Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/i0-7ElCSaCe1ilkEtFQTyzu8fnM.roa
File: i0-7ElCSaCe1ilkEtFQTyzu8fnM.roa (raw, json)
Hash identifier: beUKrCcVrCdobn4NbhOGK0kn6actsuNUpeAfvl7K0vQ=
Subject key identifier: 8B:4F:BB:12:50:92:68:27:B5:8A:59:04:B4:54:13:CB:3B:BC:7E:73
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04869B92
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/i0-7ElCSaCe1ilkEtFQTyzu8fnM.roa
Signing time: Wed 26 Jan 2022 18:11:01 +0000
ROA not before: Wed 26 Jan 2022 18:11:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 193.233.100.0/22 maxlen: 22
193.233.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75930514 (0x4869b92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 26 18:11:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b4fbb1250926827b58a5904b45413cb3bbc7e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:90:a2:d6:71:f0:c0:6b:b3:d2:d0:71:83:08:
05:df:eb:2a:75:f0:28:ed:c4:04:82:bb:af:6c:d1:
4e:2c:d5:10:0a:76:aa:a0:8d:f3:22:1d:55:58:17:
0c:34:52:ab:c6:2d:c8:42:8c:77:b1:48:99:f4:eb:
58:2e:cd:61:da:45:30:30:75:fb:69:9a:58:b4:e2:
50:fc:05:cd:64:5b:d3:54:25:61:77:ff:34:a1:b4:
22:32:a9:0c:73:e9:a2:7c:84:18:f2:23:96:ce:87:
df:32:72:47:03:a4:95:df:93:bb:c1:b0:e4:75:6a:
6b:fd:fa:8f:1f:69:87:0e:e6:aa:5c:ef:21:52:aa:
b3:da:c4:d2:49:2c:de:68:82:f5:66:1f:0b:08:c4:
e3:d1:4c:8c:1f:a0:aa:99:81:f1:04:12:13:e2:8a:
81:53:35:a4:5d:1c:67:c6:99:c2:53:52:ae:09:f9:
a1:0f:54:84:10:24:e3:b5:a0:6a:95:ac:46:43:46:
be:bc:4d:2b:33:06:13:39:bb:c0:9b:0c:03:42:ee:
90:32:f8:94:de:6f:95:5b:08:11:be:df:a2:23:d6:
11:0f:56:e7:4c:35:45:87:03:70:e7:21:5c:f4:4a:
95:38:c2:ec:2e:b0:41:d1:69:1d:4b:27:ee:55:5b:
a8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4F:BB:12:50:92:68:27:B5:8A:59:04:B4:54:13:CB:3B:BC:7E:73
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/i0-7ElCSaCe1ilkEtFQTyzu8fnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.100.0/22
193.233.116.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:12:ab:0f:65:8d:30:f6:00:5b:cc:92:a1:2b:6b:d9:11:69:
73:f2:62:5b:d4:1d:68:f2:58:b8:46:df:3a:e7:66:3a:1b:ab:
67:22:1b:03:2c:cf:7d:71:55:1d:34:92:09:24:79:b4:9c:15:
47:f0:a7:0e:13:98:48:5b:74:ac:f2:49:2e:1f:aa:ed:f5:bd:
84:84:0c:31:43:63:3e:4d:6b:7e:bd:75:90:2c:a9:65:d0:54:
df:30:fe:47:c8:de:a0:3c:c2:18:d6:a7:c6:52:4b:11:63:8f:
da:25:d1:99:81:b7:7d:43:91:5f:08:e2:9a:05:2d:0b:3f:f5:
60:6d:77:d5:77:d7:25:9d:8b:ff:ce:34:8a:80:fa:6a:0c:a3:
4a:88:46:02:23:10:da:a2:b4:7c:9d:1f:11:fe:ed:d2:c0:6b:
0a:8c:dc:85:82:be:9a:50:76:b4:db:b7:6a:ac:69:48:9a:a9:
80:10:e7:05:ee:20:91:74:19:02:83:41:12:3e:2b:92:c0:ce:
c9:0d:94:8c:10:bb:ea:05:3b:bf:45:a1:12:58:56:bc:6a:33:
59:a5:7c:ad:6c:fb:17:17:a1:4f:82:00:1b:e5:67:e4:04:39:
13:bb:bb:fc:39:db:ff:1e:d7:8e:c6:a5:f2:ad:15:2d:8c:d5:
62:3c:d9:e8
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBIabkjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDEy
NjE4MTEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGI0ZmJiMTI1MDky
NjgyN2I1OGE1OTA0YjQ1NDEzY2IzYmJjN2U3MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJWQotZx8MBrs9LQcYMIBd/rKnXwKO3EBIK7r2zRTizVEAp2
qqCN8yIdVVgXDDRSq8YtyEKMd7FImfTrWC7NYdpFMDB1+2maWLTiUPwFzWRb01Ql
YXf/NKG0IjKpDHPponyEGPIjls6H3zJyRwOkld+Tu8Gw5HVqa/36jx9phw7mqlzv
IVKqs9rE0kks3miC9WYfCwjE49FMjB+gqpmB8QQSE+KKgVM1pF0cZ8aZwlNSrgn5
oQ9UhBAk47WgapWsRkNGvrxNKzMGEzm7wJsMA0LukDL4lN5vlVsIEb7foiPWEQ9W
50w1RYcDcOchXPRKlTjC7C6wQdFpHUsn7lVbqKUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSLT7sSUJJoJ7WKWQS0VBPLO7x+czAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L2kwLTdFbENTYUNlMWlsa0V0RlFUeXp1OGZuTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAsHpZAMEAsHpdDANBgkqhkiG9w0B
AQsFAAOCAQEAXxKrD2WNMPYAW8ySoStr2RFpc/JiW9QdaPJYuEbfOudmOhurZyIb
AyzPfXFVHTSSCSR5tJwVR/CnDhOYSFt0rPJJLh+q7fW9hIQMMUNjPk1rfr11kCyp
ZdBU3zD+R8jeoDzCGNanxlJLEWOP2iXRmYG3fUORXwjimgUtCz/1YG131XfXJZ2L
/840ioD6agyjSohGAiMQ2qK0fJ0fEf7t0sBrCozchYK+mlB2tNu3aqxpSJqpgBDn
Be4gkXQZAoNBEj4rksDOyQ2UjBC76gU7v0WhElhWvGozWaV8rWz7FxehT4IAG+Vn
5AQ5E7u7/Dnb/x7Xjsal8q0VLYzVYjzZ6A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org