Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/4a02af-d548-44cf-9df8-13f898bc7d0e/1/PItytsxevu2thZ248OOAeWliUi0.roa
File: PItytsxevu2thZ248OOAeWliUi0.roa (raw, json)
Hash identifier: KrjEdWgZfo520VtLDRgxHUqyAbTamQ6W2vjquTG9ZVw=
Subject key identifier: 3C:8B:72:B6:CC:5E:BE:ED:AD:85:9D:B8:F0:E3:80:79:69:62:52:2D
Certificate issuer: /CN=9fe98ee6cfb3fba83b972ae12653b5d9fc70702e
Certificate serial: 02070A
Authority key identifier: 9F:E9:8E:E6:CF:B3:FB:A8:3B:97:2A:E1:26:53:B5:D9:FC:70:70:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n-mO5s-z-6g7lyrhJlO12fxwcC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/4a02af-d548-44cf-9df8-13f898bc7d0e/1/PItytsxevu2thZ248OOAeWliUi0.roa
Signing time: Tue 03 May 2022 10:00:57 +0000
ROA not before: Tue 03 May 2022 10:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12302
IP address blocks: 194.102.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132874 (0x2070a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fe98ee6cfb3fba83b972ae12653b5d9fc70702e
Validity
Not Before: May 3 10:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c8b72b6cc5ebeedad859db8f0e380796962522d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c0:af:50:ea:45:5f:b6:55:fb:e3:10:bc:30:
87:1d:0f:20:d0:e5:41:a9:db:cf:26:8e:85:5e:3f:
cf:d1:73:88:98:64:80:da:60:3f:59:f7:58:cf:fa:
d3:7d:a9:37:a7:38:ac:c0:f0:c0:d9:ab:5c:2b:06:
94:af:57:c0:54:29:60:4f:01:60:9d:39:29:a5:d0:
80:33:de:32:e8:ce:83:d1:d0:75:29:fa:aa:ae:5e:
db:ac:02:1a:51:42:e9:eb:ae:b9:e3:d2:cc:dc:b1:
95:32:45:cc:e7:a2:f6:7c:77:2c:57:4a:56:c1:98:
f2:01:c9:b5:45:02:d9:64:f3:be:45:96:0c:4c:0c:
28:bf:ff:06:fa:b3:4b:bf:cf:5a:05:52:6f:62:9e:
4a:b6:3f:76:38:7e:52:69:fe:b6:1d:9f:ea:da:e4:
25:34:1f:3b:e6:92:fd:cd:14:70:e5:7d:52:0f:f5:
b1:e5:de:55:24:9b:1e:21:c6:f4:5b:55:b1:c9:8f:
59:9d:76:39:34:ad:46:6c:70:13:15:75:aa:81:73:
a0:41:06:31:2f:d5:49:66:52:cf:71:b3:5d:51:9b:
7c:1c:6b:be:bf:1b:68:3b:00:d4:9a:70:ef:44:3d:
00:5c:41:03:b5:dd:3a:3f:bf:5a:02:16:30:ae:e3:
0a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:8B:72:B6:CC:5E:BE:ED:AD:85:9D:B8:F0:E3:80:79:69:62:52:2D
X509v3 Authority Key Identifier:
keyid:9F:E9:8E:E6:CF:B3:FB:A8:3B:97:2A:E1:26:53:B5:D9:FC:70:70:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n-mO5s-z-6g7lyrhJlO12fxwcC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/4a02af-d548-44cf-9df8-13f898bc7d0e/1/PItytsxevu2thZ248OOAeWliUi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/4a02af-d548-44cf-9df8-13f898bc7d0e/1/n-mO5s-z-6g7lyrhJlO12fxwcC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.127.0/24
