Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/kmn7K6TTsZu2li4nlFqCc-GFamE.roa
File: kmn7K6TTsZu2li4nlFqCc-GFamE.roa (raw, json)
Hash identifier: YswxXm7ahDyUlcmmY7SH0fLjIXgyG3vdEFBOMkiRzhE=
Subject key identifier: 92:69:FB:2B:A4:D3:B1:9B:B6:96:2E:27:94:5A:82:73:E1:85:6A:61
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CEB3227
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/kmn7K6TTsZu2li4nlFqCc-GFamE.roa
Signing time: Tue 19 Apr 2022 06:13:01 +0000
ROA not before: Tue 19 Apr 2022 06:13:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 194.195.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216740391 (0xceb3227)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 19 06:13:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9269fb2ba4d3b19bb6962e27945a8273e1856a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:99:2e:f5:bd:c8:2a:2d:95:2b:e2:b9:36:d1:
7d:7c:d4:e0:4b:bc:6e:d3:e9:ef:f7:13:6e:57:5e:
9a:be:26:f8:5e:e8:61:5a:8a:58:3a:13:31:52:bf:
80:a7:e8:10:45:57:0e:48:c1:14:73:e4:75:09:45:
d9:b2:b0:11:7a:25:b6:33:8e:09:c7:1a:ff:2a:54:
af:d3:de:d4:17:61:d9:6d:bc:f0:02:50:06:53:ee:
4f:33:5d:b5:f5:70:21:7f:29:eb:5d:56:a0:30:81:
a9:a5:c3:dd:1c:02:4b:4b:ac:0f:be:c6:5f:d1:e7:
46:77:b7:61:af:1e:95:ff:19:f1:43:3f:75:19:10:
ef:62:62:57:86:a3:c2:5c:b7:67:ca:30:ef:c6:8a:
17:f1:e8:1f:d7:f8:73:c2:0a:09:cc:af:5e:6a:70:
3c:a1:71:02:cf:0b:83:19:25:1c:b9:3d:ca:85:bc:
a1:9f:70:bb:a0:f2:b3:46:a9:9d:76:1b:73:3b:9e:
e1:72:ce:31:a2:1d:4d:24:ed:a4:8e:68:cd:d7:e4:
51:b6:a3:3b:67:cd:09:db:ba:1d:5a:e6:20:40:d5:
30:25:ab:0d:37:58:9d:68:90:4a:42:45:b1:b6:f3:
43:04:de:8f:dc:0d:2f:a2:fc:9a:ea:7b:a7:f3:87:
29:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:69:FB:2B:A4:D3:B1:9B:B6:96:2E:27:94:5A:82:73:E1:85:6A:61
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/kmn7K6TTsZu2li4nlFqCc-GFamE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.195.232.0/22
Signature Algorithm: sha256WithRSAEncryption
13:6e:49:4e:dc:94:3b:77:e7:0e:b8:7f:d5:00:b1:56:b1:d7:
8b:7f:45:78:36:7b:39:c8:60:0c:9a:ee:2b:e2:10:10:bc:ac:
3e:92:cd:32:53:97:f4:3d:e7:9d:35:2f:e2:25:27:e7:64:4d:
1f:ab:ac:4c:cc:0c:40:ee:83:95:71:9b:23:af:75:63:23:57:
02:2d:8d:38:19:02:8e:ee:0c:24:8d:c9:94:8e:4f:15:e4:57:
96:c6:46:e2:84:33:f3:2d:80:f5:30:38:b6:24:e3:a1:4d:d2:
31:9c:51:c9:ff:2f:31:2a:02:bd:28:a8:44:e3:68:4a:f3:a2:
d9:d6:47:83:ac:25:cb:39:79:ae:f7:9c:d5:27:88:80:65:01:
94:22:a2:99:ea:49:5d:ca:79:a8:90:b4:39:89:68:8d:2f:27:
49:16:a1:ed:ab:19:b0:b3:78:62:27:63:58:a4:30:50:98:5f:
cb:1b:04:25:e3:6a:33:ad:ca:21:e6:7e:01:43:05:4f:24:0c:
b8:8b:45:31:93:a5:5a:df:be:0d:b0:47:ab:fc:be:90:32:6f:
0a:51:9f:26:91:2a:f9:57:51:52:e3:c7:de:10:fb:bf:6e:77:
44:60:d2:c4:43:57:c4:85:4d:1c:ae:e9:83:67:70:c0:df:7c:
78:1f:9e:1c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDOsyJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDQx
OTA2MTMwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTI2OWZiMmJhNGQz
YjE5YmI2OTYyZTI3OTQ1YTgyNzNlMTg1NmE2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANCZLvW9yCotlSviuTbRfXzU4Eu8btPp7/cTbldemr4m+F7o
YVqKWDoTMVK/gKfoEEVXDkjBFHPkdQlF2bKwEXoltjOOCcca/ypUr9Pe1Bdh2W28
8AJQBlPuTzNdtfVwIX8p611WoDCBqaXD3RwCS0usD77GX9HnRne3Ya8elf8Z8UM/
dRkQ72JiV4ajwly3Z8ow78aKF/HoH9f4c8IKCcyvXmpwPKFxAs8LgxklHLk9yoW8
oZ9wu6Dys0apnXYbczue4XLOMaIdTSTtpI5ozdfkUbajO2fNCdu6HVrmIEDVMCWr
DTdYnWiQSkJFsbbzQwTej9wNL6L8mup7p/OHKfMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSSafsrpNOxm7aWLieUWoJz4YVqYTAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L2ttbjdLNlRUc1p1MmxpNG5sRnFDYy1HRmFtRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsLD6DANBgkqhkiG9w0BAQsFAAOC
AQEAE25JTtyUO3fnDrh/1QCxVrHXi39FeDZ7OchgDJruK+IQELysPpLNMlOX9D3n
nTUv4iUn52RNH6usTMwMQO6DlXGbI691YyNXAi2NOBkCju4MJI3JlI5PFeRXlsZG
4oQz8y2A9TA4tiTjoU3SMZxRyf8vMSoCvSioRONoSvOi2dZHg6wlyzl5rvec1SeI
gGUBlCKimepJXcp5qJC0OYlojS8nSRah7asZsLN4YidjWKQwUJhfyxsEJeNqM63K
IeZ+AUMFTyQMuItFMZOlWt++DbBHq/y+kDJvClGfJpEq+VdRUuPH3hD7v253RGDS
xENXxIVNHK7pg2dwwN98eB+eHA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org