Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/szSL75slbBnF-Dol43NsZ4l8DFo.roa
File: szSL75slbBnF-Dol43NsZ4l8DFo.roa (raw, json)
Hash identifier: Oo3W9wOVMpl2FeaH6YO0KzcEZ+z54isRrQIu6pXfz4w=
Subject key identifier: B3:34:8B:EF:9B:25:6C:19:C5:F8:3A:25:E3:73:6C:67:89:7C:0C:5A
Certificate issuer: /CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Certificate serial: 5F8D84
Authority key identifier: 0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/szSL75slbBnF-Dol43NsZ4l8DFo.roa
Signing time: Sun 06 Mar 2022 07:59:44 +0000
ROA not before: Sun 06 Mar 2022 07:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 193.105.95.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6262148 (0x5f8d84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Validity
Not Before: Mar 6 07:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3348bef9b256c19c5f83a25e3736c67897c0c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a1:70:dc:92:44:62:18:42:0f:56:51:6d:1a:
cb:8e:80:c3:18:d4:e7:23:9a:be:93:f5:15:88:58:
60:10:76:1d:07:0f:57:e6:7e:31:5c:d6:49:67:05:
7e:f9:b9:40:b2:3f:b1:e4:bb:38:b7:1c:a2:10:91:
f9:37:39:b3:64:92:78:61:ac:3d:43:3c:35:91:3a:
24:7a:23:fe:57:9e:de:48:e8:b6:f3:49:d1:a2:e5:
49:ce:2c:72:ae:40:57:45:4c:f1:48:a7:11:9e:d4:
e3:a5:51:66:e1:61:e8:ea:29:62:de:cf:68:5e:f8:
38:89:94:4c:5c:15:3f:86:96:02:20:e0:2f:0b:af:
18:a0:02:26:16:9f:6e:78:82:d5:1e:37:b8:2b:3c:
04:5e:5d:7b:68:83:ac:62:fb:c3:47:3e:56:c3:b6:
b7:59:e4:2b:61:c1:4a:41:01:dc:26:31:7d:06:ce:
2c:53:f6:0a:8c:df:71:76:c2:e1:cf:b7:e4:d3:a0:
7f:5b:e5:25:66:57:41:89:1e:b6:6f:52:a8:c5:84:
c9:86:30:8b:8d:24:a2:e3:4b:8e:c8:6d:af:c7:89:
2d:3c:5e:24:97:05:3c:14:7c:7b:a7:c2:8b:2a:62:
d4:67:fc:1a:91:af:ee:54:1e:c1:2b:90:20:b8:1e:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:34:8B:EF:9B:25:6C:19:C5:F8:3A:25:E3:73:6C:67:89:7C:0C:5A
X509v3 Authority Key Identifier:
keyid:0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/szSL75slbBnF-Dol43NsZ4l8DFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/DBa7UnpShZ4PabiNL-3t4b3p_y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.95.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:ff:2f:77:23:d4:7f:90:ec:11:1d:13:03:c6:4f:b3:a9:1e:
b0:2f:b8:57:55:78:bf:f7:4c:d1:3e:06:48:88:33:d3:f9:a6:
5c:01:2a:b4:68:5d:6e:95:63:3a:d9:cc:a2:bc:00:7b:1a:77:
b4:fe:f7:36:57:30:3e:ed:53:f8:40:be:f0:b0:5b:be:c6:5e:
f3:28:8a:83:eb:11:46:d6:b2:bc:1c:53:e9:ce:1d:b9:1a:92:
0d:49:a0:fe:9f:9a:35:38:0b:4c:2c:60:b3:00:f4:ba:07:2e:
4f:9c:66:08:be:23:f9:a7:e2:cc:80:1c:ca:03:b5:e3:3d:42:
fd:75:df:1e:14:ef:24:10:d4:2d:4c:dc:40:bb:15:59:ad:a9:
61:b2:11:21:64:ea:87:d0:ee:4e:de:04:c0:79:d4:40:e9:eb:
c0:25:22:93:b1:88:b7:3c:50:23:9a:0d:40:aa:57:67:3a:93:
e7:db:94:78:ab:41:d7:b7:13:30:85:14:ca:90:8b:c8:26:4c:
6e:1b:9d:d3:27:e3:4b:fd:88:74:a2:0a:5c:e5:f3:fd:06:7c:
90:c4:cd:2b:0d:14:2c:76:60:75:24:a8:b5:ab:64:6d:3b:0e:
06:3d:a3:d6:71:e6:64:70:5c:fc:28:9a:93:ad:1c:8b:b1:e1:
83:4a:83:59
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDX42EMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDBj
MTZiYjUyN2E1Mjg1OWUwZjY5Yjg4ZDJmZWRlZGUxYmRlOWZmMmQwHhcNMjIwMzA2
MDc1OTQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiMzM0OGJlZjliMjU2
YzE5YzVmODNhMjVlMzczNmM2Nzg5N2MwYzVhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA0KFw3JJEYhhCD1ZRbRrLjoDDGNTnI5q+k/UViFhgEHYdBw9X
5n4xXNZJZwV++blAsj+x5Ls4txyiEJH5NzmzZJJ4Yaw9Qzw1kTokeiP+V57eSOi2
80nRouVJzixyrkBXRUzxSKcRntTjpVFm4WHo6ili3s9oXvg4iZRMXBU/hpYCIOAv
C68YoAImFp9ueILVHje4KzwEXl17aIOsYvvDRz5Ww7a3WeQrYcFKQQHcJjF9Bs4s
U/YKjN9xdsLhz7fk06B/W+UlZldBiR62b1KoxYTJhjCLjSSi40uOyG2vx4ktPF4k
lwU8FHx7p8KLKmLUZ/waka/uVB7BK5AguB7EMQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLM0i++bJWwZxfg6JeNzbGeJfAxaMB8GA1UdIwQYMBaAFAwWu1J6UoWeD2m4
jS/t7eG96f8tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
REJhN1VucFNoWjRQYWJpTkwtM3Q0YjNwX3kwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yNS8zYjQzM2UtNGM4OC00M2YyLThiZjItMjQ2ODgzNmYxNTRiLzEv
c3pTTDc