Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/bdc45b-096a-493a-92d2-1a1ead2cd2b1/1/ICBMhH5eU3WEhnp02Di6BuKdSd8.roa
File: ICBMhH5eU3WEhnp02Di6BuKdSd8.roa (raw, json)
Hash identifier: VzSESXuGgy9BUAKUFXuu4bJnQq5gNuvzF8gofndky8E=
Subject key identifier: 20:20:4C:84:7E:5E:53:75:84:86:7A:74:D8:38:BA:06:E2:9D:49:DF
Certificate issuer: /CN=e9c3d42f3b2921ba7418f382032d6b35c7159b88
Certificate serial: 06F1A8
Authority key identifier: E9:C3:D4:2F:3B:29:21:BA:74:18:F3:82:03:2D:6B:35:C7:15:9B:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6cPULzspIbp0GPOCAy1rNccVm4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/bdc45b-096a-493a-92d2-1a1ead2cd2b1/1/ICBMhH5eU3WEhnp02Di6BuKdSd8.roa
Signing time: Tue 07 Jun 2022 11:30:02 +0000
ROA not before: Tue 07 Jun 2022 11:30:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206882
IP address blocks: 193.135.112.0/22 maxlen: 24
103.198.80.0/23 maxlen: 24
91.206.194.0/23 maxlen: 24
193.238.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455080 (0x6f1a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9c3d42f3b2921ba7418f382032d6b35c7159b88
Validity
Not Before: Jun 7 11:30:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20204c847e5e537584867a74d838ba06e29d49df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:27:0a:59:68:83:35:d7:9f:8c:e1:6b:0a:e1:
0e:02:bb:73:ef:5f:09:15:8b:9f:2b:2f:79:47:12:
f0:db:a0:16:c1:bd:dc:5d:7d:cd:95:14:7f:3f:1a:
f2:56:cd:92:92:cf:fc:0b:dd:ae:aa:c6:ba:b6:ad:
00:01:be:1c:21:ce:31:aa:3c:a0:75:ee:aa:58:4b:
b1:c1:2b:74:be:69:0d:1d:54:25:b5:42:72:dd:84:
83:8d:b6:58:63:9e:89:38:56:44:b9:ae:78:94:9b:
56:b9:88:b7:a5:95:eb:af:46:b8:9c:07:35:73:23:
98:0a:da:cb:bd:d3:bf:cc:28:bd:b8:7d:cc:28:99:
f6:2d:51:97:b1:d0:d2:fd:47:5c:56:92:f9:aa:3e:
90:24:f1:11:96:01:0b:2e:67:b5:6f:39:c7:6c:1a:
3f:54:62:6c:59:e2:03:98:98:47:e3:76:a5:87:27:
e5:48:e8:1e:c4:1d:5d:38:4b:40:d8:42:58:05:05:
96:9d:a2:10:6a:1a:a8:42:d4:96:28:fd:f7:b3:d8:
c0:6c:2f:a1:6c:44:f4:ab:1f:56:e7:b9:08:66:da:
70:78:48:fe:0a:7c:c1:99:8e:91:98:7a:6d:f7:6d:
2a:f5:47:8e:91:71:1f:a3:7b:12:8e:83:17:5a:f1:
ad:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:20:4C:84:7E:5E:53:75:84:86:7A:74:D8:38:BA:06:E2:9D:49:DF
X509v3 Authority Key Identifier:
keyid:E9:C3:D4:2F:3B:29:21:BA:74:18:F3:82:03:2D:6B:35:C7:15:9B:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6cPULzspIbp0GPOCAy1rNccVm4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/bdc45b-096a-493a-92d2-1a1ead2cd2b1/1/ICBMhH5eU3WEhnp02Di6BuKdSd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/bdc45b-096a-493a-92d2-1a1ead2cd2b1/1/6cPULzspIbp0GPOCAy1rNccVm4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.194.0/23
103.198.80.0/23
193.135.112.0/22
193.238.120.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:51:ff:7c:67:96:34:67:5c:b2:c7:ae:85:86:1c:d6:6c:81:
12:24:69:5a:7d:f4:c4:bf:84:2e:06:68:ca:ff:08:f6:b4:1c:
69:8e:29:16:4c:bc:73:1b:8e:af:da:b0:93:a3:68:7d:3b:e0:
26:61:0e:77:b8:f3:21:49:57:05:ae:35:8e:31:25:ac:aa:70:
04:c6:57:7a:5c:81:b9:c8:61:12:5a:a2:48:7b:8a:e0:de:dd:
1e:ed:af:3d:49:c4:cc:19:0f:f0:40:57:73:23:69:68:cf:c5:
bd:c9:72:44:ce:0d:31:7b:96:a1:d9:85:2f:f7:9b:2f:93:b9:
45:ac:c8:f8:c4:6b:7e:2f:0e:21:ec:3b:17:d0:e0:c7:fb:10:
02:f5:09:5f:f5:14:54:d6:77:e2:cf:7b:9a:83:31:c2:79:74:
c6:eb:99:e4:d8:5f:fb:90:f1:f9:3c:84:97:28:0d:7d:76:b5:
08:d1:f1:0e:96:10:88:52:e9:11:63:00:bb:2d:bd:dd:b9:01:
c2:61:b5:da:b6:6e:e3:35:ce:b4:89:6d:8a:68:55:a5:7f:01:
e7:df:5a:72:ea:52:cb:10:9a:a6:90:b3:d1:b7:fc:37:e8:fc:
44:85:0e:f5:f0:d6:82:31:40:df:65:9a:3f:64:40:02:c4:9f:
9c:b7:df:2b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIDBvGoMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGU5
YzNkNDJmM2IyOTIxYmE3NDE4ZjM4MjAzMmQ2YjM1YzcxNTliODgwHhcNMjIwNjA3
MTEzMDAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyMDIwNGM4NDdlNWU1
Mzc1ODQ4NjdhNzRkODM4YmEwNmUyOWQ0OWRmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwCcKWWiDNdefjOFrCuEOArtz718JFYufKy95RxLw26AWwb3c
XX3NlRR/PxryVs2Sks/8C92uqsa6tq0AAb4cIc4xqjygde6qWEuxwSt0vmkNHVQl
tUJy3YSDjbZYY56JOFZEua54lJtWuYi3pZXrr0a4nAc1cyOYCtrLvdO/zCi9uH3M
KJn2LVGXsdDS/UdcVpL5qj6QJPERlgELLme1bznHbBo/VGJsWeIDmJhH43alhyfl
SOgexB1dOEtA2EJYBQWWnaIQahqoQtSWKP33s9jAbC+hbET0qx9W57kIZtpweEj+
CnzBmY6RmHpt920q9UeOkXEfo3sSjoMXWvGtxQIDAQABo4ICGzCCAhcwHQYDVR0O
BBYEFCAgTIR+XlN1hIZ6dNg4ugbinUnfMB8GA1UdIwQYMBaAFOnD1C87KSG6dBjz
ggMtazXHFZuIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NmNQVUx6c3BJYnAwR1BPQ0F5MXJOY2NWbTRnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83Zi9iZGM0NWItMDk2YS00OTNhLTkyZDItMWExZWFkMmNkMmIxLzEv
SUNCTWhINWVVM1dFaG5wMDJEaTZCdUtkU2Q4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9i
ZGM0NWItMDk2YS00OTNhLTkyZDItMWExZWFkMmNkMmIxLzEvNmNQVUx6c3BJYnAw
R1BPQ0F5MXJOY2NWbTRnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEG
CCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBW87CAwQBZ8ZQAwQCwYdwAwQCwe54
MA0GCSqGSIb3DQEBCwUAA4IBAQAsUf98Z5Y0Z1yyx66FhhzWbIESJGlaffTEv4Qu
BmjK/wj2tBxpjikWTLxzG46v2rCTo2h9O+AmYQ53uPMhSVcFrjWOMSWsqnAExld6
XIG5yGESWqJIe4rg3t0e7a89ScTMGQ/wQFdzI2loz8W9yXJEzg0xe5ah2YUv95sv
k7lFrMj4xGt+Lw4h7DsX0ODH+xAC9Qlf9RRU1nfiz3uagzHCeXTG65nk2F/7kPH5
PISXKA19drUI0fEOlhCIUukRYwC7Lb3duQHCYbXatm7jNc60iW2KaFWlfwHn31py
6lLLEJqmkLPRt/w36PxEhQ718NaCMUDfZZo/ZEACxJ+ct98r
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-fra.rpki-client.org