Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/Vm6d2hR6D-cDfl_NdADdE-LhSvA.roa
File: Vm6d2hR6D-cDfl_NdADdE-LhSvA.roa (raw, json)
Hash identifier: zW3A9qlzOwDsbmd94PnIouY3gF8WpOtY5UkkqJLSVag=
Subject key identifier: 56:6E:9D:DA:14:7A:0F:E7:03:7E:5F:CD:74:00:DD:13:E2:E1:4A:F0
Certificate issuer: /CN=0958b54bfee9896c4ada7dc18b3b7f9719da046b
Certificate serial: F7CD
Authority key identifier: 09:58:B5:4B:FE:E9:89:6C:4A:DA:7D:C1:8B:3B:7F:97:19:DA:04:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVi1S_7piWxK2n3Bizt_lxnaBGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/Vm6d2hR6D-cDfl_NdADdE-LhSvA.roa
Signing time: Thu 28 Apr 2022 12:35:42 +0000
ROA not before: Thu 28 Apr 2022 12:35:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.0.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63437 (0xf7cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0958b54bfee9896c4ada7dc18b3b7f9719da046b
Validity
Not Before: Apr 28 12:35:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=566e9dda147a0fe7037e5fcd7400dd13e2e14af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c7:37:e9:3a:6e:95:85:50:0c:77:ab:7d:7e:
06:5d:05:2c:31:a5:9b:03:55:19:8b:91:97:99:33:
e4:f5:06:c4:c0:51:43:17:22:74:27:cf:9b:94:bb:
54:3b:c7:33:79:94:22:be:c9:03:f1:e1:04:a4:5a:
aa:36:d7:2b:8e:42:cc:ab:9b:49:20:5a:86:3c:c7:
36:15:62:98:8d:40:68:d9:39:0a:f5:5f:c6:d0:e6:
21:37:57:f2:7a:cf:ab:f2:5a:39:fc:4a:b7:7d:5b:
f2:3e:32:db:19:c2:d7:69:e4:7f:ac:0c:44:e2:cf:
22:48:63:7a:eb:ff:69:28:91:e2:a3:58:44:65:6f:
6d:47:3b:06:b0:b9:84:f6:47:e0:40:d6:e3:60:ce:
10:23:7a:72:14:8f:a0:e4:f3:0a:bb:86:cb:e3:c5:
49:2f:e6:32:10:fc:98:30:7e:70:ee:86:7a:d7:9d:
e6:41:2a:f7:79:f8:11:06:93:75:6f:62:73:c2:52:
72:f3:d7:09:90:52:d6:95:bc:f6:1d:43:9b:bf:0f:
cc:b8:13:b8:31:d9:ed:c9:d7:54:97:11:89:d9:e8:
bd:4f:1c:1a:3a:6b:fc:c1:03:6e:db:c0:78:f4:2e:
de:cf:d5:81:c4:c5:5e:75:e2:d7:4d:65:43:38:e5:
06:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6E:9D:DA:14:7A:0F:E7:03:7E:5F:CD:74:00:DD:13:E2:E1:4A:F0
X509v3 Authority Key Identifier:
keyid:09:58:B5:4B:FE:E9:89:6C:4A:DA:7D:C1:8B:3B:7F:97:19:DA:04:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVi1S_7piWxK2n3Bizt_lxnaBGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/Vm6d2hR6D-cDfl_NdADdE-LhSvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/CVi1S_7piWxK2n3Bizt_lxnaBGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.237.0/24
Signature Algorithm: sha256WithRSAEncryption
08:38:a6:7e:c3:c8:9e:2c:b0:62:60:35:cf:7d:cf:f5:68:e4:
