Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/re5CsJXpb3a1gD8ycs2mBdYtuCc.roa
File: re5CsJXpb3a1gD8ycs2mBdYtuCc.roa (raw, json)
Hash identifier: 7dOtYCUhxl8WUVReypccwDXmAEsRXXKeRyWDoUDNgZY=
Subject key identifier: AD:EE:42:B0:95:E9:6F:76:B5:80:3F:32:72:CD:A6:05:D6:2D:B8:27
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0183A36F5591FF5E92105748A787AF452EF6
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/re5CsJXpb3a1gD8ycs2mBdYtuCc.roa
Signing time: Tue 04 Oct 2022 14:38:46 +0000
ROA not before: Tue 04 Oct 2022 14:38:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56690
IP address blocks: 193.233.150.0/24 maxlen: 24
193.233.166.0/23 maxlen: 23
193.233.168.0/23 maxlen: 23
193.233.73.0/24 maxlen: 24
193.233.92.0/24 maxlen: 24
193.233.12.0/23 maxlen: 23
193.233.240.0/23 maxlen: 23
193.233.24.0/23 maxlen: 23
193.233.243.0/24 maxlen: 24
193.233.26.0/23 maxlen: 23
193.233.28.0/23 maxlen: 23
193.233.54.0/23 maxlen: 23
193.233.176.0/20 maxlen: 20
193.233.212.0/22 maxlen: 22
193.233.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:6f:55:91:ff:5e:92:10:57:48:a7:87:af:45:2e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Oct 4 14:38:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adee42b095e96f76b5803f3272cda605d62db827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e8:47:ac:6c:99:0e:8e:f6:19:d6:95:0b:25:
67:40:cf:c3:4a:8c:c8:10:0f:79:b4:ae:07:de:82:
91:16:70:56:d3:b9:ba:50:af:04:69:e8:6b:ed:f5:
91:bb:8d:aa:8e:7b:a4:5e:e7:92:c5:89:4f:7c:b3:
5e:79:6c:e2:80:e0:80:c8:95:aa:9b:bf:47:d7:a3:
94:2c:a8:15:a6:cb:22:6c:cb:37:30:19:70:33:23:
25:29:a5:f8:37:d4:43:b8:d2:b4:51:2c:40:ff:1a:
d6:37:18:23:11:ea:2c:0a:82:1e:4f:a0:76:0c:b8:
0e:46:2f:81:96:63:cf:87:76:9a:4d:20:81:e6:c3:
73:03:7d:f5:a2:eb:ed:b9:4d:26:3a:12:15:47:6b:
de:01:1c:f9:2e:e0:3d:21:f4:fa:f7:b5:ef:15:e1:
2e:11:2e:c9:76:c5:15:bb:39:2a:71:d2:b5:a1:ce:
f6:88:01:2c:9c:07:2f:66:65:75:ae:d7:bf:74:d9:
5e:d5:a5:84:96:78:2b:d7:22:28:64:88:bc:49:7e:
1a:03:d9:e8:7d:09:c3:30:ba:c8:fa:fb:a9:12:13:
d2:af:d1:9b:c5:0a:32:3c:fb:a5:72:7f:dd:d1:55:
a8:ab:e1:b3:28:11:ff:33:87:14:64:9a:25:40:8c:
9b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EE:42:B0:95:E9:6F:76:B5:80:3F:32:72:CD:A6:05:D6:2D:B8:27
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/re5CsJXpb3a1gD8ycs2mBdYtuCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.12.0/23
193.233.24.0-193.233.29.255
193.233.54.0/23
193.233.73.0/24
193.233.92.0/24
193.233.150.0/24
193.233.166.0-193.233.169.255
193.233.176.0/20
193.233.212.0/22
193.233.224.0/22
193.233.240.0/23
193.233.243.0/24
Signature Algorithm: sha256WithRSAEncryption
57:27:bd:b8:ca:b2:97:f7:4b:a1:97:6b:89:fa:10:23:2e:4d:
9d:29:1b:c5:fc:0e:a0:24:83:bd:b6:df:f6:54:ac:3e:1e:f6:
1f:5c:d1:e0:a4:5e:63:9f:42:89:23:12:d3:f1:ce:ff:ae:69:
ec:b4:04:e4:78:f0:46:48:85:bb:65:19:3a:76:1a:92:78:11:
be:2d:95:bb:87:f4:6e:d4:87:c0:86:28:f3:27:d5:f4:69:2f:
da:ee:96:56:06:8d:ee:f6:c2:94:5e:2d:fc:7a:96:bc:35:45:
29:ea:10:3a:93:52:97:1e:6a:eb:2c:20:4f:41:c2:c8:4f:1d:
54:85:df:6c:23:a3:bf:16:cf:96:05:0c:bf:71:e9:a8:df:a8:
28:9a:02:1f:69:5f:bd:1d:b4:f6:be:74:c5:a0:a9:d0:be:ca:
b5:9a:97:89:e0:03:94:d1:83:73:66:80:ab:45:b9:1c:3b:08:
9b:e0:c7:4e:1b:25:17:5b:fc:7e:7e:ee:dc:24:a9:43:2f:77:
86:d7:58:34:ec:92:37:b2:cc:0c:c0:79:c3:cd:8e:ab:1c:95:
77:98:7d:8d:97:2e:e2:b8:d6:f1:14:f3:6c:9c:90:2e:a6:99:
82:97:ee:71:ec:1f:5c:da:58:90:24:9e:bc:df:5e:b1:ae:b1:
73:29:f3:35
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAYOjb1WR/16SEFdIp4evRS72MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjIxMDA0MTQzODQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZGVlNDJiMDk1ZTk2Zjc2YjU4MDNmMzI3MmNkYTYwNWQ2MmRiODI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAguhHrGyZDo72GdaVCyVnQM/DSozI
EA95tK4H3oKRFnBW07m6UK8Eaehr7fWRu42qjnukXueSxYlPfLNeeWzigOCAyJWq
m79H16OULKgVpssibMs3MBlwMyMlKaX4N9RDuNK0USxA/xrWNxgjEeosCoIeT6B2
DLgORi+BlmPPh3aaTSCB5sNzA331ouvtuU0mOhIVR2veARz5LuA9IfT697XvFeEu
ES7JdsUVuzkqcdK1oc72iAEsnAcvZmV1rte/dNle1aWElngr1yIoZIi8SX4aA9no
fQnDMLrI+vupEhPSr9GbxQoyPPulcn/d0VWoq+GzKBH/M4cUZJolQIybZwIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFK3uQrCV6W92tYA/MnLNpgXWLbgnMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvcmU1Q3NKWHBiM2ExZ0Q4eWNzMm1CZFl0dUNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDBeBAIAATBYAwQBwekMMAwD
BAPB6RgDBAHB6RwDBAHB6TYDBADB6UkDBADB6VwDBADB6ZYwDAMEAcHppgMEAcHp
qAMEBMHpsAMEAsHp1AMEAsHp4AMEAcHp8AMEAMHp8zANBgkqhkiG9w0BAQsFAAOC
AQEAVye9uMqyl/dLoZdrifoQIy5NnSkbxfwOoCSDvbbf9lSsPh72H1zR4KReY59C
iSMS0/HO/65p7LQE5HjwRkiFu2UZOnYakngRvi2Vu4f0btSHwIYo8yfV9Gkv2u6W
VgaN7vbClF4t/HqWvDVFKeoQOpNSlx5q6ywgT0HCyE8dVIXfbCOjvxbPlgUMv3Hp
qN+oKJoCH2lfvR209r50xaCp0L7KtZqXieADlNGDc2aAq0W5HDsIm+DHThslF1v8
fn7u3CSpQy93htdYNOySN7LMDMB5w82OqxyVd5h9jZcu4rjW8RTzbJyQLqaZgpfu
cewfXNpYkCSevN9esa6xcynzNQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:39 2023 by rpki-client on console-fra.rpki-client.org