Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/K_HyzlH74oBlSXtGlm0hqLFX9nk.roa
File: K_HyzlH74oBlSXtGlm0hqLFX9nk.roa (raw, json)
Hash identifier: EUh6OfFmhlph3BLXdO8V9GcU8OX5ckvrQ6EQ/Ay4yzA=
Subject key identifier: 2B:F1:F2:CE:51:FB:E2:80:65:49:7B:46:96:6D:21:A8:B1:57:F6:79
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0F731D49
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/K_HyzlH74oBlSXtGlm0hqLFX9nk.roa
Signing time: Thu 14 Apr 2022 12:17:58 +0000
ROA not before: Thu 14 Apr 2022 12:17:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206995
IP address blocks: 193.124.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259202377 (0xf731d49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 14 12:17:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bf1f2ce51fbe28065497b46966d21a8b157f679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b3:43:cb:6e:34:c2:06:ec:ea:db:28:55:9c:
3b:8b:c9:94:1d:28:fe:94:98:db:c2:6c:34:f4:56:
b8:3d:c1:78:f3:b4:5d:61:26:7c:99:c2:f3:9a:13:
7e:47:55:a7:39:db:69:e7:65:59:32:03:c9:5c:2e:
d9:c5:fb:19:6f:7f:59:ed:ef:5f:ba:fc:47:03:b7:
a4:49:48:d4:fb:46:86:8e:aa:a0:88:94:08:e6:8b:
11:88:11:e6:8e:7d:d0:ea:2f:12:ce:7e:49:47:76:
e2:ee:62:91:21:70:b2:1f:4a:06:09:0c:53:cc:5e:
e9:26:25:1e:f7:32:22:c6:66:64:37:d5:55:31:09:
d3:65:0e:63:51:c3:7f:d1:1f:26:d4:c5:55:8b:f5:
32:02:d0:9d:9c:0c:44:42:b2:f9:3c:89:ad:05:22:
aa:54:05:56:c3:f8:f2:86:55:7f:5e:12:47:3a:70:
1f:1b:64:47:7a:12:c0:b8:ef:e5:97:7f:26:b9:f2:
38:ca:03:34:44:19:e3:b6:f0:da:1a:42:a0:1e:c0:
51:cb:98:96:62:37:f9:0d:a2:b5:38:c3:40:ce:2b:
d6:74:eb:8d:e8:80:88:df:87:72:b9:81:55:33:f2:
22:a8:7b:08:c1:79:34:a8:9e:4b:1c:aa:ec:c9:e7:
94:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F1:F2:CE:51:FB:E2:80:65:49:7B:46:96:6D:21:A8:B1:57:F6:79
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/K_HyzlH74oBlSXtGlm0hqLFX9nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.8.0/24
Signature Algorithm: sha256WithRSAEncryption
43:42:d6:2b:2d:c5:28:ec:5b:8f:cf:db:98:37:48:41:92:d1:
77:07:0d:d9:2f:33:89:4a:9c:0b:65:e5:1e:ed:c3:04:bd:31:
9e:e5:aa:65:c9:72:d2:28:23:05:8b:44:2b:49:85:12:c2:6c:
3a:1b:8f:6c:50:4d:da:39:39:00:25:a0:23:1f:24:43:a6:f2:
28:4c:23:0a:4f:04:14:a2:bc:56:0a:c5:81:fa:e5:37:de:9c:
3e:b6:bc:44:16:b4:a2:b0:ef:30:60:46:1d:25:e4:25:4a:44:
7a:df:0f:4c:2d:50:39:66:82:ef:46:ba:a3:15:c9:6f:ac:6d:
05:6e:01:3e:16:9a:22:dc:d0:14:50:87:ba:ae:6c:41:fa:24:
a1:78:d4:18:1e:3b:4a:63:84:a7:28:75:aa:35:a7:7a:92:01:
c2:9c:50:a1:68:08:f8:d3:f4:5b:c0:71:73:b6:6d:09:83:3f:
c7:0b:84:01:19:cb:69:9e:ce:b9:6a:3c:ef:5f:7c:8f:b1:86:
a3:36:02:b9:19:99:a1:68:a3:da:ab:d3:9a:b6:26:b1:e4:65:
ae:77:30:9d:28:c6:72:bc:6d:aa:09:2e:b5:20:77:92:8e:c4:
9b:50:85:03:f4:b6:da:99:37:ff:97:6b:31:db:b5:b2:8f:44:
44:5f:f9:86
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED3MdSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTY5MGY1ZTMyZDVjODZhZjFlMTM0OWRmZDRlOGNlZWI3MGUxYWM3MB4XDTIyMDQx
NDEyMTc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmJmMWYyY2U1MWZi
ZTI4MDY1NDk3YjQ2OTY2ZDIxYThiMTU3ZjY3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALCzQ8tuNMIG7OrbKFWcO4vJlB0o/pSY28JsNPRWuD3BePO0
XWEmfJnC85oTfkdVpznbaedlWTIDyVwu2cX7GW9/We3vX7r8RwO3pElI1PtGho6q
oIiUCOaLEYgR5o590OovEs5+SUd24u5ikSFwsh9KBgkMU8xe6SYlHvcyIsZmZDfV
VTEJ02UOY1HDf9EfJtTFVYv1MgLQnZwMREKy+TyJrQUiqlQFVsP48oZVf14SRzpw
HxtkR3oSwLjv5Zd/JrnyOMoDNEQZ47bw2hpCoB7AUcuYlmI3+Q2itTjDQM4r1nTr
jeiAiN+HcrmBVTPyIqh7CMF5NKieSxyq7MnnlLUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQr8fLOUfvigGVJe0aWbSGosVf2eTAfBgNVHSMEGDAWgBQ1aQ9eMtXIavHh
NJ39Tozutw4axzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8x
L0tfSHl6bEg3NG9CbFNYdEdsbTBocUxGWDluay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
ZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8xL05Xa1BYakxWeUdy
eDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMF8CDANBgkqhkiG9w0BAQsFAAOC
AQEAQ0LWKy3FKOxbj8/bmDdIQZLRdwcN2S8ziUqcC2XlHu3DBL0xnuWqZcly0igj
BYtEK0mFEsJsOhuPbFBN2jk5ACWgIx8kQ6byKEwjCk8EFKK8VgrFgfrlN96cPra8
RBa0orDvMGBGHSXkJUpEet8PTC1QOWaC70a6oxXJb6xtBW4BPhaaItzQFFCHuq5s
QfokoXjUGB47SmOEpyh1qjWnepIBwpxQoWgI+NP0W8Bxc7ZtCYM/xwuEARnLaZ7O
uWo87198j7GGozYCuRmZoWij2qvTmrYmseRlrncwnSjGcrxtqgkutSB3ko7Em1CF
A/S22pk3/5drMdu1so9ERF/5hg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:55 2023 by rpki-client on console-ams.rpki-client.org