Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/3m_Jx55Y-IeDXRAz-epigp9AWFc.roa
File: 3m_Jx55Y-IeDXRAz-epigp9AWFc.roa (raw, json)
Hash identifier: PtW9dYXW7OU3/zB11ekfiyvOzlVJQcx/8i/PJZfVQG4=
Subject key identifier: DE:6F:C9:C7:9E:58:F8:87:83:5D:10:33:F9:EA:62:82:9F:40:58:57
Certificate issuer: /CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Certificate serial: 098EC30D
Authority key identifier: 8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/3m_Jx55Y-IeDXRAz-epigp9AWFc.roa
Signing time: Sat 01 Jan 2022 01:51:06 +0000
ROA not before: Sat 01 Jan 2022 01:51:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 195.8.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160350989 (0x98ec30d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Validity
Not Before: Jan 1 01:51:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de6fc9c79e58f887835d1033f9ea62829f405857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:83:d8:50:7e:2b:11:e5:b7:56:05:1b:5f:ec:
8e:6e:2c:16:d4:ac:c8:d4:89:42:96:8a:89:74:e4:
cf:5f:77:ae:08:c9:2d:fa:e1:2e:ee:07:01:a6:92:
9b:70:fe:ee:01:a5:78:40:9a:fe:72:af:fd:fe:84:
7c:8d:90:ce:7c:e3:ca:0f:22:9a:6c:4d:4f:5d:b1:
0e:0a:8d:18:a5:c1:e8:ee:5d:ac:0a:08:c7:1b:ef:
26:7c:97:e4:d9:ee:25:f3:ad:ed:d7:b7:3b:9e:09:
08:cf:53:3d:dd:68:58:19:63:30:c7:fb:5e:fd:d1:
2b:fe:e7:75:22:6f:a7:00:d2:3d:ed:d1:98:fd:36:
51:97:f1:cf:e2:28:29:28:1c:5e:80:be:69:11:ac:
d3:4e:6f:6d:2d:b2:5f:d0:2f:a8:c1:08:18:21:34:
99:22:aa:1f:9b:c2:54:9b:ca:02:07:cb:5d:3b:b5:
2c:2f:66:8b:8d:9d:e6:9f:6a:62:e4:a4:78:b4:32:
b8:0c:f7:59:0f:a6:50:26:9f:fb:7a:f9:f3:b4:4c:
03:42:f4:02:e7:5a:d0:b2:40:f1:f0:4c:5c:4c:91:
dd:0f:66:bb:f9:37:5d:0d:15:07:dd:52:59:f6:01:
be:cf:c5:b9:02:35:0b:11:21:10:dd:f2:cc:6c:cc:
3e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6F:C9:C7:9E:58:F8:87:83:5D:10:33:F9:EA:62:82:9F:40:58:57
X509v3 Authority Key Identifier:
keyid:8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/3m_Jx55Y-IeDXRAz-epigp9AWFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.32.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:a6:4c:d1:69:f3:8c:cd:82:fa:03:67:62:72:08:91:ba:7c:
25:0a:67:c5:34:60:cb:23:49:1f:f9:f6:90:a7:5b:f9:f1:66:
a6:9d:ea:14:86:8c:7f:a9:18:aa:b9:47:8f:72:31:cb:e3:11:
22:3e:1b:40:8e:ac:57:38:e6:70:2f:9a:ba:e6:44:5d:92:7c:
43:57:cc:f3:22:56:dc:67:62:5c:dc:d5:57:fb:3c:ee:f8:a9:
f6:c1:74:e0:2e:78:eb:5b:80:b4:dc:b1:15:20:bb:69:2d:13:
f7:a9:25:a6:a1:c8:b0:56:dd:92:71:b6:ee:99:a2:1e:54:61:
c4:57:e8:26:46:08:ae:45:da:38:49:47:29:ec:ed:bf:07:bd:
b0:ec:b7:f9:0f:c6:88:13:c4:27:5e:69:34:06:b1:41:3f:4c:
17:cd:58:ea:26:42:e9:0a:2e:b8:a6:a7:bf:23:44:41:b7:fa:
9f:28:64:75:5a:35:10:ec:79:f2:ab:35:4c:26:00:d3:04:1f:
61:9a:99:03:96:cb:df:2c:81:29:67:25:b2:33:fc:da:9f:de:
eb:18:9a:bd:ca:90:68:2c:06:91:3e:18:af:91:23:18:9c:e4:
08:6a:ac:f5:4b:c7:b7:8c:e9:13:d5:48:b2:22:6a:7c:b7:c8:
8b:00:80:24
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECY7DDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YWE2OThmODNlMzQyOWM4OWUzNGM4ZjJlZmI1YjEyMDFhMThmY2Y3MB4XDTIyMDEw
MTAxNTEwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGU2ZmM5Yzc5ZTU4
Zjg4NzgzNWQxMDMzZjllYTYyODI5ZjQwNTg1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ+D2FB+KxHlt1YFG1/sjm4sFtSsyNSJQpaKiXTkz193rgjJ
LfrhLu4HAaaSm3D+7gGleECa/nKv/f6EfI2Qznzjyg8immxNT12xDgqNGKXB6O5d
rAoIxxvvJnyX5NnuJfOt7de3O54JCM9TPd1oWBljMMf7Xv3RK/7ndSJvpwDSPe3R
mP02UZfxz+IoKSgcXoC+aRGs005vbS2yX9AvqMEIGCE0mSKqH5vCVJvKAgfLXTu1
LC9mi42d5p9qYuSkeLQyuAz3WQ+mUCaf+3r587RMA0L0Auda0LJA8fBMXEyR3Q9m
u/k3XQ0VB91SWfYBvs/FuQI1CxEhEN3yzGzMPicCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTeb8nHnlj4h4NdEDP56mKCn0BYVzAfBgNVHSMEGDAWgBSKppj4PjQpyJ40
yPLvtbEgGhj89zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lxYVktRDQwS2NpZU5Nank3N1d4SUJvWV9QYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGEvZDcwNGYyLTZlZDQtNDRjMS04ZTRmLTRkN2E4NGJhYmJkZS8x
LzNtX0p4NTVZLUllRFhSQXotZXBpZ3A5QVdGYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEv
ZDcwNGYyLTZlZDQtNDRjMS04ZTRmLTRkN2E4NGJhYmJkZS8xL2lxYVktRDQwS2Np
ZU5Nank3N1d4SUJvWV9QYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcMIIDANBgkqhkiG9w0BAQsFAAOC
AQEAH6ZM0WnzjM2C+gNnYnIIkbp8JQpnxTRgyyNJH/n2kKdb+fFmpp3qFIaMf6kY
qrlHj3Ixy+MRIj4bQI6sVzjmcC+auuZEXZJ8Q1fM8yJW3GdiXNzVV/s87vip9sF0
4C5461uAtNyxFSC7aS0T96klpqHIsFbdknG27pmiHlRhxFfoJkYIrkXaOElHKezt
vwe9sOy3+Q/GiBPEJ15pNAaxQT9MF81Y6iZC6QouuKanvyNEQbf6nyhkdVo1EOx5
8qs1TCYA0wQfYZqZA5bL3yyBKWclsjP82p/e6xiavcqQaCwGkT4Yr5EjGJzkCGqs
9UvHt4zpE9VIsiJqfLfIiwCAJA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:22 2024 by rpki-client on console-fra.rpki-client.org