Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2b8877-e523-4e9c-9fc3-cd60c891001b/1/bXF8xlLrpgejG5IaA4rTfkUZURM.roa
File: bXF8xlLrpgejG5IaA4rTfkUZURM.roa (raw, json)
Hash identifier: lMQKRfRcZCe/0AagFdJrARyVBAZwprQa4u/ACGwxl1c=
Subject key identifier: 6D:71:7C:C6:52:EB:A6:07:A3:1B:92:1A:03:8A:D3:7E:45:19:51:13
Certificate issuer: /CN=8e702a616c04941e2c9f071651e49c5df3aed0b1
Certificate serial: BB80D6
Authority key identifier: 8E:70:2A:61:6C:04:94:1E:2C:9F:07:16:51:E4:9C:5D:F3:AE:D0:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnAqYWwElB4snwcWUeScXfOu0LE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2b8877-e523-4e9c-9fc3-cd60c891001b/1/bXF8xlLrpgejG5IaA4rTfkUZURM.roa
Signing time: Sat 01 Jan 2022 08:03:43 +0000
ROA not before: Sat 01 Jan 2022 08:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200325
IP address blocks: 193.162.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12288214 (0xbb80d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e702a616c04941e2c9f071651e49c5df3aed0b1
Validity
Not Before: Jan 1 08:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d717cc652eba607a31b921a038ad37e45195113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8c:70:0d:57:2d:cb:73:e3:7d:35:24:cd:12:
09:b3:2a:30:7a:e0:49:1f:bd:88:eb:85:f5:a0:34:
dc:40:56:e2:b1:d3:84:52:5b:eb:ee:98:41:45:0f:
2f:90:15:91:3b:2f:ee:ec:02:b8:57:bd:42:fb:5e:
0f:13:31:96:28:c1:98:38:2e:d3:3c:c6:85:c8:1e:
d0:5c:7e:d1:62:b9:49:bc:09:73:85:78:b2:3e:e9:
29:12:e8:55:34:31:04:5e:89:f5:0b:42:9d:ed:31:
ab:01:57:fb:10:08:1f:eb:fb:9a:96:8d:60:fd:65:
53:04:db:5f:38:64:c5:b5:3f:df:fe:48:8e:3a:1e:
a8:81:b3:f5:9d:91:09:10:c6:06:ce:b7:b1:56:a5:
e0:42:31:bf:22:a2:93:35:34:49:18:96:f6:ab:11:
a5:a3:d1:26:b2:39:81:29:97:eb:14:a6:7c:41:7d:
5e:bd:d2:95:84:d1:00:c8:b1:1d:11:b5:62:27:42:
e2:a5:60:e9:9b:d0:32:f6:64:0d:cb:f8:03:df:5a:
f5:0a:96:00:4f:ae:3e:1a:17:5f:ba:bb:c6:bb:85:
0f:b0:3a:1a:fa:f8:49:03:f5:e8:72:3e:84:ef:0b:
97:21:19:c5:38:5e:76:fc:10:93:a4:62:12:d8:27:
c7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:71:7C:C6:52:EB:A6:07:A3:1B:92:1A:03:8A:D3:7E:45:19:51:13
X509v3 Authority Key Identifier:
keyid:8E:70:2A:61:6C:04:94:1E:2C:9F:07:16:51:E4:9C:5D:F3:AE:D0:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnAqYWwElB4snwcWUeScXfOu0LE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2b8877-e523-4e9c-9fc3-cd60c891001b/1/bXF8xlLrpgejG5IaA4rTfkUZURM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2b8877-e523-4e9c-9fc3-cd60c891001b/1/jnAqYWwElB4snwcWUeScXfOu0LE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.131.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:a0:eb:f2:17:fa:41:25:32:4e:05:4c:50:b9:3f:fb:a6:4e:
76:d2:ab:e2:0a:88:2a:f9:05:79:27:87:3c:4f:84:19:31:89:
d6:91:56:b5:2e:6d:5a:4e:24:e3:f8:fb:61:8d:11:d7:68:c8:
e0:0e:ab:ca:46:bf:78:97:b4:61:b9:cb:c4:f9:78:8c:08:88:
d8:97:18:7c:d4:ba:78:22:d7:27:e2:72:df:50:06:9a:4f:ee:
19:2d:b8:f9:8e:02:a5:ab:99:96:43:26:63:87:26:06:c6:16:
99:e4:23:ba:5a:fc:e2:a2:fe:3d:64:b6:9a:d2:a0:a9:c9:a3:
c5:87:50:48:e2:5c:8a:0c:4f:ab:fa:45:5a:2a:2f:8d:81:b4:
22:69:26:c4:3b:f8:64:59:2c:f7:cb:97:bb:6c:95:73:3f:24:
8d:68:9c:03:ad:60:55:1f:fb:3d:c1:4c:fe:8a:dd:56:65:f7:
ce:88:c7:c4:cc:d2:ce:86:12:b7:7a:2f:e3:73:76:4e:b6:48:
40:83:2b:02:20:df:75:d5:ce:b2:03:83:9a:f9:fa:09:df:57:
77:5c:42:fc:fb:14:ed:c4:b4:e0:60:06:eb:04:e7:c9:88:25:
5e:cd:5f:0b:5c:8e:ae:3b:ba:a4:d8:ae:5c:ad:3f:c5:5e:05:
70:1e:00:32
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALuA1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTcwMmE2MTZjMDQ5NDFlMmM5ZjA3MTY1MWU0OWM1ZGYzYWVkMGIxMB4XDTIyMDEw
MTA4MDM0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmQ3MTdjYzY1MmVi
YTYwN2EzMWI5MjFhMDM4YWQzN2U0NTE5NTExMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMCMcA1XLctz4301JM0SCbMqMHrgSR+9iOuF9aA03EBW4rHT
hFJb6+6YQUUPL5AVkTsv7uwCuFe9QvteDxMxlijBmDgu0zzGhcge0Fx+0WK5SbwJ
c4V4sj7pKRLoVTQxBF6J9QtCne0xqwFX+xAIH+v7mpaNYP1lUwTbXzhkxbU/3/5I
jjoeqIGz9Z2RCRDGBs63sVal4EIxvyKikzU0SRiW9qsRpaPRJrI5gSmX6xSmfEF9
Xr3SlYTRAMixHRG1YidC4qVg6ZvQMvZkDcv4A99a9QqWAE+uPhoXX7q7xruFD7A6
Gvr4SQP16HI+hO8LlyEZxThedvwQk6RiEtgnx4ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRtcXzGUuumB6MbkhoDitN+RRlREzAfBgNVHSMEGDAWgBSOcCphbASUHiyf
BxZR5Jxd867QsTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2puQXFZV3dFbEI0c253Y1dVZVNjWGZPdTBMRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjcvMmI4ODc3LWU1MjMtNGU5Yy05ZmMzLWNkNjBjODkxMDAxYi8x
L2JYRjh4bExycGdlakc1SWFBNHJUZmtVWlVSTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcv
MmI4ODc3LWU1MjMtNGU5Yy05ZmMzLWNkNjBjODkxMDAxYi8xL2puQXFZV3dFbEI0
c253Y1dVZVNjWGZPdTBMRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGigzANBgkqhkiG9w0BAQsFAAOC
AQEAW6Dr8hf6QSUyTgVMULk/+6ZOdtKr4gqIKvkFeSeHPE+EGTGJ1pFWtS5tWk4k
4/j7YY0R12jI4A6ryka/eJe0YbnLxPl4jAiI2JcYfNS6eCLXJ+Jy31AGmk/uGS24
+Y4CpauZlkMmY4cmBsYWmeQjulr84qL+PWS2mtKgqcmjxYdQSOJcigxPq/pFWiov
jYG0ImkmxDv4ZFks98uXu2yVcz8kjWicA61gVR/7PcFM/ordVmX3zojHxMzSzoYS
t3ov43N2TrZIQIMrAiDfddXOsgODmvn6Cd9Xd1xC/PsU7cS04GAG6wTnyYglXs1f
C1yOrju6pNiuXK0/xV4FcB4AMg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:08 2024 by rpki-client on console-ams.rpki-client.org