Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/37253d-02a1-46df-9413-580068df0fd1/1/F9CweeoU-xarjtYE1cT1NAWTHrQ.roa
File: F9CweeoU-xarjtYE1cT1NAWTHrQ.roa (raw, json)
Hash identifier: uQAL55YStjSiGJJVKujwrvcQp1BY7yD0N0tM/rpS7Z0=
Subject key identifier: 17:D0:B0:79:EA:14:FB:16:AB:8E:D6:04:D5:C4:F5:34:05:93:1E:B4
Certificate issuer: /CN=98ccb184d128384e4f767d85258e0dea73f18e43
Certificate serial: A04A
Authority key identifier: 98:CC:B1:84:D1:28:38:4E:4F:76:7D:85:25:8E:0D:EA:73:F1:8E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mMyxhNEoOE5Pdn2FJY4N6nPxjkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/37253d-02a1-46df-9413-580068df0fd1/1/F9CweeoU-xarjtYE1cT1NAWTHrQ.roa
Signing time: Tue 12 Apr 2022 12:47:10 +0000
ROA not before: Tue 12 Apr 2022 12:47:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49580
IP address blocks: 193.33.22.0/24 maxlen: 24
193.33.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41034 (0xa04a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98ccb184d128384e4f767d85258e0dea73f18e43
Validity
Not Before: Apr 12 12:47:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17d0b079ea14fb16ab8ed604d5c4f53405931eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c1:46:2e:af:2a:c7:31:66:6d:54:36:e9:ad:
c5:53:79:2f:67:6b:55:a5:48:1a:da:24:f2:9f:e5:
36:50:21:f7:8e:72:7d:a2:8b:a9:a9:9c:39:47:cb:
01:c4:49:63:3a:8e:d8:db:37:e4:34:e8:bd:ba:29:
2a:9a:97:95:2a:78:02:6d:e6:28:77:fc:48:a9:d7:
40:ac:c5:22:ba:2f:e4:bb:3a:f0:9b:0e:3f:85:d7:
63:25:49:7c:93:1e:db:63:91:8d:f4:ea:c4:54:ba:
56:66:46:57:87:e7:aa:db:66:e0:ac:31:03:ab:be:
84:e9:e4:04:63:33:ab:5e:f2:a9:3b:a4:80:13:7c:
f3:68:10:74:0a:be:83:f0:13:5a:18:2a:bc:9e:77:
40:2d:28:91:cd:91:f6:a1:86:df:85:c6:68:70:fa:
fc:35:d6:a0:79:68:36:52:17:83:38:7d:44:ed:aa:
b1:9c:e0:c4:5d:ed:19:95:de:8c:f3:b5:a7:81:c8:
19:73:1f:a0:75:aa:21:19:70:95:f2:98:a4:6f:fc:
59:c0:79:cb:99:00:23:3d:b9:bb:6e:4e:13:0e:74:
bc:5a:45:7c:97:b0:f2:87:75:af:e7:2a:8e:a9:ec:
fe:e5:c3:4f:a5:ea:1e:0a:0f:26:22:72:b2:4e:1c:
9e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D0:B0:79:EA:14:FB:16:AB:8E:D6:04:D5:C4:F5:34:05:93:1E:B4
X509v3 Authority Key Identifier:
keyid:98:CC:B1:84:D1:28:38:4E:4F:76:7D:85:25:8E:0D:EA:73:F1:8E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mMyxhNEoOE5Pdn2FJY4N6nPxjkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/37253d-02a1-46df-9413-580068df0fd1/1/F9CweeoU-xarjtYE1cT1NAWTHrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/37253d-02a1-46df-9413-580068df0fd1/1/mMyxhNEoOE5Pdn2FJY4N6nPxjkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.22.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:3a:97:04:bd:ba:63:89:27:b9:f4:e4:9b:03:ba:66:86:61:
