Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/758c8a-613e-4e2a-8fe1-91228620570e/1/evo0evJPnbQoE6FmGbBAwcAsoj0.roa
File: evo0evJPnbQoE6FmGbBAwcAsoj0.roa (raw, json)
Hash identifier: 4+BAFUg3HNA1Jqm8YqOwvH7nAwuIR1sBZHcffJW8SkQ=
Subject key identifier: 7A:FA:34:7A:F2:4F:9D:B4:28:13:A1:66:19:B0:40:C1:C0:2C:A2:3D
Certificate issuer: /CN=c58afa22f98a37f6d8d0293a9b319416ec94d386
Certificate serial: 1723C772
Authority key identifier: C5:8A:FA:22:F9:8A:37:F6:D8:D0:29:3A:9B:31:94:16:EC:94:D3:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xYr6IvmKN_bY0Ck6mzGUFuyU04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/758c8a-613e-4e2a-8fe1-91228620570e/1/evo0evJPnbQoE6FmGbBAwcAsoj0.roa
Signing time: Sat 01 Jan 2022 13:03:38 +0000
ROA not before: Sat 01 Jan 2022 13:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15542
IP address blocks: 194.13.240.0/20 maxlen: 24
2001:67c:2b0c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 388220786 (0x1723c772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c58afa22f98a37f6d8d0293a9b319416ec94d386
Validity
Not Before: Jan 1 13:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7afa347af24f9db42813a16619b040c1c02ca23d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:9a:64:d8:d9:ab:5e:ab:95:d3:e0:3a:62:
3b:46:48:c9:d5:1f:2d:ec:a1:48:ad:b8:10:fd:f5:
55:7e:15:b3:b4:a8:48:2a:a1:05:00:a4:5f:c5:e8:
26:c7:4f:c3:dc:6d:36:7e:82:2b:b6:fe:dd:69:44:
7c:4f:f0:de:bb:c3:e9:4c:d4:19:ec:0b:e2:ae:a0:
98:d3:0c:37:77:97:6d:b3:06:47:22:47:f3:da:97:
0d:f4:e6:1e:c0:1f:cf:c9:99:9a:31:05:12:cf:11:
0e:69:77:61:dd:1d:8f:7d:ec:09:43:60:d4:f1:7e:
0d:ae:9c:99:eb:c9:43:8d:24:66:85:81:c7:a5:a2:
f3:b7:ec:1b:53:3e:fe:3e:bf:6a:c2:d2:f2:19:85:
b7:7e:38:96:fd:b2:d9:45:ff:7b:1e:84:e6:06:90:
b9:ee:c3:1c:3a:0c:23:86:0d:07:dd:32:5f:7f:4d:
f0:dd:1d:1b:16:e9:39:cb:d0:5d:2e:15:69:cd:a3:
27:88:a0:d3:f8:44:ce:5e:fb:53:a7:15:3d:eb:67:
78:70:ab:41:8f:d0:29:d8:82:aa:b3:a3:60:fb:95:
6c:be:8f:fd:47:85:2d:d8:4d:ea:c7:43:69:f9:a7:
99:63:68:48:45:49:f2:fe:43:e8:d8:4d:1a:27:77:
ea:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:FA:34:7A:F2:4F:9D:B4:28:13:A1:66:19:B0:40:C1:C0:2C:A2:3D
X509v3 Authority Key Identifier:
keyid:C5:8A:FA:22:F9:8A:37:F6:D8:D0:29:3A:9B:31:94:16:EC:94:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xYr6IvmKN_bY0Ck6mzGUFuyU04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/758c8a-613e-4e2a-8fe1-91228620570e/1/evo0evJPnbQoE6FmGbBAwcAsoj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/758c8a-613e-4e2a-8fe1-91228620570e/1/xYr6IvmKN_bY0Ck6mzGUFuyU04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.13.240.0/20
