Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/1-laAuAb3XztNytNCR5LU4uq-3bw.roa
File: 1-laAuAb3XztNytNCR5LU4uq-3bw.roa (raw, json)
Hash identifier: CQ1hPay43YMATHpcULZRbTERPTJrEr+KOb9Ac94BIy4=
Subject key identifier: FA:56:80:B8:06:F7:5F:3B:4D:CA:D3:42:47:92:D4:E2:EA:BE:DD:BC
Certificate issuer: /CN=9098153bde0e34584bac91fa1868d7ef24d68bcf
Certificate serial: 039E2BAD
Authority key identifier: 90:98:15:3B:DE:0E:34:58:4B:AC:91:FA:18:68:D7:EF:24:D6:8B:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kJgVO94ONFhLrJH6GGjX7yTWi88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/1-laAuAb3XztNytNCR5LU4uq-3bw.roa
Signing time: Sat 01 Jan 2022 12:02:19 +0000
ROA not before: Sat 01 Jan 2022 12:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210921
IP address blocks: 193.218.190.0/24 maxlen: 24
94.158.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60697517 (0x39e2bad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9098153bde0e34584bac91fa1868d7ef24d68bcf
Validity
Not Before: Jan 1 12:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa5680b806f75f3b4dcad3424792d4e2eabeddbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ed:28:be:31:ed:08:e3:46:9e:fb:b3:a7:2c:
81:57:a9:f2:97:b4:67:74:bd:e5:c7:c3:51:5e:c5:
2c:32:1c:c1:7f:69:33:4f:28:a7:9c:f8:90:e4:0b:
f2:87:3b:18:1c:27:88:6c:6c:30:f9:12:ae:25:66:
5b:72:0a:42:0a:80:bc:fa:81:d8:e5:ec:6c:3e:97:
b6:75:76:e7:eb:15:56:42:95:b9:f4:84:75:1f:a4:
79:77:31:ce:7d:cd:6b:90:27:78:03:68:ba:6d:4f:
75:f6:96:d7:d1:b1:59:89:d4:fb:18:60:dc:81:54:
b5:55:c4:6e:39:af:9a:55:70:55:08:28:49:13:76:
f0:87:41:58:97:60:86:2c:19:19:8b:31:c1:e5:70:
19:d2:70:82:7f:e1:52:32:3a:bf:f9:15:76:ca:61:
75:95:50:65:10:35:23:47:db:a1:59:4c:d2:5f:4c:
6a:14:e0:c3:81:ea:4d:89:3d:f7:7b:ca:bd:38:e1:
cb:ba:d8:1e:10:7f:9d:e9:11:cc:8b:bc:50:2b:1e:
f8:b3:3a:c4:83:2e:4e:4c:47:26:58:cf:2b:01:77:
b4:ba:6a:14:f7:11:b8:81:33:69:39:f1:9b:ab:ef:
6b:a0:78:59:1b:3f:ef:8e:86:97:e3:f8:b0:c2:f0:
d0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:56:80:B8:06:F7:5F:3B:4D:CA:D3:42:47:92:D4:E2:EA:BE:DD:BC
X509v3 Authority Key Identifier:
keyid:90:98:15:3B:DE:0E:34:58:4B:AC:91:FA:18:68:D7:EF:24:D6:8B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kJgVO94ONFhLrJH6GGjX7yTWi88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/1-laAuAb3XztNytNCR5LU4uq-3bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/kJgVO94ONFhLrJH6GGjX7yTWi88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.158.219.0/24
193.218.190.0/24
Signature Algorithm: sha256WithRSAEncryption
