Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/xnXUznR3gZ2zDI2sPTFsjTOeYYc.roa
File: xnXUznR3gZ2zDI2sPTFsjTOeYYc.roa (raw, json)
Hash identifier: xgaCRUNqx23ckVRnqj+Jgzp25uYpmEgatVpZSc2btrY=
Subject key identifier: C6:75:D4:CE:74:77:81:9D:B3:0C:8D:AC:3D:31:6C:8D:33:9E:61:87
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0184569C2557E6AFBF3CCDE740B8D8400005
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/xnXUznR3gZ2zDI2sPTFsjTOeYYc.roa
Signing time: Tue 08 Nov 2022 09:39:44 +0000
ROA not before: Tue 08 Nov 2022 09:39:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202479
IP address blocks: 193.37.139.0/24 maxlen: 24
2a0c:9a40:1023::/48 maxlen: 48
2a0c:9a40:1013::/48 maxlen: 48
2a0c:9a40:1019::/48 maxlen: 48
2a0c:9a40:1014::/48 maxlen: 48
2a0c:9a40:1017::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a40:1012::/48 maxlen: 48
2a0c:9a40:101d::/48 maxlen: 48
2a0c:9a40:1018::/48 maxlen: 48
2a0c:9a40:101b::/48 maxlen: 48
2a0c:9a40:1021::/48 maxlen: 48
2a0c:9a40:1011::/48 maxlen: 48
2a0c:9a40:100c::/48 maxlen: 48
2a0c:9a40:101c::/48 maxlen: 48
2a0c:9a40:101a::/48 maxlen: 48
2a0c:9a40:100a::/48 maxlen: 48
2a0c:9a40:1015::/48 maxlen: 48
2a0c:9a40:1010::/48 maxlen: 48
2a0c:9a40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:56:9c:25:57:e6:af:bf:3c:cd:e7:40:b8:d8:40:00:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Nov 8 09:39:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c675d4ce7477819db30c8dac3d316c8d339e6187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5a:bd:94:ee:d2:04:8f:31:75:3b:f2:9c:ef:
e5:48:db:b5:a0:a0:ff:2c:48:26:c7:a6:32:0c:f2:
ff:c7:ee:9e:50:92:f5:0e:a5:b5:4e:4b:59:61:10:
3a:98:54:75:35:cc:59:01:cf:b3:1b:d7:ca:f5:4c:
0f:c2:4a:97:58:e1:69:c6:b1:99:c4:e4:97:00:c1:
fa:4d:27:30:70:42:b4:b2:ca:6d:2d:91:1f:7d:a4:
1a:02:40:bf:a6:6e:66:3b:73:ed:7c:cb:bc:f5:a4:
82:13:7b:59:9b:6a:ba:ec:4d:c6:af:a0:b9:97:2b:
73:e6:bf:56:95:68:eb:c2:fd:fe:32:02:e5:94:db:
95:2e:11:7a:9e:de:28:83:56:c1:30:8d:fb:4f:cb:
c5:73:2d:dd:7c:72:6d:0e:94:e4:3a:9d:bb:b3:50:
5a:91:15:43:c9:94:48:39:27:3e:2e:bd:f0:58:ff:
01:23:0e:f5:9a:17:41:f6:87:c4:6d:ff:a0:4b:31:
b8:2a:d4:8b:1d:36:80:87:8f:16:3c:f1:b1:ec:b5:
18:a1:bc:06:46:d6:0f:2b:55:db:63:74:fc:8f:30:
23:9f:80:ec:ef:b1:2d:52:0d:4e:43:06:b6:f7:e3:
bc:57:b9:6d:d1:66:08:0b:de:33:5d:ee:bd:57:44:
f8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:75:D4:CE:74:77:81:9D:B3:0C:8D:AC:3D:31:6C:8D:33:9E:61:87
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/xnXUznR3gZ2zDI2sPTFsjTOeYYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.139.0/24
IPv6:
2a0c:9a40::/48
2a0c:9a40:1002::/48
2a0c:9a40:100a::/48
2a0c:9a40:100c::/48
2a0c:9a40:1010::-2a0c:9a40:1015:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1017::-2a0c:9a40:101d:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1021::/48
2a0c:9a40:1023::/48
Signature Algorithm: sha256WithRSAEncryption
cd:09:bf:25:de:79:1e:a8:79:cb:c1:1a:30:9c:9e:c3:58:d6:
d2:c5:8d:59:0a:4b:ae:0a:3c:e9:d4:ee:ff:62:67:23:cd:d8:
93:21:df:87:36:e1:93:77:26:28:d4:cc:87:dc:99:28:1a:b9:
05:e6:bc:96:2c:10:d6:8c:81:49:4d:59:56:c6:8c:00:9a:e7:
9b:d4:29:a0:9d:8c:d0:77:81:9d:3b:40:d6:06:6c:89:45:2c:
a8:be:dd:63:67:0c:37:a7:a2:85:ce:9b:bd:0f:b0:0f:ed:96:
d9:5c:09:ce:dc:5c:89:e6:56:25:b7:c6:81:94:f6:7e:f0:5e:
1e:ee:1e:5d:2a:52:86:ce:10:79:da:41:49:65:34:f6:10:87:
6e:25:5a:d7:4f:e4:e9:4c:3c:55:81:57:a8:18:74:a2:47:c3:
22:10:00:23:54:e4:a8:72:8d:77:43:da:4f:f7:43:04:de:c9:
1c:e5:1a:bc:20:43:32:4e:96:86:84:21:83:7f:8b:da:d0:1b:
23:32:52:4e:88:f0:2a:e4:1b:65:e3:e0:36:84:02:ca:2f:50:
6a:bb:2d:7d:92:01:85:46:4e:2d:7f:06:3a:c9:8b:65:66:f0:
02:66:17:74:d4:a4:b9:81:b6:2e:07:7a:37:2d:de:bb:4a:cc:
d7:c8:e0:f8
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYRWnCVX5q+/PM3nQLjYQAAFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjIxMTA4MDkzOTQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjc1ZDRjZTc0Nzc4MTlkYjMwYzhkYWMzZDMxNmM4ZDMzOWU2MTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1q9lO7SBI8xdTvynO/lSNu1oKD/
LEgmx6YyDPL/x+6eUJL1DqW1TktZYRA6mFR1NcxZAc+zG9fK9UwPwkqXWOFpxrGZ
xOSXAMH6TScwcEK0ssptLZEffaQaAkC/pm5mO3PtfMu89aSCE3tZm2q67E3Gr6C5
lytz5r9WlWjrwv3+MgLllNuVLhF6nt4og1bBMI37T8vFcy3dfHJtDpTkOp27s1Ba
kRVDyZRIOSc+Lr3wWP8BIw71mhdB9ofEbf+gSzG4KtSLHTaAh48WPPGx7LUYobwG
RtYPK1XbY3T8jzAjn4Ds77EtUg1OQwa29+O8V7lt0WYIC94zXe69V0T4CwIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFMZ11M50d4GdswyNrD0xbI0znmGHMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEveG5YVXpuUjNnWjJ6REkyc1BURnNqVE9lWVljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwDAQCAAEwBgMEAMElizBk
BAIAAjBeAwcAKgyaQAAAAwcAKgyaQBACAwcAKgyaQBAKAwcAKgyaQBAMMBIDBwQq
DJpAEBADBwEqDJpAEBQwEgMHACoMmkAQFwMHASoMmkAQHAMHACoMmkAQIQMHACoM
mkAQIzANBgkqhkiG9w0BAQsFAAOCAQEAzQm/Jd55Hqh5y8EaMJyew1jW0sWNWQpL
rgo86dTu/2JnI83YkyHfhzbhk3cmKNTMh9yZKBq5Bea8liwQ1oyBSU1ZVsaMAJrn
m9QpoJ2M0HeBnTtA1gZsiUUsqL7dY2cMN6eihc6bvQ+wD+2W2VwJztxcieZWJbfG
gZT2fvBeHu4eXSpShs4QedpBSWU09hCHbiVa10/k6Uw8VYFXqBh0okfDIhAAI1Tk
qHKNd0PaT/dDBN7JHOUavCBDMk6WhoQhg3+L2tAbIzJSTojwKuQbZePgNoQCyi9Q
arstfZIBhUZOLX8GOsmLZWbwAmYXdNSkuYG2Lgd6Ny3eu0rM18jg+A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org