Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/2d0e9b-5020-49a6-a391-6373d36ceef6/1/R8oDtRfpSX9GuCZHgbxKuNo-rHQ.roa
File: R8oDtRfpSX9GuCZHgbxKuNo-rHQ.roa (raw, json)
Hash identifier: k2+3ELAUpRj4xlJtFWv1BPN3be/GQG43o4uY6ILx9JE=
Subject key identifier: 47:CA:03:B5:17:E9:49:7F:46:B8:26:47:81:BC:4A:B8:DA:3E:AC:74
Certificate issuer: /CN=044b22d249b6663f9fa34b1762d25ffd9fb3fed3
Certificate serial: 1042528A
Authority key identifier: 04:4B:22:D2:49:B6:66:3F:9F:A3:4B:17:62:D2:5F:FD:9F:B3:FE:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BEsi0km2Zj-fo0sXYtJf_Z-z_tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/2d0e9b-5020-49a6-a391-6373d36ceef6/1/R8oDtRfpSX9GuCZHgbxKuNo-rHQ.roa
Signing time: Sat 01 Jan 2022 06:55:21 +0000
ROA not before: Sat 01 Jan 2022 06:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15768
IP address blocks: 195.35.91.0/24 maxlen: 24
195.35.90.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272781962 (0x1042528a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=044b22d249b6663f9fa34b1762d25ffd9fb3fed3
Validity
Not Before: Jan 1 06:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47ca03b517e9497f46b8264781bc4ab8da3eac74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:5b:20:fa:b6:d7:e8:8d:98:f8:ce:8a:9a:
d7:8b:71:f4:28:8e:c4:6f:63:37:b4:63:98:16:9f:
27:18:e4:49:12:d0:8a:3c:03:01:d2:6a:5f:8b:6b:
b2:3a:85:cc:0f:6b:5c:c1:42:69:47:c3:42:e2:a4:
a9:67:73:dd:4a:73:b2:99:4b:00:1b:a1:4a:c5:a5:
37:8a:c2:27:10:bd:88:7d:0d:94:c9:08:40:1e:96:
54:bd:11:08:51:36:1a:68:41:da:6d:ba:75:2e:58:
f8:e2:f7:d3:92:18:b2:d4:75:39:8a:0a:da:f0:2a:
81:7d:af:ef:b2:67:35:0d:05:33:aa:ae:e4:c0:94:
c9:39:c1:dd:45:30:88:7a:91:2b:c4:6c:f1:f2:49:
6e:de:f5:7a:d7:ba:46:0c:fc:fe:04:07:b0:b3:c4:
40:e0:69:46:68:76:65:ee:70:61:9b:43:0a:b4:34:
05:71:45:10:d9:df:3d:b9:a1:31:42:c6:8d:70:61:
4c:20:52:01:f4:c8:02:b9:7c:f3:ba:16:cd:d9:ff:
ca:ba:95:11:36:ef:e9:64:0b:f1:82:50:1a:c8:cb:
17:aa:ac:a0:e9:f8:19:42:23:c9:1c:70:48:da:25:
ad:3c:df:12:e7:2c:dd:29:9e:11:4e:c2:75:b5:73:
f0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CA:03:B5:17:E9:49:7F:46:B8:26:47:81:BC:4A:B8:DA:3E:AC:74
X509v3 Authority Key Identifier:
keyid:04:4B:22:D2:49:B6:66:3F:9F:A3:4B:17:62:D2:5F:FD:9F:B3:FE:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BEsi0km2Zj-fo0sXYtJf_Z-z_tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2d0e9b-5020-49a6-a391-6373d36ceef6/1/R8oDtRfpSX9GuCZHgbxKuNo-rHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2d0e9b-5020-49a6-a391-6373d36ceef6/1/BEsi0km2Zj-fo0sXYtJf_Z-z_tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.90.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:c7:84:ab:99:44:19:8c:99:a8:c1:1a:b1:2e:02:c1:e6:a4:
