Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/Kq8K_sKvCLdXbsWEBws7UaYMpr8.roa
File: Kq8K_sKvCLdXbsWEBws7UaYMpr8.roa (raw, json)
Hash identifier: jvJlsgTJwPSsrTIq8pWSDAfpMDAhXfxQb+lUYpGMmvE=
Subject key identifier: 2A:AF:0A:FE:C2:AF:08:B7:57:6E:C5:84:07:0B:3B:51:A6:0C:A6:BF
Certificate issuer: /CN=e4d271c3fa903a590fdf54899449e698f2e9c632
Certificate serial: 067F0F7F
Authority key identifier: E4:D2:71:C3:FA:90:3A:59:0F:DF:54:89:94:49:E6:98:F2:E9:C6:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NJxw_qQOlkP31SJlEnmmPLpxjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/Kq8K_sKvCLdXbsWEBws7UaYMpr8.roa
Signing time: Sat 01 Jan 2022 01:02:57 +0000
ROA not before: Sat 01 Jan 2022 01:02:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29296
IP address blocks: 193.135.64.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108990335 (0x67f0f7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d271c3fa903a590fdf54899449e698f2e9c632
Validity
Not Before: Jan 1 01:02:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2aaf0afec2af08b7576ec584070b3b51a60ca6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bf:ab:35:3b:df:c8:d0:de:af:85:c2:9a:cf:
de:75:b7:e9:84:09:9d:e5:16:3e:bd:1e:82:d7:2c:
b7:ed:55:17:4d:87:65:06:d1:dc:fe:c3:3d:9a:f2:
1f:ac:00:58:62:b2:5d:76:d9:de:33:f5:5b:20:4f:
75:f0:b0:1d:02:8e:68:46:35:56:50:e9:93:25:c7:
aa:d2:ef:6f:a5:25:bb:20:3b:fb:a9:ab:47:65:af:
8f:39:ac:00:0c:d6:86:35:c4:a4:0a:1e:fb:d9:52:
e2:ab:f5:d9:9e:a6:95:5b:4f:81:a9:4a:35:72:8c:
3d:47:68:be:04:c7:a2:a1:ce:f2:30:64:7c:f9:b3:
0e:9a:64:0b:b5:7e:9e:42:eb:e3:61:c9:2b:b0:a9:
cf:cb:7c:ca:28:de:0c:ff:e5:c5:68:d6:74:cb:cb:
54:e1:77:bf:ed:43:3a:e9:3d:f0:c2:d5:cd:1c:7e:
99:42:bf:2e:65:0f:d9:be:50:cd:72:15:df:eb:58:
de:83:92:9b:a0:e8:3c:1e:82:99:e7:01:aa:d8:f3:
21:fe:1c:7e:18:a7:35:94:c3:95:36:0e:9e:9d:5d:
92:cf:4e:ec:5e:7d:fd:36:57:87:5a:36:7c:13:9d:
ec:86:40:eb:03:2f:e5:c8:5c:96:0f:22:4c:fa:23:
f5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:AF:0A:FE:C2:AF:08:B7:57:6E:C5:84:07:0B:3B:51:A6:0C:A6:BF
X509v3 Authority Key Identifier:
keyid:E4:D2:71:C3:FA:90:3A:59:0F:DF:54:89:94:49:E6:98:F2:E9:C6:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NJxw_qQOlkP31SJlEnmmPLpxjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/Kq8K_sKvCLdXbsWEBws7UaYMpr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/5NJxw_qQOlkP31SJlEnmmPLpxjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.64.0/19
Signature Algorithm: sha256WithRSAEncryption
