Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/2369b8-8d82-4157-b65f-163cd8bbf431/1/F9BbaJIzHC--uf--S9qB3zwIv3k.roa
File: F9BbaJIzHC--uf--S9qB3zwIv3k.roa (raw, json)
Hash identifier: 3AhKq9/OMCwvNUdNAnNQpXj4B9rpCR5FKmJu7EkmNNI=
Subject key identifier: 17:D0:5B:68:92:33:1C:2F:BE:B9:FF:BE:4B:DA:81:DF:3C:08:BF:79
Certificate issuer: /CN=5cd4e2fc2b41e856dba5ba62235ba641a0d81b48
Certificate serial: 0701E659
Authority key identifier: 5C:D4:E2:FC:2B:41:E8:56:DB:A5:BA:62:23:5B:A6:41:A0:D8:1B:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNTi_CtB6FbbpbpiI1umQaDYG0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/2369b8-8d82-4157-b65f-163cd8bbf431/1/F9BbaJIzHC--uf--S9qB3zwIv3k.roa
Signing time: Sat 01 Jan 2022 06:53:33 +0000
ROA not before: Sat 01 Jan 2022 06:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29081
IP address blocks: 195.42.106.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117565017 (0x701e659)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd4e2fc2b41e856dba5ba62235ba641a0d81b48
Validity
Not Before: Jan 1 06:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17d05b6892331c2fbeb9ffbe4bda81df3c08bf79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:76:5e:64:df:30:ec:67:29:da:e2:64:dd:1a:
b6:bd:7b:fe:99:25:13:fb:5e:08:56:c0:a0:6c:32:
f4:fa:a8:10:14:1d:05:95:d1:70:8d:0e:31:a6:0a:
d5:30:d1:7b:41:4d:e8:f8:c4:19:bf:a2:8b:67:bc:
cf:f5:66:8e:b8:42:75:b9:91:1f:64:d3:3d:49:1f:
71:f0:58:a9:67:a9:b6:42:71:1a:9f:dd:41:f7:5f:
71:3d:0a:44:26:43:41:4a:8c:5b:f4:09:4b:27:62:
49:d6:1c:b9:f5:37:74:6d:e7:a2:3a:63:c4:15:e0:
44:35:3a:9b:9b:f4:0f:7f:d0:e3:46:26:12:c3:fe:
1f:45:bd:a4:b3:c2:63:bd:40:5c:2a:55:7a:d6:20:
5d:4d:5b:46:92:fc:c0:f2:f9:11:c3:03:47:9a:98:
f1:34:9a:2f:10:c2:58:ae:b7:82:c4:89:4d:37:3d:
08:b2:08:96:42:7c:22:7d:3c:72:91:9e:0e:e3:42:
87:b6:ba:ee:e8:59:da:5c:cd:db:85:13:8e:de:91:
d4:f1:cc:c4:99:90:25:9d:cd:54:dc:f8:8a:07:d5:
d7:04:a6:db:ab:9f:37:53:60:93:c4:b1:b7:32:e0:
fb:5e:6e:11:6f:21:88:bf:39:96:10:c7:4a:1a:f7:
44:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D0:5B:68:92:33:1C:2F:BE:B9:FF:BE:4B:DA:81:DF:3C:08:BF:79
X509v3 Authority Key Identifier:
keyid:5C:D4:E2:FC:2B:41:E8:56:DB:A5:BA:62:23:5B:A6:41:A0:D8:1B:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNTi_CtB6FbbpbpiI1umQaDYG0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2369b8-8d82-4157-b65f-163cd8bbf431/1/F9BbaJIzHC--uf--S9qB3zwIv3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2369b8-8d82-4157-b65f-163cd8bbf431/1/XNTi_CtB6FbbpbpiI1umQaDYG0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.106.0/23
