Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/961939-ac8e-4d12-b12f-da5cb0fb19e7/1/9gC_Kfm0GHi5enYwCk7yWpGc7ic.roa
File: 9gC_Kfm0GHi5enYwCk7yWpGc7ic.roa (raw, json)
Hash identifier: brASC8k0O0nxtoLKHiUQPEsXRmzfby3gBYVMDHKlVwI=
Subject key identifier: F6:00:BF:29:F9:B4:18:78:B9:7A:76:30:0A:4E:F2:5A:91:9C:EE:27
Certificate issuer: /CN=857f4c122e4f8c601f21c5c868716d46089d85e1
Certificate serial: 01841DD72A254D14C139F08AFEDE7526721E
Authority key identifier: 85:7F:4C:12:2E:4F:8C:60:1F:21:C5:C8:68:71:6D:46:08:9D:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hX9MEi5PjGAfIcXIaHFtRgidheE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/961939-ac8e-4d12-b12f-da5cb0fb19e7/1/9gC_Kfm0GHi5enYwCk7yWpGc7ic.roa
Signing time: Fri 28 Oct 2022 09:05:51 +0000
ROA not before: Fri 28 Oct 2022 09:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50320
IP address blocks: 193.104.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:d7:2a:25:4d:14:c1:39:f0:8a:fe:de:75:26:72:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857f4c122e4f8c601f21c5c868716d46089d85e1
Validity
Not Before: Oct 28 09:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f600bf29f9b41878b97a76300a4ef25a919cee27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:75:93:6a:a5:0e:1f:3f:b7:02:34:22:c4:88:
40:5b:da:c9:ac:26:91:d3:fb:15:0e:e6:98:a5:44:
da:38:75:ff:6f:3b:50:f3:95:3b:35:a1:fa:94:0e:
94:20:51:de:13:90:f2:c4:5e:6b:3a:b7:43:d5:1d:
25:24:ca:bb:d7:aa:1f:04:59:b5:3a:8b:48:02:9a:
5a:63:28:00:46:9e:b4:7e:aa:50:18:60:74:56:bb:
f4:ac:6b:e8:61:57:a6:ad:59:65:fb:53:5b:72:b0:
e8:3c:3f:ce:2d:10:db:e0:e4:db:6b:e2:83:d7:6b:
c7:34:c9:be:e0:8d:32:ba:49:9f:65:98:66:c9:29:
4d:f0:53:b6:b1:ba:24:66:6b:06:6d:db:63:6f:cc:
ab:5c:22:72:2c:04:19:42:96:4e:8f:39:41:71:be:
f0:94:44:00:1e:95:70:0a:e8:83:81:62:ff:ef:53:
4f:24:38:80:03:fd:dd:11:18:0a:4f:d7:fc:e8:c0:
f1:7b:e1:e5:51:66:89:05:3d:13:c7:eb:17:43:51:
36:41:05:1f:e6:b3:49:15:58:49:17:14:ea:84:12:
12:88:5e:37:a8:df:f4:7b:1e:91:36:73:ff:55:8a:
d0:a2:f2:a2:65:84:47:c0:ce:56:39:08:b9:4c:62:
3a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:00:BF:29:F9:B4:18:78:B9:7A:76:30:0A:4E:F2:5A:91:9C:EE:27
X509v3 Authority Key Identifier:
keyid:85:7F:4C:12:2E:4F:8C:60:1F:21:C5:C8:68:71:6D:46:08:9D:85:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hX9MEi5PjGAfIcXIaHFtRgidheE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/961939-ac8e-4d12-b12f-da5cb0fb19e7/1/9gC_Kfm0GHi5enYwCk7yWpGc7ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/961939-ac8e-4d12-b12f-da5cb0fb19e7/1/hX9MEi5PjGAfIcXIaHFtRgidheE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.206.0/24
