Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/CUwzypAozKgIGhdsJIpCL-nvQ98.roa
File: CUwzypAozKgIGhdsJIpCL-nvQ98.roa (raw, json)
Hash identifier: pbsK2zU64jcXRt9UJ6r1vndW4EAaEeRYnPlPNNOF96U=
Subject key identifier: 09:4C:33:CA:90:28:CC:A8:08:1A:17:6C:24:8A:42:2F:E9:EF:43:DF
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01835EC9DB11BC32C2855661D5967B43C922
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/CUwzypAozKgIGhdsJIpCL-nvQ98.roa
Signing time: Wed 21 Sep 2022 06:43:50 +0000
ROA not before: Wed 21 Sep 2022 06:43:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211459
IP address blocks: 194.233.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5e:c9:db:11:bc:32:c2:85:56:61:d5:96:7b:43:c9:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Sep 21 06:43:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=094c33ca9028cca8081a176c248a422fe9ef43df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3d:33:56:a3:0c:33:87:72:4f:3e:dd:ee:89:
99:10:c2:c8:33:92:66:50:16:63:f2:d3:77:e7:1d:
44:af:94:4c:01:10:bf:10:7f:21:8b:08:7c:a8:4d:
9f:12:5e:8b:ec:6c:3e:16:b9:f9:06:51:26:c5:f0:
5f:fb:f2:53:cc:d8:65:19:38:d0:d2:b8:3c:de:71:
33:64:e7:c7:70:8f:96:b0:87:0e:32:dc:5c:92:73:
c1:48:be:c8:5d:68:19:7b:3c:61:4d:b4:0f:d2:d1:
19:e9:57:49:4d:3c:48:7e:a4:b4:02:de:4e:39:df:
72:ba:e0:0f:aa:29:a6:74:d2:64:62:62:3f:25:49:
f4:e5:9c:a1:69:41:4d:62:5e:54:a5:7d:5a:b7:b2:
da:a1:84:0c:4e:b4:a6:e5:95:98:eb:46:c3:81:a8:
24:d8:c9:03:e6:ab:c6:30:c7:f9:2a:c0:cd:f9:2d:
db:6f:ca:64:48:20:33:2f:bc:db:ea:00:fd:45:06:
94:49:76:80:92:8c:c1:7c:eb:59:6a:21:1c:75:1f:
2c:17:01:4f:e2:f1:95:e0:2a:90:65:26:12:24:0b:
82:b6:58:77:44:b7:0a:c0:6c:cd:e3:a7:2a:10:5e:
25:9b:1a:c6:c4:8e:31:22:0e:cf:af:39:7d:4d:7f:
be:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:4C:33:CA:90:28:CC:A8:08:1A:17:6C:24:8A:42:2F:E9:EF:43:DF
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/CUwzypAozKgIGhdsJIpCL-nvQ98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f8:4f:6c:d6:4f:d6:ad:cd:ac:ac:bf:48:74:ce:b9:7a:50:
74:06:27:27:69:8e:a0:be:7f:fe:82:5f:c2:6f:42:72:1d:eb:
db:7c:46:dc:81:52:80:6c:5d:4a:10:4b:ec:ac:05:09:70:b3:
7e:d4:60:81:7e:d2:61:95:d7:e3:6f:c1:b3:f6:1b:d3:5d:af:
a4:00:8c:d9:6c:4f:29:2d:36:e1:5a:17:a3:be:09:c3:e2:49:
3e:95:1e:3e:3f:d4:ad:87:51:77:62:bd:59:a1:3f:23:a0:85:
ce:25:3c:42:2a:46:d6:5f:59:62:6e:2d:24:37:6f:a0:4b:4e:
11:97:c6:36:8d:87:b5:a4:89:a2:68:63:e8:e4:39:55:c0:b4:
2c:4b:33:e1:0a:ca:9e:79:59:58:bc:97:e1:49:55:3d:e7:26:
56:e8:f0:29:82:09:d2:30:6f:29:ef:e7:c1:c9:0d:49:6d:63:
87:20:6b:1b:8e:14:09:4d:99:e8:4b:a9:55:ea:17:65:18:21:
d9:3a:60:cf:10:d0:fb:61:5c:9d:a7:f9:d2:22:9c:d8:49:f8:
e2:a7:59:02:ff:ad:74:0b:22:60:b9:04:7b:e9:17:84:35:e2:
e4:1a:df:00:02:60:15:23:20:95:ab:11:f3:10:aa:a7:b9:5a:
e1:f4:56:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNeydsRvDLChVZh1ZZ7Q8kiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NDcwMTc1NjRjNzExYmNiZDU3NjgwYTBkZmQwMGYyYTVk
MDk5ZGIwHhcNMjIwOTIxMDY0MzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTRjMzNjYTkwMjhjY2E4MDgxYTE3NmMyNDhhNDIyZmU5ZWY0M2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsT0zVqMMM4dyTz7d7omZEMLIM5Jm
UBZj8tN35x1Er5RMARC/EH8hiwh8qE2fEl6L7Gw+Frn5BlEmxfBf+/JTzNhlGTjQ
0rg83nEzZOfHcI+WsIcOMtxcknPBSL7IXWgZezxhTbQP0tEZ6VdJTTxIfqS0At5O
Od9yuuAPqimmdNJkYmI/JUn05ZyhaUFNYl5UpX1at7LaoYQMTrSm5ZWY60bDgagk
2MkD5qvGMMf5KsDN+S3bb8pkSCAzL7zb6gD9RQaUSXaAkozBfOtZaiEcdR8sFwFP
4vGV4CqQZSYSJAuCtlh3RLcKwGzN46cqEF4lmxrGxI4xIg7Przl9TX++ywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAlMM8qQKMyoCBoXbCSKQi/p70PfMB8GA1UdIwQY
MBaAFNdHAXVkxxG8vVdoCg39APKl0JnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjIt
NGYwZThjZTExYTdkLzEvQ1V3enlwQW96S2dJR2hkc0pJcENMLW52UTk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjItNGYwZThjZTExYTdk
LzEvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwumXMA0G
CSqGSIb3DQEBCwUAA4IBAQBI+E9s1k/Wrc2srL9IdM65elB0BicnaY6gvn/+gl/C
b0JyHevbfEbcgVKAbF1KEEvsrAUJcLN+1GCBftJhldfjb8Gz9hvTXa+kAIzZbE8p
LTbhWhejvgnD4kk+lR4+P9Sth1F3Yr1ZoT8joIXOJTxCKkbWX1libi0kN2+gS04R
l8Y2jYe1pImiaGPo5DlVwLQsSzPhCsqeeVlYvJfhSVU95yZW6PApggnSMG8p7+fB
yQ1JbWOHIGsbjhQJTZnoS6lV6hdlGCHZOmDPEND7YVydp/nSIpzYSfjip1kC/610
CyJguQR76ReENeLkGt8AAmAVIyCVqxHzEKqnuVrh9FZc
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org