Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/3N2Pm-OGJofgyAouqGWDqhvGW0w.roa
File: 3N2Pm-OGJofgyAouqGWDqhvGW0w.roa (raw, json)
Hash identifier: PdUGwHCdYCVrMc2rfHMCl1rXKDhS4LeifSIPfoli3QE=
Subject key identifier: DC:DD:8F:9B:E3:86:26:87:E0:C8:0A:2E:A8:65:83:AA:1B:C6:5B:4C
Certificate issuer: /CN=e9fd155b08ee1a0df3ca418575ea3af901a82853
Certificate serial: 02F216B4
Authority key identifier: E9:FD:15:5B:08:EE:1A:0D:F3:CA:41:85:75:EA:3A:F9:01:A8:28:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6f0VWwjuGg3zykGFdeo6-QGoKFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/3N2Pm-OGJofgyAouqGWDqhvGW0w.roa
Signing time: Sat 01 Jan 2022 06:58:37 +0000
ROA not before: Sat 01 Jan 2022 06:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 195.191.145.0/24 maxlen: 24
195.191.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49419956 (0x2f216b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9fd155b08ee1a0df3ca418575ea3af901a82853
Validity
Not Before: Jan 1 06:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcdd8f9be3862687e0c80a2ea86583aa1bc65b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a7:00:46:b4:5b:b1:59:3a:e8:4c:9b:65:f6:
ca:8e:10:b6:80:de:76:da:2e:7f:c0:8d:ea:c0:0c:
ec:53:3f:58:db:f7:16:9b:37:cf:48:b5:6d:a7:e8:
04:d3:b4:fa:16:55:55:80:9b:c5:02:f1:cc:80:d6:
18:70:8a:4f:25:84:af:2e:e8:52:c8:83:7d:de:0a:
d4:1f:3e:ce:f3:8c:d7:c6:c6:fa:f9:34:aa:42:d7:
19:b3:64:cf:59:9e:39:b0:35:02:70:6e:3e:4b:cd:
6d:a1:27:61:85:3b:50:03:f0:fe:4f:ab:f2:49:35:
14:01:ee:0d:f2:14:ff:53:5d:8b:7c:3f:30:98:05:
43:4e:87:aa:ba:e0:6e:7e:70:24:07:f3:c7:f7:34:
d6:00:01:33:07:bc:ea:24:4c:b7:d2:b5:94:b2:e1:
69:f2:e2:9e:93:db:fe:4a:d6:05:60:91:d4:45:f5:
71:76:6f:a7:55:b3:cc:a6:55:58:fe:99:d3:53:03:
cb:ac:33:3d:8a:85:90:37:ce:1c:82:cd:3b:1c:96:
fb:f5:be:12:db:5a:64:26:4f:b1:a5:67:11:6a:04:
2a:c5:39:aa:b2:98:f6:2a:06:dc:ea:e1:7a:77:bf:
cf:f6:2f:5d:ec:d9:cf:98:48:fb:4c:ed:6f:49:97:
25:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:DD:8F:9B:E3:86:26:87:E0:C8:0A:2E:A8:65:83:AA:1B:C6:5B:4C
X509v3 Authority Key Identifier:
keyid:E9:FD:15:5B:08:EE:1A:0D:F3:CA:41:85:75:EA:3A:F9:01:A8:28:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f0VWwjuGg3zykGFdeo6-QGoKFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/3N2Pm-OGJofgyAouqGWDqhvGW0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/6f0VWwjuGg3zykGFdeo6-QGoKFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.144.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:d6:63:72:60:9b:20:08:b1:52:4b:c9:1c:93:17:12:7e:86:
