Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/3DyRyU--JdnaEb_nh1V6jvsZwus.roa
File: 3DyRyU--JdnaEb_nh1V6jvsZwus.roa (raw, json)
Hash identifier: KqYeTpMLIDOpLrhKYkdBEJiopM759ItQWViZiFS9Ais=
Subject key identifier: DC:3C:91:C9:4F:BE:25:D9:DA:11:BF:E7:87:55:7A:8E:FB:19:C2:EB
Certificate issuer: /CN=0de7f26db43ad43205beb067fd0ab3e30027865d
Certificate serial: 03C21063
Authority key identifier: 0D:E7:F2:6D:B4:3A:D4:32:05:BE:B0:67:FD:0A:B3:E3:00:27:86:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DefybbQ61DIFvrBn_Qqz4wAnhl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/3DyRyU--JdnaEb_nh1V6jvsZwus.roa
Signing time: Sat 01 Jan 2022 08:53:36 +0000
ROA not before: Sat 01 Jan 2022 08:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57364
IP address blocks: 194.110.152.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63049827 (0x3c21063)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0de7f26db43ad43205beb067fd0ab3e30027865d
Validity
Not Before: Jan 1 08:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc3c91c94fbe25d9da11bfe787557a8efb19c2eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0d:50:23:67:df:eb:6d:de:72:69:74:e7:1a:
e4:3b:72:4d:da:92:48:b9:64:01:09:49:5a:32:16:
fe:dd:88:08:33:c9:de:d5:28:c1:78:df:fb:ef:52:
08:38:aa:99:7f:d3:dc:60:35:05:14:2e:58:9a:6d:
5c:d5:40:0a:1e:52:ed:07:2a:cd:65:bd:27:cb:75:
2e:a9:ca:5f:c6:9d:33:32:de:ca:9e:f6:05:ca:6d:
1c:89:0e:02:f4:94:6b:85:84:5a:e6:04:8e:79:f8:
92:36:6b:fc:84:f0:6f:ae:b1:55:1b:2c:54:7c:f3:
cf:a9:df:20:7a:91:fa:16:6b:83:66:e4:47:3a:36:
b7:fd:b3:cb:17:18:1e:6e:b7:b7:85:3f:ef:bf:78:
bf:c1:1a:63:7a:fb:73:c5:01:28:11:04:a8:19:d3:
f3:30:d7:9e:ed:61:37:e5:1a:01:d6:14:8a:a9:31:
54:6b:13:fb:8e:c9:2c:83:e2:ee:ab:ea:7c:e8:bd:
13:b6:1d:cb:44:59:e5:ae:81:98:1d:2e:39:89:f7:
ae:b9:1f:23:e3:37:e1:97:0f:a1:10:e6:e2:f4:cd:
80:2c:e3:69:8c:22:01:26:f5:37:73:fd:44:3a:18:
0a:4d:d9:4c:46:2e:3b:41:c8:2a:5b:fd:52:24:17:
0d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:3C:91:C9:4F:BE:25:D9:DA:11:BF:E7:87:55:7A:8E:FB:19:C2:EB
X509v3 Authority Key Identifier:
keyid:0D:E7:F2:6D:B4:3A:D4:32:05:BE:B0:67:FD:0A:B3:E3:00:27:86:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DefybbQ61DIFvrBn_Qqz4wAnhl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/3DyRyU--JdnaEb_nh1V6jvsZwus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/DefybbQ61DIFvrBn_Qqz4wAnhl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.152.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:a4:99:20:2a:95:17:45:f4:99:61:4c:8d:76:8e:06:66:7b:
06:8f:91:04:26:f3:ca:26:cd:84:5d:6a:c9:7b:1b:e8:08:47:
64:81:d9:27:30:57:1b:24:9a:fe:33:6b:b3:10:98:55:c9:4c:
d7:b6:0f:ee:c3:3f:52:d1:10:2e:1f:11:26:ac:fa:bf:cc:b6:
44:84:ae:fb:83:4b:a7:e9:87:b3:cb:a9:bb:76:74:93:48:36:
42:3c:f3:35:a8:17:20:97:cb:a9:ed:c8:9a:a8:5e:61:2a:67:
0f:19:0d:a5:d4:43:31:b3:e7:7d:a9:09:cd:f8:fe:4c:81:44:
f1:dc:e9:e9:92:80:1f:19:e0:18:b4:a6:19:34:86:1b:c2:05:
55:1a:6e:7c:2e:2d:3f:59:ea:1d:5e:c5:18:31:36:b6:f0:3f:
5c:05:bf:be:21:a6:23:5c:12:be:a0:ac:8a:83:25:f8:0a:b4:
b2:40:ef:e7:4f:f5:20:da:19:95:47:c0:49:59:3b:34:b2:c4:
cf:f3:74:44:36:fd:24:87:27:fd:a7:31:a7:ae:1f:8f:b7:7f:
c9:84:41:3f:06:16:80:89:40:6a:93:fd:a0:71:e3:6d:7f:fe:
20:8d:a0:e8:be:83:c3:25:c7:9e:b0:04:bd:65:77:da:a0:b9:
76:33:56:5c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA8IQYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZGU3ZjI2ZGI0M2FkNDMyMDViZWIwNjdmZDBhYjNlMzAwMjc4NjVkMB4XDTIyMDEw
MTA4NTMzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGMzYzkxYzk0ZmJl
MjVkOWRhMTFiZmU3ODc1NTdhOGVmYjE5YzJlYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALENUCNn3+tt3nJpdOca5DtyTdqSSLlkAQlJWjIW/t2ICDPJ
3tUowXjf++9SCDiqmX/T3GA1BRQuWJptXNVACh5S7QcqzWW9J8t1LqnKX8adMzLe
yp72BcptHIkOAvSUa4WEWuYEjnn4kjZr/ITwb66xVRssVHzzz6nfIHqR+hZrg2bk
Rzo2t/2zyxcYHm63t4U/7794v8EaY3r7c8UBKBEEqBnT8zDXnu1hN+UaAdYUiqkx
VGsT+47JLIPi7qvqfOi9E7Ydy0RZ5a6BmB0uOYn3rrkfI+M34ZcPoRDm4vTNgCzj
aYwiASb1N3P9RDoYCk3ZTEYuO0HIKlv9UiQXDWUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTcPJHJT74l2doRv+eHVXqO+xnC6zAfBgNVHSMEGDAWgBQN5/JttDrUMgW+
sGf9CrPjACeGXTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RlZnliYlE2MURJRnZyQm5fUXF6NHdBbmhsMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjUvYWUzMmI5LTVjOWQtNGVmMC05YjkyLWQyMjEyMzM5N2I1MC8x
LzNEeVJ5VS0tSmRuYUViX25oMVY2anZzWnd1cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUv
YWUzMmI5LTVjOWQtNGVmMC05YjkyLWQyMjEyMzM5N2I1MC8xL0RlZnliYlE2MURJ
RnZyQm5fUXF6NHdBbmhsMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcJumDANBgkqhkiG9w0BAQsFAAOC
AQEAiqSZICqVF0X0mWFMjXaOBmZ7Bo+RBCbzyibNhF1qyXsb6AhHZIHZJzBXGySa
/jNrsxCYVclM17YP7sM/UtEQLh8RJqz6v8y2RISu+4NLp+mHs8upu3Z0k0g2Qjzz
NagXIJfLqe3ImqheYSpnDxkNpdRDMbPnfakJzfj+TIFE8dzp6ZKAHxngGLSmGTSG
G8IFVRpufC4tP1nqHV7FGDE2tvA/XAW/viGmI1wSvqCsioMl+Aq0skDv50/1INoZ
lUfASVk7NLLEz/N0RDb9JIcn/acxp64fj7d/yYRBPwYWgIlAapP9oHHjbX/+II2g
6L6DwyXHnrAEvWV32qC5djNWXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:48 2024 by rpki-client on console-fra.rpki-client.org