Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/bc801e-dcd6-40f4-ae79-de037ed612fa/1/9btBj3K45J0p0L-O0_8YhsfoEqo.roa
File: 9btBj3K45J0p0L-O0_8YhsfoEqo.roa (raw, json)
Hash identifier: 2Gi2nkLBMI1hVPaQcEaBOO2z16l5X4V55KkNLxGS4d4=
Subject key identifier: F5:BB:41:8F:72:B8:E4:9D:29:D0:BF:8E:D3:FF:18:86:C7:E8:12:AA
Certificate issuer: /CN=8ed6eb113a78929017b7d09c2ef17b177419941e
Certificate serial: 011F3160
Authority key identifier: 8E:D6:EB:11:3A:78:92:90:17:B7:D0:9C:2E:F1:7B:17:74:19:94:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jtbrETp4kpAXt9CcLvF7F3QZlB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/bc801e-dcd6-40f4-ae79-de037ed612fa/1/9btBj3K45J0p0L-O0_8YhsfoEqo.roa
Signing time: Sat 01 Jan 2022 05:57:38 +0000
ROA not before: Sat 01 Jan 2022 05:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 88.151.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18821472 (0x11f3160)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ed6eb113a78929017b7d09c2ef17b177419941e
Validity
Not Before: Jan 1 05:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5bb418f72b8e49d29d0bf8ed3ff1886c7e812aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cf:e0:91:18:b2:82:28:45:9d:5f:38:04:ac:
b0:95:29:a8:e8:84:4e:1e:30:e9:a7:58:27:eb:2d:
1a:9a:14:67:4b:ed:48:ae:53:c2:ba:b6:9b:b9:8f:
3f:fe:6f:5f:ce:5c:9a:76:3a:7a:39:b3:78:b0:66:
91:47:4d:ab:f4:06:41:86:2c:d8:d8:b5:9e:21:6a:
37:1e:77:a4:77:b0:8a:65:81:df:f6:8d:62:b7:2d:
c3:8f:0a:78:ab:06:91:f8:e7:95:24:87:3b:02:fc:
72:32:85:c5:25:5f:c2:03:a2:21:17:d0:9a:09:03:
1c:6c:3c:e0:d5:d4:d4:9a:17:72:b4:6c:17:08:69:
7c:ab:e7:c5:c5:50:96:07:c1:be:ec:a0:01:ef:2a:
e9:94:f7:7c:cf:ea:a0:b4:b9:2d:40:bf:fb:54:6f:
29:6c:99:79:04:23:0e:6f:2a:57:2b:17:09:1f:64:
71:ad:bc:42:6e:02:9d:59:62:38:44:41:32:6c:b9:
7b:5e:4f:65:5f:aa:a7:12:d7:f4:fb:d0:b8:d6:27:
ae:e3:81:f3:c8:8e:53:9d:e4:f8:51:96:87:f8:dd:
ad:36:3d:c7:76:a6:8a:e2:f9:41:24:52:25:a9:56:
a6:8b:35:42:ac:26:cd:55:b3:83:6f:35:a0:8e:2a:
ef:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BB:41:8F:72:B8:E4:9D:29:D0:BF:8E:D3:FF:18:86:C7:E8:12:AA
X509v3 Authority Key Identifier:
keyid:8E:D6:EB:11:3A:78:92:90:17:B7:D0:9C:2E:F1:7B:17:74:19:94:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jtbrETp4kpAXt9CcLvF7F3QZlB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/bc801e-dcd6-40f4-ae79-de037ed612fa/1/9btBj3K45J0p0L-O0_8YhsfoEqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/bc801e-dcd6-40f4-ae79-de037ed612fa/1/jtbrETp4kpAXt9CcLvF7F3QZlB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.10.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b4:fa:ca:16:51:a2:b3:f7:09:55:87:33:78:cd:98:2b:e1:
4d:8c:1b:8d:36:fc:13:d1:88:08:90:51:a4:c5:b4:2c:ed:94:
8b:fd:05:67:b9:de:92:cb:f4:a6:1d:ab:4d:70:81:d7:1d:87:
76:c5:34:be:8a:10:bb:ac:c3:30:f7:33:d6:a1:c9:fc:5e:f0:
38:c8:3a:fd:c7:a3:79:0f:41:64:bc:4d:36:c1:fd:6e:e3:dd:
4b:12:17:0c:62:e3:4f:50:a4:53:a1:7e:69:ee:56:87:b2:4c:
ee:b7:cb:68:01:b7:5e:74:40:e6:e1:b9:04:69:ec:58:19:be:
79:93:4f:ed:e0:e8:58:a3:22:40:af:3e:e0:54:4d:c9:c6:d2:
98:be:c7:d6:d4:db:51:23:7d:4d:29:c3:db:1e:66:9e:92:20:
bf:01:11:37:b3:f2:9d:92:e9:43:7d:c6:f6:66:c2:49:b4:21:
4d:b0:d4:81:bc:11:ca:33:ca:b3:1a:76:73:a7:ac:a7:a5:6c:
d7:07:7b:1e:47:a7:9b:10:a2:a5:e1:38:23:09:13:b4:c5:6c:
97:36:98:0e:6e:5d:fb:68:a9:c9:71:42:79:a7:95:f7:ed:61:
8d:d0:03:8e:b9:17:da:7c:bf:d7:c1:cf:bd:72:f0:6b:21:68:
a2:b8:eb:7c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAR8xYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZWQ2ZWIxMTNhNzg5MjkwMTdiN2QwOWMyZWYxN2IxNzc0MTk5NDFlMB4XDTIyMDEw
MTA1NTczOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjViYjQxOGY3MmI4
ZTQ5ZDI5ZDBiZjhlZDNmZjE4ODZjN2U4MTJhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKfP4JEYsoIoRZ1fOASssJUpqOiETh4w6adYJ+stGpoUZ0vt
SK5Twrq2m7mPP/5vX85cmnY6ejmzeLBmkUdNq/QGQYYs2Ni1niFqNx53pHewimWB
3/aNYrctw48KeKsGkfjnlSSHOwL8cjKFxSVfwgOiIRfQmgkDHGw84NXU1JoXcrRs
FwhpfKvnxcVQlgfBvuygAe8q6ZT3fM/qoLS5LUC/+1RvKWyZeQQjDm8qVysXCR9k
ca28Qm4CnVliOERBMmy5e15PZV+qpxLX9PvQuNYnruOB88iOU53k+FGWh/jdrTY9
x3amiuL5QSRSJalWpos1QqwmzVWzg281oI4q7yECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT1u0GPcrjknSnQv47T/xiGx+gSqjAfBgNVHSMEGDAWgBSO1usROniSkBe3
0Jwu8XsXdBmUHjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2p0YnJFVHA0a3BBWHQ5Q2NMdkY3RjNRWmxCNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvYmM4MDFlLWRjZDYtNDBmNC1hZTc5LWRlMDM3ZWQ2MTJmYS8x
LzlidEJqM0s0NUowcDBMLU8wXzhZaHNmb0Vxby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
YmM4MDFlLWRjZDYtNDBmNC1hZTc5LWRlMDM3ZWQ2MTJmYS8xL2p0YnJFVHA0a3BB
WHQ5Q2NMdkY3RjNRWmxCNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFiXCjANBgkqhkiG9w0BAQsFAAOC
AQEAZbT6yhZRorP3CVWHM3jNmCvhTYwbjTb8E9GICJBRpMW0LO2Ui/0FZ7neksv0
ph2rTXCB1x2HdsU0vooQu6zDMPcz1qHJ/F7wOMg6/cejeQ9BZLxNNsH9buPdSxIX
DGLjT1CkU6F+ae5Wh7JM7rfLaAG3XnRA5uG5BGnsWBm+eZNP7eDoWKMiQK8+4FRN
ycbSmL7H1tTbUSN9TSnD2x5mnpIgvwERN7PynZLpQ33G9mbCSbQhTbDUgbwRyjPK
sxp2c6esp6Vs1wd7HkenmxCipeE4IwkTtMVslzaYDm5d+2ipyXFCeaeV9+1hjdAD
jrkX2ny/18HPvXLwayFoorjrfA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:36 2023 by rpki-client on console-fra.rpki-client.org