Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DFmmBOcga0txCduY8RY0-sAyGGs.roa
File: DFmmBOcga0txCduY8RY0-sAyGGs.roa (raw, json)
Hash identifier: gagr7df3NstedWd7YkUcC/wC1kxW123+7mOY5aAaQ/M=
Subject key identifier: 0C:59:A6:04:E7:20:6B:4B:71:09:DB:98:F1:16:34:FA:C0:32:18:6B
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 030420B7
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DFmmBOcga0txCduY8RY0-sAyGGs.roa
Signing time: Mon 21 Mar 2022 16:13:19 +0000
ROA not before: Mon 21 Mar 2022 16:13:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 88.151.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50602167 (0x30420b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Mar 21 16:13:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c59a604e7206b4b7109db98f11634fac032186b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7c:60:98:6a:c4:2d:2a:2b:5a:a2:87:54:c2:
18:72:e0:3d:29:0b:55:8e:0b:30:05:4c:6a:8b:5a:
7e:a4:0a:51:60:38:6b:07:be:00:16:7c:b0:4d:7f:
25:cc:2d:06:e1:65:ce:2f:2b:d6:87:fc:33:32:e0:
63:bc:1e:0b:3f:b0:3b:e7:af:aa:4f:89:52:78:49:
e5:59:b0:45:29:d6:d1:ac:4a:e5:8f:7a:cc:16:90:
7f:21:5b:ee:76:65:35:58:f8:55:c2:37:ed:c1:84:
ac:16:d7:ae:46:67:48:c8:d7:4b:44:29:68:ac:73:
9f:93:2b:b6:15:fc:4f:da:34:b1:4b:0a:a0:94:0b:
9e:bb:8a:0c:1a:80:39:1c:3f:6e:fc:06:5a:38:56:
f0:94:a8:18:5f:08:06:8c:38:9e:54:77:d9:27:b4:
95:55:59:1c:d8:b4:48:87:17:96:97:f7:c7:c6:b5:
bf:30:30:f7:16:74:dc:83:2b:ad:68:3a:bb:3f:bc:
68:4f:f9:83:b7:81:3b:f2:ec:92:da:13:a1:07:a5:
14:89:5e:ad:98:8e:86:31:e3:d3:15:83:e3:26:3b:
c4:f0:89:32:6d:df:3e:ee:75:29:2a:42:9f:90:ec:
3b:7c:57:37:f4:63:8c:3e:fe:ce:e8:f2:fd:b2:f7:
7a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:59:A6:04:E7:20:6B:4B:71:09:DB:98:F1:16:34:FA:C0:32:18:6B
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DFmmBOcga0txCduY8RY0-sAyGGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.194.0/24
Signature Algorithm: sha256WithRSAEncryption
11:a7:af:aa:8f:92:56:d1:fb:1e:57:90:9c:85:c5:fe:20:7e:
19:c8:63:5c:8b:25:f4:14:07:11:d0:ce:2e:36:a9:2e:79:8e:
6f:25:4e:95:b9:76:c0:00:fd:19:79:9e:09:a8:a3:f0:f0:de:
bc:d3:ec:58:94:c2:3f:c3:f5:7b:96:11:41:a8:b0:06:d2:54:
ca:58:ae:02:64:3a:8c:e4:a5:a4:4f:9b:d1:4a:46:f5:c3:a2:
d7:02:c3:85:89:15:5c:71:0d:81:d2:a7:77:26:7f:7c:55:0e:
92:5f:89:35:80:7c:16:b9:5e:bc:f1:4f:34:81:bb:55:0b:0c:
fb:e9:48:bb:e7:b9:4e:60:4e:1b:d5:5c:e7:13:91:6c:41:23:
94:03:ee:b2:dc:0e:40:26:7e:9d:ea:a2:35:85:8e:70:90:75:
6a:38:3d:e4:6d:45:8e:7f:10:a5:3a:5d:84:87:ba:4d:89:6a:
2f:78:9e:a1:7e:38:da:85:db:91:57:8d:ca:3d:65:04:f6:9c:
8d:06:1f:83:10:a6:2d:3a:7d:dd:c2:ea:0a:ed:46:a4:b0:d5:
d0:49:6f:94:22:e3:5c:fb:ff:bd:46:76:88:88:1b:78:45:7e:
b7:61:8a:ba:cd:0e:78:a9:69:53:52:20:62:f5:a5:14:7a:bc:
90:e9:79:85
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwQgtzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDA2YTQyYmIyNDQ2ZTUxZjE5MmVhMzc1YmRmN2VlYzVhNTFjNzdmMB4XDTIyMDMy
MTE2MTMxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGM1OWE2MDRlNzIw
NmI0YjcxMDlkYjk4ZjExNjM0ZmFjMDMyMTg2YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKV8YJhqxC0qK1qih1TCGHLgPSkLVY4LMAVMaotafqQKUWA4
awe+ABZ8sE1/JcwtBuFlzi8r1of8MzLgY7weCz+wO+evqk+JUnhJ5VmwRSnW0axK
5Y96zBaQfyFb7nZlNVj4VcI37cGErBbXrkZnSMjXS0QpaKxzn5MrthX8T9o0sUsK
oJQLnruKDBqAORw/bvwGWjhW8JSoGF8IBow4nlR32Se0lVVZHNi0SIcXlpf3x8a1
vzAw9xZ03IMrrWg6uz+8aE/5g7eBO/LsktoToQelFIlerZiOhjHj0xWD4yY7xPCJ
Mm3fPu51KSpCn5DsO3xXN/RjjD7+zujy/bL3egECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMWaYE5yBrS3EJ25jxFjT6wDIYazAfBgNVHSMEGDAWgBR9BqQrskRuUfGS
6jdb337sWlHHfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZRYWtLN0pFYmxIeGt1bzNXOTktN0ZwUngzOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvNzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8x
L0RGbW1CT2NnYTB0eENkdVk4UlkwLXNBeUdHcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
NzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8xL2ZRYWtLN0pFYmxI
eGt1bzNXOTktN0ZwUngzOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFiXwjANBgkqhkiG9w0BAQsFAAOC
AQEAEaevqo+SVtH7HleQnIXF/iB+GchjXIsl9BQHEdDOLjapLnmObyVOlbl2wAD9
GXmeCaij8PDevNPsWJTCP8P1e5YRQaiwBtJUyliuAmQ6jOSlpE+b0UpG9cOi1wLD
hYkVXHENgdKndyZ/fFUOkl+JNYB8FrlevPFPNIG7VQsM++lIu+e5TmBOG9Vc5xOR
bEEjlAPustwOQCZ+neqiNYWOcJB1ajg95G1Fjn8QpTpdhIe6TYlqL3ieoX442oXb
kVeNyj1lBPacjQYfgxCmLTp93cLqCu1GpLDV0ElvlCLjXPv/vUZ2iIgbeEV+t2GK
us0OeKlpU1IgYvWlFHq8kOl5hQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org