Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bR9UQ-2v_m1xgek1h4rvcM3EY-M.roa
File: bR9UQ-2v_m1xgek1h4rvcM3EY-M.roa (raw, json)
Hash identifier: z8HoE7RvBlAp2AFiDKWGCj6LCs8giZW1tscuhojsI8M=
Subject key identifier: 6D:1F:54:43:ED:AF:FE:6D:71:81:E9:35:87:8A:EF:70:CD:C4:63:E3
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 070BC0EA
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bR9UQ-2v_m1xgek1h4rvcM3EY-M.roa
Signing time: Sat 01 Jan 2022 03:54:14 +0000
ROA not before: Sat 01 Jan 2022 03:54:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210068
IP address blocks: 193.57.42.0/24 maxlen: 24
194.15.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118210794 (0x70bc0ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d1f5443edaffe6d7181e935878aef70cdc463e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b1:1e:32:ec:57:f4:fd:93:1b:fc:61:66:9c:
88:bb:5a:a0:77:b7:72:a9:b7:70:0f:e9:9a:e5:cf:
3a:ff:3a:cd:82:e2:8e:df:16:00:30:60:23:55:ec:
b5:cd:50:3e:e9:39:fd:bd:5e:70:73:18:c0:ce:53:
74:94:f6:d1:b1:50:09:fe:bc:d6:ac:c0:39:d0:43:
fb:ef:cd:82:eb:b2:b2:96:a9:50:5a:1e:7b:a1:01:
d7:88:6d:02:20:49:a8:25:1c:d7:6f:06:c7:be:64:
54:e5:28:b8:e9:27:c8:e2:36:ea:19:e1:0e:2a:66:
df:ac:1a:0a:cd:64:00:50:15:ed:9f:b3:62:5f:bd:
79:f5:c1:cb:92:b1:75:c5:6e:c9:4a:83:7e:a6:fb:
c4:d9:77:c9:bd:37:9b:98:7f:db:17:58:2b:f9:84:
1a:96:76:8c:53:3e:c6:be:f5:88:c6:63:80:ed:85:
53:88:68:72:bc:08:2b:54:f3:f4:ae:3d:8f:3e:38:
4a:05:57:2b:29:25:ea:33:63:14:41:4a:80:b5:60:
5f:ca:72:bc:83:ec:11:55:eb:d4:25:52:ba:b5:7b:
3f:79:cc:ac:4f:59:8c:49:b5:57:1f:c3:74:01:e4:
44:7d:9f:d4:3f:f4:a1:fb:08:18:d5:cb:bc:97:8b:
5b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:1F:54:43:ED:AF:FE:6D:71:81:E9:35:87:8A:EF:70:CD:C4:63:E3
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bR9UQ-2v_m1xgek1h4rvcM3EY-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.42.0/24
194.15.55.0/24
Signature Algorithm: sha256WithRSAEncryption
62:6a:91:51:6c:34:39:f6:c6:74:c7:94:06:24:6a:eb:e6:69:
88:fe:e4:17:c5:aa:20:79:b9:09:78:dc:14:e6:c2:ca:a7:25:
e5:2c:56:32:8f:20:84:29:ae:2a:e1:d9:d7:c2:a0:08:fd:6e:
ad:c3:ec:81:e6:dd:76:7b:2b:5b:b9:70:4e:e1:ed:97:7b:d6:
f4:d4:3f:7c:30:c0:5f:19:ec:64:3f:c4:9e:87:ad:91:49:8a:
bd:b8:6e:76:d7:8c:9b:c8:5b:c8:cc:6d:49:bb:8b:6e:5f:24:
df:20:c7:5f:95:0c:4c:1c:24:e2:2f:ec:47:a3:cb:99:0f:ae:
f9:89:00:81:7d:e9:c7:e4:ce:05:20:d3:e2:47:87:d4:a4:b5:
11:fd:1b:b1:ba:b4:63:ac:5c:03:8a:94:7c:b6:95:96:1d:11:
04:e0:1e:ab:fe:4a:c6:ab:1f:3e:c1:b3:66:d2:a2:5d:65:c6:
46:a7:cf:07:ed:8b:7e:8a:83:ae:3c:d1:9d:8d:66:6d:1a:ca:
e8:2b:77:95:d2:39:6d:5b:cc:99:88:c2:d6:98:f2:32:34:a0:
f2:ea:38:21:24:aa:63:0d:9e:4a:2a:ab:57:d5:e9:87:45:a7:
60:65:bc:77:94:31:e9:a9:30:f7:95:16:6b:a3:93:31:ee:37:
0a:de:a9:e5
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBwvA6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZDJhNDc4YmIwYjA4ZTY2MWIwYjJmOWZiZTg5MzViYzljMmEyOGExMB4XDTIyMDEw
MTAzNTQxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmQxZjU0NDNlZGFm
ZmU2ZDcxODFlOTM1ODc4YWVmNzBjZGM0NjNlMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANCxHjLsV/T9kxv8YWaciLtaoHe3cqm3cA/pmuXPOv86zYLi
jt8WADBgI1Xstc1QPuk5/b1ecHMYwM5TdJT20bFQCf681qzAOdBD++/Nguuyspap
UFoee6EB14htAiBJqCUc128Gx75kVOUouOknyOI26hnhDipm36waCs1kAFAV7Z+z
Yl+9efXBy5KxdcVuyUqDfqb7xNl3yb03m5h/2xdYK/mEGpZ2jFM+xr71iMZjgO2F
U4hocrwIK1Tz9K49jz44SgVXKykl6jNjFEFKgLVgX8pyvIPsEVXr1CVSurV7P3nM
rE9ZjEm1Vx/DdAHkRH2f1D/0ofsIGNXLvJeLWx8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRtH1RD7a/+bXGB6TWHiu9wzcRj4zAfBgNVHSMEGDAWgBSdKkeLsLCOZhsL
L5++iTW8nCoooTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25TcEhpN0N3am1ZYkN5LWZ2b2sxdkp3cUtLRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvNjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8x
L2JSOVVRLTJ2X20xeGdlazFoNHJ2Y00zRVktTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
NjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8xL25TcEhpN0N3am1Z
YkN5LWZ2b2sxdkp3cUtLRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAME5KgMEAMIPNzANBgkqhkiG9w0B
AQsFAAOCAQEAYmqRUWw0OfbGdMeUBiRq6+ZpiP7kF8WqIHm5CXjcFObCyqcl5SxW
Mo8ghCmuKuHZ18KgCP1urcPsgebddnsrW7lwTuHtl3vW9NQ/fDDAXxnsZD/Enoet
kUmKvbhudteMm8hbyMxtSbuLbl8k3yDHX5UMTBwk4i/sR6PLmQ+u+YkAgX3px+TO
BSDT4keH1KS1Ef0bsbq0Y6xcA4qUfLaVlh0RBOAeq/5KxqsfPsGzZtKiXWXGRqfP
B+2LfoqDrjzRnY1mbRrK6Ct3ldI5bVvMmYjC1pjyMjSg8uo4ISSqYw2eSiqrV9Xp
h0WnYGW8d5Qx6akw95UWa6OTMe43Ct6p5Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org