Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/iV8iisaKEVqP3X5Fydv1ewwsjj4.roa
File: iV8iisaKEVqP3X5Fydv1ewwsjj4.roa (raw, json)
Hash identifier: +tw1/xXATw6fp/JiH6o2qMpO6pqfxDbL+nSbjcQq3FY=
Subject key identifier: 89:5F:22:8A:C6:8A:11:5A:8F:DD:7E:45:C9:DB:F5:7B:0C:2C:8E:3E
Certificate issuer: /CN=b74ce3f3c5e5a2f9d8b8a4c77a8361f8a216f3ad
Certificate serial: 023F372A
Authority key identifier: B7:4C:E3:F3:C5:E5:A2:F9:D8:B8:A4:C7:7A:83:61:F8:A2:16:F3:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t0zj88XlovnYuKTHeoNh-KIW860.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/iV8iisaKEVqP3X5Fydv1ewwsjj4.roa
Signing time: Sat 01 Jan 2022 04:53:23 +0000
ROA not before: Sat 01 Jan 2022 04:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.99.96.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37697322 (0x23f372a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b74ce3f3c5e5a2f9d8b8a4c77a8361f8a216f3ad
Validity
Not Before: Jan 1 04:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=895f228ac68a115a8fdd7e45c9dbf57b0c2c8e3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:61:e3:c8:d7:ff:a5:07:a8:2d:79:ce:59:25:
54:50:46:03:2f:ff:66:76:b3:93:b6:8f:bd:62:fe:
77:18:25:cc:da:04:92:cf:46:12:f8:52:cf:e3:eb:
5e:6c:c5:17:f0:5f:fe:72:13:46:db:d7:12:f1:14:
39:19:a9:bd:27:89:6c:34:31:a1:77:3e:e9:9a:1f:
0d:65:b9:c8:c0:2c:93:66:63:26:e6:ae:13:20:27:
c6:98:13:0d:9d:1d:13:1a:ee:c9:28:b9:ed:67:cc:
55:8c:ea:1b:16:95:56:cb:0d:1f:0a:04:5e:f4:a6:
cb:22:1a:68:f9:e6:19:b8:ff:b4:a7:94:65:c4:d8:
24:79:1d:df:53:39:a4:41:c2:a3:c5:c0:98:46:0b:
b6:c8:b3:b1:55:ee:2b:d2:cd:aa:fa:d5:a2:b0:48:
db:0b:46:68:42:d5:4f:0b:dd:b0:47:ad:02:01:69:
49:d7:a5:24:a1:52:6d:d5:b0:3a:6e:ef:cc:59:a0:
51:d2:75:ee:f8:8e:46:4d:ab:a1:1a:45:97:aa:36:
be:e2:37:c0:ac:18:ce:a7:f0:3b:39:75:48:b5:dc:
3b:4a:fd:cb:8c:89:44:d8:3f:b8:c4:19:d4:4f:10:
06:12:b7:d8:a8:53:4f:cf:dc:f8:a3:8c:6f:79:99:
01:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5F:22:8A:C6:8A:11:5A:8F:DD:7E:45:C9:DB:F5:7B:0C:2C:8E:3E
X509v3 Authority Key Identifier:
keyid:B7:4C:E3:F3:C5:E5:A2:F9:D8:B8:A4:C7:7A:83:61:F8:A2:16:F3:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t0zj88XlovnYuKTHeoNh-KIW860.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/iV8iisaKEVqP3X5Fydv1ewwsjj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/t0zj88XlovnYuKTHeoNh-KIW860.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.96.0/23
Signature Algorithm: sha256WithRSAEncryption
00:f3:ee:18:32:c6:d2:e6:b8:5b:2d:45:4b:22:50:64:36:2a:
ed:3a:70:2a:af:0f:43:1b:7c:7e:5a:40:c5:bc:8a:0f:02:e1:
55:75:b0:ee:a1:1e:9e:13:e8:19:f3:81:58:f9:fc:ca:0f:a1:
a6:b5:bc:14:f8:e2:8d:a1:3b:54:de:24:fd:f4:97:c9:5d:21:
55:f3:aa:4d:98:e3:19:aa:a0:1c:1c:7f:b2:c3:ea:7e:f1:34:
90:6e:50:1a:3f:21:88:53:b8:fb:8d:32:70:03:fa:6f:74:20:
a3:16:af:9e:c2:b3:46:63:3d:57:36:4b:e6:06:12:d3:1e:41:
80:25:c9:ff:1d:b9:3c:4f:42:f2:38:77:3d:9d:f4:71:30:35:
10:ad:26:44:c0:1f:04:ac:d6:f4:08:02:85:7f:9b:02:6d:6f:
bf:6b:38:49:aa:a6:dd:8a:66:32:33:84:7a:b3:1c:27:fa:91:
fa:ec:5c:39:d2:51:8c:15:fe:c9:6a:4b:f8:a6:30:c1:16:6d:
f2:3c:d5:c1:d5:d3:9b:95:af:58:5e:72:e6:f8:47:93:d4:74:
d1:b4:91:8f:ca:c2:66:37:43:68:f8:b5:87:71:fa:12:59:40:
1b:10:00:23:2c:fd:6b:c9:c7:f6:25:cb:b9:9e:d8:90:03:81:
74:7b:ce:43
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAj83KjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NzRjZTNmM2M1ZTVhMmY5ZDhiOGE0Yzc3YTgzNjFmOGEyMTZmM2FkMB4XDTIyMDEw
MTA0NTMyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODk1ZjIyOGFjNjhh
MTE1YThmZGQ3ZTQ1YzlkYmY1N2IwYzJjOGUzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBh48jX/6UHqC15zlklVFBGAy//Znazk7aPvWL+dxglzNoE
ks9GEvhSz+PrXmzFF/Bf/nITRtvXEvEUORmpvSeJbDQxoXc+6ZofDWW5yMAsk2Zj
JuauEyAnxpgTDZ0dExruySi57WfMVYzqGxaVVssNHwoEXvSmyyIaaPnmGbj/tKeU
ZcTYJHkd31M5pEHCo8XAmEYLtsizsVXuK9LNqvrVorBI2wtGaELVTwvdsEetAgFp
SdelJKFSbdWwOm7vzFmgUdJ17viORk2roRpFl6o2vuI3wKwYzqfwOzl1SLXcO0r9
y4yJRNg/uMQZ1E8QBhK32KhTT8/c+KOMb3mZAeMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSJXyKKxooRWo/dfkXJ2/V7DCyOPjAfBgNVHSMEGDAWgBS3TOPzxeWi+di4
pMd6g2H4ohbzrTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Qwemo4OFhsb3ZuWXVLVEhlb05oLUtJVzg2MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGUvYWM2ODFmLTA1ZDItNDA0NS1hZTEwLTVlYmRkOWUyODg3Yy8x
L2lWOGlpc2FLRVZxUDNYNUZ5ZHYxZXd3c2pqNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUv
YWM2ODFmLTA1ZDItNDA0NS1hZTEwLTVlYmRkOWUyODg3Yy8xL3Qwemo4OFhsb3Zu
WXVLVEhlb05oLUtJVzg2MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcJjYDANBgkqhkiG9w0BAQsFAAOC
AQEAAPPuGDLG0ua4Wy1FSyJQZDYq7TpwKq8PQxt8flpAxbyKDwLhVXWw7qEenhPo
GfOBWPn8yg+hprW8FPjijaE7VN4k/fSXyV0hVfOqTZjjGaqgHBx/ssPqfvE0kG5Q
Gj8hiFO4+40ycAP6b3QgoxavnsKzRmM9VzZL5gYS0x5BgCXJ/x25PE9C8jh3PZ30
cTA1EK0mRMAfBKzW9AgChX+bAm1vv2s4Saqm3YpmMjOEerMcJ/qR+uxcOdJRjBX+
yWpL+KYwwRZt8jzVwdXTm5WvWF5y5vhHk9R00bSRj8rCZjdDaPi1h3H6EllAGxAA
Iyz9a8nH9iXLuZ7YkAOBdHvOQw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:56 2024 by rpki-client on console-fra.rpki-client.org