Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/1UQgW3Rcv03GTzr9MAxJfZlfp3k.roa
File: 1UQgW3Rcv03GTzr9MAxJfZlfp3k.roa (raw, json)
Hash identifier: BthiDVhEbZTJ2fi4FWgYkzggQnZ7pmQijrd1+CQ20vk=
Subject key identifier: D5:44:20:5B:74:5C:BF:4D:C6:4F:3A:FD:30:0C:49:7D:99:5F:A7:79
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 012D35C0
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/1UQgW3Rcv03GTzr9MAxJfZlfp3k.roa
Signing time: Sat 01 Jan 2022 07:53:17 +0000
ROA not before: Sat 01 Jan 2022 07:53:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25353
IP address blocks: 193.162.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19740096 (0x12d35c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Jan 1 07:53:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d544205b745cbf4dc64f3afd300c497d995fa779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:21:20:f7:9b:1e:27:84:3d:c8:04:0e:cf:
8c:5a:ce:61:20:28:53:a1:33:35:e4:94:74:7e:7c:
05:c6:d4:29:1e:23:e0:1f:71:c8:d4:a0:f7:d4:97:
8b:8e:21:2a:ee:a3:4b:3b:e2:bb:af:10:2e:7d:46:
78:1b:53:54:c7:a5:a0:8a:3a:12:6b:7e:61:fd:75:
6f:7f:4b:6f:b8:70:2b:3f:61:7d:93:7e:28:f8:ca:
2e:dc:e7:2f:dd:8e:ec:1e:0b:2d:8d:59:0c:4d:11:
42:ac:7b:aa:e6:98:03:8d:8a:1a:1d:d6:1c:f3:84:
0b:0b:60:ee:d2:85:76:65:44:78:d3:0b:5c:0f:ca:
3b:da:ef:cd:fa:c0:d6:ba:88:cc:f0:3f:2f:1c:59:
5d:ba:f5:61:5a:75:f0:07:03:91:e9:36:e8:3d:9e:
85:40:fb:49:81:2e:e7:b3:3f:bd:7c:ce:e3:4f:d0:
dc:0d:27:3b:a3:76:dd:0e:bd:f4:db:bb:6e:d0:35:
74:98:56:25:2f:04:3e:da:e0:50:78:0e:2f:f5:98:
8d:ae:4c:7a:d9:55:4b:ed:4e:00:0b:10:8c:9d:a2:
9e:81:39:f8:4f:1f:ad:62:2f:1b:2e:16:c5:5f:1b:
06:bc:5b:a2:ac:c8:02:77:ff:b1:42:5c:b5:38:52:
50:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:44:20:5B:74:5C:BF:4D:C6:4F:3A:FD:30:0C:49:7D:99:5F:A7:79
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/1UQgW3Rcv03GTzr9MAxJfZlfp3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.79.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:84:ac:90:cc:af:fd:63:db:4d:ca:15:19:f8:bb:61:14:67:
c9:07:90:60:56:24:f7:d0:4c:f8:bd:c7:1d:3e:08:17:3f:4c:
3d:d5:8b:22:69:1b:46:1d:5f:81:bd:72:e7:e7:c5:d7:3f:1b:
0e:e0:1c:56:b6:40:de:18:d2:07:34:e2:90:44:2a:39:f7:8d:
d5:8a:55:70:16:85:59:b4:1c:dd:be:97:3b:02:23:0c:44:48:
64:6d:a6:c8:1e:86:9f:96:35:8d:48:58:65:c5:bb:f9:aa:09:
20:be:c1:20:9a:3d:7d:24:db:da:81:90:38:94:98:c0:51:ee:
46:5e:72:ca:91:f6:18:91:7b:a1:6d:1c:51:3b:36:1d:32:d3:
79:57:28:04:d6:f7:41:42:51:5f:ec:19:5c:e4:48:20:12:99:
92:2b:e6:7c:38:2d:c8:af:70:c2:1d:9c:11:14:b6:31:f7:23:
e4:d4:93:b3:76:db:ed:ac:d6:55:67:98:54:4f:92:7c:7c:7b:
17:59:bd:39:17:1f:b4:4d:d0:0a:ce:3e:7c:99:90:cf:8e:a7:
30:f8:5a:f7:d0:30:39:49:f7:06:81:9c:ba:e9:77:15:61:36:
11:4c:07:ae:f8:ac:30:e1:40:8f:60:0b:44:db:6b:44:66:a6:
f1:36:4f:70
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAS01wDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MmEzYzhjYzYzZDBlN2UwNjljYTUyM2YzNGVmYjM5NTNlZTIxYjY1MB4XDTIyMDEw
MTA3NTMxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDU0NDIwNWI3NDVj
YmY0ZGM2NGYzYWZkMzAwYzQ5N2Q5OTVmYTc3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL0NISD3mx4nhD3IBA7PjFrOYSAoU6EzNeSUdH58BcbUKR4j
4B9xyNSg99SXi44hKu6jSzviu68QLn1GeBtTVMeloIo6Emt+Yf11b39Lb7hwKz9h
fZN+KPjKLtznL92O7B4LLY1ZDE0RQqx7quaYA42KGh3WHPOECwtg7tKFdmVEeNML
XA/KO9rvzfrA1rqIzPA/LxxZXbr1YVp18AcDkek26D2ehUD7SYEu57M/vXzO40/Q
3A0nO6N23Q699Nu7btA1dJhWJS8EPtrgUHgOL/WYja5MetlVS+1OAAsQjJ2inoE5
+E8frWIvGy4WxV8bBrxboqzIAnf/sUJctThSUIUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTVRCBbdFy/TcZPOv0wDEl9mV+neTAfBgNVHSMEGDAWgBTSo8jMY9Dn4GnK
Uj8077OVPuIbZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBxUEl6R1BRNS1CcHlsSV9OTy16bFQ3aUcyVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvZDBhMWZlLTBiNjUtNGQ1MC1hZTJmLTEyODk4Njk3YTg2Mi8x
LzFVUWdXM1JjdjAzR1R6cjlNQXhKZlpsZnAzay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
ZDBhMWZlLTBiNjUtNGQ1MC1hZTJmLTEyODk4Njk3YTg2Mi8xLzBxUEl6R1BRNS1C
cHlsSV9OTy16bFQ3aUcyVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGiTzANBgkqhkiG9w0BAQsFAAOC
AQEAG4SskMyv/WPbTcoVGfi7YRRnyQeQYFYk99BM+L3HHT4IFz9MPdWLImkbRh1f
gb1y5+fF1z8bDuAcVrZA3hjSBzTikEQqOfeN1YpVcBaFWbQc3b6XOwIjDERIZG2m
yB6Gn5Y1jUhYZcW7+aoJIL7BIJo9fSTb2oGQOJSYwFHuRl5yypH2GJF7oW0cUTs2
HTLTeVcoBNb3QUJRX+wZXORIIBKZkivmfDgtyK9wwh2cERS2Mfcj5NSTs3bb7azW
VWeYVE+SfHx7F1m9ORcftE3QCs4+fJmQz46nMPha99AwOUn3BoGcuul3FWE2EUwH
rvisMOFAj2ALRNtrRGam8TZPcA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:52 2024 by rpki-client on console-fra.rpki-client.org