Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/8HgS8qObKUMnKogGSauYG88Upz0.roa
File: 8HgS8qObKUMnKogGSauYG88Upz0.roa (raw, json)
Hash identifier: efqnE/2AAGd/NNxJ62nNIhyN2JJs4jIy9BSVR++7/CA=
Subject key identifier: F0:78:12:F2:A3:9B:29:43:27:2A:88:06:49:AB:98:1B:CF:14:A7:3D
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4283CB7B
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/8HgS8qObKUMnKogGSauYG88Upz0.roa
Signing time: Sat 01 Jan 2022 14:03:24 +0000
ROA not before: Sat 01 Jan 2022 14:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199438
IP address blocks: 194.14.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1115933563 (0x4283cb7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f07812f2a39b2943272a880649ab981bcf14a73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bc:09:dd:42:4f:bf:61:e5:32:f0:89:84:2a:
f0:67:10:72:82:d1:a8:a9:3f:05:dd:5e:81:ca:8e:
56:2c:26:f7:55:47:47:57:44:df:21:9f:2e:04:74:
c7:aa:16:29:db:ac:cd:c7:b8:16:80:38:57:8f:15:
02:91:75:b3:52:83:98:3a:f1:a5:49:16:be:a1:16:
3c:ff:05:5d:ee:16:a0:52:ff:01:d1:f0:37:32:ab:
31:6e:1b:32:f0:fe:5d:9e:c4:35:41:24:50:3b:d4:
8a:21:90:c2:d7:64:ea:f3:42:ea:99:eb:7f:42:5e:
55:c5:c9:8d:65:74:4f:f2:7d:14:fc:9a:a9:a0:7c:
65:84:b7:83:12:1c:43:ea:61:42:91:9b:69:f8:ee:
96:e3:dc:fd:5b:20:9f:52:88:1f:0b:14:f3:05:cb:
ef:8b:6c:21:58:0e:70:71:94:bb:c2:12:94:1e:ac:
ab:2d:c5:8f:4a:14:c2:fe:70:17:d0:58:e1:d3:ea:
6a:ee:18:6d:06:53:60:01:6c:b1:53:8b:1d:5c:78:
eb:f0:ae:7e:d3:10:15:7f:48:2f:e8:c7:68:5d:c6:
ea:41:31:b7:94:a6:82:d8:ed:e5:d3:fa:56:bd:31:
ff:8a:d9:e1:0d:45:a3:46:26:da:ac:a3:1f:c7:51:
be:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:78:12:F2:A3:9B:29:43:27:2A:88:06:49:AB:98:1B:CF:14:A7:3D
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/8HgS8qObKUMnKogGSauYG88Upz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.14.219.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:e8:6d:1e:4c:d1:0f:a7:77:51:2f:42:fe:ab:ab:61:7e:4d:
f3:ec:f6:e0:b1:b4:00:78:ed:38:34:a9:2c:88:68:d0:62:98:
20:00:69:b4:d3:b1:45:9e:aa:3e:c4:14:e1:ee:43:1d:06:34:
61:c9:04:86:cf:5c:eb:70:78:4c:7d:c7:11:ed:05:f5:20:22:
fd:23:30:27:fc:7a:44:a9:f6:eb:cc:de:17:ba:80:8b:55:dc:
1d:86:f7:4b:b9:d1:0a:f8:84:dc:1b:4d:0a:d8:a7:93:f0:b5:
cf:fd:44:51:7a:5b:e8:95:fc:6c:43:bf:e2:d6:6f:54:14:15:
51:8c:a3:9a:4c:eb:6f:fa:6f:89:bd:03:44:19:3d:bf:66:f0:
52:ca:eb:38:9a:72:df:3c:fe:48:09:6d:fc:60:62:0d:e5:52:
f9:fc:c0:16:77:46:eb:e4:f5:95:f0:4f:c0:36:38:f0:ab:5a:
70:96:80:f8:17:43:7e:6d:18:d0:36:e8:97:46:ce:84:0b:5d:
8b:4b:79:a1:4d:ea:a9:c3:40:89:29:49:ee:45:ea:30:81:25:
ad:bc:9d:8c:72:08:e1:ed:e1:43:d0:2d:4d:11:20:43:05:58:
c9:a5:41:7c:db:c4:7f:76:d7:ac:b7:1c:2d:54:fe:d5:99:c4:
c5:6c:8b:28
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEQoPLezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTM1YzdmNTcxZWVmZWI2NzQwNGFiNmM0NWZkNDc1NTUxYWRhZjFiMB4XDTIyMDEw
MTE0MDMyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjA3ODEyZjJhMzli
Mjk0MzI3MmE4ODA2NDlhYjk4MWJjZjE0YTczZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANW8Cd1CT79h5TLwiYQq8GcQcoLRqKk/Bd1egcqOViwm91VH
R1dE3yGfLgR0x6oWKduszce4FoA4V48VApF1s1KDmDrxpUkWvqEWPP8FXe4WoFL/
AdHwNzKrMW4bMvD+XZ7ENUEkUDvUiiGQwtdk6vNC6pnrf0JeVcXJjWV0T/J9FPya
qaB8ZYS3gxIcQ+phQpGbafjuluPc/Vsgn1KIHwsU8wXL74tsIVgOcHGUu8ISlB6s
qy3Fj0oUwv5wF9BY4dPqau4YbQZTYAFssVOLHVx46/CuftMQFX9IL+jHaF3G6kEx
t5Smgtjt5dP6Vr0x/4rZ4Q1Fo0Ym2qyjH8dRvuECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTweBLyo5spQycqiAZJq5gbzxSnPTAfBgNVHSMEGDAWgBQhNcf1ce7+tnQE
q2xF/UdVUa2vGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lUWEg5WEh1X3JaMEJLdHNSZjFIVlZHdHJ4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8x
LzhIZ1M4cU9iS1VNbktvZ0dTYXVZRzg4VXB6MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8xL0lUWEg5WEh1X3Ja
MEJLdHNSZjFIVlZHdHJ4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIO2zANBgkqhkiG9w0BAQsFAAOC
AQEAG+htHkzRD6d3US9C/qurYX5N8+z24LG0AHjtODSpLIho0GKYIABptNOxRZ6q
PsQU4e5DHQY0YckEhs9c63B4TH3HEe0F9SAi/SMwJ/x6RKn268zeF7qAi1XcHYb3
S7nRCviE3BtNCtink/C1z/1EUXpb6JX8bEO/4tZvVBQVUYyjmkzrb/pvib0DRBk9
v2bwUsrrOJpy3zz+SAlt/GBiDeVS+fzAFndG6+T1lfBPwDY48KtacJaA+BdDfm0Y
0Dbol0bOhAtdi0t5oU3qqcNAiSlJ7kXqMIElrbydjHII4e3hQ9AtTREgQwVYyaVB
fNvEf3bXrLccLVT+1ZnExWyLKA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org