Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/da3406-04f9-47b0-a119-b88afef13367/1/dfYrqlArZZvSCeZzY8X3C7NoVz4.roa
File: dfYrqlArZZvSCeZzY8X3C7NoVz4.roa (raw, json)
Hash identifier: HIF/1mN+QQJdUEd92Tpf4bF54BkJ5TRyPZKL7PipC2w=
Subject key identifier: 75:F6:2B:AA:50:2B:65:9B:D2:09:E6:73:63:C5:F7:0B:B3:68:57:3E
Certificate issuer: /CN=ff99bc3d1491f8225f881164f593144b7a25c8eb
Certificate serial: 0132DD06
Authority key identifier: FF:99:BC:3D:14:91:F8:22:5F:88:11:64:F5:93:14:4B:7A:25:C8:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_5m8PRSR-CJfiBFk9ZMUS3olyOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/da3406-04f9-47b0-a119-b88afef13367/1/dfYrqlArZZvSCeZzY8X3C7NoVz4.roa
Signing time: Sat 01 Jan 2022 14:01:23 +0000
ROA not before: Sat 01 Jan 2022 14:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211371
IP address blocks: 193.162.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20110598 (0x132dd06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff99bc3d1491f8225f881164f593144b7a25c8eb
Validity
Not Before: Jan 1 14:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75f62baa502b659bd209e67363c5f70bb368573e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f9:c3:71:cf:a9:7f:7e:01:ce:8f:71:55:b2:
f5:e9:e0:90:67:42:19:db:76:b9:1c:ed:88:5e:55:
24:4c:d7:b0:7d:f3:ff:4f:37:f8:84:42:7b:f8:e7:
83:21:9b:40:f7:88:ec:ea:31:66:a3:41:96:a5:ac:
62:5b:79:b5:53:90:07:36:33:76:fd:c6:d4:e5:5a:
dd:27:9e:17:c8:af:c8:2b:57:e8:36:c1:0b:15:64:
8b:93:5e:d1:e4:a0:45:c9:26:9d:e6:08:8f:78:0e:
90:4d:30:06:e3:a3:03:10:8e:7b:12:d5:30:17:3d:
04:15:5c:4d:f9:ec:a6:8f:cd:9f:e2:29:35:d0:6b:
99:23:8a:59:7c:8b:6f:b7:0d:24:9b:38:53:80:5b:
52:7f:55:24:ac:c7:72:4e:76:47:9c:89:87:c8:b1:
25:d0:8f:a7:de:0d:c4:1f:8a:2a:79:1a:b1:02:89:
36:7a:04:2c:a5:8c:e4:80:00:e2:b2:6f:dd:71:ae:
b9:bf:ba:40:ad:39:72:42:73:2e:52:e7:3a:28:a2:
cc:bf:5a:71:2b:c1:f4:4c:b2:cd:07:50:4d:bc:ae:
fc:29:b3:ed:f5:12:bc:8b:2a:43:44:86:c5:f8:8a:
8d:03:8e:e0:c1:f6:6f:48:8c:a8:2d:fc:72:8e:4d:
4e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F6:2B:AA:50:2B:65:9B:D2:09:E6:73:63:C5:F7:0B:B3:68:57:3E
X509v3 Authority Key Identifier:
keyid:FF:99:BC:3D:14:91:F8:22:5F:88:11:64:F5:93:14:4B:7A:25:C8:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_5m8PRSR-CJfiBFk9ZMUS3olyOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/da3406-04f9-47b0-a119-b88afef13367/1/dfYrqlArZZvSCeZzY8X3C7NoVz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/da3406-04f9-47b0-a119-b88afef13367/1/_5m8PRSR-CJfiBFk9ZMUS3olyOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.46.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:20:a8:ed:05:c5:7b:22:8e:da:c4:e3:35:48:0f:59:fd:fa:
1d:8c:81:1e:64:22:c3:24:cc:06:7c:a9:33:9b:a9:e1:f6:0a:
27:a3:5f:5e:bc:51:8b:35:76:ac:f8:43:c1:67:f0:03:57:0f:
eb:5b:c8:8b:db:78:07:ea:36:13:34:7a:8b:d7:ec:7d:3e:78:
39:3f:45:de:9d:c7:9a:07:40:84:e0:69:60:95:ff:94:af:12:
e9:f9:c8:80:2d:8d:b8:2c:97:e1:e9:a4:f2:8b:82:fc:b5:89:
49:63:f9:25:87:bf:8c:f2:ba:6d:80:65:1a:0d:39:04:3f:c2:
0b:84:94:e0:f6:fa:1f:71:ef:08:32:6c:4c:58:13:6c:03:22:
42:be:18:f6:53:0f:e5:b8:66:6c:92:e8:9c:9a:8f:88:09:46:
c6:f6:0b:0a:1a:2c:bd:91:18:38:68:88:2d:6a:ad:d0:94:fe:
41:eb:20:bd:56:6a:e5:0b:65:6b:f1:bd:04:56:e0:6f:4e:2a:
18:b3:06:46:30:94:98:c0:23:92:dc:c1:c2:16:1e:93:60:89:
90:7f:94:5a:3f:77:91:d4:21:ea:a8:d1:61:cd:4d:8a:93:37:
e4:a3:82:9f:c3:c9:1a:cb:08:86:3c:c1:d8:47:92:07:7f:ad:
cc:12:e4:eb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEATLdBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Zjk5YmMzZDE0OTFmODIyNWY4ODExNjRmNTkzMTQ0YjdhMjVjOGViMB4XDTIyMDEw
MTE0MDEyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzVmNjJiYWE1MDJi
NjU5YmQyMDllNjczNjNjNWY3MGJiMzY4NTczZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOr5w3HPqX9+Ac6PcVWy9engkGdCGdt2uRztiF5VJEzXsH3z
/083+IRCe/jngyGbQPeI7OoxZqNBlqWsYlt5tVOQBzYzdv3G1OVa3SeeF8ivyCtX
6DbBCxVki5Ne0eSgRckmneYIj3gOkE0wBuOjAxCOexLVMBc9BBVcTfnspo/Nn+Ip
NdBrmSOKWXyLb7cNJJs4U4BbUn9VJKzHck52R5yJh8ixJdCPp94NxB+KKnkasQKJ
NnoELKWM5IAA4rJv3XGuub+6QK05ckJzLlLnOiiizL9acSvB9EyyzQdQTbyu/Cmz
7fUSvIsqQ0SGxfiKjQOO4MH2b0iMqC38co5NTocCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR19iuqUCtlm9IJ5nNjxfcLs2hXPjAfBgNVHSMEGDAWgBT/mbw9FJH4Il+I
EWT1kxRLeiXI6zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L181bThQUlNSLUNKZmlCRms5Wk1VUzNvbHlPcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmEvZGEzNDA2LTA0ZjktNDdiMC1hMTE5LWI4OGFmZWYxMzM2Ny8x
L2RmWXJxbEFyWlp2U0NlWnpZOFgzQzdOb1Z6NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmEv
ZGEzNDA2LTA0ZjktNDdiMC1hMTE5LWI4OGFmZWYxMzM2Ny8xL181bThQUlNSLUNK
ZmlCRms5Wk1VUzNvbHlPcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGiLjANBgkqhkiG9w0BAQsFAAOC
AQEAGyCo7QXFeyKO2sTjNUgPWf36HYyBHmQiwyTMBnypM5up4fYKJ6NfXrxRizV2
rPhDwWfwA1cP61vIi9t4B+o2EzR6i9fsfT54OT9F3p3HmgdAhOBpYJX/lK8S6fnI
gC2NuCyX4emk8ouC/LWJSWP5JYe/jPK6bYBlGg05BD/CC4SU4Pb6H3HvCDJsTFgT
bAMiQr4Y9lMP5bhmbJLonJqPiAlGxvYLChosvZEYOGiILWqt0JT+QesgvVZq5Qtl
a/G9BFbgb04qGLMGRjCUmMAjktzBwhYek2CJkH+UWj93kdQh6qjRYc1NipM35KOC
n8PJGssIhjzB2EeSB3+tzBLk6w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:36 2024 by rpki-client on console-fra.rpki-client.org