Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/4DYwX_SsMW2yjp8L02DUgZHeflY.roa
File: 4DYwX_SsMW2yjp8L02DUgZHeflY.roa (raw, json)
Hash identifier: uMJHEdVApzUXvj2ZOgqG3tKYfoHZ5nKeWGWCxO28n2A=
Subject key identifier: E0:36:30:5F:F4:AC:31:6D:B2:8E:9F:0B:D3:60:D4:81:91:DE:7E:56
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 3815F7E4
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/4DYwX_SsMW2yjp8L02DUgZHeflY.roa
Signing time: Thu 21 Apr 2022 08:10:49 +0000
ROA not before: Thu 21 Apr 2022 08:10:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44834
IP address blocks: 188.130.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940963812 (0x3815f7e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Apr 21 08:10:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e036305ff4ac316db28e9f0bd360d48191de7e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:8e:78:56:4f:4d:f5:cb:86:ef:55:15:0b:3e:
d6:43:56:68:60:06:56:a6:ab:01:0b:f6:76:db:ee:
4a:f2:ba:22:29:9c:32:a9:a4:6a:58:df:9a:2a:19:
d9:4f:c0:81:8f:3b:9c:04:01:dd:32:81:b3:0c:73:
40:ac:22:2f:ee:f7:83:7a:ed:01:52:68:6f:65:5d:
cb:db:e7:90:8b:31:38:ad:ff:05:c0:ab:54:8e:72:
7e:ce:e9:2e:f3:35:89:6e:d2:b4:d4:ec:fb:56:13:
83:94:d1:9f:86:40:11:90:80:6a:ff:a4:fb:a3:38:
8e:d2:ed:47:d1:81:39:f4:fd:a5:36:a9:35:85:3e:
a9:5e:13:20:ef:d6:18:67:a5:a7:fa:8a:9f:0b:1b:
2f:9f:f4:68:8d:e6:ca:6e:01:05:f9:84:53:43:70:
8d:62:b8:7d:ec:08:18:67:81:f1:07:d1:0b:28:b3:
21:f6:dd:0f:e7:fe:f9:e1:92:c8:d1:95:af:46:71:
67:02:18:00:f6:9e:15:08:32:13:f5:b1:91:5b:a3:
f4:34:13:4d:d2:a3:9b:1c:66:a4:2e:2e:ed:33:a3:
d9:01:65:ff:9e:55:30:4e:2c:b5:c8:1e:fb:41:fb:
81:c2:ad:38:3a:fe:99:da:1d:fe:fc:ee:75:cb:19:
ed:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:36:30:5F:F4:AC:31:6D:B2:8E:9F:0B:D3:60:D4:81:91:DE:7E:56
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/4DYwX_SsMW2yjp8L02DUgZHeflY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.236.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a6:d9:54:70:98:66:1e:94:2c:0f:df:0d:83:29:88:de:a2:
30:96:c1:6d:6d:7d:1a:11:fd:0b:98:eb:0a:55:1d:40:60:a9:
4a:f0:ff:12:58:4c:49:7a:0d:bc:3c:55:6d:08:ad:dc:ab:6a:
65:38:90:20:01:12:b4:68:84:a7:4d:cf:c1:8c:8e:dd:a3:d3:
19:85:91:6a:41:56:28:55:91:8e:c6:5c:b1:cc:41:af:5c:e5:
95:48:c9:a1:85:c2:9c:52:29:dc:fa:19:1c:bd:1c:92:dd:cf:
8f:40:5f:04:ce:2c:a8:19:36:94:7f:7d:9d:7a:8a:72:ee:1d:
a8:03:74:3f:52:49:1f:91:c6:4e:d0:48:11:49:9c:d0:25:1f:
11:dd:ec:b7:13:7a:85:e8:0f:d6:98:73:60:7c:e0:6b:bd:6f:
da:4a:7d:3c:8d:37:3a:a8:4d:42:1d:b7:1a:9f:9e:88:37:bd:
ee:88:67:13:b7:26:a9:43:1f:3b:a8:54:ae:ee:a2:91:a9:3f:
20:4b:69:60:98:53:5b:58:cd:7c:7a:60:11:52:bf:07:bf:ec:
df:32:88:ed:83:5a:dc:22:3b:29:af:52:f6:f5:3e:25:f7:96:
9e:8d:00:a4:e8:8d:f9:c8:67:ee:f6:1c:a1:c6:e7:51:1b:69:
cb:c9:3f:20
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOBX35DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ODViODU3NzA2ZGFjNTRlMjBjYTBkMTFiZDY0MTZjYjYzNDIwM2I0MB4XDTIyMDQy
MTA4MTA0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTAzNjMwNWZmNGFj
MzE2ZGIyOGU5ZjBiZDM2MGQ0ODE5MWRlN2U1NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO+OeFZPTfXLhu9VFQs+1kNWaGAGVqarAQv2dtvuSvK6Iimc
MqmkaljfmioZ2U/AgY87nAQB3TKBswxzQKwiL+73g3rtAVJob2Vdy9vnkIsxOK3/
BcCrVI5yfs7pLvM1iW7StNTs+1YTg5TRn4ZAEZCAav+k+6M4jtLtR9GBOfT9pTap
NYU+qV4TIO/WGGelp/qKnwsbL5/0aI3mym4BBfmEU0NwjWK4fewIGGeB8QfRCyiz
IfbdD+f++eGSyNGVr0ZxZwIYAPaeFQgyE/WxkVuj9DQTTdKjmxxmpC4u7TOj2QFl
/55VME4stcge+0H7gcKtODr+mdod/vzudcsZ7T0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTgNjBf9KwxbbKOnwvTYNSBkd5+VjAfBgNVHSMEGDAWgBSIW4V3BtrFTiDK
DRG9ZBbLY0IDtDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lGdUZkd2JheFU0Z3lnMFJ2V1FXeTJOQ0E3US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvMzIxY2RjLTIxNDMtNGI1Yy05NzMzLTE2Njk5Yzk2ZGQ1ZS8x
LzREWXdYX1NzTVcyeWpwOEwwMkRVZ1pIZWZsWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
MzIxY2RjLTIxNDMtNGI1Yy05NzMzLTE2Njk5Yzk2ZGQ1ZS8xL2lGdUZkd2JheFU0
Z3lnMFJ2V1FXeTJOQ0E3US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALyC7DANBgkqhkiG9w0BAQsFAAOC
AQEAFqbZVHCYZh6ULA/fDYMpiN6iMJbBbW19GhH9C5jrClUdQGCpSvD/ElhMSXoN
vDxVbQit3KtqZTiQIAEStGiEp03PwYyO3aPTGYWRakFWKFWRjsZcscxBr1zllUjJ
oYXCnFIp3PoZHL0ckt3Pj0BfBM4sqBk2lH99nXqKcu4dqAN0P1JJH5HGTtBIEUmc
0CUfEd3stxN6hegP1phzYHzga71v2kp9PI03OqhNQh23Gp+eiDe97ohnE7cmqUMf
O6hUru6ikak/IEtpYJhTW1jNfHpgEVK/B7/s3zKI7YNa3CI7Ka9S9vU+JfeWno0A
pOiN+chn7vYcocbnURtpy8k/IA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org