Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Xyc0WbAZb9AzRtwlqJbEDD6dNSM.roa
File: Xyc0WbAZb9AzRtwlqJbEDD6dNSM.roa (raw, json)
Hash identifier: lB84XBcDlRPdqCAj1MRK4u1ZpSyuVPk+I2uuoLME8l8=
Subject key identifier: 5F:27:34:59:B0:19:6F:D0:33:46:DC:25:A8:96:C4:0C:3E:9D:35:23
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D3E6641
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Xyc0WbAZb9AzRtwlqJbEDD6dNSM.roa
Signing time: Thu 12 May 2022 06:39:02 +0000
ROA not before: Thu 12 May 2022 06:39:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 194.163.88.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222193217 (0xd3e6641)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 12 06:39:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f273459b0196fd03346dc25a896c40c3e9d3523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4a:42:fe:fd:b0:c8:02:c0:20:9a:89:d3:46:
46:7f:46:d8:0d:4b:77:1f:15:29:9b:fd:25:1f:5b:
f8:0e:9d:43:08:13:2e:d8:bd:97:2f:84:04:70:d0:
68:62:09:52:1c:64:74:8e:1b:a6:cd:55:f1:24:24:
f9:7a:ce:e9:e4:80:e0:43:50:76:3f:e2:95:1b:14:
ff:75:8c:e5:ed:dc:4a:8d:28:6e:d7:c0:d9:63:42:
49:e3:1d:fb:0d:a6:76:75:1b:55:46:ff:f9:ee:e0:
fe:57:fd:f9:5f:fe:b1:95:1d:ea:58:12:66:01:b8:
67:30:6a:a8:63:cd:1d:00:f4:29:e0:14:25:3c:6d:
31:55:a1:15:1f:00:3e:52:97:e5:55:dc:f3:81:76:
46:a9:7a:ca:2e:4b:ab:ad:12:e9:e2:d3:b8:5e:11:
5c:f1:5e:c0:88:a3:56:3f:d3:cf:b0:a4:b9:88:3a:
a2:a7:42:89:43:9f:15:b7:20:34:0d:40:72:7d:9b:
d6:0d:6e:e8:e0:fd:e8:5c:55:6d:8e:3a:db:3f:4e:
f4:85:0a:a7:ea:d1:bc:8c:f3:d7:3d:7a:b5:13:ad:
72:24:f7:f1:eb:5b:d1:9b:5b:77:a4:de:98:05:25:
ba:d4:8c:db:2d:04:af:d3:34:d1:62:6b:6d:3a:e4:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:27:34:59:B0:19:6F:D0:33:46:DC:25:A8:96:C4:0C:3E:9D:35:23
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Xyc0WbAZb9AzRtwlqJbEDD6dNSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.88.0/23
Signature Algorithm: sha256WithRSAEncryption
65:38:2b:2e:2c:46:be:f1:ca:e2:6c:fd:f2:c5:b8:66:2f:a2:
4f:73:df:65:ad:37:ad:36:54:9d:b1:05:08:96:8c:e2:d7:db:
1e:9d:ed:d9:ee:7c:3b:86:5d:0b:26:73:72:89:dc:f9:f0:42:
d3:97:82:a4:06:36:a8:f9:e8:63:01:c0:78:0d:5e:d3:c2:aa:
06:ec:32:db:58:d7:cf:96:36:c5:ef:e4:1a:e4:91:1a:bd:50:
2a:fb:c6:06:42:32:1e:43:4a:38:fb:35:6e:ab:56:ed:9c:a9:
e6:b6:80:85:51:de:28:84:a6:4e:3f:c8:7c:15:44:a8:19:ac:
af:d6:89:cc:be:81:4b:68:bd:2c:d4:99:dc:ca:69:d8:10:6c:
1b:d1:21:2e:3d:ad:3c:7f:96:13:89:47:c5:3e:da:1f:fc:09:
36:7b:a4:93:34:ab:19:40:d0:0a:23:69:b2:d3:35:61:18:40:
30:3c:53:44:04:70:a1:6e:b7:2c:8a:f7:84:6d:e3:3e:ee:fb:
e5:f3:b9:83:1f:5a:d5:dc:87:b6:80:7a:d6:7f:34:a8:23:1c:
90:da:d1:61:07:f5:7a:65:0f:67:e2:19:14:c0:db:87:fe:f0:
aa:77:e0:ab:73:b8:8f:5f:01:7a:ab:47:8e:0e:e8:72:49:60:
4e:3c:c5:cf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDT5mQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDUx
MjA2MzkwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWYyNzM0NTliMDE5
NmZkMDMzNDZkYzI1YTg5NmM0MGMzZTlkMzUyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKFKQv79sMgCwCCaidNGRn9G2A1Ldx8VKZv9JR9b+A6dQwgT
Lti9ly+EBHDQaGIJUhxkdI4bps1V8SQk+XrO6eSA4ENQdj/ilRsU/3WM5e3cSo0o
btfA2WNCSeMd+w2mdnUbVUb/+e7g/lf9+V/+sZUd6lgSZgG4ZzBqqGPNHQD0KeAU
JTxtMVWhFR8APlKX5VXc84F2Rql6yi5Lq60S6eLTuF4RXPFewIijVj/Tz7CkuYg6
oqdCiUOfFbcgNA1Acn2b1g1u6OD96FxVbY462z9O9IUKp+rRvIzz1z16tROtciT3
8etb0Ztbd6TemAUlutSM2y0Er9M00WJrbTrkupMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRfJzRZsBlv0DNG3CWolsQMPp01IzAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L1h5YzBXYkFaYjlBelJ0d2xxSmJFREQ2ZE5TTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcKjWDANBgkqhkiG9w0BAQsFAAOC
AQEAZTgrLixGvvHK4mz98sW4Zi+iT3PfZa03rTZUnbEFCJaM4tfbHp3t2e58O4Zd
CyZzconc+fBC05eCpAY2qPnoYwHAeA1e08KqBuwy21jXz5Y2xe/kGuSRGr1QKvvG
BkIyHkNKOPs1bqtW7Zyp5raAhVHeKISmTj/IfBVEqBmsr9aJzL6BS2i9LNSZ3Mpp
2BBsG9EhLj2tPH+WE4lHxT7aH/wJNnukkzSrGUDQCiNpstM1YRhAMDxTRARwoW63
LIr3hG3jPu775fO5gx9a1dyHtoB61n80qCMckNrRYQf1emUPZ+IZFMDbh/7wqnfg
q3O4j18BeqtHjg7ocklgTjzFzw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org