUzYTdmNzc2Mi8x
L2ppQ05KUG9BTUx0VzkwcDJYQS1fZGYyeTVUQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
MzIwMmFkLTdiNDYtNDIyZC1hNGQyLWVjYTUzYTdmNzc2Mi8xL29LX2hfdEh5dDlz
a29NTFI5aEFRYUU2VHk5VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALzWZTANBgkqhkiG9w0BAQsFAAOC
AQEAVEBmwYBRvpTHOrtxpJl1L1Ek3TR9xYcEuZo3ELlgYqiv+7d70fFnEj9KG2JO
vkWodg05r1Ock2EJztaP42mKRg5dZdax1VrcimGp+TIlvx3pHJa4QmE4iKmSmJ2R
dWYAPjut7qBtZYFrghnHmA7OQtpsr2zBrby/SRg5yQW9lbOHTT/RBr1Wh3MRkmMD
N+Xq2ntGknGuffmlD2a9gT8FJiimKmz3I4lctDfSD6kU7BI6NsVSCsYRsqjNmVSF
au2QvhzbSK6G6jO4LDz+ti9xv1bpqRBu1iFOwONsiT7chFnUu/TVUgDXLjna4CI2
97eG1qDUPrpLbYu6BPMokbJrNw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:52 2024 by rpki-client on console-ams.rpki-client.org