Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/AZsNUSQviyWHGdaZ3Sa3SQ5-Zqo.roa
File: AZsNUSQviyWHGdaZ3Sa3SQ5-Zqo.roa (raw, json)
Hash identifier: C9NgJlvegNkBMvbY5VRJwReVWCOK9mgOkXwzaoZwM4I=
Subject key identifier: 01:9B:0D:51:24:2F:8B:25:87:19:D6:99:DD:26:B7:49:0E:7E:66:AA
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 4481CB85
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/AZsNUSQviyWHGdaZ3Sa3SQ5-Zqo.roa
Signing time: Sat 01 Jan 2022 03:58:31 +0000
ROA not before: Sat 01 Jan 2022 03:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31660
IP address blocks: 81.255.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1149356933 (0x4481cb85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=019b0d51242f8b258719d699dd26b7490e7e66aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:92:1f:5f:f9:14:b5:1d:2a:95:59:a6:8e:b6:
29:4f:e8:ff:ee:f0:e6:d6:26:f1:6c:46:d3:4a:ae:
0c:42:52:48:7f:7b:37:5b:f6:52:6a:34:a1:40:ad:
85:3f:7a:15:01:46:24:fe:14:1b:5a:80:a2:49:e6:
54:f1:62:21:04:da:c6:e0:b5:6a:58:ff:e5:6a:40:
fe:81:6f:16:13:82:a1:8c:07:2f:1e:26:38:02:4e:
db:43:48:11:7a:16:0f:89:39:c9:4c:e4:39:3f:e1:
98:1c:f7:25:c6:a4:70:4f:cd:c8:5c:ec:6d:17:6b:
1d:3d:a6:fa:d9:f6:74:56:a8:2a:29:99:bb:cf:78:
f1:ab:34:5a:ef:60:75:63:77:0e:6c:ad:91:47:a8:
a1:86:6b:57:04:42:a3:91:ac:2a:33:10:d7:4d:59:
f0:5b:d0:30:c2:00:67:99:75:43:9d:99:88:e4:12:
d1:05:18:b1:29:e1:67:21:cf:34:72:0e:e1:89:c9:
3f:04:10:b1:6b:f0:da:b5:9e:37:cb:bc:4a:e1:1c:
8d:d8:12:0b:38:30:6a:1f:aa:e1:98:cc:31:89:c6:
f8:47:bd:a7:9b:1f:ae:52:7b:18:35:0a:08:71:3b:
58:1c:95:be:26:79:24:a0:84:31:fd:ad:b8:d6:a9:
02:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:9B:0D:51:24:2F:8B:25:87:19:D6:99:DD:26:B7:49:0E:7E:66:AA
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/AZsNUSQviyWHGdaZ3Sa3SQ5-Zqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.255.156.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:64:c1:c7:9c:33:b1:1a:8f:76:fc:fb:aa:28:32:a8:8b:ea:
7e:58:ff:da:2d:f8:e8:5b:a5:50:8c:cf:4d:5e:81:a1:69:b5:
14:84:6a:2b:27:56:2e:c3:cf:57:48:b1:c7:f6:25:cc:3c:ea:
70:2d:07:68:67:3b:97:18:c1:90:92:8d:35:29:27:23:df:2a:
e2:b0:0b:01:58:fd:8d:53:8f:2e:db:8e:38:0d:d3:95:af:06:
68:cc:66:b7:75:27:a0:bb:db:ab:c0:d9:a5:07:63:16:f3:1b:
20:34:5a:91:0e:6a:96:7c:40:4e:7d:99:d4:5e:23:74:cb:7c:
9d:d8:b3:44:91:ae:ed:7e:02:b5:78:79:28:8f:33:d9:54:61:
a5:90:7b:11:7d:3b:f4:a5:8d:b8:0d:8d:4f:17:01:53:1f:0b:
6c:e8:20:f6:15:1f:dd:f4:e1:1e:68:a8:2e:5e:47:64:8d:5c:
a6:06:44:52:a0:f6:1a:0d:f1:e5:32:0b:f1:b8:b8:40:9f:a5:
74:ab:f7:88:4a:01:1e:e6:5a:f7:bb:ba:18:6d:a4:94:ab:c2:
27:27:95:97:59:51:53:bc:e1:e9:aa:1d:b1:0c:21:ab:2e:00:
21:1b:40:ed:21:32:b5:b9:c2:f6:c9:24:00:1b:10:ba:e8:72:
19:ef:69:1e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIERIHLhTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWYwOWJhMzNiNWFlNTgxYjBkMjkzMjMyNDkzMTRmNzZhYTEwNTExMB4XDTIyMDEw
MTAzNTgzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDE5YjBkNTEyNDJm
OGIyNTg3MTlkNjk5ZGQyNmI3NDkwZTdlNjZhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMOSH1/5FLUdKpVZpo62KU/o/+7w5tYm8WxG00quDEJSSH97
N1v2Umo0oUCthT96FQFGJP4UG1qAoknmVPFiIQTaxuC1alj/5WpA/oFvFhOCoYwH
Lx4mOAJO20NIEXoWD4k5yUzkOT/hmBz3JcakcE/NyFzsbRdrHT2m+tn2dFaoKimZ
u8948as0Wu9gdWN3DmytkUeooYZrVwRCo5GsKjMQ101Z8FvQMMIAZ5l1Q52ZiOQS
0QUYsSnhZyHPNHIO4YnJPwQQsWvw2rWeN8u8SuEcjdgSCzgwah+q4ZjMMYnG+Ee9
p5sfrlJ7GDUKCHE7WByVviZ5JKCEMf2tuNapAu0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQBmw1RJC+LJYcZ1pndJrdJDn5mqjAfBgNVHSMEGDAWgBQ68JujO1rlgbDS
kyMkkxT3aqEFETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L092Q2JvenRhNVlHdzBwTWpKSk1VOTJxaEJSRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvMzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8x
L0Fac05VU1F2aXlXSEdkYVozU2EzU1E1LVpxby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
MzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8xL092Q2JvenRhNVlH
dzBwTWpKSk1VOTJxaEJSRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFH/nDANBgkqhkiG9w0BAQsFAAOC
AQEAS2TBx5wzsRqPdvz7qigyqIvqflj/2i346FulUIzPTV6BoWm1FIRqKydWLsPP
V0ixx/YlzDzqcC0HaGc7lxjBkJKNNSknI98q4rALAVj9jVOPLtuOOA3Tla8GaMxm
t3UnoLvbq8DZpQdjFvMbIDRakQ5qlnxATn2Z1F4jdMt8ndizRJGu7X4CtXh5KI8z
2VRhpZB7EX079KWNuA2NTxcBUx8LbOgg9hUf3fThHmioLl5HZI1cpgZEUqD2Gg3x
5TIL8bi4QJ+ldKv3iEoBHuZa97u6GG2klKvCJyeVl1lRU7zh6aodsQwhqy4AIRtA
7SEytbnC9skkABsQuuhyGe9pHg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org