Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MyGXrXg8J4iye_garJwlyLMLxrM.roa
File: MyGXrXg8J4iye_garJwlyLMLxrM.roa (raw, json)
Hash identifier: Uk0kGLeRRI5ni0R2wVX5WatMMcFbvA4y/eFxfw5Uxbc=
Subject key identifier: 33:21:97:AD:78:3C:27:88:B2:7B:F8:1A:AC:9C:25:C8:B3:0B:C6:B3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018220B58BC7035514E9A891DE60BFDC0072
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MyGXrXg8J4iye_garJwlyLMLxrM.roa
Signing time: Thu 21 Jul 2022 12:22:24 +0000
ROA not before: Thu 21 Jul 2022 12:22:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 193.35.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:b5:8b:c7:03:55:14:e9:a8:91:de:60:bf:dc:00:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 21 12:22:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=332197ad783c2788b27bf81aac9c25c8b30bc6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7f:13:b9:33:46:64:e8:30:ab:ae:25:39:a3:
0d:b7:d2:b5:d8:4c:25:9a:3d:59:30:4c:28:8e:b3:
cd:bf:a1:20:c9:f9:9a:75:55:2c:ce:ec:f9:9e:82:
59:00:dc:82:4b:37:5f:23:d2:ad:f5:ed:8b:b8:4e:
70:81:d2:b0:a4:8f:82:bf:00:59:e8:98:e0:61:49:
cc:97:e8:f7:14:5f:93:5e:1c:53:37:75:de:0d:1f:
6e:86:69:a2:83:c8:ab:1c:45:d6:23:a1:56:03:f4:
bc:c8:8c:8c:24:7d:18:68:53:2e:55:92:31:b5:57:
4e:57:87:8a:97:66:8f:46:2a:d9:41:45:7b:d2:04:
8c:15:fe:49:49:64:f9:38:e6:0c:45:85:2e:0b:8a:
40:56:1f:d4:ee:f0:71:79:9a:92:b4:3f:a2:4d:83:
d2:c9:bd:40:a5:38:bb:42:31:c4:71:31:a8:17:e7:
1f:df:b5:23:f0:cf:2d:a7:96:bd:7b:b7:24:95:da:
a8:7c:c7:80:5d:ee:b2:e0:ad:c3:c4:84:4a:8f:3a:
90:75:ab:a3:cd:21:ae:b4:3e:15:94:68:2f:d9:a0:
f5:fe:a4:66:77:1d:9e:cf:a2:81:2b:ee:25:eb:ff:
f7:a9:3a:c6:c8:32:af:d2:8e:df:34:ea:ce:eb:4e:
2c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:21:97:AD:78:3C:27:88:B2:7B:F8:1A:AC:9C:25:C8:B3:0B:C6:B3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MyGXrXg8J4iye_garJwlyLMLxrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.16.0/23
Signature Algorithm: sha256WithRSAEncryption
18:d5:9a:e6:57:a7:57:93:2d:3e:28:b0:6e:18:72:e5:4e:ce:
aa:4b:b9:f3:7f:87:77:60:06:3c:e1:9c:3f:ab:55:eb:e5:71:
46:af:98:47:a4:98:15:fc:c3:7c:e6:81:28:36:6e:eb:16:77:
e7:33:33:1b:f9:96:90:ca:9e:01:6d:d4:8b:ab:9c:48:54:23:
83:e4:7e:f7:2d:63:46:69:92:21:fa:67:31:75:11:3c:c5:be:
69:42:1e:80:f5:2b:56:e8:ff:4d:24:4b:43:a5:57:5a:32:97:
f7:07:73:58:08:73:61:d5:73:a5:13:52:8f:b1:4e:75:2d:0b:
3d:68:f5:d7:f3:66:05:a1:6a:c3:c8:ae:c9:e0:8e:e9:5a:cb:
8c:cd:9d:d3:76:51:59:f3:9c:30:27:e0:e7:c9:dc:ce:31:d3:
ed:ed:99:3f:f8:c3:1b:42:c2:75:06:0a:69:f6:11:d3:f1:68:
59:21:86:dd:3e:80:7a:75:03:74:ad:1b:90:4a:72:fe:b6:ef:
74:2a:42:0e:55:49:5c:65:4b:8e:fe:b6:a7:f1:9a:b1:74:6a:
f5:2c:b1:fb:87:b9:ca:fa:15:8e:d8:61:58:7b:ff:9d:6e:c4:
a7:6a:f0:39:dd:85:d2:98:9f:92:37:bc:ae:6b:e5:51:5d:ee:
8b:0c:67:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIgtYvHA1UU6aiR3mC/3AByMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIwNzIxMTIyMjI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzIxOTdhZDc4M2MyNzg4YjI3YmY4MWFhYzljMjVjOGIzMGJjNmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkH8TuTNGZOgwq64lOaMNt9K12Ewl
mj1ZMEwojrPNv6EgyfmadVUszuz5noJZANyCSzdfI9Kt9e2LuE5wgdKwpI+CvwBZ
6JjgYUnMl+j3FF+TXhxTN3XeDR9uhmmig8irHEXWI6FWA/S8yIyMJH0YaFMuVZIx
tVdOV4eKl2aPRirZQUV70gSMFf5JSWT5OOYMRYUuC4pAVh/U7vBxeZqStD+iTYPS
yb1ApTi7QjHEcTGoF+cf37Uj8M8tp5a9e7ckldqofMeAXe6y4K3DxIRKjzqQdauj
zSGutD4VlGgv2aD1/qRmdx2ez6KBK+4l6//3qTrGyDKv0o7fNOrO604slQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDMhl614PCeIsnv4GqycJcizC8azMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvTXlHWHJYZzhKNGl5ZV9nYXJKd2x5TE1MeHJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSMQMA0G
CSqGSIb3DQEBCwUAA4IBAQAY1ZrmV6dXky0+KLBuGHLlTs6qS7nzf4d3YAY84Zw/
q1Xr5XFGr5hHpJgV/MN85oEoNm7rFnfnMzMb+ZaQyp4BbdSLq5xIVCOD5H73LWNG
aZIh+mcxdRE8xb5pQh6A9StW6P9NJEtDpVdaMpf3B3NYCHNh1XOlE1KPsU51LQs9
aPXX82YFoWrDyK7J4I7pWsuMzZ3TdlFZ85wwJ+DnydzOMdPt7Zk/+MMbQsJ1Bgpp
9hHT8WhZIYbdPoB6dQN0rRuQSnL+tu90KkIOVUlcZUuO/ran8ZqxdGr1LLH7h7nK
+hWO2GFYe/+dbsSnavA53YXSmJ+SN7yua+VRXe6LDGfF
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:31 2024 by rpki-client on console-ams.rpki-client.org