Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/iX_Y-vAG6tuPHd1-qf6r0bG8r5w.roa
File: iX_Y-vAG6tuPHd1-qf6r0bG8r5w.roa (raw, json)
Hash identifier: aw+gxAuSFwX348/3zBXHaw9O5gtkS33KZ6AYXKR9XhU=
Subject key identifier: 89:7F:D8:FA:F0:06:EA:DB:8F:1D:DD:7E:A9:FE:AB:D1:B1:BC:AF:9C
Certificate issuer: /CN=6665dd97665a23b1b183e223822b66b5ae536a2f
Certificate serial: 37472F44
Authority key identifier: 66:65:DD:97:66:5A:23:B1:B1:83:E2:23:82:2B:66:B5:AE:53:6A:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmXdl2ZaI7Gxg-Ijgitmta5Tai8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/iX_Y-vAG6tuPHd1-qf6r0bG8r5w.roa
Signing time: Sat 01 Jan 2022 08:53:22 +0000
ROA not before: Sat 01 Jan 2022 08:53:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34079
IP address blocks: 188.92.138.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927412036 (0x37472f44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6665dd97665a23b1b183e223822b66b5ae536a2f
Validity
Not Before: Jan 1 08:53:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=897fd8faf006eadb8f1ddd7ea9feabd1b1bcaf9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:38:b5:5e:ef:c4:fe:6d:e4:8a:ee:44:24:
e0:37:0c:9c:a7:61:c5:c7:33:ec:29:45:f1:35:90:
a1:5d:f1:7c:f4:0d:a9:77:4e:64:3d:4a:7c:18:1b:
db:ad:f0:e5:bf:71:70:ee:e8:d2:53:e9:9a:68:5b:
a8:b3:a2:b9:0f:1c:ef:fe:ce:00:e7:c1:9c:32:4a:
be:8d:24:22:bc:64:a1:c4:e9:28:18:db:f0:b9:19:
08:73:ea:c8:0a:8d:dc:89:e0:98:9a:9d:3e:49:db:
bd:5c:33:56:ea:cc:ea:d0:73:cf:56:95:ce:91:95:
92:97:3e:43:4e:a7:e0:8b:ca:d2:8e:30:67:41:9e:
64:c2:08:02:88:91:a0:ec:85:8b:70:4f:96:07:c9:
67:bb:ed:04:1e:c4:7c:ad:57:72:ad:18:12:f3:81:
a6:7b:9c:d7:34:a4:ed:95:32:20:ce:1d:21:55:5f:
92:5f:a2:d9:ad:0f:30:a3:98:fa:d4:00:fd:b8:d4:
5b:e8:d5:4a:a0:df:5b:57:90:b0:18:2c:7a:0c:81:
97:79:70:e7:dc:75:bd:f1:47:c8:bc:d4:1f:30:b3:
38:77:f3:f1:b5:23:02:40:6d:ae:8e:ab:9f:34:d3:
f2:08:f8:0b:d4:30:56:1b:74:76:d5:86:54:d9:cd:
fe:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:7F:D8:FA:F0:06:EA:DB:8F:1D:DD:7E:A9:FE:AB:D1:B1:BC:AF:9C
X509v3 Authority Key Identifier:
keyid:66:65:DD:97:66:5A:23:B1:B1:83:E2:23:82:2B:66:B5:AE:53:6A:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmXdl2ZaI7Gxg-Ijgitmta5Tai8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/iX_Y-vAG6tuPHd1-qf6r0bG8r5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/ZmXdl2ZaI7Gxg-Ijgitmta5Tai8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.92.138.0/23
Signature Algorithm: sha256WithRSAEncryption
