Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3308f5-27e3-4c94-a46b-48e6f260fba5/1/ITwPCbvYG4V-_acj-mi_NSk1pl4.roa
File: ITwPCbvYG4V-_acj-mi_NSk1pl4.roa (raw, json)
Hash identifier: qMN+s9B1s7NAXYYB9J9KCAodhpBY150c0Zwlig3m1/c=
Subject key identifier: 21:3C:0F:09:BB:D8:1B:85:7E:FD:A7:23:FA:68:BF:35:29:35:A6:5E
Certificate issuer: /CN=d8ef1290cf38b4f6e0183e7e4bf87ac67a12d7ab
Certificate serial: 9512
Authority key identifier: D8:EF:12:90:CF:38:B4:F6:E0:18:3E:7E:4B:F8:7A:C6:7A:12:D7:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O8SkM84tPbgGD5-S_h6xnoS16s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/3308f5-27e3-4c94-a46b-48e6f260fba5/1/ITwPCbvYG4V-_acj-mi_NSk1pl4.roa
Signing time: Fri 27 May 2022 13:33:13 +0000
ROA not before: Fri 27 May 2022 13:33:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48067
IP address blocks: 193.84.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38162 (0x9512)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ef1290cf38b4f6e0183e7e4bf87ac67a12d7ab
Validity
Not Before: May 27 13:33:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=213c0f09bbd81b857efda723fa68bf352935a65e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:58:b6:07:24:3f:bb:ab:ff:c7:65:98:79:ee:
86:d2:ab:9d:fa:8d:12:e6:24:84:f5:0e:7c:aa:82:
05:ae:87:2b:03:c2:41:ec:a2:7a:6f:48:89:e1:04:
64:96:25:d9:cc:fb:ed:0e:54:4f:8d:38:be:56:a6:
77:25:81:89:76:fe:d2:a7:7e:99:82:e4:50:b1:88:
69:0d:53:83:30:6a:9f:5a:76:b8:a4:13:14:a8:0e:
83:07:c8:59:05:e0:38:ca:c4:b7:42:56:d0:d4:76:
f1:c9:d6:55:62:b3:37:00:70:d1:4a:ee:60:90:49:
f1:b0:2a:01:21:36:77:2f:fd:a7:81:4b:89:82:a5:
a1:8e:a7:52:a4:21:8d:fa:40:b2:bb:1b:67:80:04:
cf:97:c8:79:97:48:2f:07:3e:c3:75:e2:eb:7a:c7:
50:33:c1:30:09:83:88:eb:33:31:9b:cd:73:9c:a6:
04:03:0e:84:8a:c9:80:d6:84:ff:22:ca:47:56:97:
1c:ea:18:f1:76:85:08:27:81:15:d9:8b:af:39:7b:
15:1f:eb:e4:87:c4:cc:31:8c:fd:f5:fe:a1:74:fe:
a1:b9:0d:19:55:66:28:7d:3a:25:fe:2c:4a:a6:7b:
3f:88:f6:57:74:ee:9c:c4:27:0f:07:31:c2:d9:ce:
e1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3C:0F:09:BB:D8:1B:85:7E:FD:A7:23:FA:68:BF:35:29:35:A6:5E
X509v3 Authority Key Identifier:
keyid:D8:EF:12:90:CF:38:B4:F6:E0:18:3E:7E:4B:F8:7A:C6:7A:12:D7:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O8SkM84tPbgGD5-S_h6xnoS16s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3308f5-27e3-4c94-a46b-48e6f260fba5/1/ITwPCbvYG4V-_acj-mi_NSk1pl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3308f5-27e3-4c94-a46b-48e6f260fba5/1/2O8SkM84tPbgGD5-S_h6xnoS16s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.69.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:58:95:e6:e0:c6:f3:21:41:fa:65:aa:59:e5:74:fc:35:f1:
54:cd:70:cd:3e:fc:88:49:11:b9:53:2f:83:b4:b9:27:f4:02:
24:4a:f3:2e:75:50:7e:a5:24:96:66:f1:7f:51:05:2e:0b:c8:
5b:c1:18:07:eb:f6:84:a1:c9:d7:4f:43:09:e0:66:93:fd:dc:
54:b0:0b:b9:92:77:6b:cf:63:a9:2e:7d:69:88:22:bb:9c:75:
8c:44:e4:de:8e:4b:0c:d4:6a:49:0b:4c:10:f4:93:56:a4:13:
4b:d6:49:80:38:8b:64:76:eb:7b:83:16:28:42:39:da:9e:aa:
25:fa:2d:4e:af:8d:1a:f1:d8:fe:e4:e7:c4:83:58:8f:06:43:
9c:fc:c9:81:a3:66:b0:1b:30:7f:5f:e4:94:74:62:ad:55:cc:
fe:64:e2:c6:ac:5d:11:77:b1:62:94:3a:78:ef:65:48:5e:20:
c5:49:e2:a1:e6:79:29:66:20:23:09:c3:3e:7d:46:e1:3e:41:
1b:44:fe:76:a6:88:70:4a:90:92:bb:6f:c1:62:94:00:41:b6:
35:1a:fc:14:e6:4b:8c:f2:db:ec:fc:63:94:74:27:57:6d:11:
7c:ea:0b:11:ea:12:59:cb:24:8e:e3:5b:e7:8d:db:dd:d7:57:
39:0b:20:6d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAJUSMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ4
ZWYxMjkwY2YzOGI0ZjZlMDE4M2U3ZTRiZjg3YWM2N2ExMmQ3YWIwHhcNMjIwNTI3
MTMzMzEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyMTNjMGYwOWJiZDgx
Yjg1N2VmZGE3MjNmYTY4YmYzNTI5MzVhNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAkli2ByQ/u6v/x2WYee6G0qud+o0S5iSE9Q58qoIFrocrA8JB
7KJ6b0iJ4QRkliXZzPvtDlRPjTi+VqZ3JYGJdv7Sp36ZguRQsYhpDVODMGqfWna4
pBMUqA6DB8hZBeA4ysS3QlbQ1HbxydZVYrM3AHDRSu5gkEnxsCoBITZ3L/2ngUuJ
gqWhjqdSpCGN+kCyuxtngATPl8h5l0gvBz7DdeLresdQM8EwCYOI6zMxm81znKYE
Aw6EismA1oT/IspHVpcc6hjxdoUIJ4EV2YuvOXsVH+vkh8TMMYz99f6hdP6huQ0Z
VWYofTol/ixKpns/iPZXdO6cxCcPBzHC2c7hPQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFCE8Dwm72BuFfv2nI/povzUpNaZeMB8GA1UdIwQYMBaAFNjvEpDPOLT24Bg+
fkv4esZ6EterMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Mk84U2tNODR0UGJnR0Q1LVNfaDZ4bm9TMTZzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yMS8zMzA4ZjUtMjdlMy00Yzk0LWE0NmItNDhlNmYyNjBmYmE1LzEv
SVR3UENidllHNFYtX2Fjai1taV9OU2sxcGw0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8z
MzA4ZjUtMjdlMy00Yzk0LWE0NmItNDhlNmYyNjBmYmE1LzEvMk84U2tNODR0UGJn
R0Q1LVNfaDZ4bm9TMTZzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwVRFMA0GCSqGSIb3DQEBCwUAA4IB
AQAvWJXm4MbzIUH6ZapZ5XT8NfFUzXDNPvyISRG5Uy+DtLkn9AIkSvMudVB+pSSW
ZvF/UQUuC8hbwRgH6/aEocnXT0MJ4GaT/dxUsAu5kndrz2OpLn1piCK7nHWMROTe
jksM1GpJC0wQ9JNWpBNL1kmAOItkdut7gxYoQjnanqol+i1Or40a8dj+5OfEg1iP
BkOc/MmBo2awGzB/X+SUdGKtVcz+ZOLGrF0Rd7FilDp472VIXiDFSeKh5nkpZiAj
CcM+fUbhPkEbRP52pohwSpCSu2/BYpQAQbY1GvwU5kuM8tvs/GOUdCdXbRF86gsR
6hJZyySO41vnjdvd11c5CyBt
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:49 2024 by rpki-client on console-ams.rpki-client.org