Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/9Bc1rHecKell4biMTshtg3agHw4.roa
File: 9Bc1rHecKell4biMTshtg3agHw4.roa (raw, json)
Hash identifier: N+6Xb8mnrzWkuEAOjQNnjINFpkxIMy0LI83rXYVMjVg=
Subject key identifier: F4:17:35:AC:77:9C:29:E9:65:E1:B8:8C:4E:C8:6D:83:76:A0:1F:0E
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0430FF1B
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/9Bc1rHecKell4biMTshtg3agHw4.roa
Signing time: Thu 10 Mar 2022 08:32:48 +0000
ROA not before: Thu 10 Mar 2022 08:32:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207959
IP address blocks: 81.19.139.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70319899 (0x430ff1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Mar 10 08:32:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f41735ac779c29e965e1b88c4ec86d8376a01f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e3:10:90:90:a2:d7:d8:ae:a5:28:5d:2c:4a:
ee:83:7b:79:83:a0:b1:14:16:c6:c7:c3:7d:6d:c4:
f9:e0:99:6c:ce:18:6b:f7:a8:3e:f5:1f:9c:a3:b9:
b7:db:c0:83:38:02:54:a6:32:28:9d:ae:8a:17:32:
0b:a6:9a:b7:50:53:07:0b:26:82:93:6b:54:12:e1:
06:9d:02:4b:d3:10:53:df:f5:6e:6c:6e:6b:30:cb:
4b:d8:45:b6:43:f2:5e:cc:b1:a6:f4:f7:88:48:cd:
ca:f9:42:4a:bd:f6:ef:cf:99:01:62:cc:53:cc:4b:
b2:16:a9:f7:9c:00:15:4a:ea:74:c9:40:18:84:dc:
68:c6:ce:c6:ad:2d:b2:53:f4:4e:63:13:14:04:38:
75:d3:3e:8a:33:e2:46:fe:ba:f8:b6:cb:ec:f0:41:
22:d1:96:96:5f:f3:c4:96:79:48:67:f3:99:19:fe:
1a:57:27:27:96:2c:6f:18:5a:0c:32:15:00:15:49:
83:7f:2a:18:7a:33:02:39:c9:46:01:2c:2a:7d:93:
86:10:7c:37:37:13:3e:76:81:31:ed:9e:25:5d:db:
ad:f3:17:5b:04:6d:ba:e5:f9:7e:4c:b5:74:d6:86:
60:b8:89:8b:3f:8a:6b:02:3b:ea:81:68:77:f8:ea:
9e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:17:35:AC:77:9C:29:E9:65:E1:B8:8C:4E:C8:6D:83:76:A0:1F:0E
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/9Bc1rHecKell4biMTshtg3agHw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.139.0/24
Signature Algorithm: sha256WithRSAEncryption
64:64:96:59:e9:39:d3:6b:58:6d:13:a5:3a:8b:84:24:47:6f:
88:60:3c:87:58:bd:8d:d2:5e:e6:ed:a5:ee:c1:74:71:33:6a:
1b:50:2b:74:52:e3:58:7d:95:cc:fe:dd:b1:5a:75:0d:8d:a2:
56:82:9d:79:e5:5f:01:91:74:3c:77:15:2e:62:d3:b3:03:a4:
8e:e7:a0:22:ed:26:1b:14:f8:ed:df:83:94:b4:74:8e:1c:02:
bb:93:1b:11:b3:aa:78:c0:29:ca:ae:82:9c:4d:2d:23:98:59:
4c:2f:85:c4:fe:f0:1e:53:24:f8:48:ab:18:67:79:0c:3b:e8:
c5:4e:05:01:74:2f:74:b4:32:e5:cc:40:d6:84:aa:0d:d1:2b:
be:ae:7c:1b:a3:75:da:7c:ba:f2:cf:e5:aa:68:5d:8b:1e:ef:
cc:a4:01:f0:ea:06:b6:70:2a:66:dc:db:fa:c5:3c:92:6a:7f:
78:59:03:7c:cf:26:04:bc:b9:c9:35:3c:2b:f5:2f:09:c0:83:
fa:92:55:31:d1:7b:e4:bc:56:5f:69:10:5c:79:2a:3b:d6:ee:
f8:ef:97:2e:76:d0:de:09:ef:9b:b8:01:f1:ae:49:34:64:fd:
6d:37:db:c5:2d:6f:17:bf:54:27:b3:04:71:bb:a7:8c:2b:07:
55:67:6f:f5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDD/GzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGNlOTY0MGEzZWYyZmVhMTkzNzRhZDhmOTlmNDIzZDdhYTdjNzZiMB4XDTIyMDMx
MDA4MzI0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQxNzM1YWM3Nzlj
MjllOTY1ZTFiODhjNGVjODZkODM3NmEwMWYwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJjjEJCQotfYrqUoXSxK7oN7eYOgsRQWxsfDfW3E+eCZbM4Y
a/eoPvUfnKO5t9vAgzgCVKYyKJ2uihcyC6aat1BTBwsmgpNrVBLhBp0CS9MQU9/1
bmxuazDLS9hFtkPyXsyxpvT3iEjNyvlCSr3278+ZAWLMU8xLshap95wAFUrqdMlA
GITcaMbOxq0tslP0TmMTFAQ4ddM+ijPiRv66+LbL7PBBItGWll/zxJZ5SGfzmRn+
GlcnJ5YsbxhaDDIVABVJg38qGHozAjnJRgEsKn2ThhB8NzcTPnaBMe2eJV3brfMX
WwRtuuX5fky1dNaGYLiJiz+KawI76oFod/jqnm8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT0FzWsd5wp6WXhuIxOyG2DdqAfDjAfBgNVHSMEGDAWgBSkzpZAo+8v6hk3
Stj5n0I9eqfHazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BNNldRS1B2TC1vWk4wclktWjlDUFhxbngycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8x
LzlCYzFySGVjS2VsbDRiaU1Uc2h0ZzNhZ0h3NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
ZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8xL3BNNldRS1B2TC1v
Wk4wclktWjlDUFhxbngycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFETizANBgkqhkiG9w0BAQsFAAOC
AQEAZGSWWek502tYbROlOouEJEdviGA8h1i9jdJe5u2l7sF0cTNqG1ArdFLjWH2V
zP7dsVp1DY2iVoKdeeVfAZF0PHcVLmLTswOkjuegIu0mGxT47d+DlLR0jhwCu5Mb
EbOqeMApyq6CnE0tI5hZTC+FxP7wHlMk+EirGGd5DDvoxU4FAXQvdLQy5cxA1oSq
DdErvq58G6N12ny68s/lqmhdix7vzKQB8OoGtnAqZtzb+sU8kmp/eFkDfM8mBLy5
yTU8K/UvCcCD+pJVMdF75LxWX2kQXHkqO9bu+O+XLnbQ3gnvm7gB8a5JNGT9bTfb
xS1vF79UJ7MEcbunjCsHVWdv9Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org