Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/xE0L3Ri3852K9LOKJIv5h67MVvU.roa
File: xE0L3Ri3852K9LOKJIv5h67MVvU.roa (raw, json)
Hash identifier: +Ef9VgK+DXdcBgqwlI24KBtnE5zfuTe8uCeeAwoScoI=
Subject key identifier: C4:4D:0B:DD:18:B7:F3:9D:8A:F4:B3:8A:24:8B:F9:87:AE:CC:56:F5
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 077739AA
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/xE0L3Ri3852K9LOKJIv5h67MVvU.roa
Signing time: Sat 01 Jan 2022 05:04:19 +0000
ROA not before: Sat 01 Jan 2022 05:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29405
IP address blocks: 193.37.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125254058 (0x77739aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 05:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c44d0bdd18b7f39d8af4b38a248bf987aecc56f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:44:97:97:35:80:61:e9:67:9d:81:de:16:
3e:be:6a:f0:ab:2b:b0:42:a9:7a:4a:d5:f9:31:56:
63:3b:cc:15:6c:ec:c9:ff:03:4f:c3:25:ac:87:69:
9d:51:6e:9f:57:c3:87:2e:4b:ea:f2:37:67:e7:aa:
8f:08:d7:42:c7:ef:56:0b:de:a9:23:30:1b:e4:c7:
04:10:4a:39:51:4c:bc:0a:00:4b:17:b4:97:cc:3e:
4b:50:43:8c:6f:fe:5c:b3:7f:6c:59:76:eb:6e:e4:
e1:f3:ab:b9:e4:d6:24:9d:7e:ba:e1:03:da:87:fb:
ea:18:73:07:ac:d0:ac:77:c1:5d:9d:f6:8b:23:32:
92:15:50:39:f0:d9:e3:34:88:df:8f:bd:cf:9d:21:
ee:0f:d9:87:c1:98:29:46:52:cf:4b:27:c1:31:38:
da:e4:55:e4:69:c1:69:e1:5c:ff:cf:c5:b6:81:dd:
91:7d:f4:6d:cd:1f:82:7f:4f:1c:88:24:1e:d2:77:
73:33:bd:44:cf:09:7c:36:e2:f6:5e:d0:16:05:ae:
92:fd:a8:ba:7f:cf:f8:ba:0e:cc:e5:17:0f:26:9d:
f5:b8:4c:5e:cd:0b:33:85:59:3e:8b:d9:10:a5:4f:
68:75:fc:4e:49:10:f9:ac:35:8b:5f:38:6d:8e:d3:
e9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:4D:0B:DD:18:B7:F3:9D:8A:F4:B3:8A:24:8B:F9:87:AE:CC:56:F5
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/xE0L3Ri3852K9LOKJIv5h67MVvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.196.0/22
Signature Algorithm: sha256WithRSAEncryption
73:c3:34:bc:0b:01:34:6f:75:76:42:bb:35:cb:ff:e8:73:be:
fc:2c:8d:c5:21:8e:46:07:9d:98:85:eb:bc:78:18:f4:9d:90:
0c:4d:4f:12:e4:f4:85:05:38:a1:fe:cc:e5:0a:09:ea:8c:7c:
39:a0:f9:2f:f5:1b:4f:95:c4:5d:6b:ca:fc:80:73:5e:1a:df:
4a:b7:65:13:c1:4a:61:09:df:f5:c7:7f:07:42:40:7d:57:85:
f9:59:83:7d:24:d4:c4:0a:ff:2c:05:28:3d:09:90:86:e2:a8:
e7:e1:a1:b0:92:4d:69:84:33:3e:39:98:b8:c3:67:54:c5:66:
1c:92:43:b7:b1:8d:5b:d2:44:e6:e8:9a:98:54:12:9e:d2:46:
a6:cb:e1:92:97:5f:69:9c:15:99:f5:45:4f:92:65:43:cb:01:
d8:2c:00:ca:21:d5:fc:88:59:55:f4:b7:fc:b3:b9:70:7b:50:
c6:d1:62:5f:0c:61:18:2a:c0:17:45:f7:a6:5b:b9:08:2c:45:
d8:5e:59:1c:96:70:ed:97:b1:b0:57:9b:b1:93:83:fb:86:f2:
72:89:6a:3b:c1:fa:35:43:9d:64:3d:4c:77:ff:50:58:40:7f:
c1:38:94:d9:cf:9d:82:80:9c:2a:65:72:d2:49:57:bc:82:26:
8a:28:57:50
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB3c5qjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzY3N2Q3Y2I5MjcxY2UzNjEyNTZlOTgzM2NjN2IxNGZkMDIzZWJlMB4XDTIyMDEw
MTA1MDQxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzQ0ZDBiZGQxOGI3
ZjM5ZDhhZjRiMzhhMjQ4YmY5ODdhZWNjNTZmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTORJeXNYBh6Wedgd4WPr5q8KsrsEKpekrV+TFWYzvMFWzs
yf8DT8MlrIdpnVFun1fDhy5L6vI3Z+eqjwjXQsfvVgveqSMwG+THBBBKOVFMvAoA
Sxe0l8w+S1BDjG/+XLN/bFl2627k4fOrueTWJJ1+uuED2of76hhzB6zQrHfBXZ32
iyMykhVQOfDZ4zSI34+9z50h7g/Zh8GYKUZSz0snwTE42uRV5GnBaeFc/8/FtoHd
kX30bc0fgn9PHIgkHtJ3czO9RM8JfDbi9l7QFgWukv2oun/P+LoOzOUXDyad9bhM
Xs0LM4VZPovZEKVPaHX8TkkQ+aw1i184bY7T6Y8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTETQvdGLfznYr0s4oki/mHrsxW9TAfBgNVHSMEGDAWgBSTZ318uScc42El
bpgzzHsU/QI+vjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syZDlmTGtuSE9OaEpXNllNOHg3RlAwQ1ByNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8x
L3hFMEwzUmkzODUySzlMT0tKSXY1aDY3TVZ2VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8xL2syZDlmTGtuSE9O
aEpXNllNOHg3RlAwQ1ByNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsElxDANBgkqhkiG9w0BAQsFAAOC
AQEAc8M0vAsBNG91dkK7Ncv/6HO+/CyNxSGORgedmIXrvHgY9J2QDE1PEuT0hQU4
of7M5QoJ6ox8OaD5L/UbT5XEXWvK/IBzXhrfSrdlE8FKYQnf9cd/B0JAfVeF+VmD
fSTUxAr/LAUoPQmQhuKo5+GhsJJNaYQzPjmYuMNnVMVmHJJDt7GNW9JE5uiamFQS
ntJGpsvhkpdfaZwVmfVFT5JlQ8sB2CwAyiHV/IhZVfS3/LO5cHtQxtFiXwxhGCrA
F0X3plu5CCxF2F5ZHJZw7ZexsFebsZOD+4bycolqO8H6NUOdZD1Md/9QWEB/wTiU
2c+dgoCcKmVy0klXvIImiihXUA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org