Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/dBu6NDvl_Oad5REdVhe5MIWtvZA.roa
File: dBu6NDvl_Oad5REdVhe5MIWtvZA.roa (raw, json)
Hash identifier: Fdyqu/ALohyzF6smxCFvrEqt+lF4h/VRkcPHEN5eQKc=
Subject key identifier: 74:1B:BA:34:3B:E5:FC:E6:9D:E5:11:1D:56:17:B9:30:85:AD:BD:90
Certificate issuer: /CN=79a3b2c3622df9e87982ea8350978a6c9875a7c8
Certificate serial: 06FD5469
Authority key identifier: 79:A3:B2:C3:62:2D:F9:E8:79:82:EA:83:50:97:8A:6C:98:75:A7:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaOyw2It-eh5guqDUJeKbJh1p8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/dBu6NDvl_Oad5REdVhe5MIWtvZA.roa
Signing time: Sat 01 Jan 2022 05:55:31 +0000
ROA not before: Sat 01 Jan 2022 05:55:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15577
IP address blocks: 194.187.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117265513 (0x6fd5469)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a3b2c3622df9e87982ea8350978a6c9875a7c8
Validity
Not Before: Jan 1 05:55:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=741bba343be5fce69de5111d5617b93085adbd90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1c:a1:05:bf:69:c3:51:30:01:e0:c8:90:9b:
61:c8:20:2e:07:00:24:62:b4:77:fb:0c:c5:04:cf:
52:16:a9:06:fa:27:12:8e:55:f9:9d:58:54:c9:08:
d6:5d:b6:03:58:4e:b5:f2:3c:c9:5d:b9:54:52:6f:
e2:0f:3f:56:df:1a:3a:5a:98:30:31:91:25:56:80:
ec:01:5d:4b:68:1b:a9:1c:aa:87:7a:e3:b1:ab:1d:
74:c6:b7:f4:33:d0:f3:61:2b:ca:78:b8:cc:ff:cb:
ab:c2:0f:ee:15:75:a5:ba:4d:11:bb:e6:5e:61:78:
35:ae:d6:52:ff:2d:f1:b5:24:31:a7:4b:1c:9d:50:
e9:fb:2f:3f:5d:a7:1c:b2:97:3d:dc:46:29:39:c5:
b5:e4:64:a4:c0:49:23:33:b3:23:b9:50:16:5a:11:
2f:3c:9a:9a:98:b8:1c:8c:be:51:0c:e5:8a:b5:cf:
c5:fc:f0:8d:b7:61:cd:91:dc:0a:4f:0d:6f:ae:a0:
7a:96:77:64:06:5c:ab:47:03:17:fc:b9:e1:fd:1b:
1b:1f:48:35:dc:9a:11:cf:d9:c4:9d:12:41:ac:5b:
1a:37:b6:ce:e6:9e:6c:e5:b1:8d:ad:de:22:dc:88:
18:89:9b:80:cc:37:83:d3:44:de:38:f9:ff:05:81:
5d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:1B:BA:34:3B:E5:FC:E6:9D:E5:11:1D:56:17:B9:30:85:AD:BD:90
X509v3 Authority Key Identifier:
keyid:79:A3:B2:C3:62:2D:F9:E8:79:82:EA:83:50:97:8A:6C:98:75:A7:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaOyw2It-eh5guqDUJeKbJh1p8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/dBu6NDvl_Oad5REdVhe5MIWtvZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/eaOyw2It-eh5guqDUJeKbJh1p8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.208.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:55:7c:49:b9:7d:f5:3c:b1:89:a8:e1:fe:f0:8f:a2:f2:fa:
