Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/rxgNGTZLgbq98-F7TMlc5hDg4iU.roa
File: rxgNGTZLgbq98-F7TMlc5hDg4iU.roa (raw, json)
Hash identifier: Zh+sE6A6G2MeuGkv/NLCi2C7ssO1abjh/xHAbu4Qnw4=
Subject key identifier: AF:18:0D:19:36:4B:81:BA:BD:F3:E1:7B:4C:C9:5C:E6:10:E0:E2:25
Certificate issuer: /CN=7be907dd202152cf1902bedbecb19a2d72ac0859
Certificate serial: 01BB55
Authority key identifier: 7B:E9:07:DD:20:21:52:CF:19:02:BE:DB:EC:B1:9A:2D:72:AC:08:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/rxgNGTZLgbq98-F7TMlc5hDg4iU.roa
Signing time: Wed 30 Mar 2022 08:07:17 +0000
ROA not before: Wed 30 Mar 2022 08:07:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43028
IP address blocks: 94.140.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113493 (0x1bb55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7be907dd202152cf1902bedbecb19a2d72ac0859
Validity
Not Before: Mar 30 08:07:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af180d19364b81babdf3e17b4cc95ce610e0e225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b8:0f:e3:bd:30:d7:31:4c:c0:87:dc:f5:53:
6b:ec:1e:0e:38:d5:88:90:36:c2:4c:7a:fb:65:73:
52:e4:ad:d5:1c:ac:3e:f4:64:c0:60:87:51:b5:0d:
b2:23:eb:e5:7a:dc:82:e2:fc:8e:49:77:df:f7:9e:
eb:f3:dd:77:52:5d:d7:54:7a:01:65:07:90:c4:ea:
96:8c:c4:61:96:70:23:9e:36:77:bb:1c:5c:f4:fd:
87:74:38:b1:2b:af:8f:4d:16:3d:e5:97:62:73:81:
c6:d3:8e:17:70:4f:c2:4c:b4:a5:c3:11:f7:9a:ae:
89:2a:e1:e5:b7:24:51:83:52:f5:ad:b9:01:d8:6e:
cd:b6:60:4b:68:eb:46:16:12:f4:da:95:d0:a1:87:
c1:5d:00:5d:c0:4d:4f:5a:a9:c4:ba:17:42:84:ed:
90:76:8c:b6:a9:f4:60:f1:46:8f:da:44:d3:53:72:
d3:ad:7f:4a:16:b8:b0:1e:81:06:ea:15:3b:6f:4e:
ab:0d:94:90:fa:1f:ba:b5:1f:b4:2b:dc:a9:9c:1e:
ca:34:7f:fd:49:b2:77:f9:82:29:08:9c:70:a5:f5:
bc:e0:ee:b4:98:23:13:66:31:27:77:0c:ae:35:67:
9c:8d:97:86:0d:f9:b8:48:f7:80:65:2b:6d:d7:06:
c8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:18:0D:19:36:4B:81:BA:BD:F3:E1:7B:4C:C9:5C:E6:10:E0:E2:25
X509v3 Authority Key Identifier:
keyid:7B:E9:07:DD:20:21:52:CF:19:02:BE:DB:EC:B1:9A:2D:72:AC:08:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/rxgNGTZLgbq98-F7TMlc5hDg4iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.104.0/23
Signature Algorithm: sha256WithRSAEncryption
34:f0:71:2e:64:54:8e:f6:f1:23:80:5a:3d:e2:e7:eb:04:42:
a4:72:42:2f:d8:27:f6:31:ab:f4:8c:6f:ef:d1:d4:e4:97:d7:
2d:b3:de:a7:d9:d5:44:66:d7:84:ec:3b:b7:32:a2:1d:48:7c:
4c:1e:e4:b3:de:52:86:ad:9c:15:d8:34:d9:50:7e:4a:46:cd:
d2:2c:e3:4a:24:6b:56:af:5e:34:d7:c5:85:61:60:0d:04:70:
c9:07:b3:21:58:1a:57:e1:b9:cc:9f:92:6f:bb:dd:93:82:28:
35:48:22:45:04:99:e3:f6:66:f4:0e:df:b3:ea:7b:27:30:59:
75:bf:ec:aa:b9:1d:9a:9c:9e:d9:4b:b6:3a:c6:40:de:32:94:
4d:62:95:49:b4:5a:25:91:44:ad:5c:c7:c4:cc:6d:b7:6f:e8:
e4:41:1b:ab:dc:34:d7:7a:df:c1:1d:95:8a:23:42:0d:28:e9:
d5:30:c9:69:94:e5:ce:05:b6:b7:de:3b:8c:47:43:33:cb:28:
53:96:2f:a1:4f:a5:1c:32:08:73:7b:bf:37:5c:96:da:a6:dc:
97:27:67:b5:51:b3:f4:36:7e:b3:e5:79:9f:e7:7b:f1:bd:8f:
df:81:c1:e1:ea:a2:7d:fa:3b:3e:7d:ee:e2:35:b3:8d:94:16:
4f:20:61:49
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAbtVMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdi
ZTkwN2RkMjAyMTUyY2YxOTAyYmVkYmVjYjE5YTJkNzJhYzA4NTkwHhcNMjIwMzMw
MDgwNzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhZjE4MGQxOTM2NGI4
MWJhYmRmM2UxN2I0Y2M5NWNlNjEwZTBlMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA1bgP470w1zFMwIfc9VNr7B4OONWIkDbCTHr7ZXNS5K3VHKw+
9GTAYIdRtQ2yI+vletyC4vyOSXff957r8913Ul3XVHoBZQeQxOqWjMRhlnAjnjZ3
uxxc9P2HdDixK6+PTRY95Zdic4HG044XcE/CTLSlwxH3mq6JKuHltyRRg1L1rbkB
2G7NtmBLaOtGFhL02pXQoYfBXQBdwE1PWqnEuhdChO2Qdoy2qfRg8UaP2kTTU3LT
rX9KFriwHoEG6hU7b06rDZSQ+h+6tR+0K9ypnB7KNH/9SbJ3+YIpCJxwpfW84O60
mCMTZjEndwyuNWecjZeGDfm4SPeAZStt1wbIlQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFK8YDRk2S4G6vfPhe0zJXOYQ4OIlMB8GA1UdIwQYMBaAFHvpB90gIVLPGQK+
2+yxmi1yrAhZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZS1rSDNTQWhVczhaQXI3YjdMR2FMWEtzQ0ZrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iOC8yNWU3NmEtZDE0MC00ZTBiLTg4ZTQtZWYyMTkzODFmMTBlLzEv
cnhnTkdUWkxnYnE5OC1GN1RNbGM1aERnNGlVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC8y
NWU3NmEtZDE0MC00ZTBiLTg4ZTQtZWYyMTkzODFmMTBlLzEvZS1rSDNTQWhVczha
QXI3YjdMR2FMWEtzQ0ZrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXoxoMA0GCSqGSIb3DQEBCwUAA4IB
AQA08HEuZFSO9vEjgFo94ufrBEKkckIv2Cf2Mav0jG/v0dTkl9cts96n2dVEZteE
7Du3MqIdSHxMHuSz3lKGrZwV2DTZUH5KRs3SLONKJGtWr14018WFYWANBHDJB7Mh
WBpX4bnMn5Jvu92Tgig1SCJFBJnj9mb0Dt+z6nsnMFl1v+yquR2anJ7ZS7Y6xkDe
MpRNYpVJtFolkUStXMfEzG23b+jkQRur3DTXet/BHZWKI0INKOnVMMlplOXOBba3
3juMR0MzyyhTli+hT6UcMghze783XJbaptyXJ2e1UbP0Nn6z5Xmf53vxvY/fgcHh
6qJ9+js+fe7iNbONlBZPIGFJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:08 2024 by rpki-client on console-fra.rpki-client.org