Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/Ut96aXGGJ3wHGkkDJvs8hVMYFiw.roa
File: Ut96aXGGJ3wHGkkDJvs8hVMYFiw.roa (raw, json)
Hash identifier: E3vPnDCyUhTDDdaNop9QslOLC2TK0y9LvJrJ3hTuNF4=
Subject key identifier: 52:DF:7A:69:71:86:27:7C:07:1A:49:03:26:FB:3C:85:53:18:16:2C
Certificate issuer: /CN=bfe3542dd63fed250de5cb65f6eca487e7f47847
Certificate serial: 37FB68F8
Authority key identifier: BF:E3:54:2D:D6:3F:ED:25:0D:E5:CB:65:F6:EC:A4:87:E7:F4:78:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-NULdY_7SUN5ctl9uykh-f0eEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/Ut96aXGGJ3wHGkkDJvs8hVMYFiw.roa
Signing time: Sat 01 Jan 2022 03:51:10 +0000
ROA not before: Sat 01 Jan 2022 03:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48590
IP address blocks: 195.70.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939223288 (0x37fb68f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3542dd63fed250de5cb65f6eca487e7f47847
Validity
Not Before: Jan 1 03:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52df7a697186277c071a490326fb3c855318162c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:13:eb:4d:46:0f:4c:60:52:06:33:90:da:c4:
ae:9e:00:db:b6:1e:21:9b:a9:bf:3c:80:87:65:23:
51:34:6e:3a:10:92:c6:20:b3:a2:70:7a:fd:83:f4:
6b:71:03:88:83:10:59:ba:c7:ed:94:9c:c0:f0:e5:
12:5c:ec:9d:44:7c:69:46:90:d8:e5:86:98:59:30:
d8:3b:23:f4:e2:53:47:e5:40:b8:ac:de:9d:cd:96:
cf:bd:90:43:b4:9f:73:8a:93:ef:d5:21:21:b9:37:
bf:c8:10:04:ab:b0:82:6f:de:86:1d:ff:22:32:8b:
6e:0b:4d:2b:1d:5e:07:33:db:da:ca:ff:db:4f:d0:
e2:a4:19:66:51:20:92:b5:5c:c8:72:61:24:f1:e7:
6f:e1:14:8c:06:4a:f6:76:90:cd:d7:c4:42:fb:58:
9b:a4:8c:cd:39:8d:58:85:92:0d:56:63:7c:38:a6:
58:dd:0e:fa:ed:ce:f2:ee:6b:8e:b9:7f:48:93:e6:
80:72:57:80:31:94:ce:b9:fe:71:b7:19:45:7a:f9:
eb:b4:32:0b:94:2d:8d:62:47:9d:96:8d:f3:80:d8:
e1:f3:a6:36:ac:58:64:b1:0e:1b:ed:4b:d7:a3:05:
cc:99:d4:c8:73:0a:88:67:5d:e1:ab:ef:9d:5b:9a:
80:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DF:7A:69:71:86:27:7C:07:1A:49:03:26:FB:3C:85:53:18:16:2C
X509v3 Authority Key Identifier:
keyid:BF:E3:54:2D:D6:3F:ED:25:0D:E5:CB:65:F6:EC:A4:87:E7:F4:78:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-NULdY_7SUN5ctl9uykh-f0eEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/Ut96aXGGJ3wHGkkDJvs8hVMYFiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/v-NULdY_7SUN5ctl9uykh-f0eEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.70.29.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0c:f8:30:92:85:c8:c6:a0:e6:7c:8b:a6:a5:78:ab:c5:12:
