Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/iYVJ5slNNnuRYzXpAqotYkJqeuo.roa
File: iYVJ5slNNnuRYzXpAqotYkJqeuo.roa (raw, json)
Hash identifier: ufCxy8OAwnomVreVJC0Q8mncFyf6HmCuWToibe+R3os=
Subject key identifier: 89:85:49:E6:C9:4D:36:7B:91:63:35:E9:02:AA:2D:62:42:6A:7A:EA
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 018457E637760EA7474AA4692A74FA998E7D
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/iYVJ5slNNnuRYzXpAqotYkJqeuo.roa
Signing time: Tue 08 Nov 2022 15:40:16 +0000
ROA not before: Tue 08 Nov 2022 15:40:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205220
IP address blocks: 185.93.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:e6:37:76:0e:a7:47:4a:a4:69:2a:74:fa:99:8e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Nov 8 15:40:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=898549e6c94d367b916335e902aa2d62426a7aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2b:ea:5e:e2:63:b7:2d:0f:d9:ab:50:ec:58:
27:62:3e:a5:63:0f:a0:ee:61:1b:e4:9f:f5:53:a7:
34:4e:ef:4f:92:57:68:db:ea:f4:63:29:bf:7e:7b:
13:c2:7d:64:be:e2:1c:f8:54:50:0d:68:44:75:23:
9a:dd:58:ed:48:8b:32:8b:c8:d8:db:b0:ea:6f:e1:
0d:81:ae:98:dc:7f:a3:73:76:f7:3f:8e:5e:7a:62:
e8:6e:90:4b:39:37:d8:32:1f:17:ba:fc:72:9b:3a:
63:18:2f:e7:88:93:ed:2d:4d:b2:40:c2:7d:d2:bd:
ad:41:a2:0c:d5:08:64:9a:82:9e:7a:48:c4:22:31:
a5:a1:74:e5:34:c2:b1:8a:81:f1:86:81:de:a6:dc:
fe:5f:cf:f7:2b:c5:40:a9:dc:f7:bb:57:e7:d0:9a:
4a:d5:f5:1e:59:ed:69:fa:aa:19:af:2c:54:04:74:
e4:1f:15:7d:8e:95:b5:fe:29:cc:80:e0:8d:6f:05:
0d:73:e3:ff:40:11:b2:ba:eb:01:b2:51:c7:ef:08:
80:c5:15:8e:f7:72:ec:97:f6:f7:21:90:5e:75:7d:
0b:59:61:6a:7c:f3:62:8f:7e:f2:b3:02:32:37:0d:
bc:a3:b6:ba:8a:31:47:a1:1b:38:ab:92:b2:1f:bb:
14:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:85:49:E6:C9:4D:36:7B:91:63:35:E9:02:AA:2D:62:42:6A:7A:EA
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/iYVJ5slNNnuRYzXpAqotYkJqeuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.223.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:aa:e0:4a:5b:47:bb:4d:68:5f:88:50:96:f3:ba:44:ff:57:
86:63:3b:5a:6e:70:df:4b:cf:02:bc:d1:e3:66:ac:8c:ec:d5:
b3:ea:d7:78:fa:95:3a:00:a3:17:67:8c:1d:f8:9f:55:7b:a3:
44:18:e6:54:d1:a3:ed:ff:da:e0:85:38:d9:cc:3e:f9:38:b1:
83:76:dd:8c:25:fc:56:a8:32:34:f2:3d:de:11:2e:92:9c:03:
c1:7c:30:00:f6:37:b2:3e:4d:42:d7:6c:2f:d8:dd:29:1c:43:
89:2a:bb:99:33:94:60:72:7d:09:af:bd:c8:31:0b:07:aa:e4:
d9:50:ed:25:50:62:07:73:02:2a:a2:0d:58:28:3d:7b:02:59:
4c:df:05:0b:4b:bd:a5:a7:0f:13:d5:64:e7:f8:ee:26:43:35:
7d:d4:a6:ba:ad:4e:21:81:ae:b5:b0:e5:95:ee:9e:bf:5d:3c:
85:82:8b:e7:5a:4f:46:24:3b:d3:7a:ab:ab:c6:a2:14:95:d4:
17:45:8c:1d:a4:c9:9a:67:43:b9:d0:ed:51:0b:79:31:05:51:
f7:f7:3d:6d:93:9b:4d:9a:64:3c:3a:e4:f8:f8:fd:c5:b8:39:
f7:43:87:36:38:7c:85:a0:c3:1a:2f:b6:19:44:eb:41:ec:d2:
45:86:d8:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRX5jd2DqdHSqRpKnT6mY59MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZDA4YTFlMWNiYzkwOTI1NGU5ZTZiOWM5MzlmZDg1YTI2
OGIxZTEwHhcNMjIxMTA4MTU0MDE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTg1NDllNmM5NGQzNjdiOTE2MzM1ZTkwMmFhMmQ2MjQyNmE3YWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzivqXuJjty0P2atQ7FgnYj6lYw+g
7mEb5J/1U6c0Tu9Pkldo2+r0Yym/fnsTwn1kvuIc+FRQDWhEdSOa3VjtSIsyi8jY
27Dqb+ENga6Y3H+jc3b3P45eemLobpBLOTfYMh8XuvxymzpjGC/niJPtLU2yQMJ9
0r2tQaIM1QhkmoKeekjEIjGloXTlNMKxioHxhoHeptz+X8/3K8VAqdz3u1fn0JpK
1fUeWe1p+qoZryxUBHTkHxV9jpW1/inMgOCNbwUNc+P/QBGyuusBslHH7wiAxRWO
93Lsl/b3IZBedX0LWWFqfPNij37yswIyNw28o7a6ijFHoRs4q5KyH7sUewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFImFSebJTTZ7kWM16QKqLWJCanrqMB8GA1UdIwQY
MBaAFPTQih4cvJCSVOnmuck5/YWiaLHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2Ut
ZGNlOTQ3ZTI5NGI2LzEvaVlWSjVzbE5ObnVSWXpYcEFxb3RZa0pxZXVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2UtZGNlOTQ3ZTI5NGI2
LzEvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuV3fMA0G
CSqGSIb3DQEBCwUAA4IBAQAOquBKW0e7TWhfiFCW87pE/1eGYztabnDfS88CvNHj
ZqyM7NWz6td4+pU6AKMXZ4wd+J9Ve6NEGOZU0aPt/9rghTjZzD75OLGDdt2MJfxW
qDI08j3eES6SnAPBfDAA9jeyPk1C12wv2N0pHEOJKruZM5Rgcn0Jr73IMQsHquTZ
UO0lUGIHcwIqog1YKD17AllM3wULS72lpw8T1WTn+O4mQzV91Ka6rU4hga61sOWV
7p6/XTyFgovnWk9GJDvTequrxqIUldQXRYwdpMmaZ0O50O1RC3kxBVH39z1tk5tN
mmQ8OuT4+P3FuDn3Q4c2OHyFoMMaL7YZROtB7NJFhthe
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org