Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/PPoIIu1l5Rx_WoD9xAc6WIp2-lg.roa
File: PPoIIu1l5Rx_WoD9xAc6WIp2-lg.roa (raw, json)
Hash identifier: sKDdCkhJuWzoWF6eQwc5W+f3t6p7RgUdA5H1TP9gD9k=
Subject key identifier: 3C:FA:08:22:ED:65:E5:1C:7F:5A:80:FD:C4:07:3A:58:8A:76:FA:58
Certificate issuer: /CN=d79d856aaa9ead12f75cb68cdae96a0d2c8dde1e
Certificate serial: 0187DE1A
Authority key identifier: D7:9D:85:6A:AA:9E:AD:12:F7:5C:B6:8C:DA:E9:6A:0D:2C:8D:DE:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/152FaqqerRL3XLaM2ulqDSyN3h4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/PPoIIu1l5Rx_WoD9xAc6WIp2-lg.roa
Signing time: Sun 20 Feb 2022 07:12:56 +0000
ROA not before: Sun 20 Feb 2022 07:12:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 193.188.12.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25681434 (0x187de1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79d856aaa9ead12f75cb68cdae96a0d2c8dde1e
Validity
Not Before: Feb 20 07:12:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cfa0822ed65e51c7f5a80fdc4073a588a76fa58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b6:df:ad:cb:33:b0:9d:be:b8:c3:c0:0f:91:
ce:a7:5c:13:e9:ce:af:ad:48:ec:a3:39:88:12:b3:
85:b7:5d:eb:b7:c4:05:88:a7:6a:df:39:57:bc:0c:
13:39:49:2a:a4:0f:08:2d:b8:85:ee:54:81:cc:39:
68:9a:67:e2:ed:38:d5:27:7c:09:e1:cf:61:26:90:
ef:81:d5:82:42:16:45:f7:f6:56:53:68:7f:16:c3:
b5:f6:49:66:de:60:b5:6f:49:8d:f8:6f:04:4e:c3:
48:b9:16:88:8a:d5:16:ca:fb:38:85:41:40:b1:be:
53:a8:d5:de:62:79:be:2b:d9:ee:7d:c2:4f:6a:0f:
be:c0:ee:7c:e5:e3:fe:fd:33:ed:a2:82:9f:c2:69:
bf:57:68:2b:dd:70:1d:85:3f:db:11:1d:82:cd:c8:
46:65:06:74:35:a5:b5:2f:0b:29:81:1c:6e:36:e9:
33:2a:3d:27:3b:61:cc:21:c9:03:c1:5a:ac:0a:8a:
cb:b5:e9:54:35:6a:03:0e:9a:ef:39:33:3a:d7:1b:
c1:28:22:7f:c7:9c:18:62:7c:5a:cf:a5:9c:5c:38:
1c:94:9b:48:aa:5b:9b:97:70:87:0f:ff:4b:b7:a1:
1e:c6:72:55:16:03:40:cf:38:0a:2f:aa:ae:7f:26:
1d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FA:08:22:ED:65:E5:1C:7F:5A:80:FD:C4:07:3A:58:8A:76:FA:58
X509v3 Authority Key Identifier:
keyid:D7:9D:85:6A:AA:9E:AD:12:F7:5C:B6:8C:DA:E9:6A:0D:2C:8D:DE:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/152FaqqerRL3XLaM2ulqDSyN3h4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/PPoIIu1l5Rx_WoD9xAc6WIp2-lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/152FaqqerRL3XLaM2ulqDSyN3h4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.12.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:5b:46:ff:f2:7f:8f:15:fb:f7:dd:ec:64:62:bf:9d:74:90:
48:0a:ef:49:f1:1d:5f:3c:3c:c3:ce:5e:40:ae:a1:4d:93:9a:
df:57:8e:d4:43:af:d6:46:0b:c8:3f:0b:cf:a9:21:da:ac:69:
32:77:dc:2f:cc:36:f1:8d:aa:b7:cf:f6:24:2c:7b:9e:00:c1:
47:63:7f:64:e3:53:e2:63:30:9f:2b:53:dc:33:b6:ff:c5:dc:
f3:d8:18:cb:a7:54:fb:44:bd:35:bd:78:d2:11:ed:1d:24:4b:
84:ab:28:e1:bc:5c:31:99:bc:a0:7e:50:35:f7:51:93:4c:55:
49:e9:c4:b6:97:9f:dc:a4:64:93:b4:9d:63:4f:d2:8f:75:e8:
26:b7:dc:04:1d:86:88:ad:af:21:2d:bf:6c:1d:45:b4:21:5d:
28:5f:d3:eb:f8:dd:fa:ec:04:dd:93:39:6e:dd:fb:55:43:c4:
1c:d5:35:3a:00:5d:5a:a1:91:ae:20:df:ca:63:99:db:85:90:
5c:2f:2c:fc:9f:03:6e:73:30:51:6e:24:17:18:7f:11:ff:50:
f3:58:c0:94:10:bc:36:86:7a:9c:d5:df:5b:a9:aa:10:49:87:
e9:90:60:ef:c7:2d:ea:41:58:0a:42:13:32:7d:d7:e4:0a:fb:
1d:86:96:27
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAYfeGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzlkODU2YWFhOWVhZDEyZjc1Y2I2OGNkYWU5NmEwZDJjOGRkZTFlMB4XDTIyMDIy
MDA3MTI1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2NmYTA4MjJlZDY1
ZTUxYzdmNWE4MGZkYzQwNzNhNTg4YTc2ZmE1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALS2363LM7CdvrjDwA+RzqdcE+nOr61I7KM5iBKzhbdd67fE
BYinat85V7wMEzlJKqQPCC24he5Ugcw5aJpn4u041Sd8CeHPYSaQ74HVgkIWRff2
VlNofxbDtfZJZt5gtW9JjfhvBE7DSLkWiIrVFsr7OIVBQLG+U6jV3mJ5vivZ7n3C
T2oPvsDufOXj/v0z7aKCn8Jpv1doK91wHYU/2xEdgs3IRmUGdDWltS8LKYEcbjbp
Myo9JzthzCHJA8FarAqKy7XpVDVqAw6a7zkzOtcbwSgif8ecGGJ8Ws+lnFw4HJSb
SKpbm5dwhw//S7ehHsZyVRYDQM84Ci+qrn8mHSsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ8+ggi7WXlHH9agP3EBzpYinb6WDAfBgNVHSMEGDAWgBTXnYVqqp6tEvdc
toza6WoNLI3eHjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzE1MkZhcXFlclJMM1hMYU0ydWxxRFN5TjNoNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjAvYTViYWEyLTJhMzUtNGM3Ni1hOTQwLTU5OTBjZDRkZTg4Yi8x
L1BQb0lJdTFsNVJ4X1dvRDl4QWM2V0lwMi1sZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAv
YTViYWEyLTJhMzUtNGM3Ni1hOTQwLTU5OTBjZDRkZTg4Yi8xLzE1MkZhcXFlclJM
M1hMYU0ydWxxRFN5TjNoNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcG8DDANBgkqhkiG9w0BAQsFAAOC
AQEAjFtG//J/jxX7993sZGK/nXSQSArvSfEdXzw8w85eQK6hTZOa31eO1EOv1kYL
yD8Lz6kh2qxpMnfcL8w28Y2qt8/2JCx7ngDBR2N/ZONT4mMwnytT3DO2/8Xc89gY
y6dU+0S9Nb140hHtHSRLhKso4bxcMZm8oH5QNfdRk0xVSenEtpef3KRkk7SdY0/S
j3XoJrfcBB2GiK2vIS2/bB1FtCFdKF/T6/jd+uwE3ZM5bt37VUPEHNU1OgBdWqGR
riDfymOZ24WQXC8s/J8DbnMwUW4kFxh/Ef9Q81jAlBC8NoZ6nNXfW6mqEEmH6ZBg
78ct6kFYCkITMn3X5Ar7HYaWJw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:06 2024 by rpki-client on console-fra.rpki-client.org