Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/qQ91igvN0I0Vne1Q0Ng_sEIMbhk.roa
File: qQ91igvN0I0Vne1Q0Ng_sEIMbhk.roa (raw, json)
Hash identifier: I+544qcUa3Y4LXAgkXpjsMrmIVVHUxciQ3KPC2b6+VA=
Subject key identifier: A9:0F:75:8A:0B:CD:D0:8D:15:9D:ED:50:D0:D8:3F:B0:42:0C:6E:19
Certificate issuer: /CN=a1c130072d2ce9cf562b83198edaadafa48f6db4
Certificate serial: 0173E242
Authority key identifier: A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/qQ91igvN0I0Vne1Q0Ng_sEIMbhk.roa
Signing time: Wed 20 Apr 2022 13:49:41 +0000
ROA not before: Wed 20 Apr 2022 13:49:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210169
IP address blocks: 195.95.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24371778 (0x173e242)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1c130072d2ce9cf562b83198edaadafa48f6db4
Validity
Not Before: Apr 20 13:49:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a90f758a0bcdd08d159ded50d0d83fb0420c6e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:93:3b:42:d6:59:61:00:fa:1d:a4:b1:75:
b6:ee:65:a1:ca:95:dd:8f:e1:57:93:0f:11:59:ac:
cf:7f:0a:c2:db:fc:dd:27:50:41:7a:d1:24:d2:38:
da:88:df:51:67:5f:a8:9f:e8:21:6c:91:4c:7d:ca:
ce:ea:69:80:24:70:7a:58:12:e2:c9:0e:30:57:a0:
13:4c:4c:f3:a3:32:a1:4f:d2:ef:34:33:d4:47:c3:
8e:49:d3:6d:51:36:b5:2a:7c:f5:24:81:73:63:4a:
b4:c5:be:f0:a5:fd:ee:dd:25:76:88:71:e2:98:cf:
ed:43:19:82:f2:62:27:c4:3e:e3:48:5a:2e:02:92:
73:86:53:16:33:22:64:7a:db:98:76:4d:3a:fd:56:
53:11:8a:9d:ec:fa:c6:71:02:52:de:68:23:bb:a6:
a5:da:c5:ee:ce:ee:a6:97:56:b7:f3:0e:1b:df:be:
dd:d8:e1:b7:12:8f:1e:4d:14:d8:cc:ad:ef:fc:c2:
c5:89:ed:07:ce:83:22:4c:a3:7a:6d:eb:3e:58:59:
c1:7f:83:a9:06:de:b2:d6:66:d7:61:a5:c5:4c:4d:
16:cc:35:c1:2b:bf:d0:ca:2e:ca:30:60:ec:49:9b:
53:ad:ac:9c:f6:35:5b:03:e3:6f:2f:76:74:99:a2:
49:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0F:75:8A:0B:CD:D0:8D:15:9D:ED:50:D0:D8:3F:B0:42:0C:6E:19
X509v3 Authority Key Identifier:
keyid:A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/qQ91igvN0I0Vne1Q0Ng_sEIMbhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.151.0/24
Signature Algorithm: sha256WithRSAEncryption
13:82:4c:ea:4f:76:10:02:bb:78:a4:4e:93:29:4f:59:30:63:
2a:a0:47:40:82:11:2f:f9:e3:b5:9f:4c:8a:da:f6:db:cf:6f:
40:4a:bf:02:da:61:48:86:7f:e0:6d:16:89:71:2b:12:cd:5b:
e8:69:ee:b1:d9:8d:21:cf:36:3e:26:68:8d:8d:35:86:38:30:
79:be:dd:57:40:9e:57:dd:2c:12:0b:89:d3:6e:50:f1:8c:9d:
07:f3:48:4e:a1:31:58:3f:31:5f:00:81:cd:f1:4c:1b:ea:db:
56:50:35:b4:ae:56:fa:32:bc:1b:2e:9b:1f:a9:80:80:07:d3:
87:8a:6e:d8:c0:08:08:22:e4:7d:dc:8b:fe:0d:d3:99:2a:2e:
e8:cc:a0:aa:98:95:09:38:a9:0c:0b:c4:a2:d9:67:7a:81:79:
63:57:c0:01:77:70:fa:c0:11:79:03:85:c7:d3:56:5e:2f:f2:
48:48:3d:64:c1:11:7a:f4:19:77:3c:93:ec:5e:be:fe:f5:35:
27:12:57:f7:57:60:60:8a:1a:48:78:fc:60:ef:c1:ea:37:9a:
51:41:6b:cf:51:8e:8e:48:ee:33:41:3a:3f:a2:c0:df:eb:43:
2e:b3:da:3f:1f:ba:58:eb:68:04:b1:c5:71:14:35:b4:22:c5:
f6:42:b6:43
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAXPiQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MWMxMzAwNzJkMmNlOWNmNTYyYjgzMTk4ZWRhYWRhZmE0OGY2ZGI0MB4XDTIyMDQy
MDEzNDk0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTkwZjc1OGEwYmNk
ZDA4ZDE1OWRlZDUwZDBkODNmYjA0MjBjNmUxOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPLkztC1llhAPodpLF1tu5locqV3Y/hV5MPEVmsz38Kwtv8
3SdQQXrRJNI42ojfUWdfqJ/oIWyRTH3KzuppgCRwelgS4skOMFegE0xM86MyoU/S
7zQz1EfDjknTbVE2tSp89SSBc2NKtMW+8KX97t0ldohx4pjP7UMZgvJiJ8Q+40ha
LgKSc4ZTFjMiZHrbmHZNOv1WUxGKnez6xnECUt5oI7umpdrF7s7uppdWt/MOG9++
3djhtxKPHk0U2Myt7/zCxYntB86DIkyjem3rPlhZwX+DqQbestZm12GlxUxNFsw1
wSu/0MouyjBg7EmbU62snPY1WwPjby92dJmiSRMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSpD3WKC83QjRWd7VDQ2D+wQgxuGTAfBgNVHSMEGDAWgBShwTAHLSzpz1Yr
gxmO2q2vpI9ttDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29jRXdCeTBzNmM5V0s0TVpqdHF0cjZTUGJiUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvZjViYjUxLTcwOGYtNGRkMi04ODBmLTg3ZDkwNTYxYWE0OC8x
L3FROTFpZ3ZOMEkwVm5lMVEwTmdfc0VJTWJoay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
ZjViYjUxLTcwOGYtNGRkMi04ODBmLTg3ZDkwNTYxYWE0OC8xL29jRXdCeTBzNmM5
V0s0TVpqdHF0cjZTUGJiUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNflzANBgkqhkiG9w0BAQsFAAOC
AQEAE4JM6k92EAK7eKROkylPWTBjKqBHQIIRL/njtZ9Mitr2289vQEq/AtphSIZ/
4G0WiXErEs1b6GnusdmNIc82PiZojY01hjgweb7dV0CeV90sEguJ025Q8YydB/NI
TqExWD8xXwCBzfFMG+rbVlA1tK5W+jK8Gy6bH6mAgAfTh4pu2MAICCLkfdyL/g3T
mSou6MygqpiVCTipDAvEotlneoF5Y1fAAXdw+sAReQOFx9NWXi/ySEg9ZMERevQZ
dzyT7F6+/vU1JxJX91dgYIoaSHj8YO/B6jeaUUFrz1GOjkjuM0E6P6LA3+tDLrPa
Px+6WOtoBLHFcRQ1tCLF9kK2Qw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:30 2023 by rpki-client on console-fra.rpki-client.org