IPv6:
2001:67c:2b0c::/48
Signature Algorithm: sha256WithRSAEncryption
6e:7d:68:ed:54:a7:a6:06:ba:1f:85:13:db:51:8d:25:2d:ab:
ca:7d:eb:17:1f:d6:2d:cf:c2:ac:63:b7:b1:e2:67:04:a5:6a:
69:c4:d4:ec:87:00:b9:8b:0c:0b:62:63:a9:92:b6:a9:1b:c4:
dc:60:3e:9a:69:6f:a0:36:86:34:88:ef:57:fe:1e:1c:57:e3:
4f:29:85:96:ff:9e:f1:61:7d:b5:a5:d5:48:fe:04:fd:26:fd:
d3:94:04:f1:1b:b1:12:f6:e7:16:10:3c:66:a6:a3:68:c4:a1:
7d:eb:2e:4b:05:1a:f0:34:fc:6a:eb:51:cc:01:79:d7:82:62:
e5:a3:c3:b3:af:24:5a:c7:fe:8c:3e:b7:25:0f:1a:1b:72:a2:
3f:7a:6b:7b:7b:9f:ac:fb:6d:4e:a5:22:cd:3c:8b:e4:a6:40:
97:af:ac:c1:a7:87:68:9d:bb:ed:1c:99:7d:86:76:c4:34:8b:
a0:27:7e:2b:e6:36:28:91:54:48:1e:bb:d9:44:96:59:7b:4b:
24:37:27:9a:95:17:98:4e:ae:d4:da:94:38:43:ec:e1:08:9a:
9f:8d:26:97:dc:60:0d:0f:ef:7a:b4:db:a3:16:f4:f1:7e:38:
38:89:40:8e:0f:72:a3:f7:88:ea:bd:b7:31:e6:ad:bc:c0:07:
80:b7:aa:d1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEFyPHcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NThhZmEyMmY5OGEzN2Y2ZDhkMDI5M2E5YjMxOTQxNmVjOTRkMzg2MB4XDTIyMDEw
MTEzMDMzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2FmYTM0N2FmMjRm
OWRiNDI4MTNhMTY2MTliMDQwYzFjMDJjYTIzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3xmmTY2ateq5XT4DpiO0ZIydUfLeyhSK24EP31VX4Vs7So
SCqhBQCkX8XoJsdPw9xtNn6CK7b+3WlEfE/w3rvD6UzUGewL4q6gmNMMN3eXbbMG
RyJH89qXDfTmHsAfz8mZmjEFEs8RDml3Yd0dj33sCUNg1PF+Da6cmevJQ40kZoWB
x6Wi87fsG1M+/j6/asLS8hmFt344lv2y2UX/ex6E5gaQue7DHDoMI4YNB90yX39N
8N0dGxbpOcvQXS4Vac2jJ4ig0/hEzl77U6cVPetneHCrQY/QKdiCqrOjYPuVbL6P
/UeFLdhN6sdDafmnmWNoSEVJ8v5D6NhNGid36qECAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBR6+jR68k+dtCgToWYZsEDBwCyiPTAfBgNVHSMEGDAWgBTFivoi+Yo39tjQ
KTqbMZQW7JTThjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hZcjZJdm1LTl9iWTBDazZtekdVRnV5VTA0WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmYvNzU4YzhhLTYxM2UtNGUyYS04ZmUxLTkxMjI4NjIwNTcwZS8x
L2V2bzBldkpQbmJRb0U2Rm1HYkJBd2NBc29qMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmYv
NzU4YzhhLTYxM2UtNGUyYS04ZmUxLTkxMjI4NjIwNTcwZS8xL3hZcjZJdm1LTl9i
WTBDazZtekdVRnV5VTA0WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEBMIN8DAPBAIAAjAJAwcAIAEGfCsM
MA0GCSqGSIb3DQEBCwUAA4IBAQBufWjtVKemBrofhRPbUY0lLavKfesXH9Ytz8Ks
Y7ex4mcEpWppxNTshwC5iwwLYmOpkrapG8TcYD6aaW+gNoY0iO9X/h4cV+NPKYWW
/57xYX21pdVI/gT9Jv3TlATxG7ES9ucWEDxmpqNoxKF96y5LBRrwNPxq61HMAXnX
gmLlo8OzryRax/6MPrclDxobcqI/emt7e5+s+21OpSLNPIvkpkCXr6zBp4donbvt
HJl9hnbENIugJ34r5jYokVRIHrvZRJZZe0skNyealReYTq7U2pQ4Q+zhCJqfjSaX
3GAND+96tNujFvTxfjg4iUCOD3Kj94jqvbcx5q28wAeAt6rR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:12 2024 by rpki-client on console-fra.rpki-client.org