Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/MdTKxTzXjDDHB_Buhke5uQ_4IV0.roa
File: MdTKxTzXjDDHB_Buhke5uQ_4IV0.roa (raw, json)
Hash identifier: lgUwrgCuut+KWw8IVZuopYP8HvLYpdb9Gbw6JcHtMIM=
Subject key identifier: 31:D4:CA:C5:3C:D7:8C:30:C7:07:F0:6E:86:47:B9:B9:0F:F8:21:5D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 05B87588
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/MdTKxTzXjDDHB_Buhke5uQ_4IV0.roa
Signing time: Fri 27 May 2022 09:27:56 +0000
ROA not before: Fri 27 May 2022 09:27:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207967
IP address blocks: 193.233.112.0/22 maxlen: 22
193.233.108.0/22 maxlen: 22
193.233.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95974792 (0x5b87588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: May 27 09:27:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31d4cac53cd78c30c707f06e8647b9b90ff8215d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:11:f7:d1:2f:51:44:5a:4e:71:6b:29:d4:b0:
82:f6:4c:d4:8a:6b:69:e7:b5:13:59:f7:a1:a5:d5:
a3:ec:91:2b:0c:3d:ab:4f:20:09:15:36:7b:be:d8:
ab:16:9f:ee:94:95:1e:e2:45:7a:20:f4:76:83:cd:
82:3e:dc:86:8f:e0:38:74:49:f3:7f:78:2a:22:70:
6c:33:f8:b6:37:5a:63:6d:aa:3c:a2:ad:19:02:4a:
c4:d7:38:28:e4:d9:c0:3e:cb:b6:e0:44:71:93:e6:
1e:65:3e:4c:34:7d:c1:9b:d1:be:96:7d:9d:3c:d8:
4c:fe:dd:8c:17:04:63:13:2d:f3:63:67:dc:97:60:
04:a5:4d:e4:eb:94:3e:09:56:b3:69:b5:b9:af:c7:
34:8d:14:20:f9:ed:54:e7:23:2d:36:24:43:fd:69:
d4:68:e7:02:a1:ff:a8:62:26:5c:9a:ed:f2:aa:fb:
a8:69:97:78:1c:47:1e:f8:37:11:79:9c:ef:62:21:
92:9f:a9:6f:df:e2:e1:bc:2a:30:e9:5d:6b:09:67:
a0:1c:32:46:fa:dd:b4:cc:eb:ae:ec:86:d6:b6:93:
29:c4:91:3c:1e:a1:8a:1d:ad:27:62:c8:f5:1f:d9:
c7:a5:c2:40:70:73:81:03:5b:9c:04:54:2f:84:23:
89:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:D4:CA:C5:3C:D7:8C:30:C7:07:F0:6E:86:47:B9:B9:0F:F8:21:5D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/MdTKxTzXjDDHB_Buhke5uQ_4IV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.108.0-193.233.119.255
Signature Algorithm: sha256WithRSAEncryption
36:91:dd:7f:6a:f3:75:e6:fa:c6:c0:99:a9:60:c0:51:e4:55:
b0:bf:b9:e4:e7:b8:55:fb:ed:e6:fe:c5:2c:d1:a4:a3:53:62:
30:de:db:b7:13:91:eb:83:1b:b8:40:b1:20:22:f5:ca:73:aa:
1d:d4:94:73:a4:e2:e4:08:92:26:52:b3:0c:f5:61:ae:b0:21:
cd:8c:3a:86:5c:39:23:9d:17:0c:56:ed:e8:63:b9:68:ec:c9:
b2:53:ef:f5:69:25:71:f0:0e:56:b1:ca:93:8a:2e:12:84:34:
d0:d9:c2:c1:02:21:5f:1f:38:49:de:23:7e:e4:1e:a2:21:d4:
a1:55:ef:f0:ce:ee:1e:5f:7b:e6:95:3e:3a:92:a2:e6:8d:aa:
d6:ff:58:3c:4e:be:f1:1c:79:40:46:bd:2b:c9:f6:f2:ed:bd:
c3:fb:53:f0:91:f5:b5:d1:d0:d2:cc:4f:9a:79:c1:9a:5b:ac:
bf:fc:a7:a1:17:55:7a:62:66:d0:84:61:1d:43:7c:25:24:cb:
6a:86:f0:80:e2:c4:34:a1:1a:a1:49:bf:1d:04:61:d0:0c:33:
3d:bb:80:0d:66:72:1d:75:b7:c9:8e:84:f1:f9:38:93:a4:5b:
fb:fe:be:fb:6d:71:f2:cd:f2:a5:8e:eb:61:c4:e0:fb:f3:b8:
8a:99:2c:c8
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBbh1iDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDUy
NzA5Mjc1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzFkNGNhYzUzY2Q3
OGMzMGM3MDdmMDZlODY0N2I5YjkwZmY4MjE1ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIcR99EvUURaTnFrKdSwgvZM1Ipraee1E1n3oaXVo+yRKww9
q08gCRU2e77Yqxaf7pSVHuJFeiD0doPNgj7cho/gOHRJ8394KiJwbDP4tjdaY22q
PKKtGQJKxNc4KOTZwD7LtuBEcZPmHmU+TDR9wZvRvpZ9nTzYTP7djBcEYxMt82Nn
3JdgBKVN5OuUPglWs2m1ua/HNI0UIPntVOcjLTYkQ/1p1GjnAqH/qGImXJrt8qr7
qGmXeBxHHvg3EXmc72Ihkp+pb9/i4bwqMOldawlnoBwyRvrdtMzrruyG1raTKcSR
PB6hih2tJ2LI9R/Zx6XCQHBzgQNbnARUL4QjiQECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQx1MrFPNeMMMcH8G6GR7m5D/ghXTAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L01kVEt4VHpYakRESEJfQnVoa2U1dVFfNElWMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQCwelsAwQDwelwMA0GCSqGSIb3
DQEBCwUAA4IBAQA2kd1/avN15vrGwJmpYMBR5FWwv7nk57hV++3m/sUs0aSjU2Iw
3tu3E5Hrgxu4QLEgIvXKc6od1JRzpOLkCJImUrMM9WGusCHNjDqGXDkjnRcMVu3o
Y7lo7MmyU+/1aSVx8A5WscqTii4ShDTQ2cLBAiFfHzhJ3iN+5B6iIdShVe/wzu4e
X3vmlT46kqLmjarW/1g8Tr7xHHlARr0ryfby7b3D+1PwkfW10dDSzE+aecGaW6y/
/KehF1V6YmbQhGEdQ3wlJMtqhvCA4sQ0oRqhSb8dBGHQDDM9u4ANZnIddbfJjoTx
+TiTpFv7/r77bXHyzfKljuthxOD787iKmSzI
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org