87:c3:4b:7a:63:35:b7:02:44:47:02:9c:78:c5:53:09:8f:17:
16:13:9f:59:8c:db:89:3e:f4:82:af:93:d1:23:38:2d:32:0c:
98:aa:8a:77:fc:2b:d4:9d:83:86:70:d6:85:53:16:08:97:c9:
48:bd:e1:49:b6:dd:98:9a:8e:57:15:2d:c3:a8:f9:53:38:3c:
33:e3:6e:c5:87:91:af:9f:15:0d:95:c4:57:43:ca:97:4e:c8:
af:6c:c8:98:e7:28:e0:83:21:14:ee:f8:ab:b8:8a:03:96:55:
06:30:f0:f9:0f:27:fc:13:e8:c0:a5:50:4d:e6:4d:87:7d:10:
1a:08:98:36:2b:14:37:77:d7:3f:82:1e:55:32:88:61:0f:79:
56:c6:a7:a6:23:94:f8:6b:85:3b:5b:16:5f:c6:ed:43:f1:af:
a9:12:8e:ca:84:83:db:54:70:e7:d2:a7:5d:ca:bb:c8:72:a0:
45:82:36:43:70:7e:8a:59:0b:28:e1:1f:2f:8b:8b:52:77:03:
e7:40:0e:76:a4:db:8b:83:85:7d:a2:85:c7:3e:59:ba:05:f2:
2d:46:85:f1:b0:a2:1d:e9:72:a2:f9:94:73:14:72:1c:0d:db:
32:da:03:f7:d6:38:d6:31:d2:18:db:3e:16:39:e5:d5:cc:f1:
a8:44:2d:35
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIEA54rrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MDk4MTUzYmRlMGUzNDU4NGJhYzkxZmExODY4ZDdlZjI0ZDY4YmNmMB4XDTIyMDEw
MTEyMDIxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmE1NjgwYjgwNmY3
NWYzYjRkY2FkMzQyNDc5MmQ0ZTJlYWJlZGRiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI3tKL4x7QjjRp77s6csgVep8pe0Z3S95cfDUV7FLDIcwX9p
M08op5z4kOQL8oc7GBwniGxsMPkSriVmW3IKQgqAvPqB2OXsbD6XtnV25+sVVkKV
ufSEdR+keXcxzn3Na5AneANoum1PdfaW19GxWYnU+xhg3IFUtVXEbjmvmlVwVQgo
SRN28IdBWJdghiwZGYsxweVwGdJwgn/hUjI6v/kVdsphdZVQZRA1I0fboVlM0l9M
ahTgw4HqTYk993vKvTjhy7rYHhB/nekRzIu8UCse+LM6xIMuTkxHJljPKwF3tLpq
FPcRuIEzaTnxm6vva6B4WRs/746Gl+P4sMLw0OUCAwEAAaOCAhAwggIMMB0GA1Ud
DgQWBBT6VoC4BvdfO03K00JHktTi6r7dvDAfBgNVHSMEGDAWgBSQmBU73g40WEus
kfoYaNfvJNaLzzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tKZ1ZPOTRPTkZoTHJKSDZHR2pYN3lUV2k4OC5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWUvYmE5MDAzLWQ0MzMtNDA5NS04NGI3LTJmOTMzZDk4OTZlMC8x
LzEtbGFBdUFiM1h6dE55dE5DUjVMVTR1cS0zYncucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzll
L2JhOTAwMy1kNDMzLTQwOTUtODRiNy0yZjkzM2Q5ODk2ZTAvMS9rSmdWTzk0T05G
aExySkg2R0dqWDd5VFdpODguY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
JQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBABentsDBADB2r4wDQYJKoZIhvcN
AQELBQADggEBAIfDS3pjNbcCREcCnHjFUwmPFxYTn1mM24k+9IKvk9EjOC0yDJiq
inf8K9Sdg4Zw1oVTFgiXyUi94Um23ZiajlcVLcOo+VM4PDPjbsWHka+fFQ2VxFdD
ypdOyK9syJjnKOCDIRTu+Ku4igOWVQYw8PkPJ/wT6MClUE3mTYd9EBoImDYrFDd3
1z+CHlUyiGEPeVbGp6YjlPhrhTtbFl/G7UPxr6kSjsqEg9tUcOfSp13Ku8hyoEWC
NkNwfopZCyjhHy+Li1J3A+dADnak24uDhX2ihcc+WboF8i1GhfGwoh3pcqL5lHMU
chwN2zLaA/fWONYx0hjbPhY55dXM8ahELTU=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:05 2023 by rpki-client on console-fra.rpki-client.org