Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/403ec3-c02e-4463-ad40-2a91c2cd2079/1/3YhlRlb6_Eogq-hof8LB5lq16Gw.roa
File: 3YhlRlb6_Eogq-hof8LB5lq16Gw.roa (raw, json)
Hash identifier: lmoFvp0iZSTzR3WWaHoVLkj/T8DSalTjtr6Vpi5vStg=
Subject key identifier: DD:88:65:46:56:FA:FC:4A:20:AB:E8:68:7F:C2:C1:E6:5A:B5:E8:6C
Certificate issuer: /CN=82bc633e284664a4ca51ad5976c7faf2c6246b4b
Certificate serial: 057BF6D5
Authority key identifier: 82:BC:63:3E:28:46:64:A4:CA:51:AD:59:76:C7:FA:F2:C6:24:6B:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grxjPihGZKTKUa1Zdsf68sYka0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/403ec3-c02e-4463-ad40-2a91c2cd2079/1/3YhlRlb6_Eogq-hof8LB5lq16Gw.roa
Signing time: Sat 01 Jan 2022 02:58:22 +0000
ROA not before: Sat 01 Jan 2022 02:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 194.33.125.0/24 maxlen: 24
194.33.126.0/24 maxlen: 24
194.33.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92010197 (0x57bf6d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82bc633e284664a4ca51ad5976c7faf2c6246b4b
Validity
Not Before: Jan 1 02:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd88654656fafc4a20abe8687fc2c1e65ab5e86c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8a:64:d6:6a:c8:e1:71:f8:5c:93:2a:6a:93:
04:46:98:29:e3:9d:5c:fd:2d:65:05:91:d4:ca:3d:
a2:ad:59:f0:4c:06:d8:d8:47:13:e6:49:0c:d0:25:
88:c2:c1:e8:99:0a:47:12:b1:5b:98:17:ee:da:d4:
4e:4a:8a:e0:7e:68:d2:c8:d7:fa:f6:7a:85:6b:6c:
ae:72:26:cb:61:6b:57:a7:43:60:43:86:04:42:5f:
cc:3f:4e:6e:cc:d2:43:44:e2:0b:e9:13:34:76:52:
8b:5c:cc:92:e4:45:4f:a3:43:77:7d:0b:f5:58:be:
79:4b:12:9a:24:2b:3d:a0:6a:13:c7:cc:76:58:6c:
76:fb:16:e9:52:ae:cf:ec:38:f4:06:7b:62:93:e1:
6b:a9:de:fd:c3:1b:7c:bd:67:10:7b:13:32:c8:aa:
68:aa:7c:12:1c:83:a7:3c:c8:7b:10:bf:37:86:6e:
d5:63:1f:9f:e7:94:0c:74:10:a6:7c:c8:20:47:00:
d2:1a:c3:70:74:ab:12:9b:0c:ad:02:fb:03:43:91:
d0:fb:d0:af:c2:8d:41:80:aa:6e:7f:96:da:50:e6:
43:64:aa:8a:82:bd:f7:4a:c0:d2:58:50:fc:99:56:
b7:87:ab:65:21:0a:db:16:a5:12:7d:93:28:69:e7:
7c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:88:65:46:56:FA:FC:4A:20:AB:E8:68:7F:C2:C1:E6:5A:B5:E8:6C
X509v3 Authority Key Identifier:
keyid:82:BC:63:3E:28:46:64:A4:CA:51:AD:59:76:C7:FA:F2:C6:24:6B:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grxjPihGZKTKUa1Zdsf68sYka0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/403ec3-c02e-4463-ad40-2a91c2cd2079/1/3YhlRlb6_Eogq-hof8LB5lq16Gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/403ec3-c02e-4463-ad40-2a91c2cd2079/1/grxjPihGZKTKUa1Zdsf68sYka0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.125.0-194.33.127.255
