Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/IIgVbt7BOKfgVUy6wsVqzxT00Tw.roa
File: IIgVbt7BOKfgVUy6wsVqzxT00Tw.roa (raw, json)
Hash identifier: M+dc5HMfUDsBf89Zt1I0P6sMse9ISZzRwnj0zXRd0vU=
Subject key identifier: 20:88:15:6E:DE:C1:38:A7:E0:55:4C:BA:C2:C5:6A:CF:14:F4:D1:3C
Certificate issuer: /CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Certificate serial: 037B3D48
Authority key identifier: D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/IIgVbt7BOKfgVUy6wsVqzxT00Tw.roa
Signing time: Sat 01 Jan 2022 07:59:02 +0000
ROA not before: Sat 01 Jan 2022 07:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15847
IP address blocks: 195.20.198.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58408264 (0x37b3d48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Validity
Not Before: Jan 1 07:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2088156edec138a7e0554cbac2c56acf14f4d13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ec:78:20:51:9b:2c:bf:07:ed:5a:db:73:19:
a4:44:bc:8a:a2:ee:96:1f:59:de:1f:3f:fd:96:e2:
53:54:97:89:83:f0:14:70:f5:7e:db:cc:da:2b:af:
e9:53:ca:85:42:1e:c5:5d:81:66:b2:ab:ea:34:0c:
9f:b0:9a:05:51:eb:72:84:ab:90:4d:a5:8d:e3:d9:
80:68:43:d0:0b:eb:39:0f:8e:f3:ab:19:8b:e8:3b:
81:e3:66:13:dc:10:c7:f4:99:15:7c:d1:9f:18:ba:
57:22:5f:eb:a1:e9:89:f8:2c:c1:01:30:6b:32:b5:
c9:b4:69:ad:49:f4:4f:b4:da:f5:f0:2d:63:eb:22:
fa:55:ab:be:98:77:5c:b7:59:ad:a9:b0:9a:c7:fe:
0a:c0:a5:65:4e:50:9b:90:04:ea:f9:50:b4:a0:2b:
5c:10:1d:11:f6:ea:f5:b3:03:3a:7d:03:a9:60:2c:
7f:2d:96:00:bd:dd:af:ed:13:70:a6:74:0d:4c:fa:
ee:9a:26:dc:5b:59:a6:d4:92:1b:bd:bd:33:f4:28:
65:d4:79:5d:37:67:3e:d9:ec:19:6c:46:1b:03:a9:
c2:a7:97:bf:ee:b7:cb:6d:de:6b:10:fb:c3:d0:2f:
60:c3:7d:84:22:a5:7b:81:bb:68:dc:ee:3f:bb:63:
b7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:88:15:6E:DE:C1:38:A7:E0:55:4C:BA:C2:C5:6A:CF:14:F4:D1:3C
X509v3 Authority Key Identifier:
keyid:D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/IIgVbt7BOKfgVUy6wsVqzxT00Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.198.0/23
Signature Algorithm: sha256WithRSAEncryption
77:5e:f4:e8:07:fd:bf:a3:62:28:03:45:6a:58:80:e3:e9:ae:
c4:6b:db:88:b0:74:e0:0d:ef:e6:e7:60:17:b6:27:d9:08:5a:
2e:b8:91:18:5c:41:1d:27:5a:5b:76:fa:ea:75:25:ef:15:35:
21:c7:bc:71:51:0f:6a:c1:bc:f4:0d:63:68:32:9b:5b:31:7a:
24:cf:ec:4b:f7:2b:f9:a1:30:09:b0:a1:39:c7:11:1d:f7:56:
48:c5:78:e8:9e:4f:5f:72:bd:50:ac:65:cf:f4:0b:68:a5:43:
83:9d:0a:63:7d:2b:7b:01:9d:4b:c0:9e:06:99:62:9d:57:53:
9f:db:23:16:8f:ed:1d:b0:7a:61:37:1d:b5:72:9e:16:99:2d:
14:60:22:06:86:37:0c:95:d7:71:7b:d8:ed:d8:68:71:ea:6e:
31:d7:1c:5c:b7:9d:4b:6d:a1:bb:02:38:cb:3b:87:b2:ec:f8:
ce:fa:28:43:c9:ce:d9:dd:cf:87:50:74:69:e0:e7:77:9d:f5:
d3:a0:28:11:5e:67:14:5c:d9:0a:27:11:70:07:a2:58:b7:0b:
3e:92:77:59:06:22:db:7d:b3:fc:7e:5e:43:90:ed:c5:65:90:
88:64:03:22:36:61:92:10:9c:c9:f5:64:be:c6:36:7c:36:7c:
a2:33:1a:06
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA3s9SDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MTBlMzhiMGI3YTMzZWYzYTE2ZTE1NDMzNDAyOTg3ZDZkNjc4ZGExMB4XDTIyMDEw
MTA3NTkwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjA4ODE1NmVkZWMx
MzhhN2UwNTU0Y2JhYzJjNTZhY2YxNGY0ZDEzYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAObseCBRmyy/B+1a23MZpES8iqLulh9Z3h8//ZbiU1SXiYPw
FHD1ftvM2iuv6VPKhUIexV2BZrKr6jQMn7CaBVHrcoSrkE2ljePZgGhD0AvrOQ+O
86sZi+g7geNmE9wQx/SZFXzRnxi6VyJf66HpifgswQEwazK1ybRprUn0T7Ta9fAt
Y+si+lWrvph3XLdZramwmsf+CsClZU5Qm5AE6vlQtKArXBAdEfbq9bMDOn0DqWAs
fy2WAL3dr+0TcKZ0DUz67pom3FtZptSSG729M/QoZdR5XTdnPtnsGWxGGwOpwqeX
v+63y23eaxD7w9AvYMN9hCKle4G7aNzuP7tjt0kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQgiBVu3sE4p+BVTLrCxWrPFPTRPDAfBgNVHSMEGDAWgBTRDjiwt6M+86Fu
FUM0Aph9bWeNoTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBRNDRzTGVqUHZPaGJoVkROQUtZZlcxbmphRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGMvM2ZhMDlhLWU4NzQtNGYzNC1iZjQ1LTJjMGVkYTcwNjY2YS8x
L0lJZ1ZidDdCT0tmZ1ZVeTZ3c1ZxenhUMDBUdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGMv
M2ZhMDlhLWU4NzQtNGYzNC1iZjQ1LTJjMGVkYTcwNjY2YS8xLzBRNDRzTGVqUHZP
aGJoVkROQUtZZlcxbmphRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcMUxjANBgkqhkiG9w0BAQsFAAOC
AQEAd1706Af9v6NiKANFaliA4+muxGvbiLB04A3v5udgF7Yn2QhaLriRGFxBHSda
W3b66nUl7xU1Ice8cVEPasG89A1jaDKbWzF6JM/sS/cr+aEwCbChOccRHfdWSMV4
6J5PX3K9UKxlz/QLaKVDg50KY30rewGdS8CeBplinVdTn9sjFo/tHbB6YTcdtXKe
FpktFGAiBoY3DJXXcXvY7dhocepuMdccXLedS22huwI4yzuHsuz4zvooQ8nO2d3P
h1B0aeDnd53106AoEV5nFFzZCicRcAeiWLcLPpJ3WQYi232z/H5eQ5DtxWWQiGQD
IjZhkhCcyfVkvsY2fDZ8ojMaBg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:47 2023 by rpki-client on console.sobornost.net