Signature Algorithm: sha256WithRSAEncryption
58:77:4c:ed:e8:f0:99:24:b8:fc:df:77:0d:dc:95:55:41:c8:
04:bc:cd:45:5a:5d:2f:e2:2f:f0:10:96:e7:f4:cf:da:2e:8e:
9b:e5:f6:12:59:6a:35:86:d8:b5:8d:3a:2f:c6:80:97:e9:30:
85:24:2b:d8:2d:fd:8f:44:38:c6:95:d4:89:58:e8:2c:3e:d8:
a1:b4:a7:e3:85:52:ec:0e:52:98:d1:4d:57:21:9a:17:8b:4b:
8f:a6:28:2d:49:23:ab:3c:c6:60:f5:19:e4:3e:8e:2d:c1:85:
76:2a:1f:3e:01:1a:37:cf:0d:27:7b:21:53:bd:bc:0e:2a:6d:
1c:31:68:80:2b:64:a1:14:39:e1:2c:e0:2d:13:fc:37:7a:b9:
86:d8:50:df:43:f0:87:93:76:6a:17:26:44:e2:72:ed:b6:58:
59:6f:a7:a1:c0:cb:06:da:3c:38:03:ff:26:95:84:f1:cb:6a:
7d:90:e4:29:60:b2:a4:da:b5:64:6f:e7:3a:1d:dc:7c:22:9a:
26:0d:ec:94:e6:67:c5:73:a1:64:b9:39:30:2a:bd:cf:cf:fa:
9c:ca:8c:dd:30:d7:20:37:a1:19:77:c5:06:af:9f:06:ab:54:
e8:cf:c7:29:e4:d6:ef:95:b8:ad:b3:56:91:da:69:16:f3:fe:
bd:c1:32:60
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAgcKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDlm
ZTk4ZWU2Y2ZiM2ZiYTgzYjk3MmFlMTI2NTNiNWQ5ZmM3MDcwMmUwHhcNMjIwNTAz
MTAwMDU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzYzhiNzJiNmNjNWVi
ZWVkYWQ4NTlkYjhmMGUzODA3OTY5NjI1MjJkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA38CvUOpFX7ZV++MQvDCHHQ8g0OVBqdvPJo6FXj/P0XOImGSA
2mA/WfdYz/rTfak3pziswPDA2atcKwaUr1fAVClgTwFgnTkppdCAM94y6M6D0dB1
Kfqqrl7brAIaUULp666549LM3LGVMkXM56L2fHcsV0pWwZjyAcm1RQLZZPO+RZYM
TAwov/8G+rNLv89aBVJvYp5Ktj92OH5Saf62HZ/q2uQlNB875pL9zRRw5X1SD/Wx
5d5VJJseIcb0W1WxyY9ZnXY5NK1GbHATFXWqgXOgQQYxL9VJZlLPcbNdUZt8HGu+
vxtoOwDUmnDvRD0AXEEDtd06P79aAhYwruMKsQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFDyLcrbMXr7trYWduPDjgHlpYlItMB8GA1UdIwQYMBaAFJ/pjubPs/uoO5cq
4SZTtdn8cHAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bi1tTzVzLXotNmc3bHlyaEpsTzEyZnh3Y0M0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iYS80YTAyYWYtZDU0OC00NGNmLTlkZjgtMTNmODk4YmM3ZDBlLzEv
UEl0eXRzeGV2dTJ0aFoyNDhPT0FlV2xpVWkwLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS80
YTAyYWYtZDU0OC00NGNmLTlkZjgtMTNmODk4YmM3ZDBlLzEvbi1tTzVzLXotNmc3
bHlyaEpsTzEyZnh3Y0M0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmZ/MA0GCSqGSIb3DQEBCwUAA4IB
AQBYd0zt6PCZJLj833cN3JVVQcgEvM1FWl0v4i/wEJbn9M/aLo6b5fYSWWo1hti1
jTovxoCX6TCFJCvYLf2PRDjGldSJWOgsPtihtKfjhVLsDlKY0U1XIZoXi0uPpigt
SSOrPMZg9RnkPo4twYV2Kh8+ARo3zw0neyFTvbwOKm0cMWiAK2ShFDnhLOAtE/w3
ermG2FDfQ/CHk3ZqFyZE4nLttlhZb6ehwMsG2jw4A/8mlYTxy2p9kOQpYLKk2rVk
b+c6Hdx8IpomDeyU5mfFc6FkuTkwKr3Pz/qcyozdMNcgN6EZd8UGr58Gq1Toz8cp
5Nbvlbits1aR2mkW8/69wTJg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org