Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/521235-ff7e-4bc7-a29e-38d73a23e7ac/1/aZSZ-AcaP8SS2EkKhosGgKZ8oXQ.roa
File: aZSZ-AcaP8SS2EkKhosGgKZ8oXQ.roa (raw, json)
Hash identifier: T5pzMPvKYCQsAzMrLB1A3vESir9CJNnCNaobUaqvgM8=
Subject key identifier: 69:94:99:F8:07:1A:3F:C4:92:D8:49:0A:86:8B:06:80:A6:7C:A1:74
Certificate issuer: /CN=21e7a588f0759ba8f658b3f3d68e55bcfe9c5bbe
Certificate serial: 05D0AEA5
Authority key identifier: 21:E7:A5:88:F0:75:9B:A8:F6:58:B3:F3:D6:8E:55:BC:FE:9C:5B:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IeeliPB1m6j2WLPz1o5VvP6cW74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/521235-ff7e-4bc7-a29e-38d73a23e7ac/1/aZSZ-AcaP8SS2EkKhosGgKZ8oXQ.roa
Signing time: Sat 01 Jan 2022 06:06:06 +0000
ROA not before: Sat 01 Jan 2022 06:06:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42999
IP address blocks: 193.200.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97562277 (0x5d0aea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21e7a588f0759ba8f658b3f3d68e55bcfe9c5bbe
Validity
Not Before: Jan 1 06:06:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=699499f8071a3fc492d8490a868b0680a67ca174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e9:ea:4f:68:39:53:5c:93:c1:1c:d6:32:85:
0e:90:bd:b1:a2:ad:83:dd:8b:9e:08:2c:a0:16:53:
c0:8b:0f:39:4c:2a:26:70:3b:dc:21:df:b3:c8:7c:
96:64:3c:49:f6:76:cc:e6:ae:23:85:25:2f:20:bf:
1d:df:39:5b:d2:41:a7:0e:a7:a3:2f:62:c5:08:01:
85:41:aa:23:12:f6:06:45:f5:d4:10:5f:f2:a8:8f:
6b:af:08:5d:31:49:84:6d:ae:34:c0:0b:c6:d3:7f:
99:55:d6:a8:f5:7b:e2:3e:9d:0f:1a:ba:e9:4e:29:
ab:a7:ec:f9:a7:f9:7f:cf:59:72:5e:95:01:c4:6f:
47:ab:e7:4e:33:68:52:33:cc:12:03:6c:15:77:10:
86:6e:01:7a:f6:ea:0e:07:88:14:0c:ed:2a:2b:f1:
25:5d:91:bc:f6:1b:3e:d3:fe:97:67:22:64:c2:0f:
43:31:e9:3d:1d:45:13:23:c3:c4:9b:df:0b:45:3b:
f9:96:3b:41:90:5e:12:1c:5e:54:fd:17:1e:d8:58:
d0:d5:e3:9e:48:e7:0f:39:49:8e:ed:28:63:cd:25:
ad:a7:5e:49:d1:01:86:c0:a0:00:7b:87:1c:3e:c9:
56:77:ca:9d:4f:ed:30:b2:4c:c9:ea:4d:ee:4f:5a:
c8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:94:99:F8:07:1A:3F:C4:92:D8:49:0A:86:8B:06:80:A6:7C:A1:74
X509v3 Authority Key Identifier:
keyid:21:E7:A5:88:F0:75:9B:A8:F6:58:B3:F3:D6:8E:55:BC:FE:9C:5B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IeeliPB1m6j2WLPz1o5VvP6cW74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/521235-ff7e-4bc7-a29e-38d73a23e7ac/1/aZSZ-AcaP8SS2EkKhosGgKZ8oXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/521235-ff7e-4bc7-a29e-38d73a23e7ac/1/IeeliPB1m6j2WLPz1o5VvP6cW74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.188.0/24
