Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/bz9qRXw9rEpHZK9wwdxWLiptBnE.roa
File: bz9qRXw9rEpHZK9wwdxWLiptBnE.roa (raw, json)
Hash identifier: Svk9KDp4Ao8zPvH2siBPty1XJ7CZXq9EDo8eMz3vhWQ=
Subject key identifier: 6F:3F:6A:45:7C:3D:AC:4A:47:64:AF:70:C1:DC:56:2E:2A:6D:06:71
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018540766FAC10072692B90AAC23314A4BCC
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/bz9qRXw9rEpHZK9wwdxWLiptBnE.roa
Signing time: Fri 23 Dec 2022 19:29:41 +0000
ROA not before: Fri 23 Dec 2022 19:29:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39770
IP address blocks: 193.233.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:40:76:6f:ac:10:07:26:92:b9:0a:ac:23:31:4a:4b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 23 19:29:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f3f6a457c3dac4a4764af70c1dc562e2a6d0671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:30:e3:bf:00:1c:79:7e:44:5f:af:51:4b:71:
db:fe:30:9a:8a:a4:36:9d:a5:08:4c:ff:4f:e2:49:
80:81:24:73:c5:af:ca:60:fb:8e:83:81:dd:93:bb:
1a:13:91:ac:c3:c1:83:76:f1:21:b4:70:6a:23:74:
65:fc:98:37:26:05:e8:de:a9:95:60:c2:7a:74:48:
f2:c3:4e:e8:4f:f1:90:9b:73:45:fd:99:ce:8a:f9:
58:8b:fd:c9:2c:0b:44:f8:6a:83:07:08:10:02:52:
9c:c9:e4:5e:79:28:06:06:68:5c:07:b1:09:a1:34:
92:68:0f:3a:4f:df:a8:a9:30:db:e3:9e:f0:03:e9:
ec:18:0c:4b:ab:78:f6:35:a6:d6:48:fe:40:98:51:
94:e2:8c:33:da:07:3b:bf:f7:6a:e0:e4:e3:0c:82:
ae:5a:49:b2:22:27:8f:3c:23:4e:2c:1d:94:4f:7e:
bd:b7:e2:29:7c:90:fc:1b:9d:ed:10:15:c0:a1:cb:
36:ce:c3:50:6d:8e:6d:f9:8d:0f:2b:c4:b5:17:74:
9e:fd:46:8c:4d:40:4a:af:2d:fe:76:c3:03:5a:aa:
f9:9a:7a:aa:eb:7b:f1:cb:3f:79:48:cb:1a:0d:f5:
a5:f6:db:ad:a0:69:46:ba:cf:da:cb:6a:ae:3c:8d:
a6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3F:6A:45:7C:3D:AC:4A:47:64:AF:70:C1:DC:56:2E:2A:6D:06:71
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/bz9qRXw9rEpHZK9wwdxWLiptBnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.81.0/24
Signature Algorithm: sha256WithRSAEncryption
50:0d:d7:14:07:43:02:2e:f9:35:b3:d0:9f:dc:92:d1:4f:00:
e8:56:03:f2:51:ed:54:54:5d:d5:c6:9b:1b:66:24:d5:9b:05:
da:b7:d6:41:fe:49:24:2f:13:ce:f4:9b:6f:44:c3:d7:15:79:
e9:fa:0b:6e:fc:ef:80:5d:a8:60:db:94:8e:5f:d1:68:af:00:
a1:6b:71:69:a2:18:92:d8:a1:46:5c:2c:61:d2:3c:1a:c9:e4:
81:c4:90:d0:a1:3c:c0:ab:32:a7:5c:ff:48:9f:0c:f7:b6:67:
c1:d3:54:da:95:9c:3a:61:f7:42:54:b8:e9:5a:5b:b9:f2:ce:
91:e0:7b:47:b7:50:c4:e0:28:4c:99:62:7e:ac:ce:40:94:65:
1e:0b:48:f4:03:48:ca:7b:0c:33:08:6f:17:04:5b:5a:13:7a:
eb:f2:4a:e6:8f:4c:7a:0f:55:00:01:40:1f:13:9b:84:58:48:
59:04:32:a6:0d:bf:6f:cb:13:ec:7a:59:48:05:2f:4a:d2:4b:
a8:6a:98:5c:80:b1:25:88:f3:70:13:33:fe:01:b5:de:65:1a:
db:50:36:15:c9:a9:66:ed:ee:6f:d4:c1:0b:b2:35:ef:9d:ea:
40:7e:47:4e:c2:a3:75:4f:77:5c:e1:cd:e0:a7:e6:1e:ea:a1:
ad:7f:fd:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVAdm+sEAcmkrkKrCMxSkvMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjIxMjIzMTkyOTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjNmNmE0NTdjM2RhYzRhNDc2NGFmNzBjMWRjNTYyZTJhNmQwNjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDDjvwAceX5EX69RS3Hb/jCaiqQ2
naUITP9P4kmAgSRzxa/KYPuOg4Hdk7saE5Gsw8GDdvEhtHBqI3Rl/Jg3JgXo3qmV
YMJ6dEjyw07oT/GQm3NF/ZnOivlYi/3JLAtE+GqDBwgQAlKcyeReeSgGBmhcB7EJ
oTSSaA86T9+oqTDb457wA+nsGAxLq3j2NabWSP5AmFGU4owz2gc7v/dq4OTjDIKu
WkmyIiePPCNOLB2UT369t+IpfJD8G53tEBXAocs2zsNQbY5t+Y0PK8S1F3Se/UaM
TUBKry3+dsMDWqr5mnqq63vxyz95SMsaDfWl9tutoGlGus/ay2quPI2mAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG8/akV8PaxKR2SvcMHcVi4qbQZxMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvYno5cVJYdzlyRXBIWks5d3dkeFdMaXB0Qm5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwelRMA0G
CSqGSIb3DQEBCwUAA4IBAQBQDdcUB0MCLvk1s9Cf3JLRTwDoVgPyUe1UVF3Vxpsb
ZiTVmwXat9ZB/kkkLxPO9JtvRMPXFXnp+gtu/O+AXahg25SOX9ForwCha3FpohiS
2KFGXCxh0jwayeSBxJDQoTzAqzKnXP9Inwz3tmfB01TalZw6YfdCVLjpWlu58s6R
4HtHt1DE4ChMmWJ+rM5AlGUeC0j0A0jKewwzCG8XBFtaE3rr8krmj0x6D1UAAUAf
E5uEWEhZBDKmDb9vyxPsellIBS9K0kuoaphcgLEliPNwEzP+AbXeZRrbUDYVyalm
7e5v1MELsjXvnepAfkdOwqN1T3dc4c3gp+Ye6qGtf/1Y
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org