Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/sLvdkEvtywisgiPEtcPD2u3t8R0.roa
File: sLvdkEvtywisgiPEtcPD2u3t8R0.roa (raw, json)
Hash identifier: PJ8vtbQqKOOlUVewZz87HDSkWZbJU2+v/E8evzCE2PU=
Subject key identifier: B0:BB:DD:90:4B:ED:CB:08:AC:82:23:C4:B5:C3:C3:DA:ED:ED:F1:1D
Certificate issuer: /CN=44e888a76e99851b01fb86cec537d4d8e610de16
Certificate serial: 07273BE2
Authority key identifier: 44:E8:88:A7:6E:99:85:1B:01:FB:86:CE:C5:37:D4:D8:E6:10:DE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/sLvdkEvtywisgiPEtcPD2u3t8R0.roa
Signing time: Thu 21 Apr 2022 13:23:33 +0000
ROA not before: Thu 21 Apr 2022 13:23:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49171
IP address blocks: 194.61.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120011746 (0x7273be2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44e888a76e99851b01fb86cec537d4d8e610de16
Validity
Not Before: Apr 21 13:23:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0bbdd904bedcb08ac8223c4b5c3c3daededf11d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c8:59:c2:91:96:f4:6c:26:0d:c7:33:b8:9c:
f9:7a:1e:0a:62:29:cb:c1:02:93:49:a8:88:ba:c3:
94:e9:19:69:c9:c6:28:37:67:ed:3e:6e:81:87:d0:
24:1f:27:dc:9b:e2:68:8b:0e:ba:c7:30:7f:2b:11:
63:3a:9f:21:9b:c5:37:ca:4f:d4:6d:5a:53:c1:be:
74:af:96:70:b9:e8:c3:6b:51:b0:77:44:c9:34:bd:
48:76:6d:0e:47:58:20:ab:0b:06:b4:ea:2b:4a:d0:
02:4a:f5:d5:78:fe:b1:cc:0d:d6:fd:dd:77:e6:9c:
b4:11:df:16:c6:da:0e:94:7f:3b:bf:c0:64:a0:82:
40:94:eb:66:c8:07:7f:43:2b:bf:e8:c5:90:7b:46:
07:a6:52:e3:a4:2f:73:9d:9f:b0:e3:ba:5c:fd:61:
ab:a8:e1:b4:fd:30:69:0a:83:72:1f:b8:3e:58:79:
53:4a:c9:30:35:57:40:20:55:b6:f3:30:6d:64:7a:
07:12:bc:c6:4a:0d:7c:59:dd:df:8b:d0:aa:6b:b8:
ee:be:73:e6:a9:0c:17:68:8d:9b:af:1b:3d:bb:a9:
cc:a1:4e:2a:35:61:5d:94:8d:05:53:bb:16:dc:c9:
e6:d9:99:ae:ce:6d:8e:53:2b:1f:18:9b:3d:5f:a4:
08:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BB:DD:90:4B:ED:CB:08:AC:82:23:C4:B5:C3:C3:DA:ED:ED:F1:1D
X509v3 Authority Key Identifier:
keyid:44:E8:88:A7:6E:99:85:1B:01:FB:86:CE:C5:37:D4:D8:E6:10:DE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/sLvdkEvtywisgiPEtcPD2u3t8R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.83.0/24
Signature Algorithm: sha256WithRSAEncryption
89:07:f1:fa:ec:20:da:43:dd:fe:d9:20:11:29:d2:63:bd:88:
4d:7b:d5:f7:53:04:93:3f:2d:c5:25:0d:16:c6:b8:cf:9f:a4:
58:63:54:3e:48:f6:90:36:75:10:f5:f1:91:ed:0e:d3:3e:b2:
55:45:38:82:99:65:04:3a:12:b5:80:5a:d0:7f:6a:42:53:23:
d1:7b:05:3c:d5:d4:6e:5d:0f:b7:f6:b7:c3:46:c1:be:29:86:
86:b2:ba:bb:b1:8b:2a:ee:de:38:85:80:28:92:28:2f:e6:35:
c0:0c:21:e9:4e:d0:01:df:45:b6:33:3a:29:5d:0d:aa:14:b0:
1c:2f:8c:39:b2:1c:f7:39:ed:c0:f5:40:0a:a0:5d:58:b3:19:
54:de:af:1b:08:3c:fb:7b:8e:19:97:ba:20:f0:32:c9:52:7d:
d7:40:61:e1:44:d9:5a:a7:91:0b:17:47:a2:48:04:08:da:b2:
0e:ed:d1:d0:ff:55:f4:d5:18:dd:75:07:6b:ed:4d:1a:b0:40:
81:c2:04:85:40:77:40:0f:77:03:2a:32:79:6c:3f:c1:b3:9b:
36:2f:7f:5e:bc:4e:0d:cb:dc:ae:3b:68:04:31:db:51:ae:7d:
7c:b3:b6:29:ed:3e:4e:40:38:6d:84:fc:a1:b5:ca:83:40:fa:
88:6e:15:ee
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEByc74jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NGU4ODhhNzZlOTk4NTFiMDFmYjg2Y2VjNTM3ZDRkOGU2MTBkZTE2MB4XDTIyMDQy
MTEzMjMzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjBiYmRkOTA0YmVk
Y2IwOGFjODIyM2M0YjVjM2MzZGFlZGVkZjExZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANTIWcKRlvRsJg3HM7ic+XoeCmIpy8ECk0moiLrDlOkZacnG
KDdn7T5ugYfQJB8n3JviaIsOuscwfysRYzqfIZvFN8pP1G1aU8G+dK+WcLnow2tR
sHdEyTS9SHZtDkdYIKsLBrTqK0rQAkr11Xj+scwN1v3dd+actBHfFsbaDpR/O7/A
ZKCCQJTrZsgHf0Mrv+jFkHtGB6ZS46Qvc52fsOO6XP1hq6jhtP0waQqDch+4Plh5
U0rJMDVXQCBVtvMwbWR6BxK8xkoNfFnd34vQqmu47r5z5qkMF2iNm68bPbupzKFO
KjVhXZSNBVO7FtzJ5tmZrs5tjlMrHxibPV+kCC8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSwu92QS+3LCKyCI8S1w8Pa7e3xHTAfBgNVHSMEGDAWgBRE6IinbpmFGwH7
hs7FN9TY5hDeFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JPaUlwMjZaaFJzQi00Yk94VGZVMk9ZUTNoWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzEvODJlMmJhLTQ0MmMtNDJiMC05MzE1LWJjMGRiYTkzMmIzNS8x
L3NMdmRrRXZ0eXdpc2dpUEV0Y1BEMnUzdDhSMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEv
ODJlMmJhLTQ0MmMtNDJiMC05MzE1LWJjMGRiYTkzMmIzNS8xL1JPaUlwMjZaaFJz
Qi00Yk94VGZVMk9ZUTNoWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMI9UzANBgkqhkiG9w0BAQsFAAOC
AQEAiQfx+uwg2kPd/tkgESnSY72ITXvV91MEkz8txSUNFsa4z5+kWGNUPkj2kDZ1
EPXxke0O0z6yVUU4gpllBDoStYBa0H9qQlMj0XsFPNXUbl0Pt/a3w0bBvimGhrK6
u7GLKu7eOIWAKJIoL+Y1wAwh6U7QAd9FtjM6KV0NqhSwHC+MObIc9zntwPVACqBd
WLMZVN6vGwg8+3uOGZe6IPAyyVJ910Bh4UTZWqeRCxdHokgECNqyDu3R0P9V9NUY
3XUHa+1NGrBAgcIEhUB3QA93AyoyeWw/wbObNi9/XrxODcvcrjtoBDHbUa59fLO2
Ke0+TkA4bYT8obXKg0D6iG4V7g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:34 2024 by rpki-client on console-fra.rpki-client.org