Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/9wIXMMCCO9PS2zT2w82SL1DNz2E.roa
File: 9wIXMMCCO9PS2zT2w82SL1DNz2E.roa (raw, json)
Hash identifier: Xsouhq1o8MlpAPm54XCeWcfqot4E2GUajPm8Zm7Y+cs=
Subject key identifier: F7:02:17:30:C0:82:3B:D3:D2:DB:34:F6:C3:CD:92:2F:50:CD:CF:61
Certificate issuer: /CN=9984b9eb122237111c1f8ca57707ec7307291ee8
Certificate serial: 37EE1A08
Authority key identifier: 99:84:B9:EB:12:22:37:11:1C:1F:8C:A5:77:07:EC:73:07:29:1E:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mYS56xIiNxEcH4yldwfscwcpHug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/9wIXMMCCO9PS2zT2w82SL1DNz2E.roa
Signing time: Sat 01 Jan 2022 08:59:47 +0000
ROA not before: Sat 01 Jan 2022 08:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20676
IP address blocks: 188.239.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938351112 (0x37ee1a08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9984b9eb122237111c1f8ca57707ec7307291ee8
Validity
Not Before: Jan 1 08:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7021730c0823bd3d2db34f6c3cd922f50cdcf61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:67:8f:de:b8:6a:94:75:df:01:df:bc:b6:9a:
75:fb:0c:9d:6f:57:0a:e0:79:48:ad:54:f9:b1:63:
3a:08:2f:7f:63:4e:fa:47:87:0f:1d:5b:3b:6f:99:
5d:a7:7b:44:42:1b:25:9d:c1:40:ce:c7:fa:86:b9:
de:5e:aa:cd:8e:84:9e:76:89:4f:78:32:04:83:f7:
d6:23:c1:48:9a:2c:1c:ef:13:0a:85:8f:15:bb:84:
26:81:1e:8b:74:b1:a4:f7:c8:7e:bd:70:79:3f:d4:
03:e4:85:ec:6a:09:9d:00:f0:2b:e2:34:9f:be:6a:
da:ff:07:53:8e:20:de:fa:09:f7:14:16:d4:f3:5d:
e3:70:07:d5:97:85:42:02:ab:63:c6:19:3f:7d:0a:
30:d0:2c:a7:eb:e4:63:7e:2e:8e:2a:2a:84:c5:18:
3e:0b:23:ed:bd:59:08:8a:68:6d:c6:2b:10:3f:28:
fa:40:ce:cd:a0:4a:48:f3:f4:3b:0c:6c:41:a0:af:
61:55:eb:41:99:50:46:d6:fa:d9:6e:d4:8b:cd:f6:
1a:6e:d4:29:c3:84:cf:0a:d4:97:f7:0a:2c:e1:8e:
36:85:2e:6d:e2:81:ee:3c:35:9b:e3:76:fd:a0:60:
5b:f4:76:df:ef:b5:54:a8:74:90:fb:33:b5:bb:bc:
2f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:02:17:30:C0:82:3B:D3:D2:DB:34:F6:C3:CD:92:2F:50:CD:CF:61
X509v3 Authority Key Identifier:
keyid:99:84:B9:EB:12:22:37:11:1C:1F:8C:A5:77:07:EC:73:07:29:1E:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mYS56xIiNxEcH4yldwfscwcpHug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/9wIXMMCCO9PS2zT2w82SL1DNz2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/mYS56xIiNxEcH4yldwfscwcpHug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.239.190.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:90:09:8b:61:98:cf:5d:ba:d6:c0:68:d8:fc:be:c3:08:b8:
9b:99:4b:3a:a2:ab:b6:74:9a:ce:68:dc:31:67:c4:51:16:fd:
16:2d:45:73:d8:3c:43:2e:24:f7:00:81:59:5a:c9:e6:47:e4:
11:01:28:e9:41:5d:3a:0c:d6:7f:84:03:d2:25:d7:3e:4b:34:
fd:d2:bb:d3:d5:15:55:71:21:a1:7e:60:09:d5:d5:b2:66:58:
9d:14:90:62:a5:5a:1f:0d:88:0c:77:db:c0:98:fc:8d:e0:73:
f3:9e:0d:1e:fe:f3:12:8d:fb:a5:78:ca:f4:5f:32:a3:71:73:
b9:5b:27:24:cd:eb:14:27:57:66:7d:ae:9b:20:4f:27:7f:9a:
f1:cb:b1:2a:85:22:cd:7a:98:6c:5e:40:84:8a:e0:03:5f:da:
cb:06:51:ab:75:43:67:bb:31:3d:57:10:9a:7b:aa:11:d5:c8:
53:17:06:34:ca:13:82:f5:1d:8f:08:3b:88:5a:c3:c5:34:bf:
c0:8f:a7:0f:9d:d0:d7:17:8a:65:ab:84:a1:30:58:f6:4f:cd:
d3:b5:73:c1:e3:b1:67:9b:c4:00:3c:13:d0:3c:c9:39:60:17:
d8:e8:c9:a6:e1:97:8b:84:1f:e2:b0:cb:c8:a6:61:3d:cd:f0:
69:a8:e2:cf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN+4aCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OTg0YjllYjEyMjIzNzExMWMxZjhjYTU3NzA3ZWM3MzA3MjkxZWU4MB4XDTIyMDEw
MTA4NTk0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjcwMjE3MzBjMDgy
M2JkM2QyZGIzNGY2YzNjZDkyMmY1MGNkY2Y2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJpnj964apR13wHfvLaadfsMnW9XCuB5SK1U+bFjOggvf2NO
+keHDx1bO2+ZXad7REIbJZ3BQM7H+oa53l6qzY6EnnaJT3gyBIP31iPBSJosHO8T
CoWPFbuEJoEei3SxpPfIfr1weT/UA+SF7GoJnQDwK+I0n75q2v8HU44g3voJ9xQW
1PNd43AH1ZeFQgKrY8YZP30KMNAsp+vkY34ujioqhMUYPgsj7b1ZCIpobcYrED8o
+kDOzaBKSPP0OwxsQaCvYVXrQZlQRtb62W7Ui832Gm7UKcOEzwrUl/cKLOGONoUu
beKB7jw1m+N2/aBgW/R23++1VKh0kPsztbu8L+UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT3AhcwwII709LbNPbDzZIvUM3PYTAfBgNVHSMEGDAWgBSZhLnrEiI3ERwf
jKV3B+xzByke6DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21ZUzU2eElpTnhFY0g0eWxkd2ZzY3djcEh1Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvYjljMWQ3LTJhZWQtNDY5Ni04MGE3LWQ1YWJmNTAzMWQyMS8x
Lzl3SVhNTUNDTzlQUzJ6VDJ3ODJTTDFETnoyRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
YjljMWQ3LTJhZWQtNDY5Ni04MGE3LWQ1YWJmNTAzMWQyMS8xL21ZUzU2eElpTnhF
Y0g0eWxkd2ZzY3djcEh1Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALzvvjANBgkqhkiG9w0BAQsFAAOC
AQEAXZAJi2GYz1261sBo2Py+wwi4m5lLOqKrtnSazmjcMWfEURb9Fi1Fc9g8Qy4k
9wCBWVrJ5kfkEQEo6UFdOgzWf4QD0iXXPks0/dK709UVVXEhoX5gCdXVsmZYnRSQ
YqVaHw2IDHfbwJj8jeBz854NHv7zEo37pXjK9F8yo3FzuVsnJM3rFCdXZn2umyBP
J3+a8cuxKoUizXqYbF5AhIrgA1/aywZRq3VDZ7sxPVcQmnuqEdXIUxcGNMoTgvUd
jwg7iFrDxTS/wI+nD53Q1xeKZauEoTBY9k/N07VzweOxZ5vEADwT0DzJOWAX2OjJ
puGXi4Qf4rDLyKZhPc3waajizw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:05 2023 by rpki-client on console-fra.rpki-client.org