Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/4TPLVtQDZ-MqB3GdVFnvhQg1KXM.roa
File: 4TPLVtQDZ-MqB3GdVFnvhQg1KXM.roa (raw, json)
Hash identifier: DTw69iwmnVaY99oOyes0UMsHR8ZE2PUzaFk9mQsjqDo=
Subject key identifier: E1:33:CB:56:D4:03:67:E3:2A:07:71:9D:54:59:EF:85:08:35:29:73
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 3A02651A
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/4TPLVtQDZ-MqB3GdVFnvhQg1KXM.roa
Signing time: Sat 01 Jan 2022 14:00:38 +0000
ROA not before: Sat 01 Jan 2022 14:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198289
IP address blocks: 78.133.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973235482 (0x3a02651a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e133cb56d40367e32a07719d5459ef8508352973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:02:61:f2:fa:cf:82:38:2f:6b:ca:1e:fc:f5:
82:77:30:a1:b7:11:eb:2e:82:25:21:b8:83:90:12:
18:ce:f3:c9:80:e2:ef:cc:27:03:dc:41:10:df:49:
bd:11:17:db:a5:66:67:28:0a:51:71:cb:2c:63:3b:
a2:14:8c:78:25:68:99:63:03:b1:c1:d6:eb:6f:33:
8f:c3:8d:ad:aa:4e:3c:97:0e:b1:68:ba:79:b5:d5:
9a:94:7d:44:6d:be:ee:fe:c0:ee:4a:58:7f:cf:45:
9c:63:c4:e4:61:df:38:16:fa:4e:4f:2f:a3:0b:fd:
16:05:78:f7:43:b3:99:2f:5e:ba:02:10:8d:ca:43:
00:b3:40:92:0b:ae:68:af:1c:cf:70:f1:03:91:68:
65:f4:72:45:7d:ac:79:f0:27:92:49:bb:98:0a:02:
7f:86:e0:03:d3:8a:92:13:5d:80:1a:b8:06:da:b2:
c2:27:99:1f:52:d1:7f:0b:2a:75:ba:fd:1e:b2:69:
70:2e:8e:fe:2d:c6:20:ad:7c:83:4b:ae:2a:dd:07:
aa:35:6b:e1:e4:74:7f:38:00:8b:d0:c6:e4:c6:86:
f9:22:bd:e4:94:0b:4d:38:9f:b6:22:82:5d:04:26:
a2:2d:20:f7:47:2d:4d:a1:ea:97:9a:e8:2a:79:5a:
30:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:33:CB:56:D4:03:67:E3:2A:07:71:9D:54:59:EF:85:08:35:29:73
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/4TPLVtQDZ-MqB3GdVFnvhQg1KXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.133.196.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:20:1d:74:7d:29:cd:b0:87:09:d9:7a:21:4f:c0:a8:13:7e:
4a:9f:87:ff:bc:32:7c:3f:f3:d4:9f:ae:53:6c:dd:32:3c:82:
6f:8a:a2:a2:b3:ca:4d:3f:d9:e7:2c:da:bf:48:f2:a1:25:22:
ca:ea:07:e7:2c:12:df:7d:78:1d:e0:a8:f4:8b:3b:79:60:b4:
96:f6:80:f1:aa:50:ea:e0:60:bd:d8:c8:86:41:68:64:09:5f:
84:09:52:dd:c7:f1:ec:be:cd:d6:c7:f9:c4:df:2e:06:41:6b:
c9:d3:57:3a:49:03:f2:78:94:0a:ed:b9:9a:85:ac:81:07:c3:
e3:e2:e0:19:ba:2b:18:b3:a5:b1:65:7b:8d:50:10:ed:c3:f5:
f5:9a:03:9e:94:c2:c1:89:9d:f0:c9:72:96:dc:22:6b:6b:bd:
35:cd:13:08:cc:1a:a3:2b:b2:03:d6:82:f4:17:77:8b:58:2a:
fa:0f:39:8d:94:d2:8f:a9:9e:1d:86:c3:d0:49:04:46:2a:47:
51:95:fb:66:6e:77:88:ee:76:aa:8c:a4:54:8a:50:6e:8f:22:
3d:7a:c4:39:b8:87:fb:ad:8d:d9:7a:69:a9:ed:f0:69:8a:46:
67:e3:e0:cc:a5:9e:d2:c6:6f:0d:92:7d:38:78:0c:1c:88:ff:
8e:9d:70:2f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOgJlGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YWNhNjNkZjI0OGI3YWRmM2RkZDA3ZThjMmQzZWVkZDAyY2VmOTMzMB4XDTIyMDEw
MTE0MDAzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTEzM2NiNTZkNDAz
NjdlMzJhMDc3MTlkNTQ1OWVmODUwODM1Mjk3MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANMCYfL6z4I4L2vKHvz1gncwobcR6y6CJSG4g5ASGM7zyYDi
78wnA9xBEN9JvREX26VmZygKUXHLLGM7ohSMeCVomWMDscHW628zj8ONrapOPJcO
sWi6ebXVmpR9RG2+7v7A7kpYf89FnGPE5GHfOBb6Tk8vowv9FgV490OzmS9eugIQ
jcpDALNAkguuaK8cz3DxA5FoZfRyRX2sefAnkkm7mAoCf4bgA9OKkhNdgBq4Btqy
wieZH1LRfwsqdbr9HrJpcC6O/i3GIK18g0uuKt0HqjVr4eR0fzgAi9DG5MaG+SK9
5JQLTTiftiKCXQQmoi0g90ctTaHql5roKnlaMPUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBThM8tW1ANn4yoHcZ1UWe+FCDUpczAfBgNVHSMEGDAWgBQaymPfJIt63z3d
B+jC0+7dAs75MzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dzcGozeVNMZXQ4OTNRZm93dFB1M1FMTy1UTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvMWY2NDU4LWRjNzUtNGFkZC1hZTcyLTkxZTMxODRiYjBhYi8x
LzRUUExWdFFEWi1NcUIzR2RWRm52aFFnMUtYTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
MWY2NDU4LWRjNzUtNGFkZC1hZTcyLTkxZTMxODRiYjBhYi8xL0dzcGozeVNMZXQ4
OTNRZm93dFB1M1FMTy1UTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE6FxDANBgkqhkiG9w0BAQsFAAOC
AQEAiyAddH0pzbCHCdl6IU/AqBN+Sp+H/7wyfD/z1J+uU2zdMjyCb4qiorPKTT/Z
5yzav0jyoSUiyuoH5ywS3314HeCo9Is7eWC0lvaA8apQ6uBgvdjIhkFoZAlfhAlS
3cfx7L7N1sf5xN8uBkFrydNXOkkD8niUCu25moWsgQfD4+LgGborGLOlsWV7jVAQ
7cP19ZoDnpTCwYmd8Mlyltwia2u9Nc0TCMwaoyuyA9aC9Bd3i1gq+g85jZTSj6me
HYbD0EkERipHUZX7Zm53iO52qoykVIpQbo8iPXrEObiH+62N2Xppqe3waYpGZ+Pg
zKWe0sZvDZJ9OHgMHIj/jp1wLw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:02 2023 by rpki-client on console-ams.rpki-client.org