Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/J6k6f81tWB0I9lcfns3DrKiHwvE.roa
File: J6k6f81tWB0I9lcfns3DrKiHwvE.roa (raw, json)
Hash identifier: 2FgWwBYFaU8SRq7AztFphNdIOXb58qkjeY/NKeWIP4s=
Subject key identifier: 27:A9:3A:7F:CD:6D:58:1D:08:F6:57:1F:9E:CD:C3:AC:A8:87:C2:F1
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 084EE43D
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/J6k6f81tWB0I9lcfns3DrKiHwvE.roa
Signing time: Mon 24 Jan 2022 17:33:47 +0000
ROA not before: Mon 24 Jan 2022 17:33:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209493
IP address blocks: 193.109.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139387965 (0x84ee43d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 24 17:33:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27a93a7fcd6d581d08f6571f9ecdc3aca887c2f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:74:c1:2a:2c:85:8c:e1:07:76:ea:78:8a:1f:
52:09:ad:a5:56:d7:7d:f8:a9:51:6b:5f:05:1e:25:
ef:41:f5:1b:73:3d:c5:26:bd:22:c7:b6:b0:a5:2a:
54:c5:88:45:5d:b6:3f:62:0a:fa:18:3b:e0:3f:93:
e4:a2:db:d3:28:0c:82:b5:b6:31:89:90:22:ec:d7:
64:77:e7:09:de:14:bd:c2:ef:44:60:8e:f6:33:e6:
88:27:a8:c1:4a:9c:8b:1b:1b:62:b8:ba:b3:f9:36:
4f:10:67:93:51:61:f7:b1:7b:d0:7f:f6:bb:b3:14:
c5:14:13:7c:47:7a:ab:f4:0d:50:6c:e7:e0:a8:c7:
54:c6:e8:05:f8:ae:35:33:01:b6:04:d1:d0:72:6f:
0b:4e:f7:7c:da:73:8a:da:62:e2:f2:ad:2f:d1:31:
30:86:4b:47:b5:ff:8e:bf:7e:a0:71:59:20:33:8e:
90:9f:27:72:51:2e:bd:b7:f3:14:79:b2:a8:ac:26:
c6:a6:c9:12:b1:e8:9b:61:cc:4e:e8:c8:10:a2:d8:
9a:ea:14:1e:06:41:30:a4:73:25:bb:9d:87:51:32:
4a:a1:37:ee:d0:e5:17:75:32:cb:55:e5:3b:51:06:
77:2f:43:7b:88:b7:a8:31:dc:da:85:10:1c:88:36:
47:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A9:3A:7F:CD:6D:58:1D:08:F6:57:1F:9E:CD:C3:AC:A8:87:C2:F1
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/J6k6f81tWB0I9lcfns3DrKiHwvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.136.0/24
Signature Algorithm: sha256WithRSAEncryption
43:37:d6:44:05:fd:bb:f1:7c:b8:12:ac:c4:34:4d:f0:25:3d:
61:f0:54:9e:f2:46:48:07:ec:3b:3b:31:0d:86:4a:37:e3:f5:
c9:46:c3:01:7a:f9:71:67:0d:37:e6:f0:7a:a6:1f:1f:46:ca:
56:55:d0:7f:5e:59:b5:b6:27:96:5e:f2:50:4a:4d:19:4b:88:
6c:be:ef:f6:05:80:d5:7d:4e:99:d9:80:7f:49:6b:72:7d:38:
e6:49:32:de:09:11:c2:dd:c1:da:eb:50:88:66:a3:3a:95:1a:
cc:95:a0:12:54:e9:b3:7e:72:8d:8f:a0:3f:00:04:a7:d0:37:
90:0c:b6:d1:06:96:2f:4f:6f:7f:75:74:f3:f1:9c:7f:38:6e:
2d:69:da:6a:d7:c8:0e:3b:77:dd:4f:8c:7e:8a:4d:eb:17:51:
9b:4a:c8:e6:53:b0:94:18:e3:4b:da:82:b8:42:3f:7d:fc:fc:
cf:fd:6d:e1:de:e2:33:f6:24:5f:f9:ef:e1:fe:61:c1:9c:ee:
fd:f8:e2:ec:eb:c7:8e:4b:6a:4a:c8:2c:d6:8f:ee:27:5d:f4:
0f:e1:2a:f7:d1:c9:7b:8f:0c:27:dc:3c:4a:26:ed:db:b4:f3:
81:09:51:58:31:78:bc:c1:50:69:41:6a:a4:0c:be:a7:9c:5c:
1a:29:2d:f8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECE7kPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NTU3Y2NkNDNhZmU4MTZlNDk1MzIyOGJmMTRhNzVkYzI5MDE0YjhkMB4XDTIyMDEy
NDE3MzM0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjdhOTNhN2ZjZDZk
NTgxZDA4ZjY1NzFmOWVjZGMzYWNhODg3YzJmMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALx0wSoshYzhB3bqeIofUgmtpVbXffipUWtfBR4l70H1G3M9
xSa9Ise2sKUqVMWIRV22P2IK+hg74D+T5KLb0ygMgrW2MYmQIuzXZHfnCd4UvcLv
RGCO9jPmiCeowUqcixsbYri6s/k2TxBnk1Fh97F70H/2u7MUxRQTfEd6q/QNUGzn
4KjHVMboBfiuNTMBtgTR0HJvC073fNpzitpi4vKtL9ExMIZLR7X/jr9+oHFZIDOO
kJ8nclEuvbfzFHmyqKwmxqbJErHom2HMTujIEKLYmuoUHgZBMKRzJbudh1EySqE3
7tDlF3Uyy1XlO1EGdy9De4i3qDHc2oUQHIg2RzsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnqTp/zW1YHQj2Vx+ezcOsqIfC8TAfBgNVHSMEGDAWgBS1V8zUOv6BbklT
IovxSnXcKQFLjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RWZk0xRHItZ1c1SlV5S0w4VXAxM0NrQlM0MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGIvMTkwODQzLTE4MDMtNDQ2Mi1hNzk1LTZiYzc1NTc4YjRjMy8x
L0o2azZmODF0V0IwSTlsY2ZuczNEcktpSHd2RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGIv
MTkwODQzLTE4MDMtNDQ2Mi1hNzk1LTZiYzc1NTc4YjRjMy8xL3RWZk0xRHItZ1c1
SlV5S0w4VXAxM0NrQlM0MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFtiDANBgkqhkiG9w0BAQsFAAOC
AQEAQzfWRAX9u/F8uBKsxDRN8CU9YfBUnvJGSAfsOzsxDYZKN+P1yUbDAXr5cWcN
N+bweqYfH0bKVlXQf15ZtbYnll7yUEpNGUuIbL7v9gWA1X1OmdmAf0lrcn045kky
3gkRwt3B2utQiGajOpUazJWgElTps35yjY+gPwAEp9A3kAy20QaWL09vf3V08/Gc
fzhuLWnaatfIDjt33U+MfopN6xdRm0rI5lOwlBjjS9qCuEI/ffz8z/1t4d7iM/Yk
X/nv4f5hwZzu/fji7OvHjktqSsgs1o/uJ130D+Eq99HJe48MJ9w8Sibt27TzgQlR
WDF4vMFQaUFqpAy+p5xcGikt+A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org