Signature Algorithm: sha256WithRSAEncryption
01:f2:99:dd:24:dd:37:1f:5a:3a:f2:4d:bc:cd:1f:98:63:7e:
cb:62:eb:92:f3:60:f4:0a:61:e9:12:fb:10:58:8f:ed:26:4e:
15:47:27:d0:e6:da:bf:6d:89:bd:f8:f7:09:86:ba:bf:6a:22:
c2:54:7b:b3:25:f0:6a:40:46:ed:20:59:40:5b:cb:88:c9:f9:
0a:40:62:52:59:5b:ea:5d:b0:1a:f6:20:36:7c:57:ad:0f:f9:
3a:b5:f2:85:5b:58:3f:7e:ec:20:69:4c:36:5f:b3:d7:92:37:
5f:52:22:87:14:60:00:89:10:1a:77:bd:10:a2:e6:8c:61:1d:
ce:d1:90:52:96:98:d1:ea:6f:bd:1b:65:a9:fc:d9:35:02:0f:
04:21:02:37:e9:5b:30:8e:fe:70:51:35:c9:61:e3:55:a2:63:
38:54:f7:1c:cf:50:ff:9b:4a:aa:b0:1e:27:bb:ef:ec:75:0c:
b0:bb:fe:1d:7d:b4:a8:76:dc:30:6f:8f:b1:65:d0:d3:f1:82:
34:a5:ca:f0:12:96:fc:6b:7e:f8:bb:4d:42:9b:d0:56:51:42:
e4:83:d9:c6:1a:b9:fd:3b:be:95:d8:2a:13:c9:41:e8:93:4e:
0c:31:26:82:03:9c:b1:23:5b:43:17:ce:3f:8d:4b:12:b6:4c:
2a:62:53:7b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBwHmWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
Y2Q0ZTJmYzJiNDFlODU2ZGJhNWJhNjIyMzViYTY0MWEwZDgxYjQ4MB4XDTIyMDEw
MTA2NTMzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTdkMDViNjg5MjMz
MWMyZmJlYjlmZmJlNGJkYTgxZGYzYzA4YmY3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALB2XmTfMOxnKdriZN0atr17/pklE/teCFbAoGwy9PqoEBQd
BZXRcI0OMaYK1TDRe0FN6PjEGb+ii2e8z/VmjrhCdbmRH2TTPUkfcfBYqWeptkJx
Gp/dQfdfcT0KRCZDQUqMW/QJSydiSdYcufU3dG3nojpjxBXgRDU6m5v0D3/Q40Ym
EsP+H0W9pLPCY71AXCpVetYgXU1bRpL8wPL5EcMDR5qY8TSaLxDCWK63gsSJTTc9
CLIIlkJ8In08cpGeDuNCh7a67uhZ2lzN24UTjt6R1PHMxJmQJZ3NVNz4igfV1wSm
26ufN1Ngk8SxtzLg+15uEW8hiL85lhDHShr3RLcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQX0FtokjMcL765/75L2oHfPAi/eTAfBgNVHSMEGDAWgBRc1OL8K0HoVtul
umIjW6ZBoNgbSDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hOVGlfQ3RCNkZiYnBicGlJMXVtUWFEWUcwZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTkvMjM2OWI4LThkODItNDE1Ny1iNjVmLTE2M2NkOGJiZjQzMS8x
L0Y5QmJhSkl6SEMtLXVmLS1TOXFCM3p3SXYzay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTkv
MjM2OWI4LThkODItNDE1Ny1iNjVmLTE2M2NkOGJiZjQzMS8xL1hOVGlfQ3RCNkZi
YnBicGlJMXVtUWFEWUcwZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcMqajANBgkqhkiG9w0BAQsFAAOC
AQEAAfKZ3STdNx9aOvJNvM0fmGN+y2LrkvNg9Aph6RL7EFiP7SZOFUcn0Obav22J
vfj3CYa6v2oiwlR7syXwakBG7SBZQFvLiMn5CkBiUllb6l2wGvYgNnxXrQ/5OrXy
hVtYP37sIGlMNl+z15I3X1IihxRgAIkQGne9EKLmjGEdztGQUpaY0epvvRtlqfzZ
NQIPBCECN+lbMI7+cFE1yWHjVaJjOFT3HM9Q/5tKqrAeJ7vv7HUMsLv+HX20qHbc
MG+PsWXQ0/GCNKXK8BKW/Gt++LtNQpvQVlFC5IPZxhq5/Tu+ldgqE8lB6JNODDEm
ggOcsSNbQxfOP41LErZMKmJTew==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:06 2024 by rpki-client on console-fra.rpki-client.org