Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/sCcAqgiQLw7pgZtp-0nasxZhtBs.roa
File: sCcAqgiQLw7pgZtp-0nasxZhtBs.roa (raw, json)
Hash identifier: /h+VBY05lCk8by9c3v4J00cJ2VXoSG2HvC+wL4QANXY=
Subject key identifier: B0:27:00:AA:08:90:2F:0E:E9:81:9B:69:FB:49:DA:B3:16:61:B4:1B
Certificate issuer: /CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Certificate serial: 149C0AE5
Authority key identifier: 6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/sCcAqgiQLw7pgZtp-0nasxZhtBs.roa
Signing time: Sat 01 Jan 2022 11:55:07 +0000
ROA not before: Sat 01 Jan 2022 11:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33867
IP address blocks: 195.248.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345770725 (0x149c0ae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Validity
Not Before: Jan 1 11:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b02700aa08902f0ee9819b69fb49dab31661b41b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:17:6d:68:5c:8c:32:77:cf:ba:7b:68:5d:95:
77:d4:16:ad:c2:c1:08:84:90:56:66:2b:25:c5:b5:
21:fa:0c:61:63:62:a6:2d:26:11:5b:f7:16:89:e2:
9a:c2:04:b1:d7:15:93:90:b1:c2:b6:d1:d9:0f:cc:
c9:dd:a9:ba:36:13:cd:cc:1b:9b:06:8e:fe:14:17:
ef:ba:53:31:2c:fa:a1:95:6f:2d:90:dd:ee:81:84:
aa:5b:05:80:00:68:61:90:10:c7:e0:c1:ff:55:81:
e4:12:65:1b:2d:03:d4:aa:61:eb:89:c3:7a:3c:f6:
2e:2d:b5:32:24:3e:fc:21:83:a8:8d:0f:d8:a0:c2:
ed:07:d7:ff:1c:d5:30:3a:a6:eb:d3:92:41:89:5e:
32:66:48:60:ec:14:ca:65:14:5c:39:e9:44:55:70:
c0:f8:45:d1:86:d5:cf:e8:18:42:41:05:9f:54:af:
37:7b:ce:e7:c7:a8:e3:f0:84:0e:f0:f0:0a:71:c4:
ed:ae:6a:47:44:02:4d:63:22:c6:ba:fd:a7:1a:30:
e4:b6:7d:27:4a:b6:d5:35:2d:41:05:c5:9b:58:61:
8b:41:5f:a1:55:d9:93:4d:c4:1d:f9:c0:8b:c6:09:
c8:4b:00:b3:d7:f3:c4:14:52:2d:1e:16:21:07:5b:
41:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:27:00:AA:08:90:2F:0E:E9:81:9B:69:FB:49:DA:B3:16:61:B4:1B
X509v3 Authority Key Identifier:
keyid:6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/sCcAqgiQLw7pgZtp-0nasxZhtBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.64.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:b3:66:f1:89:59:8a:37:52:33:c4:64:02:86:44:fa:11:f9:
7d:7a:dc:e5:01:b2:8e:aa:a5:ee:c5:e6:81:4a:58:08:02:88:
86:6d:65:2e:e4:f2:53:98:e2:d0:1d:83:35:c6:63:5e:c3:c9:
8c:1e:3a:db:4e:22:78:0c:1f:67:98:2c:e9:b5:0e:ad:43:23:
f4:e6:87:96:64:23:f3:71:70:94:c6:75:65:62:b9:74:49:c1:
6f:97:f7:b3:7f:7f:91:56:72:05:88:73:6e:6d:3b:2f:40:88:
a5:e8:55:72:fa:59:aa:05:09:d5:f8:24:11:5d:c8:b8:b8:7a:
af:0a:c5:99:e4:d7:3e:00:29:d7:e0:02:7d:2b:c3:3c:da:ea:
54:1c:12:26:c9:69:e3:57:8e:1f:73:07:3e:75:4b:94:ba:da:
5c:03:c5:ce:8c:02:99:4c:29:36:89:94:c3:1f:15:90:cb:6f:
78:29:c9:8f:e1:d3:9d:7c:e6:a0:87:9f:43:7d:37:fb:42:42:
95:74:af:9d:28:f0:47:2d:70:6f:c4:e9:1f:e1:96:15:34:5e:
55:58:43:10:7c:7c:dd:31:bd:c3:70:a0:46:a8:30:34:8b:51:
20:f6:12:73:cc:b7:4f:b5:ef:16:51:fe:ce:d2:8d:f2:74:90:
45:e2:16:78
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFJwK5TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YmMxYWQxNjc2YTJhMzJhNDVhMGNmMzkyZjdmOWM1ZWE2OGUyZGVhMB4XDTIyMDEw
MTExNTUwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjAyNzAwYWEwODkw
MmYwZWU5ODE5YjY5ZmI0OWRhYjMxNjYxYjQxYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALoXbWhcjDJ3z7p7aF2Vd9QWrcLBCISQVmYrJcW1IfoMYWNi
pi0mEVv3FonimsIEsdcVk5CxwrbR2Q/Myd2pujYTzcwbmwaO/hQX77pTMSz6oZVv
LZDd7oGEqlsFgABoYZAQx+DB/1WB5BJlGy0D1Kph64nDejz2Li21MiQ+/CGDqI0P
2KDC7QfX/xzVMDqm69OSQYleMmZIYOwUymUUXDnpRFVwwPhF0YbVz+gYQkEFn1Sv
N3vO58eo4/CEDvDwCnHE7a5qR0QCTWMixrr9pxow5LZ9J0q21TUtQQXFm1hhi0Ff
oVXZk03EHfnAi8YJyEsAs9fzxBRSLR4WIQdbQYkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSwJwCqCJAvDumBm2n7SdqzFmG0GzAfBgNVHSMEGDAWgBRrwa0WdqKjKkWg
zzkvf5xepo4t6jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2E4R3RGbmFpb3lwRm9NODVMMy1jWHFhT0xlby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvMjIzOTJlLWFhNjctNDU4OC1iODA5LWVmMWFhYWFiZmUyYi8x
L3NDY0FxZ2lRTHc3cGdadHAtMG5hc3haaHRCcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
MjIzOTJlLWFhNjctNDU4OC1iODA5LWVmMWFhYWFiZmUyYi8xL2E4R3RGbmFpb3lw
Rm9NODVMMy1jWHFhT0xlby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMP4QDANBgkqhkiG9w0BAQsFAAOC
AQEAX7Nm8YlZijdSM8RkAoZE+hH5fXrc5QGyjqql7sXmgUpYCAKIhm1lLuTyU5ji
0B2DNcZjXsPJjB46204ieAwfZ5gs6bUOrUMj9OaHlmQj83FwlMZ1ZWK5dEnBb5f3
s39/kVZyBYhzbm07L0CIpehVcvpZqgUJ1fgkEV3IuLh6rwrFmeTXPgAp1+ACfSvD
PNrqVBwSJslp41eOH3MHPnVLlLraXAPFzowCmUwpNomUwx8VkMtveCnJj+HTnXzm
oIefQ303+0JClXSvnSjwRy1wb8TpH+GWFTReVVhDEHx83TG9w3CgRqgwNItRIPYS
c8y3T7XvFlH+ztKN8nSQReIWeA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org