Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/cv8Y1li41hkRNZWsaHxH0W4fI04.roa
File: cv8Y1li41hkRNZWsaHxH0W4fI04.roa (raw, json)
Hash identifier: 26Z/qceDLmDkPyKBPWvY4wIN3rpkQKTcBKTk0cFQMmQ=
Subject key identifier: 72:FF:18:D6:58:B8:D6:19:11:35:95:AC:68:7C:47:D1:6E:1F:23:4E
Certificate issuer: /CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Certificate serial: 06A2F161
Authority key identifier: C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/cv8Y1li41hkRNZWsaHxH0W4fI04.roa
Signing time: Fri 11 Feb 2022 06:30:22 +0000
ROA not before: Fri 11 Feb 2022 06:30:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41905
IP address blocks: 195.137.238.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111341921 (0x6a2f161)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Validity
Not Before: Feb 11 06:30:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72ff18d658b8d619113595ac687c47d16e1f234e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8b:65:15:32:b4:36:25:26:18:79:c2:19:1a:
7a:b1:4d:20:43:90:2c:3d:89:36:d8:e5:66:8f:9d:
0b:42:2f:cd:77:cb:98:be:e8:7d:e3:07:30:12:f5:
6e:f8:5a:d5:11:1b:d0:fa:ba:53:99:f3:f8:e4:f7:
f3:69:3e:6b:50:0e:b8:17:f5:37:e7:dd:83:bd:18:
67:b8:1f:5f:11:2d:f9:1d:db:5a:fb:98:a9:1c:15:
1e:8b:7d:63:86:35:80:63:49:bb:86:68:96:56:82:
8f:cf:a0:f4:fd:f4:d8:89:fe:62:7f:3b:0f:e2:32:
5b:98:94:f3:d5:79:b2:ea:e7:f0:52:bf:48:a9:c7:
ec:f8:18:33:97:a7:ef:40:39:de:04:7b:76:cf:b7:
f2:78:62:3f:12:6c:88:bf:6f:a3:3b:85:66:2e:2b:
3e:b8:63:d2:81:1b:e0:82:22:2f:ff:80:b5:97:e1:
80:e1:bd:c5:79:cb:0b:a8:b0:8f:c1:00:96:17:8d:
93:e3:80:69:d6:42:aa:7c:23:3f:07:a1:40:6b:c3:
bd:9d:9f:3a:b6:3f:04:1d:bb:d1:9b:04:9d:0e:8d:
94:15:6c:e4:e1:7f:8a:9f:07:99:a7:37:c5:66:61:
41:a4:d9:27:37:15:6b:ce:de:11:0b:31:d3:7c:29:
64:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FF:18:D6:58:B8:D6:19:11:35:95:AC:68:7C:47:D1:6E:1F:23:4E
X509v3 Authority Key Identifier:
keyid:C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/cv8Y1li41hkRNZWsaHxH0W4fI04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.238.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:ea:ef:10:44:9d:c0:f8:50:db:f8:04:ed:e8:f6:f9:15:39:
35:50:af:97:93:1c:15:71:b1:19:4b:0c:f3:c1:5d:94:7a:5d:
c2:dd:e1:b6:20:35:23:f5:16:c8:c9:ea:25:a0:3b:36:d2:b3:
ff:68:6c:c3:74:92:36:13:c9:26:4c:95:5d:cc:39:bd:12:e3:
10:9d:f8:d2:56:c6:b3:83:9a:81:28:14:e5:10:bd:a9:b7:eb:
53:d2:de:31:f3:4a:b5:e2:24:ab:05:c7:76:e5:c3:a9:7b:2b:
7c:ac:12:92:c5:e7:d5:8d:5c:bd:6e:b7:e7:92:8f:6c:2b:a1:
35:90:2b:e6:58:6d:3e:30:f4:78:9f:dc:99:63:16:02:0e:2f:
bc:5d:7c:90:6b:58:dd:15:39:d1:c3:d7:33:99:d8:11:b9:03:
47:71:d0:b2:1c:3a:70:39:1f:00:e0:0d:24:8c:84:13:c2:87:
4c:5d:82:f3:87:70:af:2f:c2:0b:b2:4c:0e:30:f7:82:19:79:
47:d3:27:64:90:d7:88:ec:d4:97:fb:91:de:08:91:67:a7:a1:
fe:50:85:16:58:94:01:bd:71:00:33:95:9a:20:47:d3:5a:84:
55:90:07:1e:50:75:c1:1c:ad:e7:75:d0:08:a8:79:c7:58:76:
84:cb:5e:7e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBqLxYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDQxNzM4YmFhYjk4OGIxZDY4NjkzYmIwNWUyOWJmYmI0ZjBmNjcxMB4XDTIyMDIx
MTA2MzAyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJmZjE4ZDY1OGI4
ZDYxOTExMzU5NWFjNjg3YzQ3ZDE2ZTFmMjM0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN6LZRUytDYlJhh5whkaerFNIEOQLD2JNtjlZo+dC0IvzXfL
mL7ofeMHMBL1bvha1REb0Pq6U5nz+OT382k+a1AOuBf1N+fdg70YZ7gfXxEt+R3b
WvuYqRwVHot9Y4Y1gGNJu4ZollaCj8+g9P302In+Yn87D+IyW5iU89V5surn8FK/
SKnH7PgYM5en70A53gR7ds+38nhiPxJsiL9vozuFZi4rPrhj0oEb4IIiL/+AtZfh
gOG9xXnLC6iwj8EAlheNk+OAadZCqnwjPwehQGvDvZ2fOrY/BB270ZsEnQ6NlBVs
5OF/ip8Hmac3xWZhQaTZJzcVa87eEQsx03wpZG0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRy/xjWWLjWGRE1laxofEfRbh8jTjAfBgNVHSMEGDAWgBTEQXOLqrmIsdaG
k7sF4pv7tPD2cTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hFRnppNnE1aUxIV2hwTzdCZUtiLTdUdzluRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvZjgzMTRlLWEzYmMtNDVlOS1hOWY1LTRjOThkOWE1MTQwNS8x
L2N2OFkxbGk0MWhrUk5aV3NhSHhIMFc0ZkkwNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
ZjgzMTRlLWEzYmMtNDVlOS1hOWY1LTRjOThkOWE1MTQwNS8xL3hFRnppNnE1aUxI
V2hwTzdCZUtiLTdUdzluRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcOJ7jANBgkqhkiG9w0BAQsFAAOC
AQEAjervEESdwPhQ2/gE7ej2+RU5NVCvl5McFXGxGUsM88FdlHpdwt3htiA1I/UW
yMnqJaA7NtKz/2hsw3SSNhPJJkyVXcw5vRLjEJ340lbGs4OagSgU5RC9qbfrU9Le
MfNKteIkqwXHduXDqXsrfKwSksXn1Y1cvW6355KPbCuhNZAr5lhtPjD0eJ/cmWMW
Ag4vvF18kGtY3RU50cPXM5nYEbkDR3HQshw6cDkfAOANJIyEE8KHTF2C84dwry/C
C7JMDjD3ghl5R9MnZJDXiOzUl/uR3giRZ6eh/lCFFliUAb1xADOVmiBH01qEVZAH
HlB1wRyt53XQCKh5x1h2hMtefg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:36 2023 by rpki-client on console-fra.rpki-client.org