f6:bd:d3:d6:3e:42:93:0b:06:18:45:c6:7b:d4:d5:53:01:d0:
02:7b:3e:90:78:81:00:09:fe:65:76:01:bb:d8:e5:02:a0:71:
5a:4c:b0:d0:d0:7b:9c:8d:f3:66:f3:38:b3:69:6a:1f:23:b5:
db:31:03:26:79:c3:b6:ec:8a:cf:53:1a:a0:b3:1c:1d:09:be:
d2:d6:cc:2b:46:b9:95:b2:e4:94:6e:df:b9:7c:a0:c5:88:15:
8b:da:ac:67:fa:04:64:b7:68:32:86:12:1c:bd:3c:33:dc:ba:
8e:e6:bf:d8:df:5d:5b:25:6c:91:b9:82:de:1f:f0:6f:2c:ff:
0c:67:3d:66:5f:73:52:ef:96:6d:95:47:16:89:71:4f:ce:ad:
b9:92:50:ca:24:9c:4a:03:67:9b:b8:4b:83:a3:43:41:b2:a5:
b9:fc:a8:4e:fd:23:85:46:1b:8e:4b:4f:ff:f1:f1:ed:2c:2a:
d3:f5:c8:18:2c:a8:84:e3:44:16:f4:6c:df:cb:6c:03:87:d8:
fb:ae:a2:85:b9:0b:42:2b:16:79:3c:25:a7:fb:7b:f7:13:04:
26:af:0a:d5:bc:02:65:e9:90:9a:93:e9:44:78:3c:24:1f:38:
70:50:70:4f
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAPfNMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDA5
NThiNTRiZmVlOTg5NmM0YWRhN2RjMThiM2I3Zjk3MTlkYTA0NmIwHhcNMjIwNDI4
MTIzNTQyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1NjZlOWRkYTE0N2Ew
ZmU3MDM3ZTVmY2Q3NDAwZGQxM2UyZTE0YWYwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAv8c36TpulYVQDHerfX4GXQUsMaWbA1UZi5GXmTPk9QbEwFFD
FyJ0J8+blLtUO8czeZQivskD8eEEpFqqNtcrjkLMq5tJIFqGPMc2FWKYjUBo2TkK
9V/G0OYhN1fyes+r8lo5/Eq3fVvyPjLbGcLXaeR/rAxE4s8iSGN66/9pKJHio1hE
ZW9tRzsGsLmE9kfgQNbjYM4QI3pyFI+g5PMKu4bL48VJL+YyEPyYMH5w7oZ6153m
QSr3efgRBpN1b2JzwlJy89cJkFLWlbz2HUObvw/MuBO4MdntyddUlxGJ2ei9Txwa
Omv8wQNu28B49C7ez9WBxMVedeLXTWVDOOUGlwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFFZundoUeg/nA35fzXQA3RPi4UrwMB8GA1UdIwQYMBaAFAlYtUv+6YlsStp9
wYs7f5cZ2gRrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Q1ZpMVNfN3BpV3hLMm4zQml6dF9seG5hQkdzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xYS9hNjBmODYtOGI5NC00MTBhLWJmZDEtZmY0YzcxODMwMjRmLzEv
Vm02ZDJoUjZELWNEZmxfTmRBRGRFLUxoU3ZBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9h
NjBmODYtOGI5NC00MTBhLWJmZDEtZmY0YzcxODMwMjRmLzEvQ1ZpMVNfN3BpV3hL
Mm4zQml6dF9seG5hQkdzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQDtMA0GCSqGSIb3DQEBCwUAA4IB
AQAIOKZ+w8ieLLBiYDXPfc/1aOT2vdPWPkKTCwYYRcZ71NVTAdACez6QeIEACf5l
dgG72OUCoHFaTLDQ0HucjfNm8zizaWofI7XbMQMmecO27IrPUxqgsxwdCb7S1swr
RrmVsuSUbt+5fKDFiBWL2qxn+gRkt2gyhhIcvTwz3LqO5r/Y311bJWyRuYLeH/Bv
LP8MZz1mX3NS75ZtlUcWiXFPzq25klDKJJxKA2ebuEuDo0NBsqW5/KhO/SOFRhuO
S0//8fHtLCrT9cgYLKiE40QW9Gzfy2wDh9j7rqKFuQtCKxZ5PCWn+3v3EwQmrwrV
vAJl6ZCak+lEeDwkHzhwUHBP
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:39 2024 by rpki-client on console-ams.rpki-client.org