Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/kCX2V_NN2gRm5O2v5UBXKPDaGqQ.roa
File: kCX2V_NN2gRm5O2v5UBXKPDaGqQ.roa (raw, json)
Hash identifier: +MmzuK0skJ7HYas/KqmFDI88xYSMX3CxbwneWiwlAfw=
Subject key identifier: 90:25:F6:57:F3:4D:DA:04:66:E4:ED:AF:E5:40:57:28:F0:DA:1A:A4
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F839393
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/kCX2V_NN2gRm5O2v5UBXKPDaGqQ.roa
Signing time: Sat 01 Jan 2022 08:05:05 +0000
ROA not before: Sat 01 Jan 2022 08:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60375
IP address blocks: 195.209.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260281235 (0xf839393)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9025f657f34dda0466e4edafe5405728f0da1aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b9:4c:3b:05:4f:6c:79:39:5c:30:63:44:c3:
e8:57:56:28:6f:9e:8e:bb:55:1e:60:8b:d4:41:6d:
e9:29:e9:f0:e2:2f:26:b0:50:6e:36:b0:ef:73:0b:
9f:72:5a:a7:b8:d4:8b:f9:93:0f:61:e5:50:15:a3:
81:56:1c:07:f1:94:b4:ea:1f:a8:ff:fe:21:8d:9b:
78:b8:0d:58:89:61:68:4f:ef:44:66:a2:71:39:20:
b7:e0:fe:f9:b8:b5:08:f0:53:19:e7:83:7d:e2:a3:
ce:5e:30:94:47:0d:57:77:8a:cd:da:a0:15:ad:14:
6f:33:17:ff:05:75:3f:bf:d3:36:d3:98:f8:bd:93:
0d:73:71:07:4f:c0:33:0d:f0:c8:2a:39:cb:f7:89:
41:10:67:12:39:0e:4a:cc:ab:44:6e:0c:80:0f:a8:
43:a7:57:9e:f1:60:af:78:ad:a7:b8:d8:4c:68:a7:
65:04:04:5b:5e:5c:7b:62:c8:6e:85:7d:1a:35:03:
57:31:22:3d:aa:44:08:34:67:67:83:75:65:fa:f6:
cb:10:b7:4b:c3:b9:0c:e0:9c:4a:a0:f2:4a:c6:c0:
8f:7c:cc:6d:6b:cd:3b:d2:df:68:2c:1a:00:99:b5:
55:c0:d6:28:d9:1a:37:43:04:a3:b1:a8:ce:0a:7f:
61:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:25:F6:57:F3:4D:DA:04:66:E4:ED:AF:E5:40:57:28:F0:DA:1A:A4
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/kCX2V_NN2gRm5O2v5UBXKPDaGqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.209.104.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:fa:80:a0:16:fe:49:6e:0f:ee:5a:d9:0a:aa:95:fd:a9:8b:
7d:ee:0c:dc:55:e4:8c:50:39:89:c9:53:1e:ae:c2:a7:46:24:
ee:3a:85:53:fb:bf:02:ab:74:06:50:f7:99:02:28:94:35:fb:
c2:05:dd:5b:e3:d4:15:4c:fd:ba:dc:31:1d:46:51:6e:23:cf:
f3:4f:31:f6:e7:37:7f:84:24:f9:b6:96:27:6d:f3:0e:e0:a4:
48:40:40:6e:df:bb:02:5f:01:f7:fa:c3:7b:b3:be:ae:29:a0:
3d:6b:f2:e8:13:43:14:6e:fa:64:cf:fb:bd:48:21:90:0c:f1:
79:b8:4a:29:1f:85:dc:d9:53:ef:75:0d:ea:a0:cf:d7:84:12:
5d:83:ef:20:d5:10:08:cf:59:20:8d:2d:2c:02:f9:80:80:16:
f1:70:4c:06:3e:da:04:58:db:9d:c2:a3:93:d2:bf:a3:09:c6:
c5:42:0d:1d:75:d9:25:2d:56:c1:e3:bf:f6:d6:df:51:fe:a4:
7d:c5:d7:79:8a:b6:49:e9:ba:a5:07:55:27:36:cc:dc:2b:70:
00:d7:70:c1:0c:86:eb:43:f8:ae:41:e6:c7:2f:ba:d8:66:94:
d8:58:bc:c3:ab:55:ef:19:59:68:92:c6:56:97:98:58:56:12:
ee:f9:1a:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED4OTkzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NTNhM2I1ZjUxODA4MTY4YzIxMmMwOTRhMmJhYWZmMzhlMTY0NjRhMB4XDTIyMDEw
MTA4MDUwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTAyNWY2NTdmMzRk
ZGEwNDY2ZTRlZGFmZTU0MDU3MjhmMGRhMWFhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJa5TDsFT2x5OVwwY0TD6FdWKG+ejrtVHmCL1EFt6Snp8OIv
JrBQbjaw73MLn3Jap7jUi/mTD2HlUBWjgVYcB/GUtOofqP/+IY2beLgNWIlhaE/v
RGaicTkgt+D++bi1CPBTGeeDfeKjzl4wlEcNV3eKzdqgFa0UbzMX/wV1P7/TNtOY
+L2TDXNxB0/AMw3wyCo5y/eJQRBnEjkOSsyrRG4MgA+oQ6dXnvFgr3itp7jYTGin
ZQQEW15ce2LIboV9GjUDVzEiPapECDRnZ4N1Zfr2yxC3S8O5DOCcSqDySsbAj3zM
bWvNO9LfaCwaAJm1VcDWKNkaN0MEo7Gozgp/YekCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQJfZX803aBGbk7a/lQFco8NoapDAfBgNVHSMEGDAWgBQlOjtfUYCBaMIS
wJSiuq/zjhZGSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pUbzdYMUdBZ1dqQ0VzQ1VvcnF2ODQ0V1Jrby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvOTc0NzRjLTFkYzItNDYyYy1hYWRkLTllOWExZTAzNzM4ZS8x
L2tDWDJWX05OMmdSbTVPMnY1VUJYS1BEYUdxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
OTc0NzRjLTFkYzItNDYyYy1hYWRkLTllOWExZTAzNzM4ZS8xL0pUbzdYMUdBZ1dq
Q0VzQ1VvcnF2ODQ0V1Jrby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMPRaDANBgkqhkiG9w0BAQsFAAOC
AQEAvPqAoBb+SW4P7lrZCqqV/amLfe4M3FXkjFA5iclTHq7Cp0Yk7jqFU/u/Aqt0
BlD3mQIolDX7wgXdW+PUFUz9utwxHUZRbiPP808x9uc3f4Qk+baWJ23zDuCkSEBA
bt+7Al8B9/rDe7O+rimgPWvy6BNDFG76ZM/7vUghkAzxebhKKR+F3NlT73UN6qDP
14QSXYPvINUQCM9ZII0tLAL5gIAW8XBMBj7aBFjbncKjk9K/ownGxUINHXXZJS1W
weO/9tbfUf6kfcXXeYq2Sem6pQdVJzbM3CtwANdwwQyG60P4rkHmxy+62GaU2Fi8
w6tV7xlZaJLGVpeYWFYS7vka/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org