Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/xzEHP30q4EgBWxl6tre9v0zouYY.roa
File: xzEHP30q4EgBWxl6tre9v0zouYY.roa (raw, json)
Hash identifier: pgu3Ha4yKZF+C83Nwr3+FEkTcBL/HRBHz4oyED0CUlI=
Subject key identifier: C7:31:07:3F:7D:2A:E0:48:01:5B:19:7A:B6:B7:BD:BF:4C:E8:B9:86
Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c
Certificate serial: 06D1DEC6
Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/xzEHP30q4EgBWxl6tre9v0zouYY.roa
Signing time: Sat 01 Jan 2022 04:53:39 +0000
ROA not before: Sat 01 Jan 2022 04:53:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211180
IP address blocks: 193.218.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114417350 (0x6d1dec6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c
Validity
Not Before: Jan 1 04:53:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c731073f7d2ae048015b197ab6b7bdbf4ce8b986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:dc:9f:62:10:b8:e2:63:5f:fa:44:f7:73:
a6:a8:ee:e5:78:74:2f:bb:16:9f:44:49:1a:8c:51:
f9:1b:15:fe:c4:6b:9e:54:8b:aa:3b:07:6b:b8:a8:
e9:32:1a:05:ed:23:81:72:29:e4:5f:06:47:e5:35:
b9:0c:31:ed:e2:c1:37:b1:bf:c4:49:25:6f:36:75:
6f:a0:95:3c:5f:6b:1a:4d:68:21:8c:53:ef:f0:15:
27:72:c8:cd:4b:5f:ef:a9:7b:94:7c:b1:28:cc:e7:
5d:2d:ad:13:bb:38:41:68:9b:0d:6b:b0:aa:25:56:
fb:e5:2f:da:4e:3e:21:a9:4d:5d:b4:ac:1c:02:a4:
b5:f8:7f:23:3e:d3:8f:dc:81:71:6b:6a:40:da:1a:
a8:95:f9:f6:c1:3c:a1:18:b6:0a:ff:1e:a0:8e:d8:
61:3e:c8:79:3f:92:42:a1:52:4c:77:84:d5:5f:68:
95:26:c6:d6:9b:b1:37:3a:bb:07:e2:a5:68:cb:2b:
38:54:e4:00:58:3f:8a:24:2f:ee:07:4d:94:37:8a:
cc:5f:95:ee:8e:dc:f1:d2:31:6d:fa:77:38:3f:be:
cd:75:ab:82:e9:93:5f:41:5a:c6:3d:34:2c:c5:5b:
35:80:dd:5b:80:94:a5:5c:96:3a:d8:24:94:86:9d:
95:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:31:07:3F:7D:2A:E0:48:01:5B:19:7A:B6:B7:BD:BF:4C:E8:B9:86
X509v3 Authority Key Identifier:
keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/xzEHP30q4EgBWxl6tre9v0zouYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.204.0/24
Signature Algorithm: sha256WithRSAEncryption
32:3a:9e:c8:05:14:95:84:41:df:71:95:27:76:5c:0c:74:3c:
fd:0b:65:10:7d:25:8b:b3:23:35:f6:4c:bf:3d:99:e3:f5:01:
88:11:eb:b6:7d:2c:0d:5d:30:12:be:07:77:cc:21:86:69:a8:
c7:0f:d0:9f:7f:66:9e:43:0c:e0:74:0d:8d:0e:7c:99:1b:4f:
f4:fc:07:92:a5:41:c5:80:b9:79:65:3d:41:30:1d:04:48:2e:
99:00:ce:f5:a0:e0:3b:84:19:f5:52:dd:e1:2f:72:a1:5f:53:
48:b9:a3:b8:7f:51:0d:58:80:02:82:8c:98:af:48:88:b6:ef:
81:73:8b:4d:61:46:a0:0f:5a:75:82:85:a8:d4:15:ed:25:11:
63:8d:20:3e:45:31:65:2e:01:da:c4:00:58:18:5e:26:1e:85:
be:2e:be:42:74:b3:98:2f:ed:b7:bf:49:7a:b2:56:d7:a3:0a:
16:80:30:64:1e:55:6b:a7:e6:f5:35:a0:dc:38:15:4c:e0:b2:
33:95:ce:ab:85:8a:9f:f6:c3:d0:94:be:10:af:cf:2f:b3:da:
72:1f:4f:e1:b6:4b:c6:f7:07:fb:f2:42:9d:d4:2c:75:ce:b2:
3b:e9:5c:67:b7:10:f5:d0:e8:4d:c8:ab:67:58:bf:a6:6b:70:
61:e7:f9:8f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBtHexjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZGM2N2M2YmUzNjdhYjllOTQxZDE0MjdkMDUwNDQ5NDQ3Yjg4NjVjMB4XDTIyMDEw
MTA0NTMzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzczMTA3M2Y3ZDJh
ZTA0ODAxNWIxOTdhYjZiN2JkYmY0Y2U4Yjk4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMmw3J9iELjiY1/6RPdzpqju5Xh0L7sWn0RJGoxR+RsV/sRr
nlSLqjsHa7io6TIaBe0jgXIp5F8GR+U1uQwx7eLBN7G/xEklbzZ1b6CVPF9rGk1o
IYxT7/AVJ3LIzUtf76l7lHyxKMznXS2tE7s4QWibDWuwqiVW++Uv2k4+IalNXbSs
HAKktfh/Iz7Tj9yBcWtqQNoaqJX59sE8oRi2Cv8eoI7YYT7IeT+SQqFSTHeE1V9o
lSbG1puxNzq7B+KlaMsrOFTkAFg/iiQv7gdNlDeKzF+V7o7c8dIxbfp3OD++zXWr
gumTX0Faxj00LMVbNYDdW4CUpVyWOtgklIadlTMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTHMQc/fSrgSAFbGXq2t72/TOi5hjAfBgNVHSMEGDAWgBRdxnxr42ernpQd
FCfQUESUR7iGXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hjWjhhLU5ucTU2VUhSUW4wRkJFbEVlNGhsdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvNzYyNzVhLTZmNDEtNDgwNC04MzdiLTg5Nzk5ZGVhZGM0Ny8x
L3h6RUhQMzBxNEVnQld4bDZ0cmU5djB6b3VZWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
NzYyNzVhLTZmNDEtNDgwNC04MzdiLTg5Nzk5ZGVhZGM0Ny8xL1hjWjhhLU5ucTU2
VUhSUW4wRkJFbEVlNGhsdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHazDANBgkqhkiG9w0BAQsFAAOC
AQEAMjqeyAUUlYRB33GVJ3ZcDHQ8/QtlEH0li7MjNfZMvz2Z4/UBiBHrtn0sDV0w
Er4Hd8whhmmoxw/Qn39mnkMM4HQNjQ58mRtP9PwHkqVBxYC5eWU9QTAdBEgumQDO
9aDgO4QZ9VLd4S9yoV9TSLmjuH9RDViAAoKMmK9IiLbvgXOLTWFGoA9adYKFqNQV
7SURY40gPkUxZS4B2sQAWBheJh6Fvi6+QnSzmC/tt79JerJW16MKFoAwZB5Va6fm
9TWg3DgVTOCyM5XOq4WKn/bD0JS+EK/PL7Pach9P4bZLxvcH+/JCndQsdc6yO+lc
Z7cQ9dDoTcirZ1i/pmtwYef5jw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-ams.rpki-client.org