Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/wBcbG3s4_NpbbFUozXcC_-XckH8.roa
File: wBcbG3s4_NpbbFUozXcC_-XckH8.roa (raw, json)
Hash identifier: QHewwMTomcDT51t93cZQm9ZraopiJqW41iwKuhp1MKQ=
Subject key identifier: C0:17:1B:1B:7B:38:FC:DA:5B:6C:55:28:CD:77:02:FF:E5:DC:90:7F
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 44761B61
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/wBcbG3s4_NpbbFUozXcC_-XckH8.roa
Signing time: Sat 01 Jan 2022 03:58:23 +0000
ROA not before: Sat 01 Jan 2022 03:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15829
IP address blocks: 193.251.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1148590945 (0x44761b61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0171b1b7b38fcda5b6c5528cd7702ffe5dc907f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:51:92:99:c1:84:74:c1:82:71:78:dc:fc:03:
9c:8d:cb:fb:e2:45:cc:ef:46:fb:ba:39:8c:67:46:
73:48:a4:45:0c:95:b1:7c:85:66:41:10:57:01:28:
da:7f:17:fb:9b:8f:57:12:1a:e1:6c:72:49:35:7b:
a5:8e:ea:29:3f:66:66:b6:f0:dc:47:6b:e4:31:77:
56:35:98:64:0f:f1:25:34:f3:9e:54:8c:55:a2:12:
65:da:eb:1c:0d:3b:ae:35:bc:fa:90:df:93:e2:63:
b6:e2:9e:b4:38:42:05:6b:3c:1e:99:74:19:41:a6:
f4:7e:8b:5d:be:8c:8b:f1:dd:75:c9:a5:42:f7:8c:
c2:84:1c:b0:6a:e7:28:6e:76:08:61:e7:4d:fe:43:
36:fd:01:9e:49:af:9a:2f:57:99:bf:76:1b:59:ee:
e0:02:15:7b:9c:ac:0c:e2:35:cb:73:2a:9f:b5:2c:
db:b3:f5:25:f4:cd:e0:7d:23:2d:cd:c5:d5:58:79:
c6:75:73:0e:f1:27:b2:93:01:a0:ac:a7:63:b7:d4:
45:c2:c2:11:cd:5d:ea:8e:63:0b:12:a0:32:2b:db:
67:6b:c3:8e:c6:7d:df:3c:fc:bb:73:ca:f8:f9:63:
27:50:0a:6d:de:b3:45:0c:18:14:a5:2f:c1:40:4d:
28:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:17:1B:1B:7B:38:FC:DA:5B:6C:55:28:CD:77:02:FF:E5:DC:90:7F
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/wBcbG3s4_NpbbFUozXcC_-XckH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.251.135.0/24
Signature Algorithm: sha256WithRSAEncryption
69:84:2c:95:d6:4f:b3:b3:68:8e:b1:b7:f6:aa:e1:55:47:95:
49:c9:96:92:e2:70:ea:74:7a:24:69:cf:3b:e7:21:b8:e1:7f:
a1:13:4e:f5:d1:c0:8d:bb:06:e1:15:28:0e:3d:0a:97:1e:9f:
7a:84:21:bc:ee:ac:60:00:0e:f7:d5:ba:4f:49:c5:7e:b5:47:
3a:c6:f2:49:b5:54:63:73:5a:a6:3e:72:ef:0c:b6:0f:6f:43:
9b:48:6d:c8:c7:5b:c1:95:b7:49:39:45:25:fd:a6:ac:6e:41:
c6:23:f0:2f:ee:58:6f:8c:72:96:69:52:13:1e:72:95:59:62:
af:b5:88:d8:f9:9e:18:36:5d:98:5e:8d:f7:5e:7b:be:31:ed:
97:a7:0f:99:2a:de:1c:17:d4:c2:7d:25:b4:19:f4:3b:21:a1:
1b:8e:f7:e0:0f:b4:02:ba:af:16:84:ee:8e:26:64:1e:e5:14:
3b:81:7d:28:aa:1a:a1:46:6a:cb:fd:dc:dd:1e:37:b6:26:2a:
e4:e9:e0:22:b2:30:04:66:4d:0f:a9:49:02:d0:13:c0:79:c5:
4e:d6:60:9a:a3:9c:f2:6d:18:25:09:78:6c:61:c8:95:87:03:
50:e1:b8:a1:fc:24:bb:ed:76:44:2b:d6:c9:ef:9d:6d:ee:d6:
65:33:5c:8c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIERHYbYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWYwOWJhMzNiNWFlNTgxYjBkMjkzMjMyNDkzMTRmNzZhYTEwNTExMB4XDTIyMDEw
MTAzNTgyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzAxNzFiMWI3YjM4
ZmNkYTViNmM1NTI4Y2Q3NzAyZmZlNWRjOTA3ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMFRkpnBhHTBgnF43PwDnI3L++JFzO9G+7o5jGdGc0ikRQyV
sXyFZkEQVwEo2n8X+5uPVxIa4WxySTV7pY7qKT9mZrbw3Edr5DF3VjWYZA/xJTTz
nlSMVaISZdrrHA07rjW8+pDfk+JjtuKetDhCBWs8Hpl0GUGm9H6LXb6Mi/Hddcml
QveMwoQcsGrnKG52CGHnTf5DNv0Bnkmvmi9Xmb92G1nu4AIVe5ysDOI1y3Mqn7Us
27P1JfTN4H0jLc3F1Vh5xnVzDvEnspMBoKynY7fURcLCEc1d6o5jCxKgMivbZ2vD
jsZ93zz8u3PK+PljJ1AKbd6zRQwYFKUvwUBNKHMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTAFxsbezj82ltsVSjNdwL/5dyQfzAfBgNVHSMEGDAWgBQ68JujO1rlgbDS
kyMkkxT3aqEFETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L092Q2JvenRhNVlHdzBwTWpKSk1VOTJxaEJSRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvMzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8x
L3dCY2JHM3M0X05wYmJGVW96WGNDXy1YY2tIOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
MzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8xL092Q2JvenRhNVlH
dzBwTWpKSk1VOTJxaEJSRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMH7hzANBgkqhkiG9w0BAQsFAAOC
AQEAaYQsldZPs7NojrG39qrhVUeVScmWkuJw6nR6JGnPO+chuOF/oRNO9dHAjbsG
4RUoDj0Klx6feoQhvO6sYAAO99W6T0nFfrVHOsbySbVUY3Napj5y7wy2D29Dm0ht
yMdbwZW3STlFJf2mrG5BxiPwL+5Yb4xylmlSEx5ylVlir7WI2PmeGDZdmF6N9157
vjHtl6cPmSreHBfUwn0ltBn0OyGhG4734A+0ArqvFoTujiZkHuUUO4F9KKoaoUZq
y/3c3R43tiYq5OngIrIwBGZND6lJAtATwHnFTtZgmqOc8m0YJQl4bGHIlYcDUOG4
ofwku+12RCvWye+dbe7WZTNcjA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:52 2024 by rpki-client on console-fra.rpki-client.org