Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/7hckZYEv7o1fdqVlSQU6-9e_kTg.roa
File: 7hckZYEv7o1fdqVlSQU6-9e_kTg.roa (raw, json)
Hash identifier: FqpZW+zayAi40qwfb/DA+3n9zxwMednLVQB7mXxxnks=
Subject key identifier: EE:17:24:65:81:2F:EE:8D:5F:76:A5:65:49:05:3A:FB:D7:BF:91:38
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 015E6708
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/7hckZYEv7o1fdqVlSQU6-9e_kTg.roa
Signing time: Fri 13 May 2022 07:16:03 +0000
ROA not before: Fri 13 May 2022 07:16:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 195.95.205.0/24 maxlen: 24
195.95.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22963976 (0x15e6708)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: May 13 07:16:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee172465812fee8d5f76a56549053afbd7bf9138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ea:eb:85:b5:93:9a:af:95:79:74:c4:15:06:
07:1d:f1:a4:2b:39:f2:ac:44:c6:79:ef:04:cd:eb:
99:87:df:02:78:53:78:01:86:24:8b:0c:7c:6a:9b:
c7:ee:5a:78:97:76:ed:80:7c:50:ec:17:95:b3:af:
19:b9:b8:d7:85:0f:7b:46:45:b4:af:08:84:38:11:
e6:51:23:cb:16:1b:aa:8f:62:5c:9d:f7:7d:84:cd:
0d:5a:b7:df:81:f3:e4:85:78:35:64:99:82:c6:10:
05:d1:69:b9:92:68:a9:26:b8:19:1c:f6:64:d3:44:
55:f2:4d:f3:95:f3:49:11:82:dd:4f:56:15:f6:c1:
d9:68:28:3c:23:24:72:04:3d:93:df:df:78:3e:57:
ac:81:93:d3:08:94:8f:ab:c8:2f:da:84:9f:5e:3f:
e1:61:fa:e2:04:ff:33:b3:4b:b5:58:c8:fd:9b:a4:
af:b7:8c:b4:6c:93:2e:82:7a:6a:e3:66:96:da:28:
60:b6:5e:a3:ef:2a:23:eb:3e:f6:26:45:b2:ad:76:
93:e0:99:65:c9:fa:3d:c2:3b:65:23:0d:63:4c:dc:
0d:6d:b7:b7:42:de:3f:45:b4:32:f0:75:f2:1f:8c:
3c:45:af:0b:e2:0b:71:80:00:a8:29:62:37:85:2b:
8d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:17:24:65:81:2F:EE:8D:5F:76:A5:65:49:05:3A:FB:D7:BF:91:38
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/7hckZYEv7o1fdqVlSQU6-9e_kTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.201.0/24
195.95.205.0/24
Signature Algorithm: sha256WithRSAEncryption
62:fe:c8:8b:55:c7:2e:42:cd:41:92:29:f1:e1:6a:80:ca:35:
39:04:15:79:00:8b:b1:4f:47:d8:7a:4a:d6:b9:ac:32:b6:7a:
ac:be:4d:69:0c:48:8a:8e:27:75:79:d6:b8:0a:dd:99:cf:4a:
71:e3:97:5c:98:ad:da:77:49:0a:66:9b:0d:14:60:a2:73:9e:
60:10:57:df:f5:1c:ba:db:88:a4:ec:e0:0c:ba:b6:f8:f9:80:
0b:68:bb:af:23:c5:6a:fb:0b:99:68:2b:28:d2:83:22:11:bf:
7f:c4:49:ab:7b:02:cb:9c:f7:d9:c3:d2:19:4c:51:fe:4a:64:
dc:ca:4d:65:be:cb:9d:58:11:d5:d9:c9:1d:24:33:11:5b:6b:
25:21:9e:bf:95:56:77:8d:4d:43:9a:6b:e3:01:36:58:4d:e5:
88:55:41:0e:16:fa:32:01:e5:e7:3a:f2:3c:a8:0f:8f:ee:78:
7f:c6:98:02:b3:02:97:62:2a:36:4d:55:57:d2:6e:20:74:52:
be:bd:3b:dc:13:a8:9d:73:c0:f4:34:2f:c2:2b:17:46:51:6e:
48:c6:3a:2b:ca:30:fc:60:00:64:d8:ef:17:ad:06:78:11:97:
b7:3c:77:b4:31:45:8d:38:62:1d:1f:62:2c:41:5b:ad:2f:42:
a2:fa:f7:66
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAV5nCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZTgyOTYzZmYxYWE3MGFiMTBkMWQzM2U4NmIxZDZkNDk0ZDZjZTUxMB4XDTIyMDUx
MzA3MTYwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWUxNzI0NjU4MTJm
ZWU4ZDVmNzZhNTY1NDkwNTNhZmJkN2JmOTEzODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTq64W1k5qvlXl0xBUGBx3xpCs58qxExnnvBM3rmYffAnhT
eAGGJIsMfGqbx+5aeJd27YB8UOwXlbOvGbm414UPe0ZFtK8IhDgR5lEjyxYbqo9i
XJ33fYTNDVq334Hz5IV4NWSZgsYQBdFpuZJoqSa4GRz2ZNNEVfJN85XzSRGC3U9W
FfbB2WgoPCMkcgQ9k9/feD5XrIGT0wiUj6vIL9qEn14/4WH64gT/M7NLtVjI/Zuk
r7eMtGyTLoJ6auNmltooYLZeo+8qI+s+9iZFsq12k+CZZcn6PcI7ZSMNY0zcDW23
t0LeP0W0MvB18h+MPEWvC+ILcYAAqCliN4UrjU8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTuFyRlgS/ujV92pWVJBTr717+RODAfBgNVHSMEGDAWgBQugpY/8apwqxDR
0z6GsdbUlNbOUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xvS1dQX0dxY0tzUTBkTS1ockhXMUpUV3psRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTIvOTU3YzY4LTZmMjctNDBlZC1hYmVkLWRmNjRmMGU4MjM2MC8x
LzdoY2taWUV2N28xZmRxVmxTUVU2LTllX2tUZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIv
OTU3YzY4LTZmMjctNDBlZC1hYmVkLWRmNjRmMGU4MjM2MC8xL0xvS1dQX0dxY0tz
UTBkTS1ockhXMUpUV3psRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMNfyQMEAMNfzTANBgkqhkiG9w0B
AQsFAAOCAQEAYv7Ii1XHLkLNQZIp8eFqgMo1OQQVeQCLsU9H2HpK1rmsMrZ6rL5N
aQxIio4ndXnWuArdmc9KceOXXJit2ndJCmabDRRgonOeYBBX3/UcutuIpOzgDLq2
+PmAC2i7ryPFavsLmWgrKNKDIhG/f8RJq3sCy5z32cPSGUxR/kpk3MpNZb7LnVgR
1dnJHSQzEVtrJSGev5VWd41NQ5pr4wE2WE3liFVBDhb6MgHl5zryPKgPj+54f8aY
ArMCl2IqNk1VV9JuIHRSvr073BOonXPA9DQvwisXRlFuSMY6K8ow/GAAZNjvF60G
eBGXtzx3tDFFjThiHR9iLEFbrS9Covr3Zg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org