Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/26MOkwlhcVgix2Bj-H8r41E01XY.roa
File: 26MOkwlhcVgix2Bj-H8r41E01XY.roa (raw, json)
Hash identifier: eus9WAMiDA10f1YIejNbn96oXQax8lGl8HwHyP5dh5E=
Subject key identifier: DB:A3:0E:93:09:61:71:58:22:C7:60:63:F8:7F:2B:E3:51:34:D5:76
Certificate issuer: /CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Certificate serial: 241B
Authority key identifier: 38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/26MOkwlhcVgix2Bj-H8r41E01XY.roa
Signing time: Thu 28 Apr 2022 14:52:43 +0000
ROA not before: Thu 28 Apr 2022 14:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31140
IP address blocks: 193.22.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9243 (0x241b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Validity
Not Before: Apr 28 14:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dba30e930961715822c76063f87f2be35134d576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bd:fb:ac:1f:e0:61:97:cd:f9:73:08:f0:56:
ba:3a:47:8a:b5:2f:a2:2a:30:3e:25:fa:49:f0:a2:
fb:76:04:5e:25:07:cc:32:87:ec:93:aa:2d:2e:b5:
fc:87:1e:7e:2c:4e:5c:0b:eb:32:9c:55:c0:d1:df:
a7:f2:08:12:96:cb:b1:f7:c7:df:c0:d9:5c:e7:2c:
e2:af:78:a6:58:a1:f3:a5:10:dd:cb:b6:e7:67:11:
22:34:10:f8:16:22:54:ff:83:19:b4:36:92:3f:41:
ca:1b:b0:c5:0c:03:3c:f9:db:c4:5c:01:79:ab:fc:
2d:11:9f:8f:34:b3:2d:35:97:33:56:99:34:09:ec:
50:00:4f:61:91:1f:ba:63:1f:6a:ae:19:7f:70:be:
ad:e8:7f:13:b6:65:bb:84:9e:4f:12:4b:55:93:b1:
4e:bc:9e:13:f2:c7:93:1d:f5:7b:fe:07:b4:51:73:
c0:dd:56:d6:cb:c7:6c:a9:f6:57:24:40:0e:6d:6e:
1c:7b:d0:65:63:be:77:74:16:1e:8f:b7:12:94:5d:
cd:ce:9f:f7:29:3e:46:56:ca:4a:36:a2:d5:6e:69:
10:41:ee:b6:14:56:6f:06:60:dc:ba:bb:79:fa:d4:
23:30:99:c4:2b:c2:6f:6a:32:a2:f9:e5:3b:c1:34:
cb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A3:0E:93:09:61:71:58:22:C7:60:63:F8:7F:2B:E3:51:34:D5:76
X509v3 Authority Key Identifier:
keyid:38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/26MOkwlhcVgix2Bj-H8r41E01XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.248.0/24
Signature Algorithm: sha256WithRSAEncryption
40:16:1c:80:71:58:a9:8b:9f:be:60:5f:33:af:19:fa:b5:ac:
f2:81:50:fb:62:eb:70:c8:69:b1:ae:b9:64:a4:91:05:16:bd:
c0:95:a0:7b:75:07:86:e2:a3:b7:fb:45:b8:31:7f:6a:1b:9a:
e2:2a:98:0f:2b:12:9e:14:f8:87:c5:96:de:20:f5:d6:8e:43:
d1:5a:8d:ca:6f:ca:37:ae:da:cf:75:aa:51:fc:dc:29:6d:75:
f8:b0:22:14:31:0b:4b:42:9d:a4:5b:3e:4f:9d:2c:17:97:8b:
32:2b:e5:78:bf:db:d6:49:50:1d:77:0b:b1:96:59:3e:f9:a1:
ea:df:34:8b:c9:6c:59:13:ff:32:0b:9c:b2:95:fa:7a:48:fb:
a5:b4:1b:45:4a:6a:41:89:b8:92:d0:3b:c9:8d:18:44:61:4d:
d3:50:b4:3d:4b:54:77:96:95:ce:59:67:31:e9:1b:0b:44:d7:
59:6e:49:91:86:8a:bc:07:0d:73:6a:b2:72:97:77:3a:b5:2c:
ca:6d:62:36:58:48:64:6c:29:bf:f3:57:ad:09:2e:24:40:7e:
da:45:19:1a:de:aa:89:a6:7d:7c:61:7b:85:fc:e0:02:5b:4d:
ed:4f:db:c9:a3:1f:0d:ce:0e:fb:3d:b8:72:1a:57:20:cc:08:
ee:00:62:91
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICJBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzgx
NGI2NDhkZDU3NDIwMjVjM2RkYTVlYWE2NjQ5MWZmZGIyZTVkOTAeFw0yMjA0Mjgx
NDUyNDNaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGRiYTMwZTkzMDk2MTcx
NTgyMmM3NjA2M2Y4N2YyYmUzNTEzNGQ1NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDevfusH+Bhl835cwjwVro6R4q1L6IqMD4l+knwovt2BF4lB8wy
h+yTqi0utfyHHn4sTlwL6zKcVcDR36fyCBKWy7H3x9/A2VznLOKveKZYofOlEN3L
tudnESI0EPgWIlT/gxm0NpI/QcobsMUMAzz528RcAXmr/C0Rn480sy01lzNWmTQJ
7FAAT2GRH7pjH2quGX9wvq3ofxO2ZbuEnk8SS1WTsU68nhPyx5Md9Xv+B7RRc8Dd
VtbLx2yp9lckQA5tbhx70GVjvnd0Fh6PtxKUXc3On/cpPkZWyko2otVuaRBB7rYU
Vm8GYNy6u3n61CMwmcQrwm9qMqL55TvBNMv5AgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQU26MOkwlhcVgix2Bj+H8r41E01XYwHwYDVR0jBBgwFoAUOBS2SN1XQgJcPdpe
qmZJH/2y5dkwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9P
QlMyU04xWFFnSmNQZHBlcW1aSkhfMnk1ZGsuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzIzLzEyZGYyZC05NGYxLTRkMTAtOTRhNC0xZjgzNjg4MDFmZGMvMS8y
Nk1Pa3dsaGNWZ2l4MkJqLUg4cjQxRTAxWFkucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIzLzEy
ZGYyZC05NGYxLTRkMTAtOTRhNC0xZjgzNjg4MDFmZGMvMS9PQlMyU04xWFFnSmNQ
ZHBlcW1aSkhfMnk1ZGsuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADBFvgwDQYJKoZIhvcNAQELBQADggEB
AEAWHIBxWKmLn75gXzOvGfq1rPKBUPti63DIabGuuWSkkQUWvcCVoHt1B4bio7f7
Rbgxf2obmuIqmA8rEp4U+IfFlt4g9daOQ9Fajcpvyjeu2s91qlH83CltdfiwIhQx
C0tCnaRbPk+dLBeXizIr5Xi/29ZJUB13C7GWWT75oerfNIvJbFkT/zILnLKV+npI
+6W0G0VKakGJuJLQO8mNGERhTdNQtD1LVHeWlc5ZZzHpGwtE11luSZGGirwHDXNq
snKXdzq1LMptYjZYSGRsKb/zV60JLiRAftpFGRreqommfXxhe4X84AJbTe1P28mj
Hw3ODvs9uHIaVyDMCO4AYpE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:23 2024 by rpki-client on console-fra.rpki-client.org