Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/aSFQM_YHsArDBDgg0tbz7Bi04xI.roa
File: aSFQM_YHsArDBDgg0tbz7Bi04xI.roa (raw, json)
Hash identifier: Nl4wSmu2LSpGVsfqiehdeUZnLQdO9I9XNk2kEveBttE=
Subject key identifier: 69:21:50:33:F6:07:B0:0A:C3:04:38:20:D2:D6:F3:EC:18:B4:E3:12
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0472903D
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/aSFQM_YHsArDBDgg0tbz7Bi04xI.roa
Signing time: Wed 19 Jan 2022 23:30:05 +0000
ROA not before: Wed 19 Jan 2022 23:30:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213332
IP address blocks: 193.233.164.0/24 maxlen: 24
193.233.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74616893 (0x472903d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 19 23:30:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69215033f607b00ac3043820d2d6f3ec18b4e312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:28:7d:82:72:e1:82:5c:e3:07:f4:ec:ca:
9d:8a:f6:ac:c0:24:73:c4:f8:2a:42:22:8a:08:32:
a9:b3:46:97:c2:97:a2:02:b9:1c:bc:c6:49:fc:bf:
ba:1b:f2:69:14:2d:2c:54:b6:f3:f2:41:38:1f:68:
13:72:a8:b3:05:1b:04:19:be:a1:f0:20:f9:53:9c:
0b:24:e5:ee:0b:10:04:20:90:8d:7c:33:4d:16:40:
99:36:88:ba:ed:a9:b8:13:50:a9:4b:ff:88:47:92:
2a:f7:2d:8e:d1:77:79:42:d2:74:78:a7:62:18:1e:
9d:2c:7f:70:ea:dd:a6:92:82:62:08:b4:7c:2c:71:
f1:e2:8b:5e:a0:67:66:a1:e8:75:0c:a9:29:c3:82:
16:6b:f7:63:fb:a4:2d:4b:be:56:10:44:08:69:15:
54:0f:d3:1e:c0:66:c7:b8:11:19:3e:ce:02:cf:44:
bb:c4:ff:56:8c:a2:ba:33:b6:90:b1:48:6a:5c:ba:
67:5c:0b:2f:0c:fd:73:69:46:1a:2d:87:e4:67:52:
b1:51:20:05:b0:03:2e:34:f1:89:af:73:ae:e1:4f:
d6:aa:7b:b5:df:e4:07:cf:a0:0c:ac:7c:90:5a:8c:
e3:94:7e:0d:e4:5b:e7:15:ac:fd:a5:e1:6c:9e:cb:
08:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:21:50:33:F6:07:B0:0A:C3:04:38:20:D2:D6:F3:EC:18:B4:E3:12
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/aSFQM_YHsArDBDgg0tbz7Bi04xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.163.0-193.233.164.255
Signature Algorithm: sha256WithRSAEncryption
20:4a:01:d1:f7:19:34:2e:2d:69:ac:fa:bb:1e:22:79:11:ca:
25:95:db:4f:b2:42:46:63:d8:03:15:e4:5b:19:64:4f:f9:8a:
45:85:99:b4:bc:fe:fe:73:b5:74:4e:e5:5a:4c:2e:17:68:fb:
8b:55:92:71:43:41:97:03:f1:e8:f4:b1:04:f1:01:87:45:4f:
77:da:44:7b:d4:d0:01:28:d4:58:f3:44:37:c1:3e:99:45:b7:
cc:f8:0a:75:b8:38:dd:d4:7c:52:54:5a:87:db:6d:a5:26:0f:
58:07:70:ee:ce:93:ef:8a:af:51:c8:8d:d1:68:fe:ad:bc:c3:
5e:80:05:d7:f8:56:49:35:69:65:46:ab:53:48:f7:92:6f:37:
08:b4:1d:99:1c:cf:09:ef:0a:f2:54:79:e2:28:a4:58:ed:05:
55:2d:96:88:0d:a4:b8:12:43:e5:49:05:b2:37:c9:61:81:b0:
41:09:6e:d2:01:43:d2:27:26:0a:db:db:9a:c1:e2:e0:11:f7:
63:15:ba:61:25:b4:cd:24:0f:71:5a:b5:d5:71:a7:6b:d6:74:
09:17:cd:3f:b3:b7:37:8e:0f:3a:05:bd:b4:0f:79:3b:e5:cc:
90:23:74:48:7c:84:73:1a:cb:8f:b2:6c:ab:e9:db:96:2d:23:
e2:6f:18:1d
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBHKQPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDEx
OTIzMzAwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjkyMTUwMzNmNjA3
YjAwYWMzMDQzODIwZDJkNmYzZWMxOGI0ZTMxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjDKH2CcuGCXOMH9OzKnYr2rMAkc8T4KkIiiggyqbNGl8KX
ogK5HLzGSfy/uhvyaRQtLFS28/JBOB9oE3KoswUbBBm+ofAg+VOcCyTl7gsQBCCQ
jXwzTRZAmTaIuu2puBNQqUv/iEeSKvctjtF3eULSdHinYhgenSx/cOrdppKCYgi0
fCxx8eKLXqBnZqHodQypKcOCFmv3Y/ukLUu+VhBECGkVVA/THsBmx7gRGT7OAs9E
u8T/VoyiujO2kLFIaly6Z1wLLwz9c2lGGi2H5GdSsVEgBbADLjTxia9zruFP1qp7
td/kB8+gDKx8kFqM45R+DeRb5xWs/aXhbJ7LCNMCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBRpIVAz9gewCsMEOCDS1vPsGLTjEjAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L2FTRlFNX1lIc0FyREJEZ2cwdGJ6N0JpMDR4SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAwemjAwQAwemkMA0GCSqGSIb3
DQEBCwUAA4IBAQAgSgHR9xk0Li1prPq7HiJ5EcolldtPskJGY9gDFeRbGWRP+YpF
hZm0vP7+c7V0TuVaTC4XaPuLVZJxQ0GXA/Ho9LEE8QGHRU932kR71NABKNRY80Q3
wT6ZRbfM+Ap1uDjd1HxSVFqH222lJg9YB3DuzpPviq9RyI3RaP6tvMNegAXX+FZJ
NWllRqtTSPeSbzcItB2ZHM8J7wryVHniKKRY7QVVLZaIDaS4EkPlSQWyN8lhgbBB
CW7SAUPSJyYK29uaweLgEfdjFbphJbTNJA9xWrXVcadr1nQJF80/s7c3jg86Bb20
D3k75cyQI3RIfIRzGsuPsmyr6duWLSPibxgd
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-ams.rpki-client.org