Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/7Dhef9tHruu_0TwkUhrAlPrFiV8.roa
File: 7Dhef9tHruu_0TwkUhrAlPrFiV8.roa (raw, json)
Hash identifier: +DuMeAIV80svsbwCYzr/kj5ulU5cPXcRrjB3/8TQTHQ=
Subject key identifier: EC:38:5E:7F:DB:47:AE:EB:BF:D1:3C:24:52:1A:C0:94:FA:C5:89:5F
Certificate issuer: /CN=c9b59f41779e6f2435f59f1a171c080a5a7a44d2
Certificate serial: 0A905499
Authority key identifier: C9:B5:9F:41:77:9E:6F:24:35:F5:9F:1A:17:1C:08:0A:5A:7A:44:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybWfQXeebyQ19Z8aFxwIClp6RNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/7Dhef9tHruu_0TwkUhrAlPrFiV8.roa
Signing time: Sat 01 Jan 2022 12:03:24 +0000
ROA not before: Sat 01 Jan 2022 12:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61211
IP address blocks: 194.36.46.0/23 maxlen: 24
194.36.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177231001 (0xa905499)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b59f41779e6f2435f59f1a171c080a5a7a44d2
Validity
Not Before: Jan 1 12:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec385e7fdb47aeebbfd13c24521ac094fac5895f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:18:06:84:1e:1d:f9:8e:a3:6f:c8:3f:4b:de:
65:d0:99:3a:a8:96:55:18:7b:b8:42:1c:80:21:47:
28:68:8a:e0:61:c8:7f:af:38:c5:be:56:e6:3c:b5:
4d:e0:8c:b2:c9:a4:fe:2f:5e:f4:06:6a:ad:8a:ef:
69:1b:ba:47:fa:94:a2:24:3f:9f:50:69:22:99:85:
ec:f0:60:88:09:6d:14:18:38:31:9a:79:34:90:f7:
0b:49:e8:7e:c8:4d:be:93:03:f5:90:ef:85:2b:c4:
1d:01:53:e2:56:7c:25:be:59:fd:73:3e:ac:95:77:
2d:d0:09:88:b8:6a:72:fd:06:f5:10:e7:dd:40:e0:
c9:c8:e1:ab:4c:5a:b9:0c:dc:23:cb:81:3e:93:83:
e6:73:23:42:d1:70:25:a3:b5:5a:e9:42:62:aa:3f:
5a:ce:df:11:c4:e6:0f:bd:ea:e8:f4:e5:49:c3:06:
02:30:68:1c:b1:d1:2c:8a:3b:19:d5:fa:e0:80:8b:
08:44:dd:4d:d3:b6:32:95:ea:03:61:6e:2a:dc:0e:
51:27:0b:54:45:12:5a:9e:8d:fa:9e:5e:8e:cd:4d:
6f:db:67:89:32:2f:38:80:a4:41:20:be:d6:38:28:
5b:9d:c7:a1:4f:af:a2:eb:c6:b0:fe:87:a0:a4:8c:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:38:5E:7F:DB:47:AE:EB:BF:D1:3C:24:52:1A:C0:94:FA:C5:89:5F
X509v3 Authority Key Identifier:
keyid:C9:B5:9F:41:77:9E:6F:24:35:F5:9F:1A:17:1C:08:0A:5A:7A:44:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybWfQXeebyQ19Z8aFxwIClp6RNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/7Dhef9tHruu_0TwkUhrAlPrFiV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/ybWfQXeebyQ19Z8aFxwIClp6RNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.45.0-194.36.47.255
Signature Algorithm: sha256WithRSAEncryption
