Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/CFXmPmKKvHjORR1wFv4UziOeK_Q.roa
File: CFXmPmKKvHjORR1wFv4UziOeK_Q.roa (raw, json)
Hash identifier: im0njKJU1+rWo+Rv27Lq1ea8JT7UEO0KaDulQrf4cr0=
Subject key identifier: 08:55:E6:3E:62:8A:BC:78:CE:45:1D:70:16:FE:14:CE:23:9E:2B:F4
Certificate issuer: /CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Certificate serial: 3767D514
Authority key identifier: 11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/CFXmPmKKvHjORR1wFv4UziOeK_Q.roa
Signing time: Sat 01 Jan 2022 13:00:14 +0000
ROA not before: Sat 01 Jan 2022 13:00:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197068
IP address blocks: 78.155.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 929551636 (0x3767d514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Validity
Not Before: Jan 1 13:00:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0855e63e628abc78ce451d7016fe14ce239e2bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:28:73:17:59:bb:46:3a:05:12:80:5e:e3:6d:
8c:2f:1f:ec:5c:aa:22:7e:45:0b:98:72:98:eb:76:
aa:7e:87:9b:f4:f6:a4:ca:78:0b:cd:12:0f:22:be:
0b:44:ef:d7:56:72:60:ba:4f:38:59:6b:bd:8c:55:
6c:f0:48:8b:02:d9:7f:2b:f8:7d:01:3b:32:c8:9e:
0f:16:1e:3f:30:e4:68:41:82:b0:3d:83:e9:96:70:
77:fd:e6:70:f2:06:ce:9c:eb:56:26:35:12:a8:63:
ae:25:54:b8:16:38:69:63:c4:1d:f7:94:69:55:41:
8f:86:a1:86:26:1f:3f:3c:9e:3d:ec:69:da:2f:73:
1b:38:54:c0:17:02:9b:93:33:f7:9d:0e:56:57:4e:
2d:c7:72:de:06:15:f5:b9:95:16:d7:d6:15:b8:60:
38:5a:50:b8:91:ac:18:25:71:16:05:60:ff:90:e5:
27:a0:ed:1e:fc:ef:64:0e:0e:93:a6:f8:ee:11:a1:
ea:9a:c8:4b:62:88:30:c5:94:7b:0d:4d:c6:d6:91:
53:62:0e:44:16:0d:7a:5f:9a:fa:48:0f:0e:5e:0a:
a4:72:2a:06:cc:22:95:d5:7b:34:69:e8:53:35:48:
9c:7d:df:25:d6:53:c2:3b:6d:6c:f1:a0:80:4e:29:
2b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:55:E6:3E:62:8A:BC:78:CE:45:1D:70:16:FE:14:CE:23:9E:2B:F4
X509v3 Authority Key Identifier:
keyid:11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/CFXmPmKKvHjORR1wFv4UziOeK_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.155.198.0/24
Signature Algorithm: sha256WithRSAEncryption
48:e4:a2:e3:7b:43:c1:d6:01:cb:ef:6f:c4:2a:c2:b5:21:3f:
29:eb:c4:80:e0:17:c4:19:e5:4d:a4:b9:17:58:01:c6:ae:15:
9a:cb:31:7d:70:28:9b:05:44:e8:0d:b6:f3:68:60:0b:0c:c3:
7c:c9:7a:7b:a8:9b:2d:6b:0d:02:5d:8d:3f:75:3a:48:8c:7b:
cd:fa:79:31:66:5c:3b:c7:a0:3f:74:a8:20:c6:c5:97:d0:12:
18:1e:b7:97:c0:7f:e4:01:51:32:ce:83:63:58:3e:21:62:a8:
07:8f:ca:3b:ff:41:5a:df:cb:13:b7:8b:ff:4b:60:03:89:e4:
01:41:7f:ce:da:cd:11:27:bc:f5:43:81:0d:8c:73:95:25:8d:
d8:fe:ab:d3:b0:ea:bd:3e:5c:a1:9f:5e:00:e0:e0:f1:b2:de:
56:73:7b:90:4b:21:d4:32:17:28:54:44:4f:0b:29:06:1c:1d:
85:d0:16:ac:8e:9e:d5:0e:0d:14:1c:d2:9f:9c:1e:ec:f6:c2:
08:f8:3b:29:b1:45:b5:1f:eb:50:91:c7:0b:19:95:cf:bb:d6:
3e:00:b1:cd:8f:0b:7d:13:df:48:86:03:6a:e1:55:9a:db:86:
a7:43:fd:c5:28:52:a4:1a:7f:00:3b:96:14:9e:8d:01:1c:32:
5f:9e:7e:6c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN2fVFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MWI2OWI1OWQxOWYyOTg3ZTQ5ZjE4NTJkNjBiYjE3NzdmODBhMzAxMB4XDTIyMDEw
MTEzMDAxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDg1NWU2M2U2Mjhh
YmM3OGNlNDUxZDcwMTZmZTE0Y2UyMzllMmJmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANYocxdZu0Y6BRKAXuNtjC8f7FyqIn5FC5hymOt2qn6Hm/T2
pMp4C80SDyK+C0Tv11ZyYLpPOFlrvYxVbPBIiwLZfyv4fQE7MsieDxYePzDkaEGC
sD2D6ZZwd/3mcPIGzpzrViY1EqhjriVUuBY4aWPEHfeUaVVBj4ahhiYfPzyePexp
2i9zGzhUwBcCm5Mz950OVldOLcdy3gYV9bmVFtfWFbhgOFpQuJGsGCVxFgVg/5Dl
J6DtHvzvZA4Ok6b47hGh6prIS2KIMMWUew1NxtaRU2IORBYNel+a+kgPDl4KpHIq
BswildV7NGnoUzVInH3fJdZTwjttbPGggE4pKxcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQIVeY+Yoq8eM5FHXAW/hTOI54r9DAfBgNVHSMEGDAWgBQRtptZ0Z8ph+Sf
GFLWC7F3f4CjATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ViYWJXZEdmS1lma254aFMxZ3V4ZDMtQW93RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNWVkZjdhLWFiOWEtNDVlNy1hNjEyLWQxNjljMDg4YjQxMi8x
L0NGWG1QbUtLdkhqT1JSMXdGdjRVemlPZUtfUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NWVkZjdhLWFiOWEtNDVlNy1hNjEyLWQxNjljMDg4YjQxMi8xL0ViYWJXZEdmS1lm
a254aFMxZ3V4ZDMtQW93RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE6bxjANBgkqhkiG9w0BAQsFAAOC
AQEASOSi43tDwdYBy+9vxCrCtSE/KevEgOAXxBnlTaS5F1gBxq4VmssxfXAomwVE
6A2282hgCwzDfMl6e6ibLWsNAl2NP3U6SIx7zfp5MWZcO8egP3SoIMbFl9ASGB63
l8B/5AFRMs6DY1g+IWKoB4/KO/9BWt/LE7eL/0tgA4nkAUF/ztrNESe89UOBDYxz
lSWN2P6r07DqvT5coZ9eAODg8bLeVnN7kEsh1DIXKFRETwspBhwdhdAWrI6e1Q4N
FBzSn5we7PbCCPg7KbFFtR/rUJHHCxmVz7vWPgCxzY8LfRPfSIYDauFVmtuGp0P9
xShSpBp/ADuWFJ6NARwyX55+bA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:36 2024 by rpki-client on console-fra.rpki-client.org