Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4edc36-4d53-47cf-a6fc-b51154628fb3/1/_Aotd_ydE53P3ksjrduSewrU8JE.roa
File: _Aotd_ydE53P3ksjrduSewrU8JE.roa (raw, json)
Hash identifier: +AV7JRBNbHA89fbF1IDnACmB3xpbkGm3ZHOmSpIeg8c=
Subject key identifier: FC:0A:2D:77:FC:9D:13:9D:CF:DE:4B:23:AD:DB:92:7B:0A:D4:F0:91
Certificate issuer: /CN=a9ac1f8595bad558240d74068000a1cf708ba1a5
Certificate serial: 060B326E
Authority key identifier: A9:AC:1F:85:95:BA:D5:58:24:0D:74:06:80:00:A1:CF:70:8B:A1:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qawfhZW61VgkDXQGgAChz3CLoaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4edc36-4d53-47cf-a6fc-b51154628fb3/1/_Aotd_ydE53P3ksjrduSewrU8JE.roa
Signing time: Sat 01 Jan 2022 09:02:07 +0000
ROA not before: Sat 01 Jan 2022 09:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8823
IP address blocks: 193.47.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101397102 (0x60b326e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9ac1f8595bad558240d74068000a1cf708ba1a5
Validity
Not Before: Jan 1 09:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc0a2d77fc9d139dcfde4b23addb927b0ad4f091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d4:33:30:96:f1:bd:90:85:27:ec:55:5c:d6:
68:6d:04:bf:f1:06:47:39:1a:01:57:d0:b7:49:31:
ba:35:1c:a7:8b:ac:d8:65:a7:b6:1c:7a:6c:ac:4c:
bb:3b:66:b4:2c:42:95:e4:1a:4f:31:49:19:8d:10:
52:7e:52:9c:85:24:f0:89:35:3f:82:86:d1:62:cc:
5f:df:5b:3f:28:45:9a:d2:61:68:90:12:a6:d2:20:
7d:3e:86:60:97:23:ff:0c:3c:4d:c2:6f:1d:0b:99:
36:7f:c0:c7:b5:42:54:1d:57:da:6e:df:1a:4c:51:
35:63:14:ce:ab:ee:e7:d6:fd:1f:a5:a7:77:3d:dd:
70:c1:82:ed:52:30:dc:8e:ba:6a:57:dc:c9:fc:e1:
5d:d9:8f:58:33:28:d5:4a:af:61:29:bb:82:7d:a5:
02:d8:3c:10:8a:9e:bd:d0:a4:3c:a3:83:31:b9:70:
29:8f:6a:4f:da:af:9e:98:cd:bb:96:6b:34:26:69:
07:95:6f:61:0b:9c:f2:c7:92:00:3d:da:41:a8:92:
39:ee:bd:a6:d0:07:53:50:0e:3c:eb:c2:6e:6c:35:
26:a1:f4:8c:97:13:c3:11:14:2e:e3:7e:6b:4a:1c:
04:2c:c8:79:ef:63:2a:bc:39:4a:e2:34:9f:cb:96:
e4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:0A:2D:77:FC:9D:13:9D:CF:DE:4B:23:AD:DB:92:7B:0A:D4:F0:91
X509v3 Authority Key Identifier:
keyid:A9:AC:1F:85:95:BA:D5:58:24:0D:74:06:80:00:A1:CF:70:8B:A1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qawfhZW61VgkDXQGgAChz3CLoaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4edc36-4d53-47cf-a6fc-b51154628fb3/1/_Aotd_ydE53P3ksjrduSewrU8JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4edc36-4d53-47cf-a6fc-b51154628fb3/1/qawfhZW61VgkDXQGgAChz3CLoaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.149.0/24
Signature Algorithm: sha256WithRSAEncryption
78:78:84:c4:ad:97:2d:4e:3e:2c:31:e9:80:12:0f:0a:dd:96:
22:3d:4c:67:2a:04:52:5f:09:2c:86:20:cf:bc:4d:13:30:38:
59:f7:cd:f0:3b:f1:9f:8d:98:99:ef:4c:51:f6:8d:3c:df:8c:
45:aa:b7:80:bc:bb:d9:1e:4d:1f:3a:bd:c7:2b:4c:7c:91:37:
fc:85:39:1a:a4:8a:07:59:b4:3a:d9:54:6f:32:b6:5d:53:3b:
1c:50:8a:e5:18:52:1d:5e:51:52:a1:aa:b6:84:6f:67:45:6f:
f6:94:cd:b7:77:79:49:a5:8a:89:bc:db:25:4d:1d:32:02:45:
e7:4e:d4:21:c6:4c:ba:ad:64:bd:9c:f8:e2:0c:8f:3b:26:e6:
f1:7f:fa:35:73:2a:f1:aa:7d:a5:93:cd:ae:3b:9f:39:c0:93:
ea:57:2f:54:fd:f8:4f:c1:49:f1:61:e0:35:f1:fd:9c:d7:33:
c4:94:fe:9e:11:b1:56:27:22:56:23:9e:89:f3:6e:5a:c5:ef:
bd:36:da:bb:e7:6f:21:bc:f4:10:ab:b3:b3:b2:04:1a:3b:ad:
93:f6:f5:e0:56:b7:8d:0f:2f:f6:ff:e6:e0:97:4b:e8:c3:a8:
8d:40:6e:37:51:56:54:8b:75:93:80:13:11:a7:82:39:55:e8:
b0:8e:a9:97
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBgsybjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
OWFjMWY4NTk1YmFkNTU4MjQwZDc0MDY4MDAwYTFjZjcwOGJhMWE1MB4XDTIyMDEw
MTA5MDIwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmMwYTJkNzdmYzlk
MTM5ZGNmZGU0YjIzYWRkYjkyN2IwYWQ0ZjA5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANfUMzCW8b2QhSfsVVzWaG0Ev/EGRzkaAVfQt0kxujUcp4us
2GWnthx6bKxMuztmtCxCleQaTzFJGY0QUn5SnIUk8Ik1P4KG0WLMX99bPyhFmtJh
aJASptIgfT6GYJcj/ww8TcJvHQuZNn/Ax7VCVB1X2m7fGkxRNWMUzqvu59b9H6Wn
dz3dcMGC7VIw3I66alfcyfzhXdmPWDMo1UqvYSm7gn2lAtg8EIqevdCkPKODMblw
KY9qT9qvnpjNu5ZrNCZpB5VvYQuc8seSAD3aQaiSOe69ptAHU1AOPOvCbmw1JqH0
jJcTwxEULuN+a0ocBCzIee9jKrw5SuI0n8uW5IsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT8Ci13/J0Tnc/eSyOt25J7CtTwkTAfBgNVHSMEGDAWgBSprB+FlbrVWCQN
dAaAAKHPcIuhpTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Fhd2ZoWlc2MVZna0RYUUdnQUNoejNDTG9hVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvNGVkYzM2LTRkNTMtNDdjZi1hNmZjLWI1MTE1NDYyOGZiMy8x
L19Bb3RkX3lkRTUzUDNrc2pyZHVTZXdyVThKRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
NGVkYzM2LTRkNTMtNDdjZi1hNmZjLWI1MTE1NDYyOGZiMy8xL3Fhd2ZoWlc2MVZn
a0RYUUdnQUNoejNDTG9hVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEvlTANBgkqhkiG9w0BAQsFAAOC
AQEAeHiExK2XLU4+LDHpgBIPCt2WIj1MZyoEUl8JLIYgz7xNEzA4WffN8Dvxn42Y
me9MUfaNPN+MRaq3gLy72R5NHzq9xytMfJE3/IU5GqSKB1m0OtlUbzK2XVM7HFCK
5RhSHV5RUqGqtoRvZ0Vv9pTNt3d5SaWKibzbJU0dMgJF507UIcZMuq1kvZz44gyP
Oybm8X/6NXMq8ap9pZPNrjufOcCT6lcvVP34T8FJ8WHgNfH9nNczxJT+nhGxVici
ViOeifNuWsXvvTbau+dvIbz0EKuzs7IEGjutk/b14Fa3jQ8v9v/m4JdL6MOojUBu
N1FWVIt1k4ATEaeCOVXosI6plw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:38 2024 by rpki-client on console-fra.rpki-client.org