Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/24MUHyYqrMikZ1LrDZd1ipTnxwA.roa
File: 24MUHyYqrMikZ1LrDZd1ipTnxwA.roa (raw, json)
Hash identifier: IZC6GJOwkpmobTB0HngfuhsBaoUc19vQSJ9qqIrY5L4=
Subject key identifier: DB:83:14:1F:26:2A:AC:C8:A4:67:52:EB:0D:97:75:8A:94:E7:C7:00
Certificate issuer: /CN=9aeecb353f1cdc5fd3a9d54a8873531efd285c46
Certificate serial: 891E71
Authority key identifier: 9A:EE:CB:35:3F:1C:DC:5F:D3:A9:D5:4A:88:73:53:1E:FD:28:5C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu7LNT8c3F_TqdVKiHNTHv0oXEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/24MUHyYqrMikZ1LrDZd1ipTnxwA.roa
Signing time: Tue 04 Jan 2022 13:35:16 +0000
ROA not before: Tue 04 Jan 2022 13:35:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210924
IP address blocks: 195.96.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8986225 (0x891e71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aeecb353f1cdc5fd3a9d54a8873531efd285c46
Validity
Not Before: Jan 4 13:35:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db83141f262aacc8a46752eb0d97758a94e7c700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:22:4e:a4:90:de:4b:88:71:bc:a0:14:87:27:
5a:b7:e0:a8:30:9b:51:0d:9a:c4:b7:35:09:b4:c6:
9e:db:5d:cb:0e:0b:06:8f:e3:91:e9:ab:bc:71:a5:
56:46:77:b1:e4:81:2c:fc:9f:23:3a:f5:85:cd:3d:
41:6b:b0:d8:24:50:86:3e:18:8e:76:6b:c3:5d:61:
d9:99:3c:99:61:ef:8f:c1:4f:15:a7:eb:4f:ef:c2:
43:96:31:44:a2:b0:2b:28:59:1d:a5:b8:57:02:37:
d4:65:be:62:08:d7:88:43:5f:d9:61:52:b0:ea:3b:
84:ce:09:71:55:bf:f4:3f:42:8b:d4:ec:45:be:d8:
a6:47:8f:c4:ec:ea:09:d6:dc:49:99:69:3e:30:b0:
a9:02:9e:36:22:23:62:f9:62:23:48:60:0c:18:03:
46:f4:ab:2a:ee:16:13:2c:eb:0d:02:ab:e0:43:68:
c3:4f:84:e8:01:d1:10:aa:96:86:ab:44:4a:a0:8f:
4d:23:b6:97:9f:3e:d4:7d:b2:75:b6:39:72:63:ba:
19:89:20:ac:58:b6:22:9c:d9:85:5f:ab:63:7e:bd:
85:90:8d:2b:ae:70:83:7c:4f:19:e2:3b:4b:55:a1:
cc:ba:9b:3a:c9:a5:21:ed:c6:c4:bf:70:65:5a:2b:
d6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:83:14:1F:26:2A:AC:C8:A4:67:52:EB:0D:97:75:8A:94:E7:C7:00
X509v3 Authority Key Identifier:
keyid:9A:EE:CB:35:3F:1C:DC:5F:D3:A9:D5:4A:88:73:53:1E:FD:28:5C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu7LNT8c3F_TqdVKiHNTHv0oXEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/24MUHyYqrMikZ1LrDZd1ipTnxwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/mu7LNT8c3F_TqdVKiHNTHv0oXEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.138.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:68:96:70:c0:f4:fe:9d:ef:06:11:02:d8:35:c1:d3:12:bb:
9e:33:88:88:fd:37:33:dc:85:35:85:cb:47:f4:d6:da:e3:c8:
51:b4:94:19:c1:99:35:c5:67:0a:b8:ad:91:db:5d:6c:f4:61:
8a:76:21:09:5d:17:11:88:26:af:a9:3a:28:d2:70:7d:c2:98:
74:29:da:a2:d9:5a:aa:a2:c5:5d:72:31:99:29:ba:8f:4c:6b:
71:20:0b:1a:00:72:86:44:85:63:da:43:13:0f:e5:d5:5b:ca:
dc:6a:f8:6e:81:bc:dc:eb:81:af:0b:a9:5f:18:fa:b0:71:39:
5b:48:77:b9:cb:06:ce:fb:a0:c3:4b:95:9c:5b:72:59:55:fb:
a7:b1:d3:7f:8e:c9:c0:bc:e0:08:67:fa:23:c8:5f:75:46:c1:
0e:1e:fc:03:9d:e0:bc:e5:0f:e9:e9:c2:69:51:a5:e6:47:da:
10:6d:d3:02:82:f3:00:b2:1a:a6:61:d2:7e:3b:99:1d:27:de:
9a:57:8c:51:3c:57:e1:7b:65:8f:aa:8c:ab:10:ac:18:32:34:
10:a5:a6:25:8e:58:5b:79:15:32:01:2b:5c:22:d8:fc:84:b8:
1b:f9:95:41:a5:9f:21:93:bd:96:70:3e:b8:49:55:4d:82:9b:
bd:58:85:44
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIkecTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YWVlY2IzNTNmMWNkYzVmZDNhOWQ1NGE4ODczNTMxZWZkMjg1YzQ2MB4XDTIyMDEw
NDEzMzUxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGI4MzE0MWYyNjJh
YWNjOGE0Njc1MmViMGQ5Nzc1OGE5NGU3YzcwMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOsiTqSQ3kuIcbygFIcnWrfgqDCbUQ2axLc1CbTGnttdyw4L
Bo/jkemrvHGlVkZ3seSBLPyfIzr1hc09QWuw2CRQhj4YjnZrw11h2Zk8mWHvj8FP
FafrT+/CQ5YxRKKwKyhZHaW4VwI31GW+YgjXiENf2WFSsOo7hM4JcVW/9D9Ci9Ts
Rb7YpkePxOzqCdbcSZlpPjCwqQKeNiIjYvliI0hgDBgDRvSrKu4WEyzrDQKr4ENo
w0+E6AHREKqWhqtESqCPTSO2l58+1H2ydbY5cmO6GYkgrFi2IpzZhV+rY369hZCN
K65wg3xPGeI7S1WhzLqbOsmlIe3GxL9wZVor1hcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTbgxQfJiqsyKRnUusNl3WKlOfHADAfBgNVHSMEGDAWgBSa7ss1PxzcX9Op
1UqIc1Me/ShcRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L211N0xOVDhjM0ZfVHFkVktpSE5USHYwb1hFWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvMTU4NjNiLTc4N2YtNDA4NC1iN2Y2LTU5NDQ5NjBlMzFjZi8x
LzI0TVVIeVlxck1pa1oxTHJEWmQxaXBUbnh3QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
MTU4NjNiLTc4N2YtNDA4NC1iN2Y2LTU5NDQ5NjBlMzFjZi8xL211N0xOVDhjM0Zf
VHFkVktpSE5USHYwb1hFWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNgijANBgkqhkiG9w0BAQsFAAOC
AQEApWiWcMD0/p3vBhEC2DXB0xK7njOIiP03M9yFNYXLR/TW2uPIUbSUGcGZNcVn
CritkdtdbPRhinYhCV0XEYgmr6k6KNJwfcKYdCnaotlaqqLFXXIxmSm6j0xrcSAL
GgByhkSFY9pDEw/l1VvK3Gr4boG83OuBrwupXxj6sHE5W0h3ucsGzvugw0uVnFty
WVX7p7HTf47JwLzgCGf6I8hfdUbBDh78A53gvOUP6enCaVGl5kfaEG3TAoLzALIa
pmHSfjuZHSfemleMUTxX4Xtlj6qMqxCsGDI0EKWmJY5YW3kVMgErXCLY/IS4G/mV
QaWfIZO9lnA+uElVTYKbvViFRA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:20 2024 by rpki-client on console-fra.rpki-client.org