Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/l8L-o3TlFZnSCVwqPdgTP0svbI4.roa
File: l8L-o3TlFZnSCVwqPdgTP0svbI4.roa (raw, json)
Hash identifier: dfOz3zWreGlD+dwg0omp5ujmT/ECdshVJfufoFHMWVA=
Subject key identifier: 97:C2:FE:A3:74:E5:15:99:D2:09:5C:2A:3D:D8:13:3F:4B:2F:6C:8E
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33DD6D09
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/l8L-o3TlFZnSCVwqPdgTP0svbI4.roa
Signing time: Sat 01 Jan 2022 04:55:31 +0000
ROA not before: Sat 01 Jan 2022 04:55:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12908
IP address blocks: 193.255.134.0/24 maxlen: 24
193.255.134.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870149385 (0x33dd6d09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97c2fea374e51599d2095c2a3dd8133f4b2f6c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:39:98:7d:49:52:83:2d:ab:6b:a5:5b:0f:98:
2b:f3:ee:c1:f1:15:2b:6f:47:ba:2e:08:b3:5e:95:
5f:73:13:24:e1:fa:37:3f:f9:9f:b7:b9:ea:e3:00:
5c:0e:4c:f2:50:ab:e0:9b:f9:d6:89:08:be:1c:f6:
27:e8:90:c8:9a:df:46:1f:d9:af:a9:f2:1d:96:f5:
f1:70:d0:e1:49:b2:c4:7e:1c:8d:37:df:f4:0e:ff:
68:7e:df:c4:59:fb:74:6c:8f:02:f6:a6:6d:91:5d:
df:75:32:01:d6:3e:69:2d:f7:01:7f:ae:ab:d8:34:
f5:d1:53:b5:96:43:ec:b7:60:80:f5:c4:9e:90:7a:
99:0f:53:63:38:19:3b:47:09:2d:ca:cc:ef:7f:07:
1e:c6:99:7d:ee:0e:9e:fa:2c:82:61:04:33:d3:0b:
0b:d1:c6:fd:00:79:71:68:87:e4:c1:7d:a5:ee:ee:
dd:34:1f:1b:66:82:8e:08:36:07:0b:3d:c9:5c:46:
0d:ef:7f:43:07:38:9b:d1:ad:93:84:94:59:98:6f:
75:19:63:b3:f9:08:41:25:67:8c:2a:ce:7e:48:a1:
3f:17:e8:a1:59:be:e3:66:b3:91:be:a3:62:4e:22:
5d:63:6d:cb:d5:da:c5:0b:d2:27:b6:41:fe:c1:60:
4e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C2:FE:A3:74:E5:15:99:D2:09:5C:2A:3D:D8:13:3F:4B:2F:6C:8E
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/l8L-o3TlFZnSCVwqPdgTP0svbI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.255.134.0/23
Signature Algorithm: sha256WithRSAEncryption
67:c7:bb:93:28:e8:7d:2d:03:ec:68:28:c9:2e:6f:bd:91:04:
e3:31:d6:15:ec:d2:fe:22:16:ea:ad:37:b5:22:d2:81:9e:fc:
3b:e4:7a:ae:e5:7b:e4:1a:02:d3:86:69:9d:d6:18:a0:1a:7b:
af:1e:b1:b3:81:f1:d0:5d:9b:7d:49:54:25:90:cb:27:8b:2e:
6e:8c:e0:ee:93:49:c7:bb:dc:6f:42:39:12:58:bf:c6:c3:8c:
9a:f5:9a:27:db:3b:0f:50:d2:92:b4:97:76:28:b2:7c:e5:eb:
2d:09:7c:81:d8:60:aa:e0:57:26:b1:66:96:aa:57:61:2b:d6:
77:c5:64:b4:48:b7:45:56:cd:69:ca:92:1f:35:bb:c1:d9:33:
7a:b8:fa:7f:4f:32:eb:78:d4:96:f7:73:db:d7:02:e3:a6:db:
6e:e2:11:8a:21:c0:a5:ae:76:8f:48:96:a7:29:21:43:23:e5:
20:ab:ff:d8:e6:51:b0:89:73:26:a5:ec:99:38:e8:a2:02:09:
0d:0a:74:ca:b4:db:c7:a5:b0:bf:b4:f3:a7:99:b8:d3:07:c2:
d4:af:c1:13:10:03:54:05:36:26:63:c2:dc:23:da:64:d2:e4:
67:26:79:7e:11:e7:44:95:23:0c:fc:c8:83:1e:ec:a3:4f:8a:
78:e1:74:e9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEM91tCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzUxOGQxODA5MjNhN2YzYzAwNjUzZWMxMmJjNzAyYjk1YWFiOTA3MB4XDTIyMDEw
MTA0NTUzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTdjMmZlYTM3NGU1
MTU5OWQyMDk1YzJhM2RkODEzM2Y0YjJmNmM4ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALw5mH1JUoMtq2ulWw+YK/PuwfEVK29Hui4Is16VX3MTJOH6
Nz/5n7e56uMAXA5M8lCr4Jv51okIvhz2J+iQyJrfRh/Zr6nyHZb18XDQ4UmyxH4c
jTff9A7/aH7fxFn7dGyPAvambZFd33UyAdY+aS33AX+uq9g09dFTtZZD7LdggPXE
npB6mQ9TYzgZO0cJLcrM738HHsaZfe4OnvosgmEEM9MLC9HG/QB5cWiH5MF9pe7u
3TQfG2aCjgg2Bws9yVxGDe9/Qwc4m9Gtk4SUWZhvdRljs/kIQSVnjCrOfkihPxfo
oVm+42azkb6jYk4iXWNty9XaxQvSJ7ZB/sFgThUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSXwv6jdOUVmdIJXCo92BM/Sy9sjjAfBgNVHSMEGDAWgBQ3UY0YCSOn88AG
U+wSvHArlaq5BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L04xR05HQWtqcF9QQUJsUHNFcnh3SzVXcXVRYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvZjgwZWYzLTlmMGItNGJkMS04MDE4LTU5NjcxOTIwZmI2MC8x
L2w4TC1vM1RsRlpuU0NWd3FQZGdUUDBzdmJJNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
ZjgwZWYzLTlmMGItNGJkMS04MDE4LTU5NjcxOTIwZmI2MC8xL04xR05HQWtqcF9Q
QUJsUHNFcnh3SzVXcXVRYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcH/hjANBgkqhkiG9w0BAQsFAAOC
AQEAZ8e7kyjofS0D7GgoyS5vvZEE4zHWFezS/iIW6q03tSLSgZ78O+R6ruV75BoC
04ZpndYYoBp7rx6xs4Hx0F2bfUlUJZDLJ4subozg7pNJx7vcb0I5Eli/xsOMmvWa
J9s7D1DSkrSXdiiyfOXrLQl8gdhgquBXJrFmlqpXYSvWd8VktEi3RVbNacqSHzW7
wdkzerj6f08y63jUlvdz29cC46bbbuIRiiHApa52j0iWpykhQyPlIKv/2OZRsIlz
JqXsmTjoogIJDQp0yrTbx6Wwv7Tzp5m40wfC1K/BExADVAU2JmPC3CPaZNLkZyZ5
fhHnRJUjDPzIgx7so0+KeOF06Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org