Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/YRsxWy5ykW48rVOsYiiHJy6Dcyw.roa
File: YRsxWy5ykW48rVOsYiiHJy6Dcyw.roa (raw, json)
Hash identifier: cxrCzdg5W4ay+03QRmIC6Osy6FtsQqt3zJSETFoo1fY=
Subject key identifier: 61:1B:31:5B:2E:72:91:6E:3C:AD:53:AC:62:28:87:27:2E:83:73:2C
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04D21601
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/YRsxWy5ykW48rVOsYiiHJy6Dcyw.roa
Signing time: Tue 22 Feb 2022 18:16:32 +0000
ROA not before: Tue 22 Feb 2022 18:16:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 193.233.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80877057 (0x4d21601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 22 18:16:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=611b315b2e72916e3cad53ac622887272e83732c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e6:e7:22:f6:7d:27:e8:68:23:1f:08:c9:33:
73:cb:59:3a:aa:01:6d:75:88:8b:94:92:40:a3:fd:
89:02:d1:95:b9:b5:09:bf:54:41:fa:63:4f:a8:58:
e0:da:47:a6:61:2e:e5:1e:cc:67:c7:50:26:a9:e2:
bd:94:e2:44:8c:ee:3b:d6:a3:f7:99:e8:7e:f8:af:
43:20:57:67:26:13:bc:54:2b:62:81:64:43:71:af:
b8:85:29:59:9e:af:f0:5b:59:fd:46:c5:9d:02:1e:
2e:8e:19:c0:5d:cf:76:a4:8b:b2:be:49:d7:20:34:
8e:9f:71:9d:b6:07:e0:56:76:55:16:36:98:bf:3b:
cb:59:df:e5:15:e2:77:f8:49:0e:3b:8c:1c:26:42:
45:c8:8c:6e:50:9b:bb:dd:f7:dc:63:78:f1:87:9f:
54:10:e7:ff:c5:3f:84:29:93:6e:9e:f1:64:80:ce:
9a:e1:8e:dd:ff:52:73:e9:4b:97:0b:0e:bb:07:ee:
9a:67:f0:94:14:86:5c:07:ed:24:e4:94:e2:a9:88:
45:d3:55:08:04:1c:f1:75:88:ab:cd:94:5a:f0:35:
2f:bc:7a:64:2a:6a:a2:2e:7a:8b:26:41:46:bd:2d:
d2:ee:5c:10:66:32:fa:6b:f9:b8:91:46:8f:c8:f0:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1B:31:5B:2E:72:91:6E:3C:AD:53:AC:62:28:87:27:2E:83:73:2C
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/YRsxWy5ykW48rVOsYiiHJy6Dcyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.100.0/22
Signature Algorithm: sha256WithRSAEncryption
43:2d:3d:d7:6a:97:6f:d2:f3:81:10:a7:e4:0d:bf:9c:40:dc:
ba:03:87:83:05:29:74:05:f4:f6:98:3c:36:2a:2d:f1:61:d7:
98:0c:70:d8:27:e5:d3:12:44:f9:4f:e9:fe:db:47:d2:56:73:
9a:ab:58:ad:c8:01:5d:92:43:13:c5:4c:ec:05:2b:5f:ac:51:
f2:fc:fc:3a:60:c2:2c:be:39:6c:8e:17:34:47:7f:2c:97:2c:
d6:50:f8:97:8b:cc:80:92:a8:a8:0c:dd:37:4a:14:82:7e:17:
a9:19:95:6b:07:d5:1d:7d:87:5f:98:55:9b:c1:ee:0e:8f:37:
c4:cb:3b:5c:6d:e9:01:43:2a:87:23:07:a3:1c:15:6e:c0:d0:
ad:bb:8f:33:4c:e0:80:7d:8e:dc:db:8f:99:fc:5e:a8:1a:63:
a4:fa:1e:ef:9f:e1:3d:7b:af:7c:96:cf:75:a4:71:41:5e:ba:
88:49:bb:86:e1:3f:65:3d:b0:f1:cc:04:7f:e5:9b:1a:42:98:
87:22:d3:fe:44:1e:81:49:48:28:39:17:51:0c:17:45:59:6a:
63:2e:9a:0b:a7:34:9f:93:78:84:f9:5f:77:03:49:cc:c4:84:
ee:11:1b:d4:bc:53:2f:51:81:da:8d:63:0e:87:fd:97:bf:0a:
42:84:68:d5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBNIWATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDIy
MjE4MTYzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjExYjMxNWIyZTcy
OTE2ZTNjYWQ1M2FjNjIyODg3MjcyZTgzNzMyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJXm5yL2fSfoaCMfCMkzc8tZOqoBbXWIi5SSQKP9iQLRlbm1
Cb9UQfpjT6hY4NpHpmEu5R7MZ8dQJqnivZTiRIzuO9aj95nofvivQyBXZyYTvFQr
YoFkQ3GvuIUpWZ6v8FtZ/UbFnQIeLo4ZwF3PdqSLsr5J1yA0jp9xnbYH4FZ2VRY2
mL87y1nf5RXid/hJDjuMHCZCRciMblCbu9333GN48YefVBDn/8U/hCmTbp7xZIDO
muGO3f9Sc+lLlwsOuwfummfwlBSGXAftJOSU4qmIRdNVCAQc8XWIq82UWvA1L7x6
ZCpqoi56iyZBRr0t0u5cEGYy+mv5uJFGj8jwkecCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRhGzFbLnKRbjytU6xiKIcnLoNzLDAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L1lSc3hXeTV5a1c0OHJWT3NZaWlISnk2RGN5dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsHpZDANBgkqhkiG9w0BAQsFAAOC
AQEAQy0912qXb9LzgRCn5A2/nEDcugOHgwUpdAX09pg8Niot8WHXmAxw2Cfl0xJE
+U/p/ttH0lZzmqtYrcgBXZJDE8VM7AUrX6xR8vz8OmDCLL45bI4XNEd/LJcs1lD4
l4vMgJKoqAzdN0oUgn4XqRmVawfVHX2HX5hVm8HuDo83xMs7XG3pAUMqhyMHoxwV
bsDQrbuPM0zggH2O3NuPmfxeqBpjpPoe75/hPXuvfJbPdaRxQV66iEm7huE/ZT2w
8cwEf+WbGkKYhyLT/kQegUlIKDkXUQwXRVlqYy6aC6c0n5N4hPlfdwNJzMSE7hEb
1LxTL1GB2o1jDof9l78KQoRo1Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org