5d:13:84:aa:4e:3d:c5:59:ad:90:ba:41:cb:75:e2:25:98:74:
b0:42:5c:11:c5:8f:6c:63:53:ea:37:b2:e0:03:19:f9:4c:ce:
7c:10:b1:f1:88:11:72:93:2a:98:57:1a:14:33:77:e7:ce:da:
71:d1:af:9c:ec:f0:86:3d:21:d4:c4:a6:a2:63:62:bd:c4:eb:
55:de:87:4e:f2:f8:8a:45:56:59:0f:00:e5:4b:8d:94:fe:30:
c4:a2:4e:be:e6:9b:fe:04:c7:17:30:50:82:5d:68:22:0c:35:
79:9d:92:09:d1:d7:b9:cb:c3:8c:58:04:e2:a2:f6:0d:0c:14:
ff:7e:81:d5:b5:2d:c1:d1:b7:42:20:ac:29:c4:af:72:ca:39:
f1:5e:b7:fe:ae:e3:e3:4d:bc:d5:88:67:d6:f4:03:d2:5a:19:
b5:8d:f1:80:be:27:35:f8:a1:c0:1f:fc:83:eb:e3:63:1a:bb:
88:45:32:2a:a3:a0:78:32:5c:63:03:f9:72:58:8b:66:c8:5a:
bd:de:1a:59:8b:81:f3:f4:42:12:5a:74:d0:93:ef:2a:a0:e8:
81:98:1e:50:e1:0d:92:65:08:c7:97:ca:ce:95:32:c8:ba:75:
c4:90:63:68:c9:fd:a1:a4:58:70:f6:88:b5:96:82:62:98:26:
1c:51:97:a4
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIECpBUmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWI1OWY0MTc3OWU2ZjI0MzVmNTlmMWExNzFjMDgwYTVhN2E0NGQyMB4XDTIyMDEw
MTEyMDMyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWMzODVlN2ZkYjQ3
YWVlYmJmZDEzYzI0NTIxYWMwOTRmYWM1ODk1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIMYBoQeHfmOo2/IP0veZdCZOqiWVRh7uEIcgCFHKGiK4GHI
f684xb5W5jy1TeCMssmk/i9e9AZqrYrvaRu6R/qUoiQ/n1BpIpmF7PBgiAltFBg4
MZp5NJD3C0nofshNvpMD9ZDvhSvEHQFT4lZ8Jb5Z/XM+rJV3LdAJiLhqcv0G9RDn
3UDgycjhq0xauQzcI8uBPpOD5nMjQtFwJaO1WulCYqo/Ws7fEcTmD73q6PTlScMG
AjBoHLHRLIo7GdX64ICLCETdTdO2MpXqA2FuKtwOUScLVEUSWp6N+p5ejs1Nb9tn
iTIvOICkQSC+1jgoW53HoU+vouvGsP6HoKSMkecCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTsOF5/20eu67/RPCRSGsCU+sWJXzAfBgNVHSMEGDAWgBTJtZ9Bd55vJDX1
nxoXHAgKWnpE0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3liV2ZRWGVlYnlRMTlaOGFGeHdJQ2xwNlJOSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWYvMDI3YzhiLTQwMDktNGRhNi1hZTk3LTcyMzY3Y2JiMTllZi8x
LzdEaGVmOXRIcnV1XzBUd2tVaHJBbFByRmlWOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYv
MDI3YzhiLTQwMDktNGRhNi1hZTk3LTcyMzY3Y2JiMTllZi8xL3liV2ZRWGVlYnlR
MTlaOGFGeHdJQ2xwNlJOSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAwiQtAwQEwiQgMA0GCSqGSIb3
DQEBCwUAA4IBAQBdE4SqTj3FWa2QukHLdeIlmHSwQlwRxY9sY1PqN7LgAxn5TM58
ELHxiBFykyqYVxoUM3fnztpx0a+c7PCGPSHUxKaiY2K9xOtV3odO8viKRVZZDwDl
S42U/jDEok6+5pv+BMcXMFCCXWgiDDV5nZIJ0de5y8OMWATiovYNDBT/foHVtS3B
0bdCIKwpxK9yyjnxXrf+ruPjTbzViGfW9APSWhm1jfGAvic1+KHAH/yD6+NjGruI
RTIqo6B4MlxjA/lyWItmyFq93hpZi4Hz9EISWnTQk+8qoOiBmB5Q4Q2SZQjHl8rO
lTLIunXEkGNoyf2hpFhw9oi1loJimCYcUZek
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:48 2024 by rpki-client on console-fra.rpki-client.org