Signature Algorithm: sha256WithRSAEncryption
65:f2:88:59:b6:2b:8a:68:8e:15:8b:f4:47:b3:43:e7:6e:ae:
e1:31:32:71:9e:8d:c9:89:bd:75:62:5e:2a:ed:95:4d:43:10:
74:5d:fa:66:5d:5c:66:12:b5:6b:0a:fa:2a:56:23:9c:f8:48:
60:c4:b5:b0:0e:d3:d8:1e:74:f7:60:92:84:f3:3b:15:61:11:
b0:1b:cb:05:79:0b:73:e0:2d:22:63:43:73:a0:92:8f:08:ca:
97:d5:de:79:e0:dc:46:7c:0f:26:18:b9:44:94:4c:ad:8f:d1:
2e:59:51:30:d8:ec:84:a4:88:d7:cf:26:6a:bb:e3:34:7a:63:
56:7a:21:a9:07:da:43:84:69:3e:d1:42:2f:bb:0b:cc:e7:63:
36:7d:d2:57:8e:30:e8:b3:2e:ce:b7:52:1f:1a:b9:e0:5b:da:
87:08:1e:0d:ae:77:05:4b:01:67:6f:7c:5a:1e:0a:9a:08:66:
92:c7:8b:fa:70:27:b0:0d:1e:29:cb:30:8a:12:eb:11:32:d4:
8b:d1:6d:60:50:cd:0d:88:76:7e:f3:e1:d4:e1:be:a8:57:33:
c5:52:d0:c6:a9:d7:7b:07:72:d1:9c:17:17:5c:b7:aa:e3:4c:
1b:bd:e2:70:4b:5e:d2:ec:53:83:6f:41:c9:47:04:76:58:d2:
22:33:e9:e5
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBXv21TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MmJjNjMzZTI4NDY2NGE0Y2E1MWFkNTk3NmM3ZmFmMmM2MjQ2YjRiMB4XDTIyMDEw
MTAyNTgyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGQ4ODY1NDY1NmZh
ZmM0YTIwYWJlODY4N2ZjMmMxZTY1YWI1ZTg2YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOeKZNZqyOFx+FyTKmqTBEaYKeOdXP0tZQWR1Mo9oq1Z8EwG
2NhHE+ZJDNAliMLB6JkKRxKxW5gX7trUTkqK4H5o0sjX+vZ6hWtsrnImy2FrV6dD
YEOGBEJfzD9ObszSQ0TiC+kTNHZSi1zMkuRFT6NDd30L9Vi+eUsSmiQrPaBqE8fM
dlhsdvsW6VKuz+w49AZ7YpPha6ne/cMbfL1nEHsTMsiqaKp8EhyDpzzIexC/N4Zu
1WMfn+eUDHQQpnzIIEcA0hrDcHSrEpsMrQL7A0OR0PvQr8KNQYCqbn+W2lDmQ2Sq
ioK990rA0lhQ/JlWt4erZSEK2xalEn2TKGnnfC0CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTdiGVGVvr8SiCr6Gh/wsHmWrXobDAfBgNVHSMEGDAWgBSCvGM+KEZkpMpR
rVl2x/ryxiRrSzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dyeGpQaWhHWktUS1VhMVpkc2Y2OHNZa2Ewcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvNDAzZWMzLWMwMmUtNDQ2My1hZDQwLTJhOTFjMmNkMjA3OS8x
LzNZaGxSbGI2X0VvZ3EtaG9mOExCNWxxMTZHdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
NDAzZWMzLWMwMmUtNDQ2My1hZDQwLTJhOTFjMmNkMjA3OS8xL2dyeGpQaWhHWktU
S1VhMVpkc2Y2OHNZa2Ewcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAwiF9AwQHwiEAMA0GCSqGSIb3
DQEBCwUAA4IBAQBl8ohZtiuKaI4Vi/RHs0Pnbq7hMTJxno3Jib11Yl4q7ZVNQxB0
XfpmXVxmErVrCvoqViOc+EhgxLWwDtPYHnT3YJKE8zsVYRGwG8sFeQtz4C0iY0Nz
oJKPCMqX1d554NxGfA8mGLlElEytj9EuWVEw2OyEpIjXzyZqu+M0emNWeiGpB9pD
hGk+0UIvuwvM52M2fdJXjjDosy7Ot1IfGrngW9qHCB4NrncFSwFnb3xaHgqaCGaS
x4v6cCewDR4pyzCKEusRMtSL0W1gUM0NiHZ+8+HU4b6oVzPFUtDGqdd7B3LRnBcX
XLeq40wbveJwS17S7FODb0HJRwR2WNIiM+nl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:20 2024 by rpki-client on console-fra.rpki-client.org