Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/4f1NMRHXGNJ5N6QmppVGhxTRPvk.roa
File: 4f1NMRHXGNJ5N6QmppVGhxTRPvk.roa (raw, json)
Hash identifier: CpaElQZ/bD65tUJLTwcnKYHfoETPuOJDQFzJCz6+ol4=
Subject key identifier: E1:FD:4D:31:11:D7:18:D2:79:37:A4:26:A6:95:46:87:14:D1:3E:F9
Certificate issuer: /CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Certificate serial: 0B909FDC
Authority key identifier: E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/4f1NMRHXGNJ5N6QmppVGhxTRPvk.roa
Signing time: Sat 01 Jan 2022 08:56:20 +0000
ROA not before: Sat 01 Jan 2022 08:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43833
IP address blocks: 185.250.196.0/23 maxlen: 23
89.29.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194027484 (0xb909fdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Validity
Not Before: Jan 1 08:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1fd4d3111d718d27937a426a695468714d13ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:28:d6:76:d8:83:d3:5f:58:ac:8e:5d:4e:e5:
e6:1e:34:b2:b5:0a:65:15:29:19:24:6d:20:a5:9d:
62:00:bf:c1:f7:5e:3c:28:fe:75:f5:11:64:fb:23:
dc:20:f7:d5:ef:06:e1:11:c4:c9:9a:32:fd:21:1b:
0b:7f:15:8d:d0:ce:7c:4f:40:82:88:65:2d:d7:84:
7f:79:40:d0:a0:4c:3d:59:38:6a:3a:a2:16:f8:b7:
75:03:0b:21:25:5c:52:9f:ce:0f:e8:bc:a9:7f:e8:
c1:26:ad:6a:07:6d:68:bb:22:8a:94:4c:34:9c:f4:
10:85:31:68:77:0b:4f:3d:97:0b:4e:68:e0:c0:b1:
1c:cf:1d:7b:2c:b1:10:fc:63:91:7e:d7:02:8b:3d:
78:88:4b:5b:ef:fe:8e:3a:e1:b5:6e:1b:ea:dc:4e:
c7:97:5b:ce:fb:d5:89:d3:47:5a:31:91:61:ca:de:
de:e0:69:53:95:2a:54:2f:fd:1a:f5:95:5e:b9:d0:
f7:85:b2:0d:38:ff:1b:9c:78:9f:3c:66:8c:57:89:
b0:60:19:bf:14:3c:ff:cc:a7:5c:2b:28:0f:d7:1f:
9b:08:37:ed:c8:15:a6:3b:67:cc:a9:a8:40:d6:13:
37:68:13:cb:c0:a4:d5:ca:e8:34:58:ee:2e:56:f2:
7a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FD:4D:31:11:D7:18:D2:79:37:A4:26:A6:95:46:87:14:D1:3E:F9
X509v3 Authority Key Identifier:
keyid:E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/4f1NMRHXGNJ5N6QmppVGhxTRPvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.29.203.0/24
185.250.196.0/23
Signature Algorithm: sha256WithRSAEncryption
72:8e:2e:fb:55:9d:2a:47:ce:01:3e:3e:67:11:af:3f:82:73:
2f:cd:03:46:96:2f:b2:eb:dd:83:d2:e4:34:3e:ce:97:cb:83:
69:ae:2d:54:b0:de:c6:3f:12:89:96:cf:96:dd:78:ae:4f:c3:
90:a7:4d:71:e9:f0:01:67:da:92:69:7d:32:2b:04:a2:fd:af:
b9:9d:a4:5a:91:21:7b:62:b6:84:9b:33:c1:f3:0c:66:26:45:
dd:fc:93:aa:2f:99:77:f1:53:17:c2:9b:85:64:65:3c:d4:6e:
fe:23:81:2f:91:9a:4a:50:f5:88:f5:12:65:8c:77:6d:d6:d0:
f4:b8:c0:f1:22:95:dd:0c:3b:ed:3d:64:4e:fa:53:59:1c:05:
c0:81:7d:fe:a9:37:34:af:38:52:fa:bb:a1:ce:2f:1a:dc:8d:
3d:f5:d1:69:38:7d:14:f8:77:8a:23:d9:28:0d:57:66:61:56:
96:2b:b2:6c:56:87:34:2a:a1:f6:ac:c8:9d:70:f9:32:40:71:
53:a3:63:f7:fe:5d:cf:72:74:ca:f3:66:db:46:4b:59:e3:db:
77:21:e5:f7:52:8c:89:28:b5:7b:2c:1a:77:94:36:68:84:2c:
ff:fd:6b:46:e5:73:af:a4:e9:38:8c:59:06:63:66:44:53:0a:
8a:53:81:8f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEC5Cf3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OTJjNDE1ZDE3NzVhZTk5OTNlOTAwYTc1MzZiNDZhYjE0NGE5YWEyMB4XDTIyMDEw
MTA4NTYyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTFmZDRkMzExMWQ3
MThkMjc5MzdhNDI2YTY5NTQ2ODcxNGQxM2VmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANYo1nbYg9NfWKyOXU7l5h40srUKZRUpGSRtIKWdYgC/wfde
PCj+dfURZPsj3CD31e8G4RHEyZoy/SEbC38VjdDOfE9AgohlLdeEf3lA0KBMPVk4
ajqiFvi3dQMLISVcUp/OD+i8qX/owSatagdtaLsiipRMNJz0EIUxaHcLTz2XC05o
4MCxHM8deyyxEPxjkX7XAos9eIhLW+/+jjrhtW4b6txOx5dbzvvVidNHWjGRYcre
3uBpU5UqVC/9GvWVXrnQ94WyDTj/G5x4nzxmjFeJsGAZvxQ8/8ynXCsoD9cfmwg3
7cgVpjtnzKmoQNYTN2gTy8Ck1croNFjuLlbyevMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTh/U0xEdcY0nk3pCamlUaHFNE++TAfBgNVHSMEGDAWgBTpLEFdF3WumZPp
AKdTa0arFEqaojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZTeEJYUmQxcnBtVDZRQ25VMnRHcXhSS21xSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvMDg5OGJlLWIwMzctNDI5Zi1iNTA0LTFkOTM0YTA0ODQ3NC8x
LzRmMU5NUkhYR05KNU42UW1wcFZHaHhUUlB2ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
MDg5OGJlLWIwMzctNDI5Zi1iNTA0LTFkOTM0YTA0ODQ3NC8xLzZTeEJYUmQxcnBt
VDZRQ25VMnRHcXhSS21xSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFkdywMEAbn6xDANBgkqhkiG9w0B
AQsFAAOCAQEAco4u+1WdKkfOAT4+ZxGvP4JzL80DRpYvsuvdg9LkND7Ol8uDaa4t
VLDexj8SiZbPlt14rk/DkKdNcenwAWfakml9MisEov2vuZ2kWpEhe2K2hJszwfMM
ZiZF3fyTqi+Zd/FTF8KbhWRlPNRu/iOBL5GaSlD1iPUSZYx3bdbQ9LjA8SKV3Qw7
7T1kTvpTWRwFwIF9/qk3NK84Uvq7oc4vGtyNPfXRaTh9FPh3iiPZKA1XZmFWliuy
bFaHNCqh9qzInXD5MkBxU6Nj9/5dz3J0yvNm20ZLWePbdyHl91KMiSi1eywad5Q2
aIQs//1rRuVzr6TpOIxZBmNmRFMKilOBjw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:53 2023 by rpki-client on console-ams.rpki-client.org