Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/rLFq4DLobHwSoLtaTVMnwl3XcUk.roa
File: rLFq4DLobHwSoLtaTVMnwl3XcUk.roa (raw, json)
Hash identifier: WI+a1F+5ayfOvQ7VoJKYNlEE0vWhI1PEiwwcKaW94XM=
Subject key identifier: AC:B1:6A:E0:32:E8:6C:7C:12:A0:BB:5A:4D:53:27:C2:5D:D7:71:49
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0774EE90
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/rLFq4DLobHwSoLtaTVMnwl3XcUk.roa
Signing time: Sat 01 Jan 2022 05:04:17 +0000
ROA not before: Sat 01 Jan 2022 05:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 193.37.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125103760 (0x774ee90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 05:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acb16ae032e86c7c12a0bb5a4d5327c25dd77149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:88:cd:37:de:0d:dc:aa:d0:66:98:22:20:66:
7b:fc:ea:05:b1:0a:7f:45:65:8b:96:b9:67:04:9d:
b5:90:f4:f9:97:86:57:06:50:0d:f8:e7:85:d1:df:
09:5a:60:ae:cb:cc:9a:bf:e8:40:73:46:91:cf:d1:
cc:e8:bf:fd:28:d9:d7:42:57:d4:c8:ce:d2:4b:42:
60:6f:7d:be:39:5e:a5:56:bc:f2:bc:33:c7:7b:75:
de:c6:82:21:b8:fd:1c:73:7d:d1:54:68:de:bd:ad:
41:d3:7e:9c:7f:d3:ba:81:a7:3d:f3:59:77:97:ba:
57:d9:84:74:ca:d5:52:5a:7c:ea:e6:eb:c0:93:da:
ef:ce:3f:94:0c:3f:d1:fd:81:eb:ed:f6:40:c4:05:
4e:70:01:e5:58:62:0e:da:8d:0d:c4:84:ec:7d:4c:
65:c4:1d:f0:f4:24:4d:27:01:1e:b3:de:74:1c:0b:
48:7f:7d:ff:da:f4:42:39:75:42:b8:64:e4:95:88:
43:6e:74:55:55:6a:f3:14:51:4e:16:58:d1:06:bb:
4c:d9:81:f2:28:cb:44:18:e2:73:9d:4f:10:ee:9e:
e1:4b:a7:b7:0b:a0:76:45:f5:8e:c9:a5:b0:1f:f4:
3a:d3:25:bd:4d:a3:d6:3b:88:70:cf:6e:34:19:c1:
f1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B1:6A:E0:32:E8:6C:7C:12:A0:BB:5A:4D:53:27:C2:5D:D7:71:49
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/rLFq4DLobHwSoLtaTVMnwl3XcUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.196.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:00:17:10:0a:5a:4f:c4:91:7c:2e:78:43:90:5c:38:ac:13:
0f:11:4d:3e:2d:ef:eb:9d:bb:f9:9b:94:e6:c3:c3:00:2d:75:
fd:81:77:05:45:f7:4d:be:5d:24:86:b4:1c:fb:43:79:21:1a:
a0:52:d3:72:75:90:51:35:22:c8:ba:4e:c2:55:c7:39:d3:89:
85:64:cc:c1:47:c5:d1:d2:55:07:3d:57:0a:4d:14:70:c7:6e:
f1:04:14:db:c2:cb:69:78:87:ee:19:71:e3:d6:c7:1e:20:b3:
6d:26:45:ac:8b:06:99:2e:a2:c0:22:88:e5:30:60:46:92:c9:
a2:05:33:5a:38:cf:3a:9b:f1:1b:f3:48:75:e7:e0:82:d6:3e:
68:c2:2f:67:6c:67:54:3b:8a:6d:22:d6:fe:d0:15:4d:95:a3:
64:d8:a8:be:53:88:0a:56:42:4b:1a:c4:2f:d1:0a:a9:be:b4:
43:26:07:44:cc:30:c7:d4:33:6f:d9:33:74:00:b5:f3:4a:98:
6e:7c:7c:4c:24:f6:1f:1a:a3:98:a0:f0:72:57:78:61:d0:82:
37:f0:cc:9d:ee:c4:97:0a:eb:84:99:db:41:7a:70:e1:65:53:
46:37:79:50:57:1a:b4:1a:26:b0:bc:39:b6:5d:32:3e:35:4e:
26:5d:ba:f3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB3TukDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzY3N2Q3Y2I5MjcxY2UzNjEyNTZlOTgzM2NjN2IxNGZkMDIzZWJlMB4XDTIyMDEw
MTA1MDQxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWNiMTZhZTAzMmU4
NmM3YzEyYTBiYjVhNGQ1MzI3YzI1ZGQ3NzE0OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANmIzTfeDdyq0GaYIiBme/zqBbEKf0Vli5a5ZwSdtZD0+ZeG
VwZQDfjnhdHfCVpgrsvMmr/oQHNGkc/RzOi//SjZ10JX1MjO0ktCYG99vjlepVa8
8rwzx3t13saCIbj9HHN90VRo3r2tQdN+nH/TuoGnPfNZd5e6V9mEdMrVUlp86ubr
wJPa784/lAw/0f2B6+32QMQFTnAB5VhiDtqNDcSE7H1MZcQd8PQkTScBHrPedBwL
SH99/9r0Qjl1Qrhk5JWIQ250VVVq8xRRThZY0Qa7TNmB8ijLRBjic51PEO6e4Uun
twugdkX1jsmlsB/0OtMlvU2j1juIcM9uNBnB8W8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSssWrgMuhsfBKgu1pNUyfCXddxSTAfBgNVHSMEGDAWgBSTZ318uScc42El
bpgzzHsU/QI+vjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syZDlmTGtuSE9OaEpXNllNOHg3RlAwQ1ByNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8x
L3JMRnE0RExvYkh3U29MdGFUVk1ud2wzWGNVay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8xL2syZDlmTGtuSE9O
aEpXNllNOHg3RlAwQ1ByNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsElxDANBgkqhkiG9w0BAQsFAAOC
AQEALQAXEApaT8SRfC54Q5BcOKwTDxFNPi3v6527+ZuU5sPDAC11/YF3BUX3Tb5d
JIa0HPtDeSEaoFLTcnWQUTUiyLpOwlXHOdOJhWTMwUfF0dJVBz1XCk0UcMdu8QQU
28LLaXiH7hlx49bHHiCzbSZFrIsGmS6iwCKI5TBgRpLJogUzWjjPOpvxG/NIdefg
gtY+aMIvZ2xnVDuKbSLW/tAVTZWjZNiovlOIClZCSxrEL9EKqb60QyYHRMwwx9Qz
b9kzdAC180qYbnx8TCT2HxqjmKDwcld4YdCCN/DMne7ElwrrhJnbQXpw4WVTRjd5
UFcatBomsLw5tl0yPjVOJl268w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org