88:1e:12:52:9d:c5:77:bb:ed:da:b9:69:76:93:e3:59:73:a3:
c7:b0:f3:58:0d:02:9c:ec:b2:7a:cf:44:1b:5b:ef:ef:dd:5c:
ef:5c:9a:1c:82:91:3a:5a:b5:3e:58:7b:51:c1:6e:5b:1a:1b:
b6:f6:5b:34:5b:48:84:25:11:c0:7d:ae:2b:93:a7:f1:15:b1:
37:81:94:18:0e:a9:c2:aa:57:c1:eb:de:81:75:e7:e9:21:0f:
2f:f0:cb:5b:7a:f8:ed:f0:c9:66:1a:8b:f2:da:16:df:14:1c:
df:f1:d1:42:b9:cd:7f:fc:e9:e4:21:39:eb:3a:18:63:49:c9:
17:db:a2:f7:09:b5:aa:ae:52:f9:2b:b4:7f:dc:cc:71:af:5a:
62:f6:74:f7:e0:80:67:30:6c:54:00:7d:d0:c7:99:eb:07:46:
d4:3a:2a:8a:5f:f4:be:4b:ab:45:cd:04:12:58:84:a6:84:f3:
17:44:02:b3:fd:b1:5a:82:98:7c:bb:f7:45:04:de:b2:49:ea:
96:af:3e:ae:9e:83:6b:ed:40:f2:06:8e:0d:04:0e:ef:45:98:
53:16:c7:29:5e:b5:9d:bf:c8:9a:74:aa:07:c8:8f:c2:3c:e0:
df:81:79:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN/to+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZmUzNTQyZGQ2M2ZlZDI1MGRlNWNiNjVmNmVjYTQ4N2U3ZjQ3ODQ3MB4XDTIyMDEw
MTAzNTExMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTJkZjdhNjk3MTg2
Mjc3YzA3MWE0OTAzMjZmYjNjODU1MzE4MTYyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANET601GD0xgUgYzkNrErp4A27YeIZupvzyAh2UjUTRuOhCS
xiCzonB6/YP0a3EDiIMQWbrH7ZScwPDlElzsnUR8aUaQ2OWGmFkw2Dsj9OJTR+VA
uKzenc2Wz72QQ7Sfc4qT79UhIbk3v8gQBKuwgm/ehh3/IjKLbgtNKx1eBzPb2sr/
20/Q4qQZZlEgkrVcyHJhJPHnb+EUjAZK9naQzdfEQvtYm6SMzTmNWIWSDVZjfDim
WN0O+u3O8u5rjrl/SJPmgHJXgDGUzrn+cbcZRXr567QyC5QtjWJHnZaN84DY4fOm
NqxYZLEOG+1L16MFzJnUyHMKiGdd4avvnVuagC8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRS33ppcYYnfAcaSQMm+zyFUxgWLDAfBgNVHSMEGDAWgBS/41Qt1j/tJQ3l
y2X27KSH5/R4RzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3YtTlVMZFlfN1NVTjVjdGw5dXlraC1mMGVFYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzIvYjE1NjU4LTEwYjYtNDA0MS1hM2RhLThkM2E2ZDE2NWRhMy8x
L1V0OTZhWEdHSjN3SEdra0RKdnM4aFZNWUZpdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzIv
YjE1NjU4LTEwYjYtNDA0MS1hM2RhLThkM2E2ZDE2NWRhMy8xL3YtTlVMZFlfN1NV
TjVjdGw5dXlraC1mMGVFYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNGHTANBgkqhkiG9w0BAQsFAAOC
AQEAgwz4MJKFyMag5nyLpqV4q8USiB4SUp3Fd7vt2rlpdpPjWXOjx7DzWA0CnOyy
es9EG1vv791c71yaHIKROlq1Plh7UcFuWxobtvZbNFtIhCURwH2uK5On8RWxN4GU
GA6pwqpXwevegXXn6SEPL/DLW3r47fDJZhqL8toW3xQc3/HRQrnNf/zp5CE56zoY
Y0nJF9ui9wm1qq5S+Su0f9zMca9aYvZ09+CAZzBsVAB90MeZ6wdG1Doqil/0vkur
Rc0EEliEpoTzF0QCs/2xWoKYfLv3RQTesknqlq8+rp6Da+1A8gaODQQO70WYUxbH
KV61nb/ImnSqB8iPwjzg34F5wQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net