Signature Algorithm: sha256WithRSAEncryption
25:83:02:aa:cb:e5:d8:a6:05:7b:c7:6b:bc:80:74:e8:30:e2:
6b:34:87:dd:4c:c6:34:1e:3d:7d:c4:df:b6:03:e3:bf:f8:a8:
02:66:0c:4b:0a:06:47:ff:4d:4a:a7:5f:ea:8f:2e:f2:6c:2d:
30:5c:53:81:a8:fd:86:50:13:be:91:52:2c:98:46:5f:82:4e:
2c:e5:f2:59:fb:42:bb:90:cb:a4:23:01:60:0a:b8:89:3a:7b:
c1:2e:c4:8f:fc:4d:14:cb:31:6d:e1:23:44:2b:61:91:18:d0:
54:bb:fd:1f:56:87:f9:eb:37:d7:35:63:b9:6f:8d:74:15:af:
29:2c:ce:64:f2:f4:da:08:60:56:94:bd:61:ac:31:0f:fd:3d:
82:80:33:50:58:6d:99:ce:45:c2:4a:7a:a9:fc:af:fc:19:04:
22:46:50:00:73:a5:59:16:01:04:b0:93:48:07:47:64:68:a0:
fc:ca:c0:b9:57:d1:f6:b0:3b:58:ce:c3:c8:46:c0:eb:62:87:
a9:54:cc:38:1a:e5:37:fa:95:1c:31:f8:2d:cf:8a:3c:b6:b5:
12:42:80:31:f8:a5:df:e8:f0:4b:ae:b1:68:e6:41:60:3d:43:
a2:0b:b2:17:a0:a1:cd:c0:a4:5a:fd:0e:ae:0f:30:1a:9f:fa:
0d:c2:d8:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQd1yolTRTBOfCK/t51JnIeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1N2Y0YzEyMmU0ZjhjNjAxZjIxYzVjODY4NzE2ZDQ2MDg5
ZDg1ZTEwHhcNMjIxMDI4MDkwNTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjAwYmYyOWY5YjQxODc4Yjk3YTc2MzAwYTRlZjI1YTkxOWNlZTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXWTaqUOHz+3AjQixIhAW9rJrCaR
0/sVDuaYpUTaOHX/bztQ85U7NaH6lA6UIFHeE5DyxF5rOrdD1R0lJMq716ofBFm1
OotIAppaYygARp60fqpQGGB0Vrv0rGvoYVemrVll+1NbcrDoPD/OLRDb4OTba+KD
12vHNMm+4I0yukmfZZhmySlN8FO2sbokZmsGbdtjb8yrXCJyLAQZQpZOjzlBcb7w
lEQAHpVwCuiDgWL/71NPJDiAA/3dERgKT9f86MDxe+HlUWaJBT0Tx+sXQ1E2QQUf
5rNJFVhJFxTqhBISiF43qN/0ex6RNnP/VYrQovKiZYRHwM5WOQi5TGI6UQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPYAvyn5tBh4uXp2MApO8lqRnO4nMB8GA1UdIwQY
MBaAFIV/TBIuT4xgHyHFyGhxbUYInYXhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFg5TUVpNVBqR0FmSWNYSWFIRnRSZ2lkaGVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85NjE5MzktYWM4ZS00ZDEyLWIxMmYt
ZGE1Y2IwZmIxOWU3LzEvOWdDX0tmbTBHSGk1ZW5Zd0NrN3lXcEdjN2ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85NjE5MzktYWM4ZS00ZDEyLWIxMmYtZGE1Y2IwZmIxOWU3
LzEvaFg5TUVpNVBqR0FmSWNYSWFIRnRSZ2lkaGVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWjOMA0G
CSqGSIb3DQEBCwUAA4IBAQAlgwKqy+XYpgV7x2u8gHToMOJrNIfdTMY0Hj19xN+2
A+O/+KgCZgxLCgZH/01Kp1/qjy7ybC0wXFOBqP2GUBO+kVIsmEZfgk4s5fJZ+0K7
kMukIwFgCriJOnvBLsSP/E0UyzFt4SNEK2GRGNBUu/0fVof56zfXNWO5b410Fa8p
LM5k8vTaCGBWlL1hrDEP/T2CgDNQWG2ZzkXCSnqp/K/8GQQiRlAAc6VZFgEEsJNI
B0dkaKD8ysC5V9H2sDtYzsPIRsDrYoepVMw4GuU3+pUcMfgtz4o8trUSQoAx+KXf
6PBLrrFo5kFgPUOiC7IXoKHNwKRa/Q6uDzAan/oNwtj9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org