Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/JMeB6ZZ0ox3X252q1ImOrfPPH7A.roa
File: JMeB6ZZ0ox3X252q1ImOrfPPH7A.roa (raw, json)
Hash identifier: dGVwAsf4NLpI/oGUxDKxJbeQ8xZRjG3JmtNTZhq+8h4=
Subject key identifier: 24:C7:81:E9:96:74:A3:1D:D7:DB:9D:AA:D4:89:8E:AD:F3:CF:1F:B0
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 01821F2743D4B63BC5D00B745DFF8B8DF026
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/JMeB6ZZ0ox3X252q1ImOrfPPH7A.roa
Signing time: Thu 21 Jul 2022 05:07:23 +0000
ROA not before: Thu 21 Jul 2022 05:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.37.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:27:43:d4:b6:3b:c5:d0:0b:74:5d:ff:8b:8d:f0:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jul 21 05:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24c781e99674a31dd7db9daad4898eadf3cf1fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3f:b3:6a:63:3c:74:1b:cf:2d:61:ba:28:fc:
0f:72:ce:2b:81:a3:62:36:9b:8d:57:f4:30:e0:64:
95:3b:70:a7:ee:6b:60:25:96:0b:22:46:8f:ab:91:
e9:2b:12:81:b9:ed:f5:0c:17:f3:e6:93:bd:4b:dc:
7a:9c:ae:59:8c:f2:84:f8:e2:4e:18:f2:b2:c2:2a:
e3:3a:39:66:9f:2a:5c:e7:da:36:32:10:f9:82:75:
7d:c9:63:f6:a5:2d:cf:df:81:d2:c7:2c:64:88:54:
a8:e4:aa:5a:00:c7:28:c1:fa:fc:a3:d2:f0:9e:f4:
21:09:45:be:f2:ba:5d:89:cb:51:b0:d7:66:ce:f4:
ab:6c:90:b6:e5:c3:84:61:13:3e:91:b3:34:15:38:
41:eb:bc:b8:14:4c:a2:da:92:35:fc:18:1a:72:5a:
01:30:0a:02:e1:f5:0a:04:af:14:d6:08:5e:c6:69:
6a:1a:95:54:9d:04:de:49:9f:6a:a1:75:e6:57:8f:
5f:4a:d9:78:ef:d6:bf:ba:5c:99:95:48:03:e8:2d:
2b:0b:d8:42:35:b6:e7:47:58:8c:00:52:4a:75:b0:
37:c6:e2:89:6d:f9:7c:a6:c8:0e:96:17:1a:ee:0b:
24:16:7f:eb:60:07:f0:9e:f7:37:58:8c:a4:5e:56:
95:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C7:81:E9:96:74:A3:1D:D7:DB:9D:AA:D4:89:8E:AD:F3:CF:1F:B0
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/JMeB6ZZ0ox3X252q1ImOrfPPH7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.199.0/24
Signature Algorithm: sha256WithRSAEncryption
39:23:6c:32:3f:a7:b5:21:9f:09:02:86:31:63:5b:05:e5:82:
00:03:d3:b7:71:0b:45:f0:fe:0f:bb:49:c8:4f:97:26:a7:ee:
83:8a:1e:38:d5:17:67:ca:9e:6a:5e:fc:54:69:8c:19:9d:d6:
3e:c4:a6:5a:65:2c:a2:aa:70:4e:2c:c7:f2:5c:cf:fc:fd:e4:
58:82:bc:fb:57:77:ac:59:4f:36:e8:e9:50:20:9c:61:01:6c:
68:49:62:5c:2b:de:3d:db:a8:8f:d3:23:02:5f:85:fc:75:48:
fc:4e:cb:92:7a:c6:6b:1c:5f:6b:4e:c4:e0:4f:8b:b5:aa:fb:
f0:f9:a7:bf:8b:50:5b:f2:e2:6f:70:9a:44:c9:85:42:b0:74:
04:d1:cb:01:38:44:3d:79:97:1b:36:22:ac:2e:b1:8c:5c:98:
1c:d4:51:c8:e8:9b:96:75:40:40:a6:6c:ab:dd:d9:fd:3d:9a:
cd:6e:8c:a4:8e:86:66:2d:84:52:c2:69:5c:54:22:de:4f:b4:
1a:b7:3b:85:52:68:f9:84:cf:54:9b:07:04:74:64:8f:5c:c9:
ed:f7:5e:5c:92:86:0b:50:cd:39:4b:d1:09:e4:b3:a6:19:6f:
1c:4a:b1:85:83:47:bd:07:f0:f9:3a:5d:26:0b:10:8b:82:f2:
5c:00:21:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIfJ0PUtjvF0At0Xf+LjfAmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjIwNzIxMDUwNzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGM3ODFlOTk2NzRhMzFkZDdkYjlkYWFkNDg5OGVhZGYzY2YxZmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkz+zamM8dBvPLWG6KPwPcs4rgaNi
NpuNV/Qw4GSVO3Cn7mtgJZYLIkaPq5HpKxKBue31DBfz5pO9S9x6nK5ZjPKE+OJO
GPKywirjOjlmnypc59o2MhD5gnV9yWP2pS3P34HSxyxkiFSo5KpaAMcowfr8o9Lw
nvQhCUW+8rpdictRsNdmzvSrbJC25cOEYRM+kbM0FThB67y4FEyi2pI1/BgacloB
MAoC4fUKBK8U1ghexmlqGpVUnQTeSZ9qoXXmV49fStl479a/ulyZlUgD6C0rC9hC
NbbnR1iMAFJKdbA3xuKJbfl8psgOlhca7gskFn/rYAfwnvc3WIykXlaV8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCTHgemWdKMd19udqtSJjq3zzx+wMB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvSk1lQjZaWjBveDNYMjUycTFJbU9yZlBQSDdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSXHMA0G
CSqGSIb3DQEBCwUAA4IBAQA5I2wyP6e1IZ8JAoYxY1sF5YIAA9O3cQtF8P4Pu0nI
T5cmp+6Dih441Rdnyp5qXvxUaYwZndY+xKZaZSyiqnBOLMfyXM/8/eRYgrz7V3es
WU826OlQIJxhAWxoSWJcK94926iP0yMCX4X8dUj8TsuSesZrHF9rTsTgT4u1qvvw
+ae/i1Bb8uJvcJpEyYVCsHQE0csBOEQ9eZcbNiKsLrGMXJgc1FHI6JuWdUBApmyr
3dn9PZrNboykjoZmLYRSwmlcVCLeT7QatzuFUmj5hM9UmwcEdGSPXMnt915ckoYL
UM05S9EJ5LOmGW8cSrGFg0e9B/D5Ol0mCxCLgvJcACHd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org