Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/exey7zkMMRrbQ0Mg7umf9ojvS_g.roa
File: exey7zkMMRrbQ0Mg7umf9ojvS_g.roa (raw, json)
Hash identifier: 5EH9YgSg5WaZYYagoc5oipSGMlY/A9fYsTM/ovSWXq8=
Subject key identifier: 7B:17:B2:EF:39:0C:31:1A:DB:43:43:20:EE:E9:9F:F6:88:EF:4B:F8
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018435B64CA7D8572BF39E12350A38BC4CF0
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/exey7zkMMRrbQ0Mg7umf9ojvS_g.roa
Signing time: Wed 02 Nov 2022 00:20:50 +0000
ROA not before: Wed 02 Nov 2022 00:20:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210718
IP address blocks: 193.31.28.0/24 maxlen: 24
2a0b:b87:ff12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:35:b6:4c:a7:d8:57:2b:f3:9e:12:35:0a:38:bc:4c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 2 00:20:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b17b2ef390c311adb434320eee99ff688ef4bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d5:d5:b3:c3:ce:93:5b:00:df:db:28:ff:4a:
16:0c:98:04:c4:03:eb:9e:77:bf:d1:18:99:97:56:
5e:29:00:b0:10:e5:94:9f:de:42:a6:2a:58:70:96:
02:1e:86:ab:bd:af:3d:91:22:46:60:a7:8d:c4:b8:
05:6e:e8:98:84:da:01:f2:3d:b6:f9:bc:25:21:03:
43:55:83:cd:c0:c0:3c:fd:f2:56:5a:01:d7:90:a9:
ad:a3:14:64:67:2f:34:fe:f7:92:5f:c8:95:ef:3c:
8f:fa:31:79:aa:eb:08:69:20:03:05:8a:4a:a1:3d:
e6:ff:54:23:1e:ac:eb:16:3c:9e:0a:a5:42:72:d5:
d8:f9:89:06:e3:a1:9b:76:e1:94:b3:06:f0:6d:4e:
9a:ce:5d:d6:c8:39:57:cf:47:5d:2e:7f:98:7c:63:
4e:47:68:5d:2a:e2:7e:1d:ab:44:64:6a:95:ec:d4:
c4:18:d8:91:dd:41:69:65:49:3d:62:6b:ba:57:40:
5a:13:b2:cc:1d:ee:0a:40:28:31:f1:c8:c6:f2:2f:
80:5a:c7:69:a6:f3:eb:b5:3b:a3:1c:a5:30:d2:b0:
0a:6d:4a:0d:fb:1e:5b:85:7a:31:8e:fb:6f:cc:ed:
d2:6d:b2:42:27:c0:b3:ab:d8:b1:0a:3d:15:c1:95:
3d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:17:B2:EF:39:0C:31:1A:DB:43:43:20:EE:E9:9F:F6:88:EF:4B:F8
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/exey7zkMMRrbQ0Mg7umf9ojvS_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.28.0/24
IPv6:
2a0b:b87:ff12::/48
Signature Algorithm: sha256WithRSAEncryption
45:ae:2a:76:51:7a:6b:14:ed:c8:ad:50:60:1e:8b:27:a8:4c:
49:ec:d9:e7:27:a0:6a:ae:89:61:ae:25:31:c4:7f:3a:ab:00:
05:bf:05:94:d4:2e:d2:ee:4a:4c:90:a7:c4:6a:1f:30:6a:e3:
fe:18:e7:58:f2:cc:c9:91:24:5a:ee:f1:99:5d:cc:6b:4b:03:
5c:3a:f6:a1:79:3d:5a:e5:ce:0a:7b:af:21:6a:6a:97:9e:6f:
51:60:3d:e5:4b:40:13:07:a1:5a:97:48:c3:e7:19:c0:49:64:
ac:70:d5:b1:87:e4:3c:b0:fa:68:23:80:fb:e3:cd:2e:72:74:
47:17:80:4c:6d:bf:8f:76:ac:a6:cb:a2:70:58:29:0d:95:9c:
4a:6a:72:d6:02:30:c7:9a:ee:22:24:0a:95:41:32:6f:df:a5:
e9:26:ab:e6:71:32:ca:4d:c5:49:fe:2a:ec:23:08:ba:ef:af:
05:ce:9f:2c:16:48:4b:3e:94:53:7a:1f:67:2a:5a:7e:94:ad:
15:3e:f3:e0:8c:a0:86:6c:13:e6:e9:cf:6a:6e:7a:98:35:b3:
32:1e:fe:c0:84:21:3f:78:b4:b9:5a:0b:ae:18:2b:b8:ef:73:
ac:69:97:90:57:8d:36:9f:0c:7a:75:ad:ff:ba:cf:32:bc:c2:
70:90:c3:b0
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYQ1tkyn2Fcr854SNQo4vEzwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjIxMTAyMDAyMDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjE3YjJlZjM5MGMzMTFhZGI0MzQzMjBlZWU5OWZmNjg4ZWY0YmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tXVs8POk1sA39so/0oWDJgExAPr
nne/0RiZl1ZeKQCwEOWUn95CpipYcJYCHoarva89kSJGYKeNxLgFbuiYhNoB8j22
+bwlIQNDVYPNwMA8/fJWWgHXkKmtoxRkZy80/veSX8iV7zyP+jF5qusIaSADBYpK
oT3m/1QjHqzrFjyeCqVCctXY+YkG46GbduGUswbwbU6azl3WyDlXz0ddLn+YfGNO
R2hdKuJ+HatEZGqV7NTEGNiR3UFpZUk9Ymu6V0BaE7LMHe4KQCgx8cjG8i+AWsdp
pvPrtTujHKUw0rAKbUoN+x5bhXoxjvtvzO3SbbJCJ8Czq9ixCj0VwZU9jQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHsXsu85DDEa20NDIO7pn/aI70v4MB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvZXhleTd6a01NUnJiUTBNZzd1bWY5b2p2U19nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwR8cMA8E
AgACMAkDBwAqCwuH/xIwDQYJKoZIhvcNAQELBQADggEBAEWuKnZRemsU7citUGAe
iyeoTEns2ecnoGquiWGuJTHEfzqrAAW/BZTULtLuSkyQp8RqHzBq4/4Y51jyzMmR
JFru8ZldzGtLA1w69qF5PVrlzgp7ryFqapeeb1FgPeVLQBMHoVqXSMPnGcBJZKxw
1bGH5Dyw+mgjgPvjzS5ydEcXgExtv492rKbLonBYKQ2VnEpqctYCMMea7iIkCpVB
Mm/fpekmq+ZxMspNxUn+KuwjCLrvrwXOnywWSEs+lFN6H2cqWn6UrRU+8+CMoIZs
E+bpz2puepg1szIe/sCEIT94tLlaC64YK7jvc6xpl5BXjTafDHp1rf+6zzK8wnCQ
w7A=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org