Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/74b996-80ee-4c39-8e74-350e681b99d1/1/p8IuGY4WKqSy9K1CaDphnHef2fc.roa
File: p8IuGY4WKqSy9K1CaDphnHef2fc.roa (raw, json)
Hash identifier: rk8EReW1f67uTa0bY7Lu5LJ+I3jNRs+DIPuIijymJvI=
Subject key identifier: A7:C2:2E:19:8E:16:2A:A4:B2:F4:AD:42:68:3A:61:9C:77:9F:D9:F7
Certificate issuer: /CN=4ed037d4ee3e5d27065ad80356582a2fdc2b488d
Certificate serial: F899BC
Authority key identifier: 4E:D0:37:D4:EE:3E:5D:27:06:5A:D8:03:56:58:2A:2F:DC:2B:48:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TtA31O4-XScGWtgDVlgqL9wrSI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/74b996-80ee-4c39-8e74-350e681b99d1/1/p8IuGY4WKqSy9K1CaDphnHef2fc.roa
Signing time: Sat 01 Jan 2022 03:01:59 +0000
ROA not before: Sat 01 Jan 2022 03:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35108
IP address blocks: 194.8.32.0/21 maxlen: 24
194.8.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16292284 (0xf899bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ed037d4ee3e5d27065ad80356582a2fdc2b488d
Validity
Not Before: Jan 1 03:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7c22e198e162aa4b2f4ad42683a619c779fd9f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:5d:8f:9b:af:66:bb:54:6e:9f:52:47:82:
88:4e:2c:97:53:00:4f:ae:ec:21:f7:be:b4:72:20:
04:d4:23:b5:5c:47:c6:26:8b:9e:b6:78:35:33:fb:
c8:b8:bf:10:9d:af:6c:4d:a0:30:de:d1:8e:d4:28:
02:f1:92:53:98:87:20:8b:a5:77:cc:02:40:47:60:
cb:f3:b2:f8:26:ca:a7:3f:04:87:7c:90:b7:fd:a5:
d4:63:89:c9:ff:5e:d3:e5:93:ab:8b:f4:cb:fb:80:
f5:17:9f:90:69:4d:a2:8f:75:ad:9f:f2:41:05:4f:
50:ba:75:b4:df:99:57:8b:be:bc:62:fb:33:82:99:
f4:20:b7:b2:5d:b8:06:c6:c7:ae:d1:78:df:ac:13:
54:74:30:cf:6b:a7:af:8c:71:48:91:ac:6a:4d:55:
83:16:68:eb:ae:83:c6:6c:94:4c:6a:dd:33:14:c8:
51:6b:0e:3a:76:6d:64:c7:34:97:84:01:0d:e8:ac:
d5:13:69:4d:4a:ac:15:bc:3b:53:e9:7d:d0:ec:4d:
ed:b3:ea:de:94:84:ac:f5:1c:96:c2:54:af:e0:b2:
37:3d:02:47:46:45:8d:5c:3c:d2:e1:8f:41:e3:24:
e2:84:26:28:2f:73:1e:72:e6:26:fa:43:ed:3c:bc:
77:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C2:2E:19:8E:16:2A:A4:B2:F4:AD:42:68:3A:61:9C:77:9F:D9:F7
X509v3 Authority Key Identifier:
keyid:4E:D0:37:D4:EE:3E:5D:27:06:5A:D8:03:56:58:2A:2F:DC:2B:48:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TtA31O4-XScGWtgDVlgqL9wrSI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/74b996-80ee-4c39-8e74-350e681b99d1/1/p8IuGY4WKqSy9K1CaDphnHef2fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/74b996-80ee-4c39-8e74-350e681b99d1/1/TtA31O4-XScGWtgDVlgqL9wrSI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.32.0-194.8.43.255
Signature Algorithm: sha256WithRSAEncryption
ac:d1:b8:86:84:d9:e1:ed:c0:4f:33:c8:2d:be:1d:a2:43:58:
5f:4f:a0:c3:8d:4a:69:e3:2f:4e:9c:98:a6:1e:d0:c9:56:0d:
d7:74:69:f6:de:6e:f1:a1:0b:35:96:6f:00:ac:a3:61:1c:8e:
c6:b7:b9:61:13:ba:5b:db:3c:4b:f4:3e:4f:44:25:cd:1c:f7:
87:2f:7f:6b:6f:dc:73:ed:ed:5e:c5:66:a8:2e:65:b9:e1:f9:
e8:97:4c:2e:54:15:88:16:2a:00:02:91:e8:dd:bb:48:4d:ae:
7a:c3:6a:cc:27:99:df:cf:f0:16:3b:0b:50:47:d9:89:75:12:
7d:0e:3e:e7:ef:fb:14:4f:b3:61:37:2e:6d:22:72:e8:d5:b7:
ef:77:f6:10:d2:ff:9c:51:d2:1f:bf:55:21:fb:cf:aa:13:fa:
ca:74:30:f9:4b:2c:7c:c8:a6:dd:e6:25:43:9b:c4:94:bc:87:
c2:61:86:25:c0:2b:b2:2d:47:07:18:bc:0f:7b:79:85:91:88:
5d:2a:e4:18:c9:23:d5:85:7d:28:65:5d:c0:20:22:1e:af:b8:
d2:33:7b:32:5d:f5:e0:e1:10:a5:8a:74:cb:c6:97:36:ec:3f:
fa:35:a3:c0:e3:59:1b:f6:01:63:a5:db:65:42:1a:2c:89:4e:
6b:3d:4b:d0
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAPiZvDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZWQwMzdkNGVlM2U1ZDI3MDY1YWQ4MDM1NjU4MmEyZmRjMmI0ODhkMB4XDTIyMDEw
MTAzMDE1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTdjMjJlMTk4ZTE2
MmFhNGIyZjRhZDQyNjgzYTYxOWM3NzlmZDlmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALIsXY+br2a7VG6fUkeCiE4sl1MAT67sIfe+tHIgBNQjtVxH
xiaLnrZ4NTP7yLi/EJ2vbE2gMN7RjtQoAvGSU5iHIIuld8wCQEdgy/Oy+CbKpz8E
h3yQt/2l1GOJyf9e0+WTq4v0y/uA9RefkGlNoo91rZ/yQQVPULp1tN+ZV4u+vGL7
M4KZ9CC3sl24BsbHrtF436wTVHQwz2unr4xxSJGsak1VgxZo666DxmyUTGrdMxTI
UWsOOnZtZMc0l4QBDeis1RNpTUqsFbw7U+l90OxN7bPq3pSErPUclsJUr+CyNz0C
R0ZFjVw80uGPQeMk4oQmKC9zHnLmJvpD7Ty8d7sCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBSnwi4ZjhYqpLL0rUJoOmGcd5/Z9zAfBgNVHSMEGDAWgBRO0DfU7j5dJwZa
2ANWWCov3CtIjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1R0QTMxTzQtWFNjR1d0Z0RWbGdxTDl3clNJMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmEvNzRiOTk2LTgwZWUtNGMzOS04ZTc0LTM1MGU2ODFiOTlkMS8x
L3A4SXVHWTRXS3FTeTlLMUNhRHBobkhlZjJmYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEv
NzRiOTk2LTgwZWUtNGMzOS04ZTc0LTM1MGU2ODFiOTlkMS8xL1R0QTMxTzQtWFNj
R1d0Z0RWbGdxTDl3clNJMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQFwgggAwQCwggoMA0GCSqGSIb3
DQEBCwUAA4IBAQCs0biGhNnh7cBPM8gtvh2iQ1hfT6DDjUpp4y9OnJimHtDJVg3X
dGn23m7xoQs1lm8ArKNhHI7Gt7lhE7pb2zxL9D5PRCXNHPeHL39rb9xz7e1exWao
LmW54fnol0wuVBWIFioAApHo3btITa56w2rMJ5nfz/AWOwtQR9mJdRJ9Dj7n7/sU
T7NhNy5tInLo1bfvd/YQ0v+cUdIfv1Uh+8+qE/rKdDD5Syx8yKbd5iVDm8SUvIfC
YYYlwCuyLUcHGLwPe3mFkYhdKuQYySPVhX0oZV3AICIer7jSM3syXfXg4RClinTL
xpc27D/6NaPA41kb9gFjpdtlQhosiU5rPUvQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:10 2024 by rpki-client on console-ams.rpki-client.org