Signature Algorithm: sha256WithRSAEncryption
71:14:bb:94:75:cf:84:45:fa:1b:8b:47:85:00:16:70:13:b6:
8c:be:66:b8:6e:d3:0f:92:71:b4:cd:fb:fb:50:e2:c2:cd:d9:
ae:d8:12:f0:01:9a:5b:48:31:b6:9e:fa:eb:c1:90:55:d7:2f:
05:1c:7f:ed:46:64:0a:eb:70:47:a8:34:c0:6e:d4:31:e8:97:
a2:3c:3a:ee:6b:29:29:50:74:cf:07:94:2f:e5:ad:17:84:11:
2a:dd:cf:d5:6a:c9:4e:53:9a:03:fd:e1:d8:8e:6d:a0:17:ee:
8e:04:30:61:19:db:95:4c:58:ab:e2:4b:60:3c:b3:33:71:0c:
03:ca:df:23:83:83:78:0c:a0:8d:45:95:30:21:7e:2e:38:eb:
af:fb:9a:74:c1:58:c2:44:23:4a:bb:b2:8b:dd:7c:0b:76:e8:
ec:8a:6d:15:56:d7:44:24:8e:a1:6e:08:37:06:61:f0:0c:bc:
94:ff:5f:fa:3a:03:18:1f:41:44:9a:12:49:7c:16:1e:0d:ff:
98:e2:c6:3d:75:fc:58:ff:1c:a2:5c:1b:8c:22:5f:70:ab:d5:
b2:23:d4:7c:a2:96:f4:e2:bd:cd:a0:7c:12:3b:48:41:58:05:
99:b1:ec:db:8e:84:2c:1d:5a:ec:19:8e:41:73:31:ef:6b:80:
0d:47:ec:0e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBdCupTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MWU3YTU4OGYwNzU5YmE4ZjY1OGIzZjNkNjhlNTViY2ZlOWM1YmJlMB4XDTIyMDEw
MTA2MDYwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjk5NDk5ZjgwNzFh
M2ZjNDkyZDg0OTBhODY4YjA2ODBhNjdjYTE3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKnp6k9oOVNck8Ec1jKFDpC9saKtg92LnggsoBZTwIsPOUwq
JnA73CHfs8h8lmQ8SfZ2zOauI4UlLyC/Hd85W9JBpw6noy9ixQgBhUGqIxL2BkX1
1BBf8qiPa68IXTFJhG2uNMALxtN/mVXWqPV74j6dDxq66U4pq6fs+af5f89Zcl6V
AcRvR6vnTjNoUjPMEgNsFXcQhm4BevbqDgeIFAztKivxJV2RvPYbPtP+l2ciZMIP
QzHpPR1FEyPDxJvfC0U7+ZY7QZBeEhxeVP0XHthY0NXjnkjnDzlJju0oY80lrade
SdEBhsCgAHuHHD7JVnfKnU/tMLJMyepN7k9ayPcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRplJn4Bxo/xJLYSQqGiwaApnyhdDAfBgNVHSMEGDAWgBQh56WI8HWbqPZY
s/PWjlW8/pxbvjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0llZWxpUEIxbTZqMldMUHoxbzVWdlA2Y1c3NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWYvNTIxMjM1LWZmN2UtNGJjNy1hMjllLTM4ZDczYTIzZTdhYy8x
L2FaU1otQWNhUDhTUzJFa0tob3NHZ0taOG9YUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWYv
NTIxMjM1LWZmN2UtNGJjNy1hMjllLTM4ZDczYTIzZTdhYy8xL0llZWxpUEIxbTZq
MldMUHoxbzVWdlA2Y1c3NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHIvDANBgkqhkiG9w0BAQsFAAOC
AQEAcRS7lHXPhEX6G4tHhQAWcBO2jL5muG7TD5JxtM37+1Diws3ZrtgS8AGaW0gx
tp7668GQVdcvBRx/7UZkCutwR6g0wG7UMeiXojw67mspKVB0zweUL+WtF4QRKt3P
1WrJTlOaA/3h2I5toBfujgQwYRnblUxYq+JLYDyzM3EMA8rfI4ODeAygjUWVMCF+
Ljjrr/uadMFYwkQjSruyi918C3bo7IptFVbXRCSOoW4INwZh8Ay8lP9f+joDGB9B
RJoSSXwWHg3/mOLGPXX8WP8colwbjCJfcKvVsiPUfKKW9OK9zaB8EjtIQVgFmbHs
246ELB1a7BmOQXMx72uADUfsDg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:52 2023 by rpki-client on console-ams.rpki-client.org