Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/vGzkRdrwiKCIWHPzDqJutPk8rm0.roa
File: vGzkRdrwiKCIWHPzDqJutPk8rm0.roa (raw, json)
Hash identifier: 8vQTqse4u5UCmo1QZDS129PBBJyVRQtsu9y0gF3ggS0=
Subject key identifier: BC:6C:E4:45:DA:F0:88:A0:88:58:73:F3:0E:A2:6E:B4:F9:3C:AE:6D
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33E9A2B5
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/vGzkRdrwiKCIWHPzDqJutPk8rm0.roa
Signing time: Sat 01 Jan 2022 04:55:37 +0000
ROA not before: Sat 01 Jan 2022 04:55:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212167
IP address blocks: 193.255.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870949557 (0x33e9a2b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc6ce445daf088a0885873f30ea26eb4f93cae6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f3:41:ba:e2:8f:11:dc:98:37:bd:6f:ad:d8:
18:cf:7b:7e:7c:41:9e:82:4e:2b:fd:bb:a0:f4:a9:
be:74:60:63:a7:0b:68:34:6c:76:9b:3b:5c:d9:88:
d4:68:0b:40:3b:55:ff:af:f7:33:27:d9:82:56:46:
a0:c9:c1:b0:72:02:55:7f:62:21:f6:e7:61:07:f9:
2a:03:71:1e:c2:67:c4:93:8c:4f:76:0d:a5:e3:20:
c7:8b:f0:16:80:6c:8d:b9:6b:8a:fe:51:3e:96:c9:
fc:b3:fd:19:9a:46:74:5c:8b:0b:26:9f:f9:ec:26:
84:f9:6e:50:0b:b4:f2:bd:31:3b:22:90:85:01:c3:
4a:13:b9:d7:0c:69:a1:e5:3e:15:63:39:19:b5:3c:
3f:0a:fb:c3:49:3c:5c:f8:e9:a5:c2:c2:30:b3:00:
5f:32:29:d0:c7:87:54:9e:f3:fa:34:b9:c0:b0:0c:
ef:8f:ba:12:f3:bc:71:02:6e:3b:aa:ed:61:79:0a:
12:a3:54:0a:f8:77:8f:da:ea:0d:cb:88:a9:b9:77:
40:88:30:78:e4:f2:84:e1:40:9e:28:7b:68:73:27:
e3:2a:62:60:00:a8:02:fa:2e:94:8c:3b:81:10:0f:
5b:47:61:d8:40:c5:53:43:14:ef:a7:0a:86:ee:3a:
ff:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6C:E4:45:DA:F0:88:A0:88:58:73:F3:0E:A2:6E:B4:F9:3C:AE:6D
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/vGzkRdrwiKCIWHPzDqJutPk8rm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.255.52.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:9b:96:e7:2e:6b:1f:a0:88:8f:76:21:55:f8:3a:96:5f:f4:
d4:f0:27:8e:70:5f:78:8c:25:81:cf:b4:00:19:a4:28:9b:a5:
86:9b:22:bc:57:d4:c0:db:44:7e:de:62:d4:55:37:65:19:01:
c6:d8:e2:80:f9:83:c9:61:bd:44:13:a1:b1:c1:a7:ef:ce:97:
07:65:67:43:45:24:a7:43:73:e8:85:30:aa:3d:7c:3c:29:f1:
cd:f8:19:f5:b3:90:d6:b1:ed:f8:94:e8:cc:61:31:36:c7:65:
06:79:82:67:d5:1f:b9:f9:25:62:4e:d0:7a:fe:88:da:5c:b1:
7a:40:90:23:eb:86:8b:08:db:8b:77:b9:ac:60:5e:16:84:f1:
fd:a4:15:7c:db:70:07:54:77:1a:e4:85:d0:cd:06:07:65:2e:
ec:4b:b0:ab:cc:f5:e4:54:c0:1a:c2:35:4f:af:aa:1b:44:68:
4f:d6:4b:d2:79:27:86:a3:68:43:c1:35:46:d5:f0:ac:a2:ba:
94:52:24:fc:f9:49:9f:67:85:8b:68:e4:4c:ce:8f:b5:04:77:
6e:b7:3f:d9:0f:79:21:ce:78:f6:43:b8:fe:76:8b:d6:10:5a:
b3:f6:f4:a0:1c:5d:b5:02:54:55:9c:9b:fc:ec:a3:e9:8d:d7:
f6:3b:0b:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEM+mitTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzUxOGQxODA5MjNhN2YzYzAwNjUzZWMxMmJjNzAyYjk1YWFiOTA3MB4XDTIyMDEw
MTA0NTUzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmM2Y2U0NDVkYWYw
ODhhMDg4NTg3M2YzMGVhMjZlYjRmOTNjYWU2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKfzQbrijxHcmDe9b63YGM97fnxBnoJOK/27oPSpvnRgY6cL
aDRsdps7XNmI1GgLQDtV/6/3MyfZglZGoMnBsHICVX9iIfbnYQf5KgNxHsJnxJOM
T3YNpeMgx4vwFoBsjblriv5RPpbJ/LP9GZpGdFyLCyaf+ewmhPluUAu08r0xOyKQ
hQHDShO51wxpoeU+FWM5GbU8Pwr7w0k8XPjppcLCMLMAXzIp0MeHVJ7z+jS5wLAM
74+6EvO8cQJuO6rtYXkKEqNUCvh3j9rqDcuIqbl3QIgweOTyhOFAnih7aHMn4ypi
YACoAvoulIw7gRAPW0dh2EDFU0MU76cKhu46/zsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS8bORF2vCIoIhYc/MOom60+TyubTAfBgNVHSMEGDAWgBQ3UY0YCSOn88AG
U+wSvHArlaq5BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L04xR05HQWtqcF9QQUJsUHNFcnh3SzVXcXVRYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvZjgwZWYzLTlmMGItNGJkMS04MDE4LTU5NjcxOTIwZmI2MC8x
L3ZHemtSZHJ3aUtDSVdIUHpEcUp1dFBrOHJtMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
ZjgwZWYzLTlmMGItNGJkMS04MDE4LTU5NjcxOTIwZmI2MC8xL04xR05HQWtqcF9Q
QUJsUHNFcnh3SzVXcXVRYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsH/NDANBgkqhkiG9w0BAQsFAAOC
AQEAPJuW5y5rH6CIj3YhVfg6ll/01PAnjnBfeIwlgc+0ABmkKJulhpsivFfUwNtE
ft5i1FU3ZRkBxtjigPmDyWG9RBOhscGn786XB2VnQ0Ukp0Nz6IUwqj18PCnxzfgZ
9bOQ1rHt+JTozGExNsdlBnmCZ9UfufklYk7Qev6I2lyxekCQI+uGiwjbi3e5rGBe
FoTx/aQVfNtwB1R3GuSF0M0GB2Uu7Euwq8z15FTAGsI1T6+qG0RoT9ZL0nknhqNo
Q8E1RtXwrKK6lFIk/PlJn2eFi2jkTM6PtQR3brc/2Q95Ic549kO4/naL1hBas/b0
oBxdtQJUVZyb/Oyj6Y3X9jsL/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org