36:a7:58:af:ce:77:15:1c:1e:90:ca:0c:2f:6d:23:34:08:3d:
cb:7a:a6:16:a1:61:18:43:e3:65:60:53:da:e0:eb:ff:9a:dc:
48:17:cc:96:31:e5:d7:91:af:ca:d2:2c:21:82:3a:bc:c4:9c:
29:62:07:ad:ed:f7:40:10:b6:2c:40:c8:4a:9b:4a:d4:39:cc:
6e:b6:16:cb:21:19:b8:8a:02:db:90:55:65:ec:14:ac:8e:8d:
dc:6b:cc:b1:69:96:c4:d6:f6:93:06:3f:fc:a8:97:8b:f8:e9:
74:21:06:6b:b5:38:01:89:fc:4e:46:1d:b5:e8:36:3d:69:34:
c3:0d:b9:91:a5:76:37:0f:6c:2f:05:ae:38:fc:b7:5d:ef:a9:
70:6a:69:b1:94:07:92:98:57:38:62:8c:df:8a:8c:b0:db:22:
bf:8c:ea:8c:f6:09:87:b6:2b:7c:56:72:60:15:b9:89:76:f4:
34:eb:6a:9e:32:08:e8:95:f2:93:ce:e3:f1:d6:37:e1:b7:88:
05:7f:7b:d0:d4:05:e7:c5:3e:6e:31:8a:07:00:d3:16:a7:0b:
59:7d:24:ba:ed:72:04:eb:30:41:38:fc:49:6f:0f:1f:5e:c1:
64:b3:1a:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBv1UaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OWEzYjJjMzYyMmRmOWU4Nzk4MmVhODM1MDk3OGE2Yzk4NzVhN2M4MB4XDTIyMDEw
MTA1NTUzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQxYmJhMzQzYmU1
ZmNlNjlkZTUxMTFkNTYxN2I5MzA4NWFkYmQ5MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4coQW/acNRMAHgyJCbYcggLgcAJGK0d/sMxQTPUhapBvon
Eo5V+Z1YVMkI1l22A1hOtfI8yV25VFJv4g8/Vt8aOlqYMDGRJVaA7AFdS2gbqRyq
h3rjsasddMa39DPQ82Eryni4zP/Lq8IP7hV1pbpNEbvmXmF4Na7WUv8t8bUkMadL
HJ1Q6fsvP12nHLKXPdxGKTnFteRkpMBJIzOzI7lQFloRLzyampi4HIy+UQzlirXP
xfzwjbdhzZHcCk8Nb66gepZ3ZAZcq0cDF/y54f0bGx9INdyaEc/ZxJ0SQaxbGje2
zuaebOWxja3eItyIGImbgMw3g9NE3jj5/wWBXfMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR0G7o0O+X85p3lER1WF7kwha29kDAfBgNVHSMEGDAWgBR5o7LDYi356HmC
6oNQl4psmHWnyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VhT3l3Mkl0LWVoNWd1cURVSmVLYkpoMXA4Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDgvZTUwNjliLTFjYWQtNDVhNC1hNjE5LWMyNGZmNjgyZjdhZC8x
L2RCdTZORHZsX09hZDVSRWRWaGU1TUlXdHZaQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgv
ZTUwNjliLTFjYWQtNDVhNC1hNjE5LWMyNGZmNjgyZjdhZC8xL2VhT3l3Mkl0LWVo
NWd1cURVSmVLYkpoMXA4Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsK70DANBgkqhkiG9w0BAQsFAAOC
AQEAGlV8Sbl99Tyxiajh/vCPovL6NqdYr853FRwekMoML20jNAg9y3qmFqFhGEPj
ZWBT2uDr/5rcSBfMljHl15GvytIsIYI6vMScKWIHre33QBC2LEDISptK1DnMbrYW
yyEZuIoC25BVZewUrI6N3GvMsWmWxNb2kwY//KiXi/jpdCEGa7U4AYn8TkYdteg2
PWk0ww25kaV2Nw9sLwWuOPy3Xe+pcGppsZQHkphXOGKM34qMsNsiv4zqjPYJh7Yr
fFZyYBW5iXb0NOtqnjII6JXyk87j8dY34beIBX970NQF58U+bjGKBwDTFqcLWX0k
uu1yBOswQTj8SW8PH17BZLMaqA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:49 2024 by rpki-client on console-fra.rpki-client.org