Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/4JEWXu2gUlgdiECvxlghKfgeSkM.roa
File: 4JEWXu2gUlgdiECvxlghKfgeSkM.roa (raw, json)
Hash identifier: eWZGOuFKkCmhXB8/gHiLAQ2ey7kPi0nTJtyJjRjVo8I=
Subject key identifier: E0:91:16:5E:ED:A0:52:58:1D:88:40:AF:C6:58:21:29:F8:1E:4A:43
Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Certificate serial: 0189DA718063ABDE8D6895C80A627D4223F1
Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/4JEWXu2gUlgdiECvxlghKfgeSkM.roa
Signing time: Wed 09 Aug 2023 13:16:58 +0000
ROA not before: Wed 09 Aug 2023 13:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.93.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:da:71:80:63:ab:de:8d:68:95:c8:0a:62:7d:42:23:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Validity
Not Before: Aug 9 13:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e091165eeda052581d8840afc6582129f81e4a43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:25:12:8e:a9:30:0e:e6:62:63:8a:f1:60:27:
4f:eb:90:10:7c:cb:ba:79:62:69:cb:5c:b1:ea:46:
72:0e:01:61:5a:21:d8:46:ee:c6:58:78:e6:aa:4a:
39:ef:48:e2:24:7a:72:50:f6:46:e9:29:10:7b:bb:
31:f5:f2:f5:6e:18:1b:5d:3f:55:94:cc:f2:f4:00:
90:90:12:f1:20:d2:b2:24:fe:48:62:78:d8:2d:e4:
48:b6:92:f0:c5:6c:fb:9f:7e:77:db:e6:08:4c:88:
26:28:5f:38:b5:94:f3:35:dc:c3:a1:1e:ff:05:c8:
e2:29:0e:02:39:a0:2a:67:07:01:ed:4d:c0:b2:8d:
2a:73:f3:4f:8f:f4:41:12:49:84:86:4f:3e:fe:fc:
33:b1:8a:1f:ac:23:65:65:47:82:a6:0e:47:a5:7c:
cd:6d:e4:dc:d2:76:1b:28:1a:0d:c1:6d:22:e8:d5:
63:04:08:29:32:ce:3e:7c:05:75:62:a9:5c:b6:11:
2f:79:a1:26:23:be:ae:d6:ba:fd:0a:09:51:80:fa:
45:d7:66:5e:5d:21:99:c7:23:32:fd:65:45:1b:25:
6f:46:f6:86:5a:70:b9:14:22:7b:e8:c6:b8:2b:32:
a5:52:6c:e3:f6:6d:17:74:4d:d6:e9:65:1f:4d:74:
e3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:91:16:5E:ED:A0:52:58:1D:88:40:AF:C6:58:21:29:F8:1E:4A:43
X509v3 Authority Key Identifier:
keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/4JEWXu2gUlgdiECvxlghKfgeSkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.227.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:82:45:b8:88:de:5c:66:02:ba:48:60:48:f0:cf:f8:0a:7f:
31:56:d0:50:95:04:96:f6:02:40:5f:71:05:3d:f9:c2:bf:28:
79:71:b2:ea:02:c2:8d:4d:dd:85:49:b1:ba:95:ed:04:f9:c6:
3d:2e:1b:b9:ba:14:9f:12:7a:46:c3:04:26:01:4f:60:b9:3f:
e2:33:80:cd:df:7f:a0:c6:db:da:01:25:6a:b7:50:e7:3f:0c:
51:81:b2:9a:10:97:19:b0:4d:ec:09:f2:74:fa:6d:43:de:7d:
e3:57:cc:07:1b:f2:48:0e:69:7f:84:f1:5a:fa:71:c7:85:82:
5c:97:60:b0:62:18:a4:a2:3d:e7:37:ff:39:26:9f:39:4c:d5:
ff:fc:a0:37:9b:3f:c0:62:d5:c4:e5:47:9b:d1:b2:89:3a:bc:
c5:76:a5:c0:ae:70:96:ce:ea:15:f2:3f:a1:52:a1:af:91:8d:
07:43:48:9d:fe:62:f1:3b:71:39:24:c9:12:91:4a:38:eb:7e:
4b:37:02:f8:89:a0:bd:7a:79:50:4c:e3:b0:43:96:76:e6:3b:
2b:76:0d:8f:2e:b6:eb:88:d1:99:8a:81:b1:c5:1f:2f:97:a9:
6c:c7:46:dc:17:31:66:dc:e5:bb:8d:ea:5f:9b:0e:bb:f7:ac:
2d:df:d1:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnacYBjq96NaJXICmJ9QiPxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZTBiNGVhZjljMTA3OTFmMzUzYmE5ODdkZTIzNjBhMTM4
NDE3YmQwHhcNMjMwODA5MTMxNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDkxMTY1ZWVkYTA1MjU4MWQ4ODQwYWZjNjU4MjEyOWY4MWU0YTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiUSjqkwDuZiY4rxYCdP65AQfMu6
eWJpy1yx6kZyDgFhWiHYRu7GWHjmqko570jiJHpyUPZG6SkQe7sx9fL1bhgbXT9V
lMzy9ACQkBLxINKyJP5IYnjYLeRItpLwxWz7n3532+YITIgmKF84tZTzNdzDoR7/
BcjiKQ4COaAqZwcB7U3Aso0qc/NPj/RBEkmEhk8+/vwzsYofrCNlZUeCpg5HpXzN
beTc0nYbKBoNwW0i6NVjBAgpMs4+fAV1YqlcthEveaEmI76u1rr9CglRgPpF12Ze
XSGZxyMy/WVFGyVvRvaGWnC5FCJ76Ma4KzKlUmzj9m0XdE3W6WUfTXTjTwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOCRFl7toFJYHYhAr8ZYISn4HkpDMB8GA1UdIwQY
MBaAFADgtOr5wQeR81O6mH3iNgoThBe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgt
ZGMwMjc0MzJlNWE1LzEvNEpFV1h1MmdVbGdkaUVDdnhsZ2hLZmdlU2tNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgtZGMwMjc0MzJlNWE1
LzEvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw13jMA0G
CSqGSIb3DQEBCwUAA4IBAQBagkW4iN5cZgK6SGBI8M/4Cn8xVtBQlQSW9gJAX3EF
PfnCvyh5cbLqAsKNTd2FSbG6le0E+cY9Lhu5uhSfEnpGwwQmAU9guT/iM4DN33+g
xtvaASVqt1DnPwxRgbKaEJcZsE3sCfJ0+m1D3n3jV8wHG/JIDml/hPFa+nHHhYJc
l2CwYhikoj3nN/85Jp85TNX//KA3mz/AYtXE5Ueb0bKJOrzFdqXArnCWzuoV8j+h
UqGvkY0HQ0id/mLxO3E5JMkSkUo4635LNwL4iaC9enlQTOOwQ5Z25jsrdg2PLrbr
iNGZioGxxR8vl6lsx0bcFzFm3OW7jepfmw6796wt39G2
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:04 2025 by rpki-client