Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/24rtMw2TYWDWcgVuk0LIpo8GczY.roa
File: 24rtMw2TYWDWcgVuk0LIpo8GczY.roa (raw, json)
Hash identifier: fGAGQiaS8AYLeJwJzmsoPwrANAypsnfaNAk7utH6W5Q=
Subject key identifier: DB:8A:ED:33:0D:93:61:60:D6:72:05:6E:93:42:C8:A6:8F:06:73:36
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 049CF8BC
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/24rtMw2TYWDWcgVuk0LIpo8GczY.roa
Signing time: Thu 28 Apr 2022 13:03:59 +0000
ROA not before: Thu 28 Apr 2022 13:03:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209588
IP address blocks: 81.19.135.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77396156 (0x49cf8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Apr 28 13:03:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db8aed330d936160d672056e9342c8a68f067336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f6:6a:de:67:da:ca:db:a5:94:db:70:f1:e8:
98:2b:f2:cb:3d:da:a7:cb:75:af:dd:65:52:a3:f1:
5b:92:fc:b4:f6:35:77:a8:41:e7:f1:06:b3:9f:33:
a4:63:07:a8:cd:ff:be:00:85:fc:30:1f:f0:f0:2b:
4e:15:7d:32:cb:1e:ee:21:e7:bb:d4:b8:86:18:b5:
0f:88:4e:72:61:8f:b8:5d:6e:3f:6e:9a:19:f6:74:
ef:3b:b9:b7:53:18:a7:d8:a6:96:d1:6c:25:a7:69:
cf:b5:87:d1:c7:f8:e4:20:4c:1c:95:24:72:22:04:
13:31:bb:4c:c7:4f:db:70:a5:e7:ee:34:c3:0d:74:
95:af:6e:68:b3:78:4b:c0:00:f0:e4:13:dd:c0:49:
14:9f:8f:08:86:ac:ff:72:9f:e8:10:2f:5e:42:21:
53:58:62:4f:73:df:89:91:b0:15:e7:82:31:d7:94:
2c:52:25:47:5c:71:58:77:33:16:88:80:10:88:dc:
b0:54:eb:7a:93:55:27:26:10:49:90:f1:5c:88:e4:
24:bb:2c:9b:04:b7:49:a2:43:6d:bf:89:d4:16:4e:
6a:6e:1f:b9:bf:24:50:f9:dc:49:8a:bf:27:9b:d0:
c0:13:70:00:4f:49:b7:ca:ec:34:ba:b9:fc:ab:19:
aa:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8A:ED:33:0D:93:61:60:D6:72:05:6E:93:42:C8:A6:8F:06:73:36
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/24rtMw2TYWDWcgVuk0LIpo8GczY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.135.0/24
Signature Algorithm: sha256WithRSAEncryption
56:a1:85:e2:04:43:06:5f:a9:dd:db:2d:70:48:4a:a4:a3:ba:
ab:99:4a:2a:fb:50:19:bb:b7:25:37:52:49:9c:99:d3:2a:2e:
43:c3:39:a0:3e:28:12:a2:7a:75:52:90:b0:c8:a3:9c:4e:78:
01:6d:99:32:b1:72:07:13:93:d2:0f:8a:88:69:9c:00:bd:ce:
b4:e3:2e:bc:e1:cd:b9:51:4a:83:2f:a4:ff:bb:eb:75:34:2b:
28:0e:bc:90:94:be:40:75:b2:1e:fb:ac:68:59:3a:f5:6d:04:
89:f6:e5:87:46:0a:1e:e5:1a:76:e1:8c:f6:ca:8d:6c:71:5b:
70:8b:30:a5:e8:0c:86:25:59:e7:db:03:9d:d0:c1:24:8b:11:
ec:02:26:e5:51:3c:15:04:f2:fe:8c:55:25:aa:ca:a1:0b:2b:
10:3a:97:7a:f7:ef:a0:9f:8f:36:9e:e7:f5:9e:be:56:5b:91:
b9:3c:0c:3d:de:30:ef:a2:24:52:ff:3c:d9:cd:d6:2b:ed:46:
1a:01:b2:1d:78:34:19:b4:57:9b:a9:c6:88:a8:65:98:34:dd:
f1:52:aa:dc:18:e4:ec:5c:38:d5:8c:b7:cd:e5:8b:c4:66:75:
f8:0a:62:e0:0b:da:ca:26:09:2f:7e:f7:8f:ee:6e:32:89:f2:
ce:65:a1:d0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBJz4vDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGNlOTY0MGEzZWYyZmVhMTkzNzRhZDhmOTlmNDIzZDdhYTdjNzZiMB4XDTIyMDQy
ODEzMDM1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGI4YWVkMzMwZDkz
NjE2MGQ2NzIwNTZlOTM0MmM4YTY4ZjA2NzMzNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALf2at5n2srbpZTbcPHomCvyyz3ap8t1r91lUqPxW5L8tPY1
d6hB5/EGs58zpGMHqM3/vgCF/DAf8PArThV9Msse7iHnu9S4hhi1D4hOcmGPuF1u
P26aGfZ07zu5t1MYp9imltFsJadpz7WH0cf45CBMHJUkciIEEzG7TMdP23Cl5+40
ww10la9uaLN4S8AA8OQT3cBJFJ+PCIas/3Kf6BAvXkIhU1hiT3PfiZGwFeeCMdeU
LFIlR1xxWHczFoiAEIjcsFTrepNVJyYQSZDxXIjkJLssmwS3SaJDbb+J1BZOam4f
ub8kUPncSYq/J5vQwBNwAE9Jt8rsNLq5/KsZqpsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTbiu0zDZNhYNZyBW6TQsimjwZzNjAfBgNVHSMEGDAWgBSkzpZAo+8v6hk3
Stj5n0I9eqfHazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BNNldRS1B2TC1vWk4wclktWjlDUFhxbngycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8x
LzI0cnRNdzJUWVdEV2NnVnVrMExJcG84R2N6WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
ZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8xL3BNNldRS1B2TC1v
Wk4wclktWjlDUFhxbngycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEThzANBgkqhkiG9w0BAQsFAAOC
AQEAVqGF4gRDBl+p3dstcEhKpKO6q5lKKvtQGbu3JTdSSZyZ0youQ8M5oD4oEqJ6
dVKQsMijnE54AW2ZMrFyBxOT0g+KiGmcAL3OtOMuvOHNuVFKgy+k/7vrdTQrKA68
kJS+QHWyHvusaFk69W0Eifblh0YKHuUaduGM9sqNbHFbcIswpegMhiVZ59sDndDB
JIsR7AIm5VE8FQTy/oxVJarKoQsrEDqXevfvoJ+PNp7n9Z6+VluRuTwMPd4w76Ik
Uv882c3WK+1GGgGyHXg0GbRXm6nGiKhlmDTd8VKq3Bjk7Fw41Yy3zeWLxGZ1+Api
4AvayiYJL373j+5uMonyzmWh0A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org