c6:d3:9d:15:5a:41:ff:7b:60:1e:97:b8:13:f8:12:67:32:b1:
bb:c9:05:4e:e3:2f:15:1b:32:ec:68:8e:90:f2:cf:be:ec:1c:
03:5e:94:ec:20:e5:26:4e:fe:27:3d:f7:91:92:bc:3d:7a:70:
ec:29:b7:6f:65:d3:8d:ae:b5:e3:01:35:63:28:38:ad:cf:d6:
11:9a:f5:41:a4:52:2a:48:7e:56:39:c8:93:7a:1b:15:8b:e0:
40:0e:cd:ad:83:b8:37:5c:e0:a4:af:e6:b8:34:50:7f:b6:b9:
6e:23:93:10:8c:c1:cf:95:25:26:c9:a2:f8:bc:78:5e:1e:47:
91:20:1b:87:a1:cb:cb:e8:39:cd:d7:15:7c:84:0d:10:95:f0:
19:77:54:d7:78:3f:13:45:61:ad:fd:3e:8e:ec:f7:68:62:8d:
bd:73:e2:8f:20:b5:c5:fa:cb:19:fe:96:d2:76:fe:d0:b9:ba:
3b:26:7a:03:98:7c:93:81:43:57:ea:14:48:1a:6b:88:5b:ae:
0e:5c:cf:8f:f3:94:f1:c4:c0:07:cf:c9:8a:f5:9b:4a:37:4a:
89:c2:a4:58:f3:6f:44:7d:77:57:47:98:1b:2e:1a:4c:bf:50:
17:0e:59:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAvIWtDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OWZkMTU1YjA4ZWUxYTBkZjNjYTQxODU3NWVhM2FmOTAxYTgyODUzMB4XDTIyMDEw
MTA2NTgzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGNkZDhmOWJlMzg2
MjY4N2UwYzgwYTJlYTg2NTgzYWExYmM2NWI0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKGnAEa0W7FZOuhMm2X2yo4QtoDedtouf8CN6sAM7FM/WNv3
Fps3z0i1bafoBNO0+hZVVYCbxQLxzIDWGHCKTyWEry7oUsiDfd4K1B8+zvOM18bG
+vk0qkLXGbNkz1meObA1AnBuPkvNbaEnYYU7UAPw/k+r8kk1FAHuDfIU/1Ndi3w/
MJgFQ06Hqrrgbn5wJAfzx/c01gABMwe86iRMt9K1lLLhafLinpPb/krWBWCR1EX1
cXZvp1WzzKZVWP6Z01MDy6wzPYqFkDfOHILNOxyW+/W+EttaZCZPsaVnEWoEKsU5
qrKY9ioG3Orhene/z/YvXezZz5hI+0ztb0mXJTMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTc3Y+b44Ymh+DICi6oZYOqG8ZbTDAfBgNVHSMEGDAWgBTp/RVbCO4aDfPK
QYV16jr5AagoUzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZmMFZXd2p1R2czenlrR0ZkZW82LVFHb0tGTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjEvZmY0ZDM2LTY4ODUtNDRmZi1hMDUyLTJmYjAzZjY3YmM0NC8x
LzNOMlBtLU9HSm9mZ3lBb3VxR1dEcWh2R1cwdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEv
ZmY0ZDM2LTY4ODUtNDRmZi1hMDUyLTJmYjAzZjY3YmM0NC8xLzZmMFZXd2p1R2cz
enlrR0ZkZW82LVFHb0tGTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcO/kDANBgkqhkiG9w0BAQsFAAOC
AQEAPtZjcmCbIAixUkvJHJMXEn6GxtOdFVpB/3tgHpe4E/gSZzKxu8kFTuMvFRsy
7GiOkPLPvuwcA16U7CDlJk7+Jz33kZK8PXpw7Cm3b2XTja614wE1Yyg4rc/WEZr1
QaRSKkh+VjnIk3obFYvgQA7NrYO4N1zgpK/muDRQf7a5biOTEIzBz5UlJsmi+Lx4
Xh5HkSAbh6HLy+g5zdcVfIQNEJXwGXdU13g/E0Vhrf0+juz3aGKNvXPijyC1xfrL
Gf6W0nb+0Lm6OyZ6A5h8k4FDV+oUSBpriFuuDlzPj/OU8cTAB8/JivWbSjdKicKk
WPNvRH13V0eYGy4aTL9QFw5Zjg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-fra.rpki-client.org