Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RTd7WVUw3nhLSmRwZkAvhcUt1Cw.roa
File: RTd7WVUw3nhLSmRwZkAvhcUt1Cw.roa (raw, json)
Hash identifier: NehrHnX1hLeN562bY1mhNfvXboEsWjaG2YJ3th9zIAE=
Subject key identifier: 45:37:7B:59:55:30:DE:78:4B:4A:64:70:66:40:2F:85:C5:2D:D4:2C
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01854076702EBB27D5C15B9A50BB580D8C67
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RTd7WVUw3nhLSmRwZkAvhcUt1Cw.roa
Signing time: Fri 23 Dec 2022 19:29:41 +0000
ROA not before: Fri 23 Dec 2022 19:29:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47531
IP address blocks: 193.233.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:40:76:70:2e:bb:27:d5:c1:5b:9a:50:bb:58:0d:8c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 23 19:29:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45377b595530de784b4a647066402f85c52dd42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:53:f3:e2:26:3c:9f:c4:3c:0a:77:04:a2:8d:
b9:58:15:6b:58:43:46:6f:c6:83:0f:09:05:eb:60:
08:67:ed:66:91:9a:42:3f:ba:99:66:56:52:3d:92:
0e:28:48:dc:16:e4:ea:31:99:f8:76:83:16:3b:97:
ff:ab:17:2d:3b:5d:92:a5:8a:03:c9:ec:96:28:3d:
02:08:32:c5:88:c9:b5:6f:8f:c8:1b:23:cb:4d:54:
f2:d7:76:87:7e:85:31:82:4f:27:1a:c9:3d:e4:e8:
64:72:09:14:f8:fb:20:c2:6a:58:ba:25:63:35:10:
c5:55:63:fd:98:a1:b9:1b:48:38:cb:d1:8f:b9:f1:
28:75:04:ed:0b:bd:b0:3c:ca:22:30:a2:f7:51:8a:
81:d8:c3:d0:85:f4:e5:e9:4d:79:54:f4:19:a1:b2:
ab:69:14:8d:ab:b1:7a:ed:27:ad:8f:9f:74:c1:d3:
82:43:6d:a1:78:ad:e0:31:2a:f0:0e:3f:1d:5d:a4:
19:d0:6b:e7:96:cb:93:58:b8:c2:04:30:72:b9:0d:
2b:5d:8e:c2:ff:2a:af:9a:ee:a5:01:d7:9c:8d:0f:
ca:b4:93:67:6e:cc:9d:7e:42:b9:32:be:f9:91:d3:
a9:5f:9b:de:e1:d3:de:7c:fb:a8:45:37:6d:1f:f0:
44:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:37:7B:59:55:30:DE:78:4B:4A:64:70:66:40:2F:85:C5:2D:D4:2C
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RTd7WVUw3nhLSmRwZkAvhcUt1Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.96.0/22
Signature Algorithm: sha256WithRSAEncryption
45:86:16:25:a4:b4:85:ce:4d:f7:6e:48:73:7f:fa:e1:0c:55:
8d:31:5f:02:84:e9:54:ad:80:53:c9:0f:c5:2a:31:1c:6d:4d:
0f:ba:eb:bc:42:e3:c0:37:4a:52:f5:75:0a:db:59:2b:72:e2:
e9:6c:f5:c6:1d:79:68:96:c3:98:07:fd:fb:45:d8:4b:05:f7:
4f:a4:13:e4:06:bd:a9:7a:02:5b:01:bd:a3:62:ac:23:f0:db:
c7:5f:be:36:69:21:56:2f:78:cc:df:fa:0c:28:5b:33:d2:3a:
53:da:be:80:1a:22:06:ac:ae:6a:0b:bd:2f:0a:b3:88:2f:84:
9b:13:04:44:66:e6:e0:80:ae:26:33:1b:7d:a7:6e:21:d5:07:
92:31:2c:ff:bf:50:f0:f8:c6:3b:0b:dc:7d:c9:4a:6f:1e:52:
b6:eb:d1:92:13:e0:74:85:2e:d6:5f:d6:4b:d8:91:b8:2a:64:
e6:7a:7c:69:93:be:46:0c:df:3a:a1:53:47:13:7e:61:f1:e6:
d3:39:dc:36:bc:77:ba:86:d2:48:e6:33:f2:8d:c5:aa:14:79:
80:72:f9:0d:da:08:a1:59:0a:6c:0f:91:b1:a1:62:ed:69:6c:
67:34:e7:02:3f:82:28:33:4b:c6:cf:f7:4f:8e:d1:73:49:ea:
7c:02:2a:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVAdnAuuyfVwVuaULtYDYxnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjIxMjIzMTkyOTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTM3N2I1OTU1MzBkZTc4NGI0YTY0NzA2NjQwMmY4NWM1MmRkNDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/FPz4iY8n8Q8CncEoo25WBVrWENG
b8aDDwkF62AIZ+1mkZpCP7qZZlZSPZIOKEjcFuTqMZn4doMWO5f/qxctO12SpYoD
yeyWKD0CCDLFiMm1b4/IGyPLTVTy13aHfoUxgk8nGsk95OhkcgkU+PsgwmpYuiVj
NRDFVWP9mKG5G0g4y9GPufEodQTtC72wPMoiMKL3UYqB2MPQhfTl6U15VPQZobKr
aRSNq7F67Setj590wdOCQ22heK3gMSrwDj8dXaQZ0GvnlsuTWLjCBDByuQ0rXY7C
/yqvmu6lAdecjQ/KtJNnbsydfkK5Mr75kdOpX5ve4dPefPuoRTdtH/BEgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEU3e1lVMN54S0pkcGZAL4XFLdQsMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvUlRkN1dWVXczbmhMU21Sd1prQXZoY1V0MUN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwelgMA0G
CSqGSIb3DQEBCwUAA4IBAQBFhhYlpLSFzk33bkhzf/rhDFWNMV8ChOlUrYBTyQ/F
KjEcbU0Puuu8QuPAN0pS9XUK21krcuLpbPXGHXlolsOYB/37RdhLBfdPpBPkBr2p
egJbAb2jYqwj8NvHX742aSFWL3jM3/oMKFsz0jpT2r6AGiIGrK5qC70vCrOIL4Sb
EwREZubggK4mMxt9p24h1QeSMSz/v1Dw+MY7C9x9yUpvHlK269GSE+B0hS7WX9ZL
2JG4KmTmenxpk75GDN86oVNHE35h8ebTOdw2vHe6htJI5jPyjcWqFHmAcvkN2gih
WQpsD5GxoWLtaWxnNOcCP4IoM0vGz/dPjtFzSep8AiqT
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org