30:be:32:2c:65:81:0e:9b:11:c3:98:64:41:16:3d:de:56:04:
9d:07:22:2e:d9:4a:8c:d9:60:26:06:0b:28:af:78:43:86:5b:
42:88:00:4b:94:e7:00:67:ff:5f:a9:ab:d2:e8:23:2b:bc:dd:
4c:36:f4:a3:d0:af:65:89:2e:b6:5b:c8:00:8f:bb:ca:15:e6:
ce:1e:61:fc:51:e8:c2:58:04:46:76:c3:6b:7d:da:a6:df:30:
e4:fe:9b:38:5a:29:d0:b6:ad:8c:96:80:7b:81:bc:29:7c:c1:
21:91:3b:c3:43:74:07:56:f8:e3:fa:ed:5d:19:0c:02:56:c1:
a7:8c:44:89:a3:6c:d3:e1:53:83:c0:2b:1b:1e:12:d8:78:1f:
59:80:06:75:1f:0f:4e:ee:8c:45:9a:89:05:29:1f:b3:89:49:
7b:8c:8e:20:ba:67:a6:aa:07:5a:28:7a:71:c8:2a:88:69:db:
05:30:98:f1:e3:07:1c:c4:8f:e2:50:b3:c4:59:19:c3:8d:ec:
f7:4a:ce:2f:f8:fe:96:6c:09:93:37:22:83:e5:4b:02:2b:dc:
68:72:c3:69:97:bf:55:98:dd:24:61:cd:cd:10:e0:82:36:95:
35:ff:75:a3:dd:cb:29:e4:06:5a:1d:d1:ab:0a:1f:4f:c0:70:
72:18:cb:3c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN0cvRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NjY1ZGQ5NzY2NWEyM2IxYjE4M2UyMjM4MjJiNjZiNWFlNTM2YTJmMB4XDTIyMDEw
MTA4NTMyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODk3ZmQ4ZmFmMDA2
ZWFkYjhmMWRkZDdlYTlmZWFiZDFiMWJjYWY5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALjSOLVe78T+beSK7kQk4DcMnKdhxccz7ClF8TWQoV3xfPQN
qXdOZD1KfBgb263w5b9xcO7o0lPpmmhbqLOiuQ8c7/7OAOfBnDJKvo0kIrxkocTp
KBjb8LkZCHPqyAqN3IngmJqdPknbvVwzVurM6tBzz1aVzpGVkpc+Q06n4IvK0o4w
Z0GeZMIIAoiRoOyFi3BPlgfJZ7vtBB7EfK1Xcq0YEvOBpnuc1zSk7ZUyIM4dIVVf
kl+i2a0PMKOY+tQA/bjUW+jVSqDfW1eQsBgsegyBl3lw59x1vfFHyLzUHzCzOHfz
8bUjAkBtro6rnzTT8gj4C9QwVht0dtWGVNnN/qMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSJf9j68Abq248d3X6p/qvRsbyvnDAfBgNVHSMEGDAWgBRmZd2XZlojsbGD
4iOCK2a1rlNqLzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ptWGRsMlphSTdHeGctSWpnaXRtdGE1VGFpOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvMzEyNTI5LTczZjYtNDgwOS1hZjliLWU4ZDcwNzE3ZmY4YS8x
L2lYX1ktdkFHNnR1UEhkMS1xZjZyMGJHOHI1dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
MzEyNTI5LTczZjYtNDgwOS1hZjliLWU4ZDcwNzE3ZmY4YS8xL1ptWGRsMlphSTdH
eGctSWpnaXRtdGE1VGFpOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbxcijANBgkqhkiG9w0BAQsFAAOC
AQEAML4yLGWBDpsRw5hkQRY93lYEnQciLtlKjNlgJgYLKK94Q4ZbQogAS5TnAGf/
X6mr0ugjK7zdTDb0o9CvZYkutlvIAI+7yhXmzh5h/FHowlgERnbDa33apt8w5P6b
OFop0LatjJaAe4G8KXzBIZE7w0N0B1b44/rtXRkMAlbBp4xEiaNs0+FTg8ArGx4S
2HgfWYAGdR8PTu6MRZqJBSkfs4lJe4yOILpnpqoHWih6ccgqiGnbBTCY8eMHHMSP
4lCzxFkZw43s90rOL/j+lmwJkzcig+VLAivcaHLDaZe/VZjdJGHNzRDggjaVNf91
o93LKeQGWh3RqwofT8BwchjLPA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:34 2023 by rpki-client on console-fra.rpki-client.org