15:90:77:32:db:46:07:dd:c0:f8:d5:cd:a1:8f:73:4e:49:30:
db:2d:43:63:ef:0e:32:0c:e9:f3:85:e7:e1:49:e7:ad:f6:fd:
0d:60:5d:9e:0a:bd:78:c7:fc:44:6d:0f:02:f5:3f:af:f3:68:
f8:53:73:a4:be:70:03:8e:03:56:c8:3b:27:23:a5:65:f6:e9:
1d:29:69:c1:5b:88:90:a7:20:67:50:5d:cb:90:43:dd:54:06:
5f:89:e9:3a:03:14:0c:99:93:e2:b5:43:45:20:f6:79:bf:51:
7d:3a:eb:4e:99:0f:f2:29:08:a6:d5:dc:70:1c:f5:2b:55:f2:
54:c1:fc:7c:a3:90:69:ab:a6:87:c3:a3:88:79:e7:96:cc:b0:
53:b8:56:0f:bf:22:76:dc:13:d4:70:b0:09:76:69:4d:35:2f:
9e:00:ae:eb:13:f8:18:d8:8e:38:b7:bc:5b:24:d9:ed:ef:b3:
54:fa:84:36:88:11:cb:60:91:e3:c6:39:36:02:75:f1:5f:26:
ee:9c:f5:9b:f7:ce:0c:47:16:c3:d5:39:ed:f9:f5:4a:c1:41:
4f:44:bb:96:0b:2d:0c:ba:a9:ae:c0:e2:de:b0:8b:ef:30:1d:
00:05:01:2b:58:58:5d:16:8a:86:54:52:09:67:1a:4c:91:b4:
09:48:0e:c9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBn8PfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NGQyNzFjM2ZhOTAzYTU5MGZkZjU0ODk5NDQ5ZTY5OGYyZTljNjMyMB4XDTIyMDEw
MTAxMDI1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmFhZjBhZmVjMmFm
MDhiNzU3NmVjNTg0MDcwYjNiNTFhNjBjYTZiZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANe/qzU738jQ3q+FwprP3nW36YQJneUWPr0egtcst+1VF02H
ZQbR3P7DPZryH6wAWGKyXXbZ3jP1WyBPdfCwHQKOaEY1VlDpkyXHqtLvb6UluyA7
+6mrR2WvjzmsAAzWhjXEpAoe+9lS4qv12Z6mlVtPgalKNXKMPUdovgTHoqHO8jBk
fPmzDppkC7V+nkLr42HJK7Cpz8t8yijeDP/lxWjWdMvLVOF3v+1DOuk98MLVzRx+
mUK/LmUP2b5QzXIV3+tY3oOSm6DoPB6CmecBqtjzIf4cfhinNZTDlTYOnp1dks9O
7F59/TZXh1o2fBOd7IZA6wMv5chclg8iTPoj9fsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQqrwr+wq8It1duxYQHCztRpgymvzAfBgNVHSMEGDAWgBTk0nHD+pA6WQ/f
VImUSeaY8unGMjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVOSnh3X3FRT2xrUDMxU0psRW5tbVBMcHhqSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvODk3MDkyLTA3NTAtNGQ5Ni1iMzJmLTVmMjA1MjM2ZGUxZi8x
L0txOEtfc0t2Q0xkWGJzV0VCd3M3VWFZTXByOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
ODk3MDkyLTA3NTAtNGQ5Ni1iMzJmLTVmMjA1MjM2ZGUxZi8xLzVOSnh3X3FRT2xr
UDMxU0psRW5tbVBMcHhqSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcGHQDANBgkqhkiG9w0BAQsFAAOC
AQEAFZB3MttGB93A+NXNoY9zTkkw2y1DY+8OMgzp84Xn4Unnrfb9DWBdngq9eMf8
RG0PAvU/r/No+FNzpL5wA44DVsg7JyOlZfbpHSlpwVuIkKcgZ1Bdy5BD3VQGX4np
OgMUDJmT4rVDRSD2eb9RfTrrTpkP8ikIptXccBz1K1XyVMH8fKOQaaumh8OjiHnn
lsywU7hWD78idtwT1HCwCXZpTTUvngCu6xP4GNiOOLe8WyTZ7e+zVPqENogRy2CR
48Y5NgJ18V8m7pz1m/fODEcWw9U57fn1SsFBT0S7lgstDLqprsDi3rCL7zAdAAUB
K1hYXRaKhlRSCWcaTJG0CUgOyQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-fra.rpki-client.org