e4:f4:10:5c:d3:39:c3:e9:37:ac:86:b8:7a:d5:64:65:26:81:
bd:08:e6:1a:fa:a3:92:07:09:2f:82:dd:d3:91:05:2e:42:bc:
77:6a:8e:ad:70:6e:95:17:90:2c:ca:2e:f9:bb:90:de:d4:2e:
e0:c4:35:5a:06:59:a1:fd:22:26:36:5f:0d:72:b0:45:35:d5:
c7:29:87:d7:83:22:fb:d5:18:f0:e4:1d:bc:99:ef:2a:c6:13:
ed:d2:e3:d8:5f:00:8d:ca:f2:39:67:96:cb:3f:a0:e5:37:a4:
2d:7b:6d:18:a1:42:1e:71:79:8c:fe:31:51:b0:c9:0b:2f:43:
2f:51:d1:ad:2a:86:bb:e4:e7:d2:ab:f4:62:ae:f3:3b:7c:a1:
16:e4:a5:8e:cd:e1:e0:50:be:ee:c8:81:ce:d9:c5:46:cb:08:
21:a6:6a:80:76:b8:6a:3f:78:e9:d2:61:18:f7:21:08:75:3a:
80:03:68:a6:73:d9:f3:60:25:d3:04:98:23:d0:c9:ab:64:96:
ac:b5:25:f8:c8:0e:8f:65:28:f8:5d:23:ac:46:84:6d:6a:84:
62:22:8c:3f:f1:6e:28:1b:95:cf:e1:0a:10:aa:a9:09:79:0c:
24:c0:11:cf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEEJSijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NDRiMjJkMjQ5YjY2NjNmOWZhMzRiMTc2MmQyNWZmZDlmYjNmZWQzMB4XDTIyMDEw
MTA2NTUyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDdjYTAzYjUxN2U5
NDk3ZjQ2YjgyNjQ3ODFiYzRhYjhkYTNlYWM3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMKKWyD6ttfojZj4zoqa14tx9CiOxG9jN7RjmBafJxjkSRLQ
ijwDAdJqX4trsjqFzA9rXMFCaUfDQuKkqWdz3UpzsplLABuhSsWlN4rCJxC9iH0N
lMkIQB6WVL0RCFE2GmhB2m26dS5Y+OL305IYstR1OYoK2vAqgX2v77JnNQ0FM6qu
5MCUyTnB3UUwiHqRK8Rs8fJJbt71ete6Rgz8/gQHsLPEQOBpRmh2Ze5wYZtDCrQ0
BXFFENnfPbmhMULGjXBhTCBSAfTIArl887oWzdn/yrqVETbv6WQL8YJQGsjLF6qs
oOn4GUIjyRxwSNolrTzfEucs3SmeEU7CdbVz8DECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHygO1F+lJf0a4JkeBvEq42j6sdDAfBgNVHSMEGDAWgBQESyLSSbZmP5+j
Sxdi0l/9n7P+0zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JFc2kwa20yWmotZm8wc1hZdEpmX1otel90TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvMmQwZTliLTUwMjAtNDlhNi1hMzkxLTYzNzNkMzZjZWVmNi8x
L1I4b0R0UmZwU1g5R3VDWkhnYnhLdU5vLXJIUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
MmQwZTliLTUwMjAtNDlhNi1hMzkxLTYzNzNkMzZjZWVmNi8xL0JFc2kwa20yWmot
Zm8wc1hZdEpmX1otel90TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcMjWjANBgkqhkiG9w0BAQsFAAOC
AQEADseEq5lEGYyZqMEasS4Cweak5PQQXNM5w+k3rIa4etVkZSaBvQjmGvqjkgcJ
L4Ld05EFLkK8d2qOrXBulReQLMou+buQ3tQu4MQ1WgZZof0iJjZfDXKwRTXVxymH
14Mi+9UY8OQdvJnvKsYT7dLj2F8AjcryOWeWyz+g5TekLXttGKFCHnF5jP4xUbDJ
Cy9DL1HRrSqGu+Tn0qv0Yq7zO3yhFuSljs3h4FC+7siBztnFRssIIaZqgHa4aj94
6dJhGPchCHU6gANopnPZ82Al0wSYI9DJq2SWrLUl+MgOj2Uo+F0jrEaEbWqEYiKM
P/FuKBuVz+EKEKqpCXkMJMARzw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:51 2023 by rpki-client on console-fra.rpki-client.org