Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/718007-9703-4fab-94d7-d53838bcb505/1/Rza3-yr73euDgAtWt2EHxIhyeSQ.roa
File: Rza3-yr73euDgAtWt2EHxIhyeSQ.roa (raw, json)
Hash identifier: k4/EyXhyjbz0iKeheEF/u2/w/sNJDbEf/gyMYd7AZtg=
Subject key identifier: 47:36:B7:FB:2A:FB:DD:EB:83:80:0B:56:B7:61:07:C4:88:72:79:24
Certificate issuer: /CN=ee1a6207fe9db0d0f7e9d161aba4e5dde2549a2e
Certificate serial: F8D730
Authority key identifier: EE:1A:62:07:FE:9D:B0:D0:F7:E9:D1:61:AB:A4:E5:DD:E2:54:9A:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hpiB_6dsND36dFhq6Tl3eJUmi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/718007-9703-4fab-94d7-d53838bcb505/1/Rza3-yr73euDgAtWt2EHxIhyeSQ.roa
Signing time: Sat 01 Jan 2022 06:02:29 +0000
ROA not before: Sat 01 Jan 2022 06:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 188.95.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16308016 (0xf8d730)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1a6207fe9db0d0f7e9d161aba4e5dde2549a2e
Validity
Not Before: Jan 1 06:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4736b7fb2afbddeb83800b56b76107c488727924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ae:4e:e3:b1:b2:7c:d6:50:b8:36:d6:7d:20:
04:83:17:59:34:28:dc:2e:dc:dc:8b:12:e7:82:01:
76:f5:df:b1:a8:8b:24:f3:51:d6:62:1f:00:f8:aa:
a6:78:ec:46:c0:c7:57:3c:62:41:df:04:b0:cf:9f:
e8:9f:9f:9a:5e:bf:8d:3e:b0:3f:ac:89:5d:61:e1:
81:e8:33:bf:b4:32:db:34:45:e4:a7:d2:ae:13:24:
2d:63:7a:5c:18:57:ee:5e:f8:be:eb:51:92:05:56:
cc:66:0c:77:4c:d6:ec:aa:15:71:48:40:e0:1f:5f:
3a:82:2f:a6:92:92:d6:6e:0d:96:e6:be:2e:1e:28:
4b:7b:b1:da:96:86:4d:80:93:72:45:a2:c3:ba:34:
e0:fa:f3:05:e7:73:67:80:df:ce:40:32:8e:e5:e7:
30:0e:59:98:b7:65:65:a8:cf:20:bc:bb:51:d6:ad:
2b:4c:5f:5d:b3:ef:f9:a6:d3:23:bc:8a:53:73:b0:
96:32:5f:03:89:32:46:7b:b9:d9:15:14:b6:fb:a0:
9b:40:34:3d:3e:72:26:72:44:da:a1:3b:a1:b9:68:
74:28:14:4d:42:4c:09:a4:d6:e9:76:44:82:cb:ff:
c6:d2:aa:4c:26:69:97:db:95:58:78:76:c6:fe:82:
c6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:36:B7:FB:2A:FB:DD:EB:83:80:0B:56:B7:61:07:C4:88:72:79:24
X509v3 Authority Key Identifier:
keyid:EE:1A:62:07:FE:9D:B0:D0:F7:E9:D1:61:AB:A4:E5:DD:E2:54:9A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hpiB_6dsND36dFhq6Tl3eJUmi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/718007-9703-4fab-94d7-d53838bcb505/1/Rza3-yr73euDgAtWt2EHxIhyeSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/718007-9703-4fab-94d7-d53838bcb505/1/7hpiB_6dsND36dFhq6Tl3eJUmi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.69.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:73:6d:d8:b0:4d:1a:8c:cd:77:9a:f9:de:50:ad:ba:ca:f7:
43:76:8b:9e:6c:de:f0:9a:a3:36:b9:ac:01:0a:b1:49:25:ce:
9a:b6:2b:51:28:60:d1:8a:6c:f5:c3:ac:67:45:44:08:49:46:
f9:b1:90:65:53:31:d8:90:3e:8c:92:67:a9:c4:4a:89:23:51:
7e:ff:99:e3:2b:b0:1f:4c:b1:ac:45:66:ce:3e:e0:a1:36:96:
a2:30:d7:ac:75:cb:69:34:3f:dd:5f:fd:ba:2b:24:52:b1:84:
c5:16:2f:1f:ab:12:0b:ba:fc:5a:ae:4c:08:d3:a0:1e:82:69:
16:7e:77:da:82:18:fa:af:df:ca:c9:6e:9a:b6:da:66:29:83:
f2:02:fa:84:61:08:2a:fb:b1:55:8e:71:26:18:a1:68:12:88:
9d:aa:ba:c4:59:06:5f:44:e3:d4:31:ab:df:51:75:18:67:70:
8f:2f:3b:5a:4a:82:58:32:cd:58:8c:56:57:dc:5d:42:fe:62:
9f:6d:2a:24:82:b5:80:17:ce:fd:6b:0e:12:23:3a:1d:c1:0b:
27:94:cf:53:b5:7d:fa:78:f0:74:2f:af:40:7c:a3:c6:91:fa:
0a:df:e2:ea:8c:1e:92:9d:43:d6:8a:66:4b:e9:a5:53:33:69:
f4:84:99:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAPjXMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZTFhNjIwN2ZlOWRiMGQwZjdlOWQxNjFhYmE0ZTVkZGUyNTQ5YTJlMB4XDTIyMDEw
MTA2MDIyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDczNmI3ZmIyYWZi
ZGRlYjgzODAwYjU2Yjc2MTA3YzQ4ODcyNzkyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALGuTuOxsnzWULg21n0gBIMXWTQo3C7c3IsS54IBdvXfsaiL
JPNR1mIfAPiqpnjsRsDHVzxiQd8EsM+f6J+fml6/jT6wP6yJXWHhgegzv7Qy2zRF
5KfSrhMkLWN6XBhX7l74vutRkgVWzGYMd0zW7KoVcUhA4B9fOoIvppKS1m4Nlua+
Lh4oS3ux2paGTYCTckWiw7o04PrzBedzZ4DfzkAyjuXnMA5ZmLdlZajPILy7Udat
K0xfXbPv+abTI7yKU3OwljJfA4kyRnu52RUUtvugm0A0PT5yJnJE2qE7oblodCgU
TUJMCaTW6XZEgsv/xtKqTCZpl9uVWHh2xv6CxncCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHNrf7Kvvd64OAC1a3YQfEiHJ5JDAfBgNVHSMEGDAWgBTuGmIH/p2w0Pfp
0WGrpOXd4lSaLjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdocGlCXzZkc05EMzZkRmhxNlRsM2VKVW1pNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvNzE4MDA3LTk3MDMtNGZhYi05NGQ3LWQ1MzgzOGJjYjUwNS8x
L1J6YTMteXI3M2V1RGdBdFd0MkVIeEloeWVTUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
NzE4MDA3LTk3MDMtNGZhYi05NGQ3LWQ1MzgzOGJjYjUwNS8xLzdocGlCXzZkc05E
MzZkRmhxNlRsM2VKVW1pNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALxfRTANBgkqhkiG9w0BAQsFAAOC
AQEAnnNt2LBNGozNd5r53lCtusr3Q3aLnmze8JqjNrmsAQqxSSXOmrYrUShg0Yps
9cOsZ0VECElG+bGQZVMx2JA+jJJnqcRKiSNRfv+Z4yuwH0yxrEVmzj7goTaWojDX
rHXLaTQ/3V/9uiskUrGExRYvH6sSC7r8Wq5MCNOgHoJpFn532oIY+q/fyslumrba
ZimD8gL6hGEIKvuxVY5xJhihaBKInaq6xFkGX0Tj1DGr31F1GGdwjy87WkqCWDLN
WIxWV9xdQv5in20qJIK1gBfO/WsOEiM6HcELJ5TPU7V9+njwdC+vQHyjxpH6Ct/i
6owekp1D1opmS+mlUzNp9ISZ2g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:03 2023 by rpki-client on console-ams.rpki-client.org