Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ibgMa2UkgQV8WBoqEhulMgvUrds.roa
File: ibgMa2UkgQV8WBoqEhulMgvUrds.roa (raw, json)
Hash identifier: tmhf117Mw2gaKG7OZCLw3PvKS6fQaP6wMJOLsUm7Bx8=
Subject key identifier: 89:B8:0C:6B:65:24:81:05:7C:58:1A:2A:12:1B:A5:32:0B:D4:AD:DB
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 093A887F
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ibgMa2UkgQV8WBoqEhulMgvUrds.roa
Signing time: Sat 01 Jan 2022 16:01:02 +0000
ROA not before: Sat 01 Jan 2022 16:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212711
IP address blocks: 194.56.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154830975 (0x93a887f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89b80c6b652481057c581a2a121ba5320bd4addb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:91:43:57:78:0c:bc:de:00:a4:20:3b:87:b1:
b3:3f:b2:41:55:a5:06:71:2b:c2:63:c0:f1:71:4a:
25:0e:cc:4a:19:bf:12:ea:ee:66:6f:55:dc:17:72:
51:2d:d4:7d:8a:aa:6f:4e:3b:96:ed:57:bd:5b:1d:
1c:b8:c6:53:c0:e9:3b:ae:1a:8b:2c:f3:e5:50:ee:
90:ae:02:65:08:6a:b9:15:ac:4f:12:6b:5d:e1:91:
14:3f:03:2e:40:82:2d:08:79:d4:c0:5b:5e:d4:b4:
af:22:9d:e7:bb:33:3f:6c:73:83:54:77:f9:59:10:
c6:3f:b6:05:5c:d4:0a:3d:f8:be:53:e6:81:97:c5:
af:f6:59:30:c5:92:26:ba:ca:ed:da:99:a2:5b:05:
06:d9:98:fc:14:c7:92:f5:55:ff:68:e4:90:ff:ae:
8c:0b:93:d9:2b:e1:e5:25:03:57:6b:9f:0e:29:ed:
5d:a6:b2:59:8d:5c:9b:1c:0d:15:27:f1:57:83:9d:
9b:48:75:29:ce:75:21:39:ce:11:99:d8:28:3f:4a:
af:3b:43:cd:82:2c:4e:c0:68:60:26:b9:40:63:b9:
9d:cf:84:2c:fc:6a:d2:bb:19:f6:f7:a9:81:42:01:
18:66:25:04:e3:ca:7e:e3:18:1b:76:a2:2e:53:49:
0e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B8:0C:6B:65:24:81:05:7C:58:1A:2A:12:1B:A5:32:0B:D4:AD:DB
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ibgMa2UkgQV8WBoqEhulMgvUrds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.224.0/24
Signature Algorithm: sha256WithRSAEncryption
60:e2:9c:80:0e:39:12:d1:b1:cd:5f:01:de:3a:90:89:19:d7:
89:ae:8c:28:45:54:e8:1b:f7:db:b7:bf:90:a7:55:dc:0d:6f:
6f:b7:10:29:d4:31:08:02:e7:c0:f3:ba:ee:12:01:3b:fb:d8:
8b:b9:fe:96:62:ba:fe:79:f2:21:ad:cf:b5:16:28:1e:3e:3e:
55:12:0e:37:93:21:4b:00:82:dd:28:3f:25:59:2b:9c:52:32:
a0:5c:42:3f:66:f3:b4:37:8e:6d:ce:77:0e:3e:a7:05:97:fe:
9b:02:bf:5d:7f:8f:af:66:3f:9c:b5:41:d8:b6:57:b1:a6:b5:
6c:2d:73:17:54:5b:d8:02:26:57:d3:a4:36:c4:71:1f:9c:ee:
fc:b9:33:3f:a3:3f:b4:9a:25:32:7f:31:86:27:97:97:e8:7a:
57:bf:4b:9c:20:59:cf:91:c1:b9:89:41:b1:b4:c9:2c:6f:77:
88:ee:dc:56:53:c9:3d:b8:78:b8:33:5b:99:49:bc:cf:10:48:
35:bb:a0:01:d2:55:39:cc:42:d9:89:f7:de:85:5b:59:db:a0:
27:1d:dd:50:11:c7:4d:c7:85:db:a5:d2:d6:fb:ec:68:b5:19:
44:7f:4a:6e:29:8b:33:7b:06:47:f0:20:76:f5:2a:d5:9c:de:
74:34:43:79
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECTqIfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDEw
MTE2MDEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODliODBjNmI2NTI0
ODEwNTdjNTgxYTJhMTIxYmE1MzIwYmQ0YWRkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMqRQ1d4DLzeAKQgO4exsz+yQVWlBnErwmPA8XFKJQ7MShm/
EuruZm9V3BdyUS3UfYqqb047lu1XvVsdHLjGU8DpO64aiyzz5VDukK4CZQhquRWs
TxJrXeGRFD8DLkCCLQh51MBbXtS0ryKd57szP2xzg1R3+VkQxj+2BVzUCj34vlPm
gZfFr/ZZMMWSJrrK7dqZolsFBtmY/BTHkvVV/2jkkP+ujAuT2Svh5SUDV2ufDint
XaayWY1cmxwNFSfxV4Odm0h1Kc51ITnOEZnYKD9KrztDzYIsTsBoYCa5QGO5nc+E
LPxq0rsZ9vepgUIBGGYlBOPKfuMYG3aiLlNJDlsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSJuAxrZSSBBXxYGioSG6UyC9St2zAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
L2liZ01hMlVrZ1FWOFdCb3FFaHVsTWd2VXJkcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMI44DANBgkqhkiG9w0BAQsFAAOC
AQEAYOKcgA45EtGxzV8B3jqQiRnXia6MKEVU6Bv327e/kKdV3A1vb7cQKdQxCALn
wPO67hIBO/vYi7n+lmK6/nnyIa3PtRYoHj4+VRION5MhSwCC3Sg/JVkrnFIyoFxC
P2bztDeObc53Dj6nBZf+mwK/XX+Pr2Y/nLVB2LZXsaa1bC1zF1Rb2AImV9OkNsRx
H5zu/LkzP6M/tJolMn8xhieXl+h6V79LnCBZz5HBuYlBsbTJLG93iO7cVlPJPbh4
uDNbmUm8zxBINbugAdJVOcxC2Yn33oVbWdugJx3dUBHHTceF26XS1vvsaLUZRH9K
bimLM3sGR/AgdvUq1ZzedDRDeQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-ams.rpki-client.org