24:03:e0:f5:49:a1:60:4f:de:3e:0e:87:bb:f9:f6:b3:ef:ab:
64:53:5d:77:18:76:09:1a:72:6f:dc:72:d6:c8:08:a2:fb:14:
13:93:2f:bd:18:ad:c1:99:6e:84:55:c2:1c:3d:cb:59:ab:85:
42:58:53:e1:72:98:48:68:5c:19:81:cf:74:69:31:01:e5:17:
ac:19:98:32:6d:7a:61:7b:49:87:27:2d:24:62:76:42:01:99:
5f:4d:c4:7b:65:86:aa:68:27:55:e7:32:a4:33:ac:b1:58:4f:
c4:eb:29:80:a2:5b:99:e2:92:25:03:7e:fa:ff:a8:8f:0f:03:
c1:3a:39:8a:8d:7a:74:4f:77:53:c9:de:47:a0:44:36:da:49:
f7:75:cb:25:9e:a8:05:9d:39:13:d0:90:8d:f9:77:7d:db:82:
79:a6:c9:65:47:66:b2:9f:a4:19:97:69:61:9a:63:17:95:9c:
1f:26:7c:0b:43:a1:48:20:30:8d:b3:35:7d:ea:38:80:45:6c:
00:9d:45:8b:64:c8:98:77:b7:a6:2b:ea:7e:79:2e:fc:af:39:
be:f5:6a:5d:d9:e2:f3:3a:74:7b:32:af:15:9a:74:db:bc:cb:
55:07:98:91
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAKBKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk4
Y2NiMTg0ZDEyODM4NGU0Zjc2N2Q4NTI1OGUwZGVhNzNmMThlNDMwHhcNMjIwNDEy
MTI0NzEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxN2QwYjA3OWVhMTRm
YjE2YWI4ZWQ2MDRkNWM0ZjUzNDA1OTMxZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA5sFGLq8qxzFmbVQ26a3FU3kvZ2tVpUga2iTyn+U2UCH3jnJ9
ooupqZw5R8sBxEljOo7Y2zfkNOi9uikqmpeVKngCbeYod/xIqddArMUiui/kuzrw
mw4/hddjJUl8kx7bY5GN9OrEVLpWZkZXh+eq22bgrDEDq76E6eQEYzOrXvKpO6SA
E3zzaBB0Cr6D8BNaGCq8nndALSiRzZH2oYbfhcZocPr8NdageWg2UheDOH1E7aqx
nODEXe0Zld6M87WngcgZcx+gdaohGXCV8pikb/xZwHnLmQAjPbm7bk4TDnS8WkV8
l7Dyh3Wv5yqOqez+5cNPpeoeCg8mInKyThyeIwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFBfQsHnqFPsWq47WBNXE9TQFkx60MB8GA1UdIwQYMBaAFJjMsYTRKDhOT3Z9
hSWODepz8Y5DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bU15eGhORW9PRTVQZG4yRkpZNE42blB4amtNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85OS8zNzI1M2QtMDJhMS00NmRmLTk0MTMtNTgwMDY4ZGYwZmQxLzEv
RjlDd2Vlb1UteGFyanRZRTFjVDFOQVdUSHJRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8z
NzI1M2QtMDJhMS00NmRmLTk0MTMtNTgwMDY4ZGYwZmQxLzEvbU15eGhORW9PRTVQ
ZG4yRkpZNE42blB4amtNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSEWMA0GCSqGSIb3DQEBCwUAA4IB
AQC5OpcEvbpjiSe59OSbA7pmhmEkA+D1SaFgT94+Doe7+faz76tkU113GHYJGnJv
3HLWyAii+xQTky+9GK3BmW6EVcIcPctZq4VCWFPhcphIaFwZgc90aTEB5ResGZgy
bXphe0mHJy0kYnZCAZlfTcR7ZYaqaCdV5zKkM6yxWE/E6ymAoluZ4pIlA376/6iP
DwPBOjmKjXp0T3dTyd5HoEQ22kn3dcslnqgFnTkT0JCN+Xd924J5psllR2ayn6QZ
l2lhmmMXlZwfJnwLQ6FIIDCNszV96jiARWwAnUWLZMiYd7emK+p+eS78rzm+9Wpd
2eLzOnR7Mq8VmnTbvMtVB5iR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:20 2024 by rpki-client on console-fra.rpki-client.org