Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/0bUJmhzvRwKRYXvOYUIJXfexGgQ.roa
File: 0bUJmhzvRwKRYXvOYUIJXfexGgQ.roa (raw, json)
Hash identifier: Woj6/0W8ZeaZ1t+tG6IOa3Cv+TkFBk4+sWwB6qbiysk=
Subject key identifier: D1:B5:09:9A:1C:EF:47:02:91:61:7B:CE:61:42:09:5D:F7:B1:1A:04
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 09F4A400
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/0bUJmhzvRwKRYXvOYUIJXfexGgQ.roa
Signing time: Sat 01 Jan 2022 10:02:21 +0000
ROA not before: Sat 01 Jan 2022 10:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56598
IP address blocks: 193.168.206.0/23 maxlen: 32
193.168.204.0/23 maxlen: 32
2a09:6980::/29 maxlen: 48
2a0e:9900::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167027712 (0x9f4a400)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jan 1 10:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1b5099a1cef470291617bce6142095df7b11a04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:10:ba:62:5a:8a:cd:c3:22:f2:82:75:51:06:
41:ae:ba:a2:95:6b:8f:f7:4f:b8:af:08:40:a5:eb:
82:54:e9:0b:45:0f:7f:11:67:56:2b:c3:7d:76:0d:
ae:9d:e4:87:9f:ed:ae:03:fe:99:43:d2:25:4a:b6:
2e:9b:f2:c4:ed:69:66:21:f2:fe:73:c4:7a:90:d2:
95:6f:b2:36:d5:3c:cf:50:03:54:61:a0:a4:97:c1:
46:09:dd:cb:09:75:ea:4d:8d:2a:fb:22:6f:e1:a5:
e0:c4:81:e8:3f:8e:75:09:2a:e0:82:bb:62:49:ad:
65:e9:54:f6:53:05:ae:c9:a5:0b:0c:e5:90:12:3b:
f9:f3:88:ea:19:1e:a5:94:25:e0:c6:c8:93:74:a5:
95:e3:02:f9:30:10:d8:d2:b9:36:5a:75:7a:4e:6d:
7e:f6:7d:a9:f0:dc:4b:17:39:b8:49:ad:b8:2b:f0:
31:66:18:4e:26:58:f8:6b:01:0d:d5:03:80:df:42:
f2:00:5f:fc:cf:c0:09:a7:9b:6c:49:1f:8e:e6:f1:
24:f2:be:06:0c:95:ba:29:86:04:99:17:52:1b:a6:
b5:8b:68:a5:41:11:09:09:fd:02:ff:fc:ec:65:4c:
b1:d8:bc:ed:cd:b1:3a:68:68:17:8d:a5:e1:cb:40:
ff:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B5:09:9A:1C:EF:47:02:91:61:7B:CE:61:42:09:5D:F7:B1:1A:04
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/0bUJmhzvRwKRYXvOYUIJXfexGgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.204.0/22
IPv6:
2a09:6980::/29
2a0e:9900::/29
Signature Algorithm: sha256WithRSAEncryption
12:1f:1c:a2:86:20:e1:a6:50:68:0a:d0:2b:51:02:0d:87:cb:
02:51:2e:ba:15:e3:20:10:b9:58:fd:e6:33:3c:0e:da:06:64:
41:db:a9:59:15:14:aa:f1:65:03:28:0f:c6:a2:57:48:a2:8b:
d2:ed:d3:0a:81:85:27:10:52:10:87:7f:16:05:03:6d:4e:f8:
2f:00:3e:19:49:a2:18:f1:be:11:df:e2:6d:d1:7b:4a:31:91:
41:d6:80:cd:a8:cb:b4:bb:0a:f1:1d:5c:f1:42:27:2f:88:47:
39:53:30:50:78:f8:1b:bb:e8:bb:33:ce:1e:73:c0:55:c5:93:
18:b1:d4:7e:6a:b6:03:a7:54:f3:9f:8a:8e:3a:f3:47:bc:d5:
56:f2:0a:39:53:09:10:d8:63:65:dc:42:b4:57:a8:a4:1c:5f:
17:fa:6a:6d:02:c5:fa:0b:df:b7:77:32:22:b6:97:d9:fa:d9:
5e:b1:01:e0:6b:8e:54:1e:52:c3:f5:86:58:a3:5c:62:44:07:
b0:e8:20:d2:e9:52:69:63:f3:55:95:0f:51:76:44:da:da:b8:
7a:65:ff:94:2f:c6:d7:60:a1:52:20:7a:65:32:2b:6a:fd:c0:
63:6b:e0:db:6a:49:5d:40:85:c4:cb:4c:61:70:f3:65:50:18:
7b:95:c3:ad
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIECfSkADANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU2OTU3ODZmODQ1MGQxMDQxZGM4OGFkODkyY2JiNTcwZDU5NzJiMB4XDTIyMDEw
MTEwMDIyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDFiNTA5OWExY2Vm
NDcwMjkxNjE3YmNlNjE0MjA5NWRmN2IxMWEwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALIQumJais3DIvKCdVEGQa66opVrj/dPuK8IQKXrglTpC0UP
fxFnVivDfXYNrp3kh5/trgP+mUPSJUq2LpvyxO1pZiHy/nPEepDSlW+yNtU8z1AD
VGGgpJfBRgndywl16k2NKvsib+Gl4MSB6D+OdQkq4IK7YkmtZelU9lMFrsmlCwzl
kBI7+fOI6hkepZQl4MbIk3SlleMC+TAQ2NK5Nlp1ek5tfvZ9qfDcSxc5uEmtuCvw
MWYYTiZY+GsBDdUDgN9C8gBf/M/ACaebbEkfjubxJPK+BgyVuimGBJkXUhumtYto
pUERCQn9Av/87GVMsdi87c2xOmhoF42l4ctA/2UCAwEAAaOCAh8wggIbMB0GA1Ud
DgQWBBTRtQmaHO9HApFhe85hQgld97EaBDAfBgNVHSMEGDAWgBR9VpV4b4RQ0QQd
yIrYksu1cNWXKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWYVZlRy1FVU5FRUhjaUsySkxMdFhEVmx5cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvMzE3YWE3LWUyYWQtNGE4NS1iM2QyLTYzYjMzODA4YTZhOC8x
LzBiVUptaHp2UndLUllYdk9ZVUlKWGZleEdnUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
MzE3YWE3LWUyYWQtNGE4NS1iM2QyLTYzYjMzODA4YTZhOC8xL2ZWYVZlRy1FVU5F
RUhjaUsySkxMdFhEVmx5cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA1
BggrBgEFBQcBBwEB/wQmMCQwDAQCAAEwBgMEAsGozDAUBAIAAjAOAwUDKglpgAMF
AyoOmQAwDQYJKoZIhvcNAQELBQADggEBABIfHKKGIOGmUGgK0CtRAg2HywJRLroV
4yAQuVj95jM8DtoGZEHbqVkVFKrxZQMoD8aiV0iii9Lt0wqBhScQUhCHfxYFA21O
+C8APhlJohjxvhHf4m3Re0oxkUHWgM2oy7S7CvEdXPFCJy+IRzlTMFB4+Bu76Lsz
zh5zwFXFkxix1H5qtgOnVPOfio4680e81VbyCjlTCRDYY2XcQrRXqKQcXxf6am0C
xfoL37d3MiK2l9n62V6xAeBrjlQeUsP1hlijXGJEB7DoINLpUmlj81WVD1F2RNra
uHpl/5QvxtdgoVIgemUyK2r9wGNr4NtqSV1AhcTLTGFw82VQGHuVw60=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org