Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/ZY42p3JlGbvONBcAJsjwInxIkIY.roa
File: ZY42p3JlGbvONBcAJsjwInxIkIY.roa (raw, json)
Hash identifier: m847eFEomFmabtdVfzWTm/tK8ujA8NoDKsiyk3ZEd0s=
Subject key identifier: 65:8E:36:A7:72:65:19:BB:CE:34:17:00:26:C8:F0:22:7C:48:90:86
Certificate issuer: /CN=ba6d46b76bfd6d42bbd575e2f26fce136b9b6a6d
Certificate serial: 067CE24B
Authority key identifier: BA:6D:46:B7:6B:FD:6D:42:BB:D5:75:E2:F2:6F:CE:13:6B:9B:6A:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um1Gt2v9bUK71XXi8m_OE2ubam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/ZY42p3JlGbvONBcAJsjwInxIkIY.roa
Signing time: Sat 01 Jan 2022 13:59:44 +0000
ROA not before: Sat 01 Jan 2022 13:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 195.43.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108847691 (0x67ce24b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6d46b76bfd6d42bbd575e2f26fce136b9b6a6d
Validity
Not Before: Jan 1 13:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=658e36a7726519bbce34170026c8f0227c489086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:82:b2:10:67:37:e3:66:b9:30:8c:70:e2:ef:
2e:94:ed:5f:ef:50:52:61:b0:5c:aa:60:27:87:05:
6f:16:f1:5b:16:d1:72:ba:23:c1:7c:1c:d6:d5:1f:
57:b6:a2:30:3d:95:58:e1:08:aa:12:34:95:aa:52:
25:3a:12:36:d3:8f:cb:f2:92:86:8b:2b:9b:f8:18:
b3:af:04:76:a1:b3:1b:72:c8:92:01:dd:7c:92:56:
12:db:3a:c3:50:72:4d:0b:09:11:04:ed:cd:75:fd:
80:d5:5f:e5:5a:41:3f:0e:5f:3d:5d:3e:90:19:a0:
df:0d:40:38:b8:58:ed:fd:78:0e:d6:fc:54:66:db:
86:c1:70:2a:ef:d9:74:42:c3:6c:86:51:6a:33:25:
1c:44:6b:5a:aa:37:f0:66:97:e7:37:96:94:7d:f7:
85:87:2e:dd:1e:ac:af:d6:28:dd:43:6a:04:01:41:
cf:c0:cd:2b:92:b2:3e:c1:51:dc:de:c4:a3:89:a6:
20:71:c7:a6:bd:91:cc:18:55:46:65:6b:4b:fb:c7:
7f:15:2c:b8:40:37:58:35:d3:04:10:0b:47:f1:51:
5c:bf:74:86:8e:50:85:c3:bf:93:f1:8f:e8:bc:a9:
dc:75:ea:4e:1d:e5:31:2d:62:a4:b7:e2:10:3b:76:
7c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:8E:36:A7:72:65:19:BB:CE:34:17:00:26:C8:F0:22:7C:48:90:86
X509v3 Authority Key Identifier:
keyid:BA:6D:46:B7:6B:FD:6D:42:BB:D5:75:E2:F2:6F:CE:13:6B:9B:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um1Gt2v9bUK71XXi8m_OE2ubam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/ZY42p3JlGbvONBcAJsjwInxIkIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/um1Gt2v9bUK71XXi8m_OE2ubam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.130.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:cc:e9:a2:8e:e0:20:15:d3:eb:68:f9:2d:fe:a1:d1:58:6e:
7a:e3:d6:8b:ad:35:db:65:d4:1f:ec:03:64:d2:5c:41:79:21:
1e:94:b6:63:2d:df:57:f4:ee:ab:7d:74:b7:f4:30:c4:e2:5a:
e5:34:e2:f3:46:5e:82:a8:76:50:f7:13:f0:ea:83:82:a8:03:
71:1b:ad:28:bf:bf:77:82:34:c4:ae:4b:16:99:e3:79:1c:a6:
b2:b8:55:95:40:1b:7d:0d:89:37:7b:67:1e:36:04:0c:9b:77:
52:af:14:76:08:96:ea:b8:26:5f:42:4d:48:53:f7:5e:1f:c1:
df:9d:fb:fa:44:ef:74:6b:47:ad:20:68:1b:14:94:ce:69:6c:
e8:14:e6:d5:87:88:c6:96:91:93:7b:00:94:e5:eb:99:4b:fe:
6f:06:ad:1f:eb:f8:42:ed:bc:18:9e:da:9b:5f:07:1c:c3:11:
84:cf:c6:cc:65:fd:be:5c:45:34:17:69:d8:8b:e3:29:39:fc:
f2:c3:1d:47:6e:f4:cf:a1:01:78:1e:12:55:8e:f9:d1:30:18:
5e:15:9d:46:24:43:9d:cf:83:4c:ac:53:10:70:a2:73:b2:d7:
a8:af:55:86:d3:90:f1:7e:bf:be:fc:95:7d:92:27:e8:87:a5:
e0:13:17:c8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBnziSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YTZkNDZiNzZiZmQ2ZDQyYmJkNTc1ZTJmMjZmY2UxMzZiOWI2YTZkMB4XDTIyMDEw
MTEzNTk0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjU4ZTM2YTc3MjY1
MTliYmNlMzQxNzAwMjZjOGYwMjI3YzQ4OTA4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJiCshBnN+NmuTCMcOLvLpTtX+9QUmGwXKpgJ4cFbxbxWxbR
crojwXwc1tUfV7aiMD2VWOEIqhI0lapSJToSNtOPy/KShosrm/gYs68EdqGzG3LI
kgHdfJJWEts6w1ByTQsJEQTtzXX9gNVf5VpBPw5fPV0+kBmg3w1AOLhY7f14Dtb8
VGbbhsFwKu/ZdELDbIZRajMlHERrWqo38GaX5zeWlH33hYcu3R6sr9Yo3UNqBAFB
z8DNK5KyPsFR3N7Eo4mmIHHHpr2RzBhVRmVrS/vHfxUsuEA3WDXTBBALR/FRXL90
ho5QhcO/k/GP6Lyp3HXqTh3lMS1ipLfiEDt2fAsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRljjancmUZu840FwAmyPAifEiQhjAfBgNVHSMEGDAWgBS6bUa3a/1tQrvV
deLyb84Ta5tqbTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VtMUd0MnY5YlVLNzFYWGk4bV9PRTJ1YmFtMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDEvZThiZTBlLWE4MGQtNGE0Zi1iNTJmLWRmZjFjZmZiN2IxOC8x
L1pZNDJwM0psR2J2T05CY0FKc2p3SW54SWtJWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEv
ZThiZTBlLWE4MGQtNGE0Zi1iNTJmLWRmZjFjZmZiN2IxOC8xL3VtMUd0MnY5YlVL
NzFYWGk4bV9PRTJ1YmFtMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMrgjANBgkqhkiG9w0BAQsFAAOC
AQEAH8zpoo7gIBXT62j5Lf6h0VhueuPWi60122XUH+wDZNJcQXkhHpS2Yy3fV/Tu
q310t/QwxOJa5TTi80Zegqh2UPcT8OqDgqgDcRutKL+/d4I0xK5LFpnjeRymsrhV
lUAbfQ2JN3tnHjYEDJt3Uq8UdgiW6rgmX0JNSFP3Xh/B3537+kTvdGtHrSBoGxSU
zmls6BTm1YeIxpaRk3sAlOXrmUv+bwatH+v4Qu28GJ7am18HHMMRhM/GzGX9vlxF
NBdp2IvjKTn88sMdR270z6EBeB4SVY750TAYXhWdRiRDnc+DTKxTEHCic7LXqK9V
htOQ8X6/vvyVfZIn6Iel4BMXyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:00 2024 by rpki-client on console-fra.rpki-client.org