Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/I_S6QmkNA2hy_lkE7izRU5Soxps.roa
File: I_S6QmkNA2hy_lkE7izRU5Soxps.roa (raw, json)
Hash identifier: is0g95+Ylvf+lKIXarkBIkRmDZDf575DFr5GcVoEP6I=
Subject key identifier: 23:F4:BA:42:69:0D:03:68:72:FE:59:04:EE:2C:D1:53:94:A8:C6:9B
Certificate issuer: /CN=bd2a6a2232c439f04620c82b4d7e14e9df721143
Certificate serial: 01853F34480225BE592187D9F9F19C1A844B
Authority key identifier: BD:2A:6A:22:32:C4:39:F0:46:20:C8:2B:4D:7E:14:E9:DF:72:11:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpqIjLEOfBGIMgrTX4U6d9yEUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/I_S6QmkNA2hy_lkE7izRU5Soxps.roa
Signing time: Fri 23 Dec 2022 13:37:48 +0000
ROA not before: Fri 23 Dec 2022 13:37:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 195.206.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3f:34:48:02:25:be:59:21:87:d9:f9:f1:9c:1a:84:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a6a2232c439f04620c82b4d7e14e9df721143
Validity
Not Before: Dec 23 13:37:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23f4ba42690d036872fe5904ee2cd15394a8c69b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:38:b8:62:60:06:b0:0e:74:ff:5e:dd:2d:dd:
45:97:b3:4f:a1:21:13:b1:c3:5d:83:9f:bf:39:b2:
e7:95:13:29:37:2a:d7:55:42:72:b6:93:db:7c:bc:
e9:d0:75:36:6c:5f:db:83:2b:3c:0f:28:97:f9:3c:
1e:3f:c6:61:c8:93:4d:de:63:18:41:70:0e:1a:f8:
73:c1:69:d0:3d:42:35:5c:a5:8e:01:68:32:f4:3e:
9a:9b:d6:6c:40:45:57:0b:a4:2e:40:b2:21:db:09:
3f:42:a8:43:25:a1:df:62:54:88:90:5a:2f:47:cd:
9a:45:00:90:6c:6a:b5:5a:1e:f4:8e:35:14:48:94:
07:af:bd:02:d9:f0:d5:1f:2a:f8:a4:74:a5:51:ca:
66:c8:dd:9a:17:07:30:d3:74:bd:00:99:fd:88:82:
8e:09:90:dc:1a:c4:87:ad:6b:bd:35:1e:65:0c:9e:
6b:63:aa:69:10:4d:72:75:e9:4e:4d:cf:60:9d:e1:
99:86:b1:4c:a5:85:0d:f5:9a:3e:fc:5e:4c:a5:45:
56:a2:98:93:32:a5:57:19:67:a5:91:b4:53:bf:7d:
b9:01:42:52:55:7d:36:da:6c:c2:7e:83:61:8b:88:
d6:d0:42:91:f1:29:ee:9d:7d:9e:78:1c:3a:9f:9b:
df:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F4:BA:42:69:0D:03:68:72:FE:59:04:EE:2C:D1:53:94:A8:C6:9B
X509v3 Authority Key Identifier:
keyid:BD:2A:6A:22:32:C4:39:F0:46:20:C8:2B:4D:7E:14:E9:DF:72:11:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpqIjLEOfBGIMgrTX4U6d9yEUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/I_S6QmkNA2hy_lkE7izRU5Soxps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/vSpqIjLEOfBGIMgrTX4U6d9yEUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.206.242.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:df:39:db:20:70:60:85:47:ef:68:5f:65:1f:8f:d5:9d:a8:
85:6d:35:f1:30:8d:2e:dd:71:0d:e3:91:70:b3:c2:7c:7e:ff:
5f:99:b5:1c:63:77:12:75:67:61:3c:ce:2d:47:31:82:4e:85:
73:cc:59:e5:9d:f6:9b:f7:53:fd:e2:55:20:c5:37:af:5f:7d:
93:68:40:61:d3:0a:54:6f:01:b2:b0:e5:b4:70:46:01:27:bf:
a0:bb:5b:57:9e:1d:f7:b2:0c:d3:5c:ee:db:43:ee:79:90:f6:
8b:5f:e5:76:b2:c4:f6:d3:9a:cf:5c:03:94:26:33:e7:2a:01:
aa:9b:f7:8f:6e:a2:40:5b:88:e8:97:06:93:df:ff:31:38:e8:
ef:a9:95:75:96:95:5d:10:3d:bf:e0:c2:52:57:b0:ab:4b:e5:
d9:90:b9:14:67:8f:47:6b:8b:e2:e7:89:99:4d:77:f1:32:a2:
33:ae:26:02:9e:6a:d0:82:71:1d:95:73:0c:83:64:0c:ac:2d:
c9:43:84:2c:72:4e:c2:56:6a:63:e8:6f:15:d3:a5:77:d7:5f:
d8:98:70:af:cd:36:49:07:b9:4a:df:68:f6:fd:b7:a7:9f:9c:
27:e8:38:26:20:38:31:a0:34:6b:8b:bb:5e:99:c7:35:47:a4:
00:3e:91:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU/NEgCJb5ZIYfZ+fGcGoRLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMmE2YTIyMzJjNDM5ZjA0NjIwYzgyYjRkN2UxNGU5ZGY3
MjExNDMwHhcNMjIxMjIzMTMzNzQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyM2Y0YmE0MjY5MGQwMzY4NzJmZTU5MDRlZTJjZDE1Mzk0YThjNjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzi4YmAGsA50/17dLd1Fl7NPoSET
scNdg5+/ObLnlRMpNyrXVUJytpPbfLzp0HU2bF/bgys8DyiX+TweP8ZhyJNN3mMY
QXAOGvhzwWnQPUI1XKWOAWgy9D6am9ZsQEVXC6QuQLIh2wk/QqhDJaHfYlSIkFov
R82aRQCQbGq1Wh70jjUUSJQHr70C2fDVHyr4pHSlUcpmyN2aFwcw03S9AJn9iIKO
CZDcGsSHrWu9NR5lDJ5rY6ppEE1ydelOTc9gneGZhrFMpYUN9Zo+/F5MpUVWopiT
MqVXGWelkbRTv325AUJSVX022mzCfoNhi4jW0EKR8SnunX2eeBw6n5vfpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCP0ukJpDQNocv5ZBO4s0VOUqMabMB8GA1UdIwQY
MBaAFL0qaiIyxDnwRiDIK01+FOnfchFDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlNwcUlqTEVPZkJHSU1nclRYNFU2ZDl5RVVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi82YWZkNjAtODNlOC00MjNkLTg3OGIt
OTA5YjZhYjg1ZWU5LzEvSV9TNlFta05BMmh5X2xrRTdpelJVNVNveHBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi82YWZkNjAtODNlOC00MjNkLTg3OGItOTA5YjZhYjg1ZWU5
LzEvdlNwcUlqTEVPZkJHSU1nclRYNFU2ZDl5RVVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw87yMA0G
CSqGSIb3DQEBCwUAA4IBAQBa3znbIHBghUfvaF9lH4/VnaiFbTXxMI0u3XEN45Fw
s8J8fv9fmbUcY3cSdWdhPM4tRzGCToVzzFnlnfab91P94lUgxTevX32TaEBh0wpU
bwGysOW0cEYBJ7+gu1tXnh33sgzTXO7bQ+55kPaLX+V2ssT205rPXAOUJjPnKgGq
m/ePbqJAW4jolwaT3/8xOOjvqZV1lpVdED2/4MJSV7CrS+XZkLkUZ49Ha4vi54mZ
TXfxMqIzriYCnmrQgnEdlXMMg2QMrC3JQ4Qsck7CVmpj6G8V06V311/YmHCvzTZJ
B7lK32j2/benn5wn6DgmIDgxoDRri7temcc1R6QAPpGu
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:40 2023 by rpki-client on console-ams.rpki-client.org