Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/dXJ1kiK7EIqi8vay3cfZaZJEh3U.roa
File: dXJ1kiK7EIqi8vay3cfZaZJEh3U.roa (raw, json)
Hash identifier: lBqdfBEoa65iPReG1OEg29C2jYQWjwy6xknBq7wllIA=
Subject key identifier: 75:72:75:92:22:BB:10:8A:A2:F2:F6:B2:DD:C7:D9:69:92:44:87:75
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 05A37655
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/dXJ1kiK7EIqi8vay3cfZaZJEh3U.roa
Signing time: Sat 01 Jan 2022 07:04:05 +0000
ROA not before: Sat 01 Jan 2022 07:04:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59511
IP address blocks: 94.177.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94598741 (0x5a37655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:04:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7572759222bb108aa2f2f6b2ddc7d96992448775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:08:ff:a5:3f:ce:ee:a5:55:90:bc:bc:4e:d7:
32:30:29:8b:e5:aa:06:20:cf:8a:77:ce:b1:c8:00:
fd:4e:a0:ea:9b:85:0f:8e:0e:ee:9f:5b:80:34:98:
91:d9:91:72:da:4a:78:8e:b8:fd:12:40:b4:aa:1d:
15:18:41:7e:a5:53:97:44:ab:29:61:62:25:1a:3d:
90:43:ab:ee:85:d9:0e:02:aa:55:93:3c:1f:37:25:
27:00:42:07:d8:75:69:21:6b:b5:cc:7f:e0:0b:2a:
af:c7:8d:87:7d:24:11:e1:4f:fb:f8:49:38:d6:11:
9e:23:cc:f2:ce:a1:82:db:80:6a:ca:94:e4:38:f0:
e9:18:5e:69:a9:38:db:3f:fe:a5:24:03:91:a5:01:
34:18:ca:50:22:8f:79:12:28:87:06:1d:69:68:e9:
92:81:6c:f2:08:d0:b3:33:db:55:c4:25:8e:06:df:
67:d0:63:f8:9c:e1:3f:54:3a:d3:fb:e6:68:9d:51:
04:57:15:d1:00:b8:3e:d0:92:f0:93:7c:86:54:d0:
86:7d:b5:1f:83:66:75:86:de:5d:f9:61:5a:1b:8c:
6c:3d:31:7a:3a:21:bb:e5:cd:d5:a3:7f:6f:5e:68:
d2:22:e7:32:38:f3:c0:90:e5:8e:c8:c3:91:83:36:
2d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:72:75:92:22:BB:10:8A:A2:F2:F6:B2:DD:C7:D9:69:92:44:87:75
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/dXJ1kiK7EIqi8vay3cfZaZJEh3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.26.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:5b:e5:15:6a:86:bf:f7:29:3d:fe:f3:40:39:d4:06:6c:81:
f3:50:1e:e9:7a:d4:82:09:84:f0:6d:67:fc:54:26:c6:54:e8:
6b:c6:1e:b1:57:47:9c:94:cb:64:24:e4:46:f8:17:c0:2c:b1:
28:bb:fc:27:8b:69:60:ad:19:83:17:68:86:bc:12:50:6c:aa:
1d:65:b6:7f:2e:8e:c1:16:48:c9:11:0a:46:84:23:81:45:02:
82:9e:85:59:1e:29:c2:5c:ee:f5:27:9b:8e:20:3f:db:fa:1d:
a1:91:6c:06:61:89:c7:49:a1:c4:70:55:c6:26:62:1c:fe:f7:
0f:25:64:7f:54:15:b9:6a:46:2b:1e:74:4f:b8:3f:91:67:38:
32:bc:42:85:19:e3:c4:9b:ae:cd:5c:7e:ef:4f:99:72:bf:ed:
47:05:42:44:12:34:7d:11:01:b9:1f:27:76:01:14:bc:ad:0e:
15:0f:2e:d9:6b:3b:21:2b:b5:72:ef:5a:9d:f9:ce:18:8b:07:
12:40:d0:af:97:f4:41:7f:fd:bb:69:1f:1b:e4:19:52:de:74:
f6:9c:27:54:fc:17:1a:94:4d:96:6e:92:82:b0:a0:bf:42:8e:
1e:fa:3e:e2:0e:c3:1d:cf:42:5d:4c:0b:0f:2c:f1:ef:4b:8c:
0d:fc:eb:80
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBaN2VTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Y2VmNThkNGNmYTM1NTQzZjg0ODhhMjc1NmU2OTI0ZTY0N2I0NTg5MB4XDTIyMDEw
MTA3MDQwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzU3Mjc1OTIyMmJi
MTA4YWEyZjJmNmIyZGRjN2Q5Njk5MjQ0ODc3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKAI/6U/zu6lVZC8vE7XMjApi+WqBiDPinfOscgA/U6g6puF
D44O7p9bgDSYkdmRctpKeI64/RJAtKodFRhBfqVTl0SrKWFiJRo9kEOr7oXZDgKq
VZM8HzclJwBCB9h1aSFrtcx/4Asqr8eNh30kEeFP+/hJONYRniPM8s6hgtuAasqU
5Djw6Rheaak42z/+pSQDkaUBNBjKUCKPeRIohwYdaWjpkoFs8gjQszPbVcQljgbf
Z9Bj+JzhP1Q60/vmaJ1RBFcV0QC4PtCS8JN8hlTQhn21H4NmdYbeXflhWhuMbD0x
ejohu+XN1aN/b15o0iLnMjjzwJDljsjDkYM2LXECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR1cnWSIrsQiqLy9rLdx9lpkkSHdTAfBgNVHSMEGDAWgBTc71jUz6NVQ/hI
iidW5pJOZHtFiTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNPOVkxTS1qVlVQNFNJb25WdWFTVG1SN1JZay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWEvZWE0NDU1LTc4MzYtNDRjNC1iMmEzLTJlY2UwNGUxODVjMi8x
L2RYSjFraUs3RUlxaTh2YXkzY2ZaYVpKRWgzVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWEv
ZWE0NDU1LTc4MzYtNDRjNC1iMmEzLTJlY2UwNGUxODVjMi8xLzNPOVkxTS1qVlVQ
NFNJb25WdWFTVG1SN1JZay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF6xGjANBgkqhkiG9w0BAQsFAAOC
AQEAx1vlFWqGv/cpPf7zQDnUBmyB81Ae6XrUggmE8G1n/FQmxlToa8YesVdHnJTL
ZCTkRvgXwCyxKLv8J4tpYK0ZgxdohrwSUGyqHWW2fy6OwRZIyREKRoQjgUUCgp6F
WR4pwlzu9SebjiA/2/odoZFsBmGJx0mhxHBVxiZiHP73DyVkf1QVuWpGKx50T7g/
kWc4MrxChRnjxJuuzVx+70+Zcr/tRwVCRBI0fREBuR8ndgEUvK0OFQ8u2Ws7ISu1
cu9anfnOGIsHEkDQr5f0QX/9u2kfG+QZUt509pwnVPwXGpRNlm6SgrCgv0KOHvo+
4g7DHc9CXUwLDyzx70uMDfzrgA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-fra.rpki-client.org