Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/lDIm8LHwqA_QfHg3n8MChu1nac8.roa
File: lDIm8LHwqA_QfHg3n8MChu1nac8.roa (raw, json)
Hash identifier: lUYyzJ80ZOslV8oMiB+xEf/CEMLDHQ23QknpVokLAXQ=
Subject key identifier: 94:32:26:F0:B1:F0:A8:0F:D0:7C:78:37:9F:C3:02:86:ED:67:69:CF
Certificate issuer: /CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Certificate serial: 01830DE506D679F29DA1C55B16C304B7CFD7
Authority key identifier: 46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/lDIm8LHwqA_QfHg3n8MChu1nac8.roa
Signing time: Mon 05 Sep 2022 13:44:16 +0000
ROA not before: Mon 05 Sep 2022 13:44:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 193.111.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:e5:06:d6:79:f2:9d:a1:c5:5b:16:c3:04:b7:cf:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Validity
Not Before: Sep 5 13:44:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=943226f0b1f0a80fd07c78379fc30286ed6769cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:fd:b2:4d:41:34:40:19:32:09:b8:62:3d:
46:e4:a3:c7:69:74:6b:0f:9a:df:81:4b:20:50:c8:
00:5a:e4:fd:f6:d0:7b:e8:43:d4:24:e0:86:53:71:
1a:5a:98:da:5f:03:bf:b4:86:ee:1d:38:49:5e:f9:
7f:df:f4:55:4f:b2:2b:ac:97:5e:c8:ab:57:61:1d:
e5:8b:34:9a:a7:55:d3:b0:b8:99:02:f7:cc:81:38:
b8:1e:23:b0:db:07:5f:59:d0:ad:fe:e1:af:8a:1c:
d7:8c:31:10:e9:f7:07:7a:f8:75:38:1f:b1:07:0f:
43:61:10:cc:13:dd:c7:1e:ae:3c:1a:20:51:9f:11:
f7:9d:54:74:da:45:fc:70:80:e2:f3:f8:b8:ad:6a:
1e:97:a4:80:1e:fa:83:25:27:98:b2:33:29:fa:49:
36:10:ef:68:db:fd:b0:5a:c4:1c:31:4f:dd:b9:a4:
7c:1d:e6:42:c4:e1:72:63:b4:7a:74:c3:84:23:15:
05:a3:02:f9:db:89:74:6b:78:ed:9e:b6:88:9e:2d:
8c:ff:ff:25:3b:c6:7a:95:c5:c6:78:e9:63:89:7a:
7d:44:c2:81:2e:12:47:34:01:8a:e1:40:5d:32:1c:
78:9b:50:d7:e9:79:1c:db:21:92:52:79:bf:47:3f:
b1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:32:26:F0:B1:F0:A8:0F:D0:7C:78:37:9F:C3:02:86:ED:67:69:CF
X509v3 Authority Key Identifier:
keyid:46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/lDIm8LHwqA_QfHg3n8MChu1nac8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.249.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:ad:25:68:a7:5a:63:0d:69:6a:ea:d1:d4:22:23:30:46:34:
aa:84:92:9b:e7:28:b6:4d:4c:2b:d4:d7:07:30:3c:8c:e2:4b:
0f:fd:bd:a1:50:92:91:27:c5:ce:ab:ed:70:99:f6:f9:e8:ff:
68:00:97:ae:8c:4d:42:a3:c1:f1:b7:7c:c3:b3:a7:c3:4a:84:
a7:2b:40:1b:5b:ca:5b:62:f6:24:82:ed:d8:7a:d3:ae:34:91:
7b:64:39:1c:64:a8:cf:77:35:8b:6c:df:72:e1:c3:e9:44:bd:
0f:d6:a2:5b:3a:3b:52:d4:36:98:05:bf:67:af:48:a1:c5:a4:
9f:f7:54:98:cf:75:b1:0f:e8:c6:c8:1a:1d:2b:39:56:2e:cc:
6f:f6:24:71:ab:9b:53:cd:c6:7f:7b:a7:ab:8c:b4:60:8a:44:
bf:de:3f:46:69:2b:40:0a:48:e0:e4:06:fb:eb:4d:a5:59:ba:
dd:41:b8:ac:8f:b7:3a:a6:be:6a:85:2a:3a:53:9b:9c:f5:43:
3f:6e:b5:46:b5:70:26:d7:1b:e6:ce:f0:93:be:bd:3c:c9:c4:
de:86:a4:f1:1f:6a:c0:16:7c:af:12:0e:5d:05:cf:43:9d:ae:
87:0c:c2:18:48:51:55:01:e7:b7:fa:56:49:5f:0d:3b:64:34:
f2:9d:09:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMN5QbWefKdocVbFsMEt8/XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NWViYTVjMWE4MGY4NmE0NTg5Mjc4ZWRkOTMwNGIzZjUx
NjlmODMwHhcNMjIwOTA1MTM0NDE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDMyMjZmMGIxZjBhODBmZDA3Yzc4Mzc5ZmMzMDI4NmVkNjc2OWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoH9sk1BNEAZMgm4Yj1G5KPHaXRr
D5rfgUsgUMgAWuT99tB76EPUJOCGU3EaWpjaXwO/tIbuHThJXvl/3/RVT7IrrJde
yKtXYR3lizSap1XTsLiZAvfMgTi4HiOw2wdfWdCt/uGvihzXjDEQ6fcHevh1OB+x
Bw9DYRDME93HHq48GiBRnxH3nVR02kX8cIDi8/i4rWoel6SAHvqDJSeYsjMp+kk2
EO9o2/2wWsQcMU/duaR8HeZCxOFyY7R6dMOEIxUFowL524l0a3jtnraIni2M//8l
O8Z6lcXGeOljiXp9RMKBLhJHNAGK4UBdMhx4m1DX6Xkc2yGSUnm/Rz+x6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJQyJvCx8KgP0Hx4N5/DAobtZ2nPMB8GA1UdIwQY
MBaAFEZeulwagPhqRYknjt2TBLP1Fp+DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmw2NlhCcUEtR3BGaVNlTzNaTUVzX1VXbjRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9jMTJhN2ItNWNhZi00ZTdjLTk3MGQt
NWM0NzZlMzMyNWY1LzEvbERJbThMSHdxQV9RZkhnM244TUNodTFuYWM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9jMTJhN2ItNWNhZi00ZTdjLTk3MGQtNWM0NzZlMzMyNWY1
LzEvUmw2NlhCcUEtR3BGaVNlTzNaTUVzX1VXbjRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW/5MA0G
CSqGSIb3DQEBCwUAA4IBAQANrSVop1pjDWlq6tHUIiMwRjSqhJKb5yi2TUwr1NcH
MDyM4ksP/b2hUJKRJ8XOq+1wmfb56P9oAJeujE1Co8Hxt3zDs6fDSoSnK0AbW8pb
YvYkgu3YetOuNJF7ZDkcZKjPdzWLbN9y4cPpRL0P1qJbOjtS1DaYBb9nr0ihxaSf
91SYz3WxD+jGyBodKzlWLsxv9iRxq5tTzcZ/e6erjLRgikS/3j9GaStACkjg5Ab7
602lWbrdQbisj7c6pr5qhSo6U5uc9UM/brVGtXAm1xvmzvCTvr08ycTehqTxH2rA
FnyvEg5dBc9Dna6HDMIYSFFVAee3+lZJXw07ZDTynQm8
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:19 2023 by rpki-client on console-ams.rpki-client.org