Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LoRTjMCTt-Re3HiW_i5IjQF2UBU.roa
File: LoRTjMCTt-Re3HiW_i5IjQF2UBU.roa (raw, json)
Hash identifier: ET7l2UT7Tt20smFjYD0bR97dpAusAqYgRH9NusJ7mVE=
Subject key identifier: 2E:84:53:8C:C0:93:B7:E4:5E:DC:78:96:FE:2E:48:8D:01:76:50:15
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0430A600
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LoRTjMCTt-Re3HiW_i5IjQF2UBU.roa
Signing time: Sat 01 Jan 2022 12:05:00 +0000
ROA not before: Sat 01 Jan 2022 12:05:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 193.233.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70297088 (0x430a600)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e84538cc093b7e45edc7896fe2e488d01765015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8e:cb:7e:41:23:ea:d4:e6:27:31:a4:17:17:
a3:37:fc:1a:ff:f7:6e:1f:06:8d:bf:b0:77:89:4d:
7a:ef:fe:6f:2d:13:d5:b5:5a:3c:47:c4:a2:d1:b7:
41:89:47:08:6c:6a:16:44:52:e8:5e:1c:6b:c1:2d:
0d:36:f0:30:c0:e3:3a:c2:10:62:2a:42:d3:f0:b5:
59:34:39:98:c3:3d:7a:ba:70:9c:07:39:68:8f:87:
3c:de:1a:c5:8b:df:8e:b0:ef:c6:38:67:d7:4b:28:
52:6f:56:cc:fc:b3:fe:7b:81:6c:38:14:b5:2b:79:
40:f6:76:5f:59:cb:1d:bb:db:da:31:42:3c:50:25:
5d:ab:7e:d8:76:db:af:85:5a:22:aa:9a:93:56:c2:
5e:b6:98:08:58:45:57:06:a9:e9:0d:8f:c8:e2:ab:
98:20:c7:6a:b5:40:8b:fd:74:5b:e2:c3:a7:67:5d:
36:fc:2a:71:27:b9:78:01:90:aa:4c:67:72:8f:cb:
35:5d:92:e3:b3:16:76:30:8f:f9:97:55:b9:65:4f:
de:23:43:63:2c:de:fd:e8:d2:e2:07:66:1d:d3:51:
77:87:d2:a7:f0:76:ba:dc:44:0e:7d:75:64:71:cf:
5d:c1:05:0d:7a:2d:69:80:52:98:7e:fa:73:df:de:
95:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:84:53:8C:C0:93:B7:E4:5E:DC:78:96:FE:2E:48:8D:01:76:50:15
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LoRTjMCTt-Re3HiW_i5IjQF2UBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.161.0/24
Signature Algorithm: sha256WithRSAEncryption
41:4b:e3:f2:ec:8b:4c:55:af:5c:19:b5:ec:54:57:f2:bc:c9:
fc:89:4b:89:e6:78:db:85:69:a1:c3:9e:db:3a:02:43:e7:00:
6c:ca:d5:0f:ea:11:d3:ed:87:91:9f:76:7b:93:5f:3f:a0:01:
56:14:e9:da:ec:2c:08:a0:27:b7:a8:c3:34:5f:74:a4:43:e5:
76:c6:8e:42:27:06:c7:8f:97:05:dd:05:e6:63:83:1c:b5:bb:
4d:83:8f:e4:55:2b:d8:83:ba:be:1f:60:be:ab:a9:06:e6:2c:
c6:f4:44:99:1b:bf:3b:69:bb:81:b4:c2:18:c9:86:b2:2f:72:
1a:a1:a3:7f:df:97:4d:fd:d0:6e:7d:49:73:b1:b3:01:33:ff:
62:21:90:7a:95:4c:dc:01:f8:f1:72:7e:2f:2e:3e:07:3c:46:
be:22:f2:18:40:1d:d1:b2:59:15:97:66:cb:f4:71:e4:1d:21:
39:75:20:1f:79:e2:e4:cf:58:70:3d:ac:0c:1e:f8:a1:de:97:
15:e8:b3:a9:7f:7e:88:85:ac:1c:4a:7f:85:c1:ca:1e:6b:8c:
dc:da:13:b7:9d:9a:1a:5d:34:31:55:80:52:e2:9c:da:93:54:
f6:ff:2f:e4:be:c2:a9:5f:c4:23:10:b8:9e:c8:e6:db:c5:6c:
e0:b7:ce:81
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDCmADANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDEw
MTEyMDUwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmU4NDUzOGNjMDkz
YjdlNDVlZGM3ODk2ZmUyZTQ4OGQwMTc2NTAxNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyOy35BI+rU5icxpBcXozf8Gv/3bh8Gjb+wd4lNeu/+by0T
1bVaPEfEotG3QYlHCGxqFkRS6F4ca8EtDTbwMMDjOsIQYipC0/C1WTQ5mMM9erpw
nAc5aI+HPN4axYvfjrDvxjhn10soUm9WzPyz/nuBbDgUtSt5QPZ2X1nLHbvb2jFC
PFAlXat+2Hbbr4VaIqqak1bCXraYCFhFVwap6Q2PyOKrmCDHarVAi/10W+LDp2dd
NvwqcSe5eAGQqkxnco/LNV2S47MWdjCP+ZdVuWVP3iNDYyze/ejS4gdmHdNRd4fS
p/B2utxEDn11ZHHPXcEFDXotaYBSmH76c9/elWcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQuhFOMwJO35F7ceJb+LkiNAXZQFTAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L0xvUlRqTUNUdC1SZTNIaVdfaTVJalFGMlVCVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHpoTANBgkqhkiG9w0BAQsFAAOC
AQEAQUvj8uyLTFWvXBm17FRX8rzJ/IlLieZ424VpocOe2zoCQ+cAbMrVD+oR0+2H
kZ92e5NfP6ABVhTp2uwsCKAnt6jDNF90pEPldsaOQicGx4+XBd0F5mODHLW7TYOP
5FUr2IO6vh9gvqupBuYsxvREmRu/O2m7gbTCGMmGsi9yGqGjf9+XTf3Qbn1Jc7Gz
ATP/YiGQepVM3AH48XJ+Ly4+BzxGviLyGEAd0bJZFZdmy/Rx5B0hOXUgH3ni5M9Y
cD2sDB74od6XFeizqX9+iIWsHEp/hcHKHmuM3NoTt52aGl00MVWAUuKc2pNU9v8v
5L7CqV/EIxC4nsjm28Vs4LfOgQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org