Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/AcfAOwz5Jb8xF-CLRu3uEEUsN2o.roa
File: AcfAOwz5Jb8xF-CLRu3uEEUsN2o.roa (raw, json)
Hash identifier: DngCGKktnA1E6dK+V5xRfcGBG5+svq6CxsvpIbEvVPw=
Subject key identifier: 01:C7:C0:3B:0C:F9:25:BF:31:17:E0:8B:46:ED:EE:10:45:2C:37:6A
Certificate issuer: /CN=04e65b83d21315f8ba7578e88bdf3813295dde0a
Certificate serial: 01BD59
Authority key identifier: 04:E6:5B:83:D2:13:15:F8:BA:75:78:E8:8B:DF:38:13:29:5D:DE:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/AcfAOwz5Jb8xF-CLRu3uEEUsN2o.roa
Signing time: Fri 08 Apr 2022 07:59:18 +0000
ROA not before: Fri 08 Apr 2022 07:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197512
IP address blocks: 195.20.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114009 (0x1bd59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e65b83d21315f8ba7578e88bdf3813295dde0a
Validity
Not Before: Apr 8 07:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01c7c03b0cf925bf3117e08b46edee10452c376a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5c:e5:ba:85:31:49:58:f0:e2:35:2c:21:95:
08:c8:d6:d3:18:ef:7b:ec:72:00:4a:4e:27:ec:c7:
0f:1f:da:d4:57:b7:00:fc:4d:1f:d3:b1:3a:9f:ad:
ab:6e:4c:be:d4:84:c9:51:72:39:9a:0b:83:14:ee:
a8:10:7e:25:e1:49:4e:c8:16:d8:d8:88:ab:02:94:
ee:29:ba:9d:e3:48:9f:2e:6e:70:7c:ee:02:4f:52:
78:29:56:bd:52:2f:ba:e4:0c:ce:35:d3:dd:d7:57:
b9:4c:87:55:98:da:24:19:9a:3d:c2:74:8d:55:d1:
0a:69:c7:f7:ef:db:8d:73:0f:f7:2e:70:3c:c8:97:
d2:a0:cc:d2:d9:b9:1b:cd:9c:dc:c3:44:b7:6c:7e:
24:4c:55:d1:00:14:ce:b9:22:a8:e6:4b:f4:d6:70:
d8:e4:51:ae:3b:b7:df:0d:2d:e0:44:82:ae:75:ac:
25:b1:ae:53:88:40:ff:cd:82:17:3b:8b:39:ce:7c:
db:8d:d7:19:57:18:25:8f:44:32:de:e1:fa:b2:e7:
df:e3:12:cd:2f:db:ec:06:db:2b:51:09:38:e9:28:
a4:fb:f0:fa:20:20:b2:a4:75:9c:04:ea:c6:05:ef:
a7:49:48:d3:ef:46:a2:b7:94:4e:7e:c9:d6:78:a7:
81:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C7:C0:3B:0C:F9:25:BF:31:17:E0:8B:46:ED:EE:10:45:2C:37:6A
X509v3 Authority Key Identifier:
keyid:04:E6:5B:83:D2:13:15:F8:BA:75:78:E8:8B:DF:38:13:29:5D:DE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/AcfAOwz5Jb8xF-CLRu3uEEUsN2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.130.0/24
Signature Algorithm: sha256WithRSAEncryption
63:12:89:ce:da:2e:0c:e5:ac:51:82:f9:5f:21:4d:d5:e1:17:
81:53:0b:0f:50:d3:9a:44:13:35:e5:d3:ca:d1:7f:e1:6c:e1:
77:53:49:ac:55:1d:4f:17:c6:13:fc:7f:a8:d3:24:3e:0e:e7:
6b:cd:a9:d4:1a:21:f1:58:7a:7d:73:39:43:f8:ce:e6:95:4c:
09:74:5f:c8:77:96:64:3d:f4:b5:8a:55:26:2f:42:03:7c:d3:
35:97:96:33:8e:62:5a:6a:b1:ae:0f:ba:a8:c2:0f:3e:40:c2:
18:68:ba:6a:c4:78:50:57:46:4b:b4:ff:66:86:68:95:80:6e:
17:03:3d:b4:72:c7:7c:01:46:b8:1b:c1:6e:79:e2:e3:9f:c4:
24:8b:51:90:ae:01:70:a4:0f:04:59:2c:c0:0d:d9:3c:fa:d0:
1a:37:3b:db:e4:03:9d:d6:84:d0:0d:6d:15:0a:d5:4e:3d:7b:
5b:67:f9:d0:ef:8f:a4:e7:47:be:da:8b:93:72:e6:f8:08:36:
85:3e:6d:94:06:00:71:48:53:ba:c7:d2:4d:a6:ba:a5:5d:6f:
5e:de:44:85:f4:41:b4:10:97:82:b2:a7:1b:27:85:72:c8:0f:
ec:2e:ff:f9:e0:62:39:c4:b2:8e:00:ad:b6:f1:71:e5:68:d4:
97:10:b3:07
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAb1ZMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDA0
ZTY1YjgzZDIxMzE1ZjhiYTc1NzhlODhiZGYzODEzMjk1ZGRlMGEwHhcNMjIwNDA4
MDc1OTE4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMWM3YzAzYjBjZjky
NWJmMzExN2UwOGI0NmVkZWUxMDQ1MmMzNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvVzluoUxSVjw4jUsIZUIyNbTGO977HIASk4n7McPH9rUV7cA
/E0f07E6n62rbky+1ITJUXI5mguDFO6oEH4l4UlOyBbY2IirApTuKbqd40ifLm5w
fO4CT1J4KVa9Ui+65AzONdPd11e5TIdVmNokGZo9wnSNVdEKacf379uNcw/3LnA8
yJfSoMzS2bkbzZzcw0S3bH4kTFXRABTOuSKo5kv01nDY5FGuO7ffDS3gRIKudawl
sa5TiED/zYIXO4s5znzbjdcZVxglj0Qy3uH6suff4xLNL9vsBtsrUQk46Sik+/D6
ICCypHWcBOrGBe+nSUjT70ait5ROfsnWeKeBzwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFAHHwDsM+SW/MRfgi0bt7hBFLDdqMB8GA1UdIwQYMBaAFATmW4PSExX4unV4
6IvfOBMpXd4KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Qk9aYmc5SVRGZmk2ZFhqb2k5ODRFeWxkM2dvLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jMy9jZGRiNjEtMTJhMC00NmJkLTlmYjctM2U3ODFkYzFlN2U5LzEv
QWNmQU93ejVKYjh4Ri1DTFJ1M3VFRVVzTjJvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9j
ZGRiNjEtMTJhMC00NmJkLTlmYjctM2U3ODFkYzFlN2U5LzEvQk9aYmc5SVRGZmk2
ZFhqb2k5ODRFeWxkM2dvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwxSCMA0GCSqGSIb3DQEBCwUAA4IB
AQBjEonO2i4M5axRgvlfIU3V4ReBUwsPUNOaRBM15dPK0X/hbOF3U0msVR1PF8YT
/H+o0yQ+DudrzanUGiHxWHp9czlD+M7mlUwJdF/Id5ZkPfS1ilUmL0IDfNM1l5Yz
jmJaarGuD7qowg8+QMIYaLpqxHhQV0ZLtP9mhmiVgG4XAz20csd8AUa4G8FueeLj
n8Qki1GQrgFwpA8EWSzADdk8+tAaNzvb5AOd1oTQDW0VCtVOPXtbZ/nQ74+k50e+
2ouTcub4CDaFPm2UBgBxSFO6x9JNprqlXW9e3kSF9EG0EJeCsqcbJ4VyyA/sLv/5
4GI5xLKOAK228XHlaNSXELMH
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:31 2023 by rpki-client on console-fra.rpki-client.org