Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/pXewI1LaRCvyrS3Op00f8dWaPrc.roa
File: pXewI1LaRCvyrS3Op00f8dWaPrc.roa (raw, json)
Hash identifier: 0egquhORQX+8JUAI0SZpWa9wx0F5jS6P8Ybg8zrnmZw=
Subject key identifier: A5:77:B0:23:52:DA:44:2B:F2:AD:2D:CE:A7:4D:1F:F1:D5:9A:3E:B7
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04397C3D
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/pXewI1LaRCvyrS3Op00f8dWaPrc.roa
Signing time: Sat 01 Jan 2022 12:05:04 +0000
ROA not before: Sat 01 Jan 2022 12:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206152
IP address blocks: 193.233.164.0/24 maxlen: 24
193.233.163.0/24 maxlen: 24
193.233.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70876221 (0x4397c3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a577b02352da442bf2ad2dcea74d1ff1d59a3eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:47:d8:e1:6e:73:5f:eb:4d:6b:2d:ce:02:d2:
52:e1:40:26:c4:0f:2e:d1:02:61:e7:23:dc:d0:d2:
b0:1c:51:12:ac:5b:a9:83:d3:76:11:bd:40:13:3e:
63:14:6a:fa:d5:46:32:56:15:e0:44:5e:4c:4b:38:
14:fd:fd:f9:d9:3e:86:57:4c:a3:ac:7f:93:9e:43:
8d:9b:88:d1:a7:e4:9e:72:22:d6:a4:bd:43:55:72:
14:c7:ec:f6:d4:7f:ea:32:d2:f4:55:e5:b6:ca:7d:
b8:25:0f:7b:50:09:b3:fd:9d:2f:ae:04:57:e5:ab:
ea:04:f9:e6:e4:17:62:9b:54:bd:e3:21:87:c6:33:
b1:21:b9:f2:36:b4:b5:a6:d2:f6:27:af:1b:46:38:
4e:f4:fb:14:5e:b7:2d:a1:59:ce:a4:8a:e8:67:bf:
4d:be:2f:23:e3:20:b3:c3:b4:de:d8:81:df:64:d5:
b8:9b:e8:e5:03:db:a4:36:d1:31:66:b3:a9:0e:8c:
b0:9a:fe:80:7f:1c:6a:7f:9e:b2:08:f3:b3:5c:4b:
7d:8e:63:ee:89:ff:dd:24:94:ef:61:2a:ec:64:a1:
d8:49:4e:1d:c4:eb:3c:df:f9:6d:28:39:e5:62:e9:
32:dd:7d:fc:23:45:6b:3c:1d:eb:b3:65:c5:92:3d:
17:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:77:B0:23:52:DA:44:2B:F2:AD:2D:CE:A7:4D:1F:F1:D5:9A:3E:B7
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/pXewI1LaRCvyrS3Op00f8dWaPrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.162.0-193.233.164.255
Signature Algorithm: sha256WithRSAEncryption
13:6f:fc:3e:c3:5d:46:5a:ff:62:eb:17:f6:07:aa:a2:27:29:
6b:a8:af:4e:ca:05:70:a1:8b:12:f5:1b:51:36:12:88:de:79:
f0:0c:36:f6:23:f5:6a:c0:a6:6e:64:0f:dd:63:78:d6:57:4d:
73:f3:57:29:68:12:a9:db:02:0c:18:49:a6:b3:b0:90:eb:e6:
6e:fa:53:df:89:d0:49:12:90:e0:b5:f4:09:a6:5f:71:71:6a:
cd:a3:29:5f:a5:46:44:65:99:da:a1:b4:25:36:c3:8e:32:79:
42:04:04:7d:e7:46:22:4b:e2:a5:4f:82:a7:94:93:64:1e:1e:
6d:29:93:4d:60:88:28:e5:58:c2:e0:4b:f9:33:21:90:f1:bc:
4c:36:9b:a1:07:11:74:ca:49:0f:77:ed:29:20:0d:f8:f5:3e:
89:2e:2e:e4:78:71:6e:1b:af:b1:6e:b6:f0:b6:f4:7b:6f:29:
e8:c5:61:a9:1d:9d:1d:cf:9a:70:07:35:d7:54:76:24:6e:17:
10:a7:fc:f8:d0:dd:82:e5:db:d0:bf:f4:ea:80:33:27:e5:a8:
2b:f6:da:d5:c8:0e:34:5b:55:5c:ec:d5:3f:10:07:07:0d:8b:
24:41:1f:75:2d:51:35:10:84:c2:53:47:17:73:9e:53:df:5a:
f9:9b:9b:69
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBDl8PTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDEw
MTEyMDUwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTU3N2IwMjM1MmRh
NDQyYmYyYWQyZGNlYTc0ZDFmZjFkNTlhM2ViNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALFH2OFuc1/rTWstzgLSUuFAJsQPLtECYecj3NDSsBxREqxb
qYPTdhG9QBM+YxRq+tVGMlYV4EReTEs4FP39+dk+hldMo6x/k55DjZuI0afknnIi
1qS9Q1VyFMfs9tR/6jLS9FXltsp9uCUPe1AJs/2dL64EV+Wr6gT55uQXYptUveMh
h8YzsSG58ja0tabS9ievG0Y4TvT7FF63LaFZzqSK6Ge/Tb4vI+Mgs8O03tiB32TV
uJvo5QPbpDbRMWazqQ6MsJr+gH8can+esgjzs1xLfY5j7on/3SSU72Eq7GSh2ElO
HcTrPN/5bSg55WLpMt19/CNFazwd67NlxZI9F2ECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBSld7AjUtpEK/KtLc6nTR/x1Zo+tzAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L3BYZXdJMUxhUkN2eXJTM09wMDBmOGRXYVByYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQBwemiAwQAwemkMA0GCSqGSIb3
DQEBCwUAA4IBAQATb/w+w11GWv9i6xf2B6qiJylrqK9OygVwoYsS9RtRNhKI3nnw
DDb2I/VqwKZuZA/dY3jWV01z81cpaBKp2wIMGEmms7CQ6+Zu+lPfidBJEpDgtfQJ
pl9xcWrNoylfpUZEZZnaobQlNsOOMnlCBAR950YiS+KlT4KnlJNkHh5tKZNNYIgo
5VjC4Ev5MyGQ8bxMNpuhBxF0ykkPd+0pIA349T6JLi7keHFuG6+xbrbwtvR7byno
xWGpHZ0dz5pwBzXXVHYkbhcQp/z40N2C5dvQv/TqgDMn5agr9trVyA40W1Vc7NU/
EAcHDYskQR91LVE1EITCU0cXc55T31r5m5tp
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org