Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1m6tqYgNLbnAV88lttAFP1cYmkE.roa
File: 1m6tqYgNLbnAV88lttAFP1cYmkE.roa (raw, json)
Hash identifier: kocJuZrrV/u9IOF3jwBPFHh3sMcy/co9QEHcfKpEJv8=
Subject key identifier: D6:6E:AD:A9:88:0D:2D:B9:C0:57:CF:25:B6:D0:05:3F:57:18:9A:41
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42A222A6
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1m6tqYgNLbnAV88lttAFP1cYmkE.roa
Signing time: Sun 24 Apr 2022 17:46:49 +0000
ROA not before: Sun 24 Apr 2022 17:46:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50275
IP address blocks: 188.211.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117921958 (0x42a222a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 24 17:46:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d66eada9880d2db9c057cf25b6d0053f57189a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:39:c8:6a:40:c4:4c:bf:83:7b:16:a5:7a:
f7:c5:11:3a:09:04:19:d7:7f:c7:cf:81:ff:cc:ff:
3a:47:4e:20:c1:d5:a8:23:0a:10:bf:05:ae:78:42:
b1:dc:47:fd:55:b8:e6:67:33:07:5f:ef:09:41:b8:
43:80:ac:ac:76:ae:16:b6:40:9f:13:fc:75:62:a4:
81:16:7e:d5:97:f1:7d:44:b6:43:5e:1e:7f:e1:a0:
cc:5a:05:57:4c:86:64:e6:3b:5e:98:84:df:82:53:
2a:39:42:15:7e:80:b4:11:11:61:73:f0:5e:91:02:
6f:94:79:53:e2:d0:78:51:0c:63:f2:45:1b:d8:14:
cd:d0:8d:34:22:3b:2c:93:1c:6d:ba:e2:5d:a5:3c:
d7:46:b2:d8:2d:e6:7e:f0:19:04:e8:64:f4:67:ab:
00:af:74:08:43:da:dc:5b:68:a2:8b:0e:ee:68:59:
e3:c3:3f:bf:d9:31:17:b9:ed:28:d4:af:5a:1a:07:
b1:3e:58:db:aa:eb:39:d5:16:f1:4e:43:df:be:a0:
9f:4b:a1:0b:4b:35:d5:b3:2f:3f:e7:eb:17:23:37:
a2:f0:1c:f5:79:ec:f7:7a:08:c8:f4:e2:42:5a:60:
fa:72:7b:18:7c:cc:82:a1:1d:5b:1f:57:77:40:3a:
0c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6E:AD:A9:88:0D:2D:B9:C0:57:CF:25:B6:D0:05:3F:57:18:9A:41
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1m6tqYgNLbnAV88lttAFP1cYmkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.211.232.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:b3:2a:26:a6:65:fa:11:42:85:a8:94:46:9c:fb:c6:b9:3a:
0d:bb:33:03:73:9e:1c:bc:e3:79:08:3b:53:b6:f5:92:fb:6e:
8c:a6:e2:22:cc:c5:11:03:53:af:4f:c2:3c:9e:a6:76:a6:3d:
26:f3:6d:0b:8f:30:a8:2c:33:33:9b:3a:87:88:10:41:8f:89:
81:c6:60:63:1b:1e:d8:e8:09:2d:bc:e6:90:ea:49:c3:90:29:
bb:ef:e6:bc:67:6e:83:61:43:22:40:e3:d9:3d:7f:2a:27:5f:
6f:60:a0:11:32:86:6f:57:57:12:19:94:b3:1b:cd:28:e9:1e:
62:11:d8:ee:e6:be:8e:a3:bc:dc:86:08:c3:a6:df:32:ae:82:
7b:49:00:a5:c3:4c:99:4d:38:e5:71:3e:33:77:e6:2f:cb:7b:
9b:c8:b7:a1:3a:c1:13:16:7c:98:12:a5:3f:0a:8f:39:47:a2:
04:0a:65:5b:08:e5:a7:d6:cf:4b:f8:b1:f9:2f:9f:37:18:80:
d7:b1:b5:c8:b5:38:08:f9:16:79:59:a8:f4:e3:5a:8d:04:c0:
41:e7:7d:32:54:aa:61:6d:19:f9:75:bd:b2:b4:bc:99:9a:9f:
ae:c5:f5:8c:08:c4:2c:0b:08:ea:2b:eb:8b:44:3e:8c:bb:57:
23:1c:e4:21
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEQqIipjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDQy
NDE3NDY0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDY2ZWFkYTk4ODBk
MmRiOWMwNTdjZjI1YjZkMDA1M2Y1NzE4OWE0MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKdiOchqQMRMv4N7FqV698UROgkEGdd/x8+B/8z/OkdOIMHV
qCMKEL8FrnhCsdxH/VW45mczB1/vCUG4Q4CsrHauFrZAnxP8dWKkgRZ+1ZfxfUS2
Q14ef+GgzFoFV0yGZOY7XpiE34JTKjlCFX6AtBERYXPwXpECb5R5U+LQeFEMY/JF
G9gUzdCNNCI7LJMcbbriXaU810ay2C3mfvAZBOhk9GerAK90CEPa3FtooosO7mhZ
48M/v9kxF7ntKNSvWhoHsT5Y26rrOdUW8U5D376gn0uhC0s11bMvP+frFyM3ovAc
9Xns93oIyPTiQlpg+nJ7GHzMgqEdWx9Xd0A6DCkCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBTWbq2piA0tucBXzyW20AU/VxiaQTAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS8xbTZ0cVlnTkxibkFWODhsdHRBRlAxY1lta0Uucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNPoMA0GCSqGSIb3DQEBCwUA
A4IBAQBOsyompmX6EUKFqJRGnPvGuToNuzMDc54cvON5CDtTtvWS+26MpuIizMUR
A1OvT8I8nqZ2pj0m820LjzCoLDMzmzqHiBBBj4mBxmBjGx7Y6AktvOaQ6knDkCm7
7+a8Z26DYUMiQOPZPX8qJ19vYKARMoZvV1cSGZSzG80o6R5iEdju5r6Oo7zchgjD
pt8yroJ7SQClw0yZTTjlcT4zd+Yvy3ubyLehOsETFnyYEqU/Co85R6IECmVbCOWn
1s9L+LH5L583GIDXsbXItTgI+RZ5Waj041qNBMBB530yVKphbRn5db2ytLyZmp+u
xfWMCMQsCwjqK+uLRD6Mu1cjHOQh
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org