Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/b33oVPt8eYebf8sAqMDRstMEJtk.roa
File: b33oVPt8eYebf8sAqMDRstMEJtk.roa (raw, json)
Hash identifier: 7p2mH32ze7AYtRbo1yGjs2Xq7HmNa72yNWl56DDFUsQ=
Subject key identifier: 6F:7D:E8:54:FB:7C:79:87:9B:7F:CB:00:A8:C0:D1:B2:D3:04:26:D9
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 0AB51F46
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/b33oVPt8eYebf8sAqMDRstMEJtk.roa
Signing time: Tue 29 Mar 2022 19:22:46 +0000
ROA not before: Tue 29 Mar 2022 19:22:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56598
IP address blocks: 193.168.206.0/23 maxlen: 32
193.168.204.0/23 maxlen: 32
2a09:6980::/29 maxlen: 48
2a0e:9900::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179642182 (0xab51f46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Mar 29 19:22:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f7de854fb7c79879b7fcb00a8c0d1b2d30426d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:1a:45:f8:c1:bc:c4:d0:53:88:32:2d:7a:43:
2e:3f:d1:9e:ac:d4:0e:7e:35:3a:be:d2:cb:ae:f4:
eb:ef:bf:7f:cb:f1:4e:5d:8b:2b:4f:33:86:35:79:
5e:a4:20:c1:98:16:a1:3b:bf:c5:94:21:32:82:6c:
4f:81:0c:9d:80:6e:09:6a:05:a1:9e:cd:80:e8:d9:
59:9c:ba:82:e6:f9:e9:04:2d:14:ad:0b:64:dc:8a:
23:2c:cc:02:f5:ce:2a:54:79:e2:51:34:65:b2:e7:
6b:c2:6d:7e:f1:c1:a7:69:5d:d7:9c:64:a7:18:d9:
78:01:40:ce:3a:b1:f6:ba:d5:b1:0d:a7:27:29:9a:
88:4a:84:33:72:46:09:2b:57:68:ce:a0:78:4a:aa:
49:55:c4:57:2c:e2:62:a2:61:54:9b:a9:34:de:1b:
a3:41:79:f2:f8:bc:47:0c:45:87:07:8e:6d:59:7c:
4d:c9:0b:6c:47:5f:da:40:3e:e3:db:7e:14:f5:54:
3f:6e:6f:19:0e:10:69:e2:a0:50:06:57:da:99:d3:
3e:45:db:0e:f1:15:94:16:73:52:be:f0:4e:2c:c5:
cb:40:e4:a8:7b:05:95:28:79:bb:9b:a9:1d:5a:65:
de:cb:92:2b:c5:95:56:4d:58:ec:94:69:04:59:d7:
d3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7D:E8:54:FB:7C:79:87:9B:7F:CB:00:A8:C0:D1:B2:D3:04:26:D9
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/b33oVPt8eYebf8sAqMDRstMEJtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.204.0/22
IPv6:
2a09:6980::/29
2a0e:9900::/29
Signature Algorithm: sha256WithRSAEncryption
87:b7:2d:dd:4b:e7:28:ef:eb:63:98:29:62:89:a2:ed:e3:09:
a2:ea:ab:e6:55:70:4c:d3:40:21:8f:37:2b:ab:02:13:d4:ad:
76:59:35:15:94:38:e7:d6:f8:c6:71:21:81:11:c9:c5:fe:49:
9f:d3:38:52:d0:98:c6:94:7a:e7:70:b6:fa:87:57:a0:ab:12:
22:8b:52:09:65:37:02:b4:1c:4a:cb:55:55:56:31:e0:0c:3e:
1d:2d:ca:5b:2c:6d:92:1a:91:c7:26:cb:b4:d2:4c:bf:08:b1:
b2:37:90:30:f8:5f:e0:66:74:32:b1:3c:ad:20:fe:45:6b:c1:
5e:02:c0:cc:26:7b:38:a0:b4:99:fd:8a:c3:68:f7:2f:03:81:
d1:e7:50:08:7a:21:c3:66:44:1e:c8:24:c8:ce:a5:2c:35:0b:
8e:5e:7a:be:a7:4f:b6:1e:c4:d2:df:ac:96:da:2d:73:89:f2:
45:ad:84:a6:56:af:79:59:59:ad:df:43:00:40:08:f3:9e:65:
fb:ae:1b:db:3a:cf:d5:17:1c:b8:9c:e2:07:22:e1:11:aa:bc:
ec:2b:b8:0a:9d:5a:02:89:5d:3c:d8:d5:4e:ec:73:c4:d7:d6:
c6:3b:72:db:cb:33:96:c1:2d:0a:ba:96:23:5d:f3:72:16:4e:
79:fd:0e:c3
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIECrUfRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU2OTU3ODZmODQ1MGQxMDQxZGM4OGFkODkyY2JiNTcwZDU5NzJiMB4XDTIyMDMy
OTE5MjI0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmY3ZGU4NTRmYjdj
Nzk4NzliN2ZjYjAwYThjMGQxYjJkMzA0MjZkOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPUaRfjBvMTQU4gyLXpDLj/RnqzUDn41Or7Sy6706++/f8vx
Tl2LK08zhjV5XqQgwZgWoTu/xZQhMoJsT4EMnYBuCWoFoZ7NgOjZWZy6gub56QQt
FK0LZNyKIyzMAvXOKlR54lE0ZbLna8JtfvHBp2ld15xkpxjZeAFAzjqx9rrVsQ2n
JymaiEqEM3JGCStXaM6geEqqSVXEVyziYqJhVJupNN4bo0F58vi8RwxFhweObVl8
TckLbEdf2kA+49t+FPVUP25vGQ4QaeKgUAZX2pnTPkXbDvEVlBZzUr7wTizFy0Dk
qHsFlSh5u5upHVpl3suSK8WVVk1Y7JRpBFnX070CAwEAAaOCAh8wggIbMB0GA1Ud
DgQWBBRvfehU+3x5h5t/ywCowNGy0wQm2TAfBgNVHSMEGDAWgBR9VpV4b4RQ0QQd
yIrYksu1cNWXKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWYVZlRy1FVU5FRUhjaUsySkxMdFhEVmx5cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvMzE3YWE3LWUyYWQtNGE4NS1iM2QyLTYzYjMzODA4YTZhOC8x
L2IzM29WUHQ4ZVllYmY4c0FxTURSc3RNRUp0ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
MzE3YWE3LWUyYWQtNGE4NS1iM2QyLTYzYjMzODA4YTZhOC8xL2ZWYVZlRy1FVU5F
RUhjaUsySkxMdFhEVmx5cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA1
BggrBgEFBQcBBwEB/wQmMCQwDAQCAAEwBgMEAsGozDAUBAIAAjAOAwUDKglpgAMF
AyoOmQAwDQYJKoZIhvcNAQELBQADggEBAIe3Ld1L5yjv62OYKWKJou3jCaLqq+ZV
cEzTQCGPNyurAhPUrXZZNRWUOOfW+MZxIYERycX+SZ/TOFLQmMaUeudwtvqHV6Cr
EiKLUgllNwK0HErLVVVWMeAMPh0tylssbZIakccmy7TSTL8IsbI3kDD4X+BmdDKx
PK0g/kVrwV4CwMwmezigtJn9isNo9y8DgdHnUAh6IcNmRB7IJMjOpSw1C45eer6n
T7YexNLfrJbaLXOJ8kWthKZWr3lZWa3fQwBACPOeZfuuG9s6z9UXHLic4gci4RGq
vOwruAqdWgKJXTzY1U7sc8TX1sY7ctvLM5bBLQq6liNd83IWTnn9DsM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org