Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/xALtuwoVawtIzEftcumO6U76Ff0.roa
File: xALtuwoVawtIzEftcumO6U76Ff0.roa (raw, json)
Hash identifier: 4tT4cngnmZ4Rt+upgCX3LacW4+uh0e3NTrVHtj+6oOk=
Subject key identifier: C4:02:ED:BB:0A:15:6B:0B:48:CC:47:ED:72:E9:8E:E9:4E:FA:15:FD
Certificate issuer: /CN=0abd7ddce4fd703bc3fbcafc1b5d577e1a757575
Certificate serial: 043849D2
Authority key identifier: 0A:BD:7D:DC:E4:FD:70:3B:C3:FB:CA:FC:1B:5D:57:7E:1A:75:75:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cr193OT9cDvD-8r8G11Xfhp1dXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/xALtuwoVawtIzEftcumO6U76Ff0.roa
Signing time: Sat 01 Jan 2022 04:04:14 +0000
ROA not before: Sat 01 Jan 2022 04:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34428
IP address blocks: 193.41.57.0/24 maxlen: 24
2a06:7d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70797778 (0x43849d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0abd7ddce4fd703bc3fbcafc1b5d577e1a757575
Validity
Not Before: Jan 1 04:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c402edbb0a156b0b48cc47ed72e98ee94efa15fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:de:08:7b:c6:84:d3:d5:02:20:38:cf:e6:5f:
eb:05:af:f8:98:76:87:4f:41:64:64:06:9d:44:d9:
95:d9:82:10:c7:16:f7:d3:8a:c3:33:93:e2:3e:ba:
de:01:a8:7e:ff:dc:fe:29:2e:07:6d:01:b9:ef:63:
b0:9e:a3:25:eb:4e:cd:a6:53:a8:e1:74:d5:7c:53:
ec:e7:ab:e2:f1:31:f2:15:1d:c0:91:0f:8f:aa:b8:
51:2c:3f:76:21:fa:13:d4:fb:cf:63:e4:06:c6:df:
52:fe:15:b8:b9:13:8a:ee:53:06:ab:fe:2d:cc:c3:
76:27:8d:30:19:3b:f8:71:8e:41:27:57:b5:5b:77:
95:b5:67:83:c5:fd:86:ff:85:54:aa:86:45:eb:a3:
c3:cb:e3:7c:0d:ae:38:95:7c:20:50:9a:22:97:7a:
e9:77:09:27:42:56:3f:aa:5d:f8:f0:19:82:ea:8a:
f0:21:34:72:a8:85:50:e5:cb:90:2c:d0:2a:f1:cf:
b7:fa:3f:59:a1:6b:70:fd:6b:56:2a:fc:c5:d3:50:
cf:e5:ec:ae:a5:90:12:ea:cd:50:32:02:61:77:a8:
f2:2d:dd:69:5e:aa:e7:de:93:f5:66:54:1c:52:57:
59:4f:ff:a6:95:3e:7a:7f:81:1a:40:f4:af:ae:75:
22:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:02:ED:BB:0A:15:6B:0B:48:CC:47:ED:72:E9:8E:E9:4E:FA:15:FD
X509v3 Authority Key Identifier:
keyid:0A:BD:7D:DC:E4:FD:70:3B:C3:FB:CA:FC:1B:5D:57:7E:1A:75:75:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cr193OT9cDvD-8r8G11Xfhp1dXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/xALtuwoVawtIzEftcumO6U76Ff0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/Cr193OT9cDvD-8r8G11Xfhp1dXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.57.0/24
IPv6:
2a06:7d40::/29
Signature Algorithm: sha256WithRSAEncryption
12:93:21:30:5c:04:a1:f8:22:63:6a:3d:2d:73:a0:3c:e9:10:
5b:7e:83:a1:f1:12:e7:dc:e4:ac:83:6c:3e:70:e2:62:1a:d1:
58:98:f1:a5:0e:c9:51:f7:a5:e6:6d:41:78:e1:cc:a1:14:f2:
53:1d:9c:03:59:27:14:81:2c:a3:f8:55:e2:84:6f:c6:b0:f6:
1c:8f:b2:ea:e7:ee:11:c6:24:07:07:f6:39:03:ff:ca:2b:2e:
a4:c9:5e:86:59:08:57:18:9d:5a:bb:7c:a9:97:ca:78:73:e8:
44:ef:d0:5e:b0:dd:bd:1d:3c:6e:ea:55:14:b3:1c:9b:c7:8e:
88:6f:87:ff:3e:cb:b4:cd:21:ea:73:44:2c:54:f2:11:be:25:
47:0b:16:96:ba:17:0c:e3:de:48:93:e4:4d:b9:d3:c0:6c:0b:
84:c8:d9:d6:23:6b:0e:52:10:61:92:62:9c:bb:f5:fa:04:b0:
d2:a2:74:f1:ed:56:50:91:af:97:88:ca:76:dc:9b:c6:70:0a:
f3:57:3c:f7:d1:80:e9:ec:4e:f0:1f:03:e3:ce:a9:aa:65:2e:
54:7b:de:51:df:b5:f7:db:9c:00:48:12:7f:8c:c2:3a:46:7f:
68:1c:11:61:2f:bb:ae:ff:18:17:03:0c:dd:ed:03:83:06:a6:
de:63:44:3a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBDhJ0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YWJkN2RkY2U0ZmQ3MDNiYzNmYmNhZmMxYjVkNTc3ZTFhNzU3NTc1MB4XDTIyMDEw
MTA0MDQxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzQwMmVkYmIwYTE1
NmIwYjQ4Y2M0N2VkNzJlOThlZTk0ZWZhMTVmZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANDeCHvGhNPVAiA4z+Zf6wWv+Jh2h09BZGQGnUTZldmCEMcW
99OKwzOT4j663gGofv/c/ikuB20Bue9jsJ6jJetOzaZTqOF01XxT7Oer4vEx8hUd
wJEPj6q4USw/diH6E9T7z2PkBsbfUv4VuLkTiu5TBqv+LczDdieNMBk7+HGOQSdX
tVt3lbVng8X9hv+FVKqGReujw8vjfA2uOJV8IFCaIpd66XcJJ0JWP6pd+PAZguqK
8CE0cqiFUOXLkCzQKvHPt/o/WaFrcP1rVir8xdNQz+XsrqWQEurNUDICYXeo8i3d
aV6q596T9WZUHFJXWU//ppU+en+BGkD0r651IlMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTEAu27ChVrC0jMR+1y6Y7pTvoV/TAfBgNVHSMEGDAWgBQKvX3c5P1wO8P7
yvwbXVd+GnV1dTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NyMTkzT1Q5Y0R2RC04cjhHMTFYZmhwMWRYVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvZDY2ODBjLTJmZjMtNGRiNS05NzAyLTdkMzQ4Y2NhMWQyMC8x
L3hBTHR1d29WYXd0SXpFZnRjdW1PNlU3NkZmMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
ZDY2ODBjLTJmZjMtNGRiNS05NzAyLTdkMzQ4Y2NhMWQyMC8xL0NyMTkzT1Q5Y0R2
RC04cjhHMTFYZmhwMWRYVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMEpOTANBAIAAjAHAwUDKgZ9QDAN
BgkqhkiG9w0BAQsFAAOCAQEAEpMhMFwEofgiY2o9LXOgPOkQW36DofES59zkrINs
PnDiYhrRWJjxpQ7JUfel5m1BeOHMoRTyUx2cA1knFIEso/hV4oRvxrD2HI+y6ufu
EcYkBwf2OQP/yisupMlehlkIVxidWrt8qZfKeHPoRO/QXrDdvR08bupVFLMcm8eO
iG+H/z7LtM0h6nNELFTyEb4lRwsWlroXDOPeSJPkTbnTwGwLhMjZ1iNrDlIQYZJi
nLv1+gSw0qJ08e1WUJGvl4jKdtybxnAK81c899GA6exO8B8D486pqmUuVHveUd+1
99ucAEgSf4zCOkZ/aBwRYS+7rv8YFwMM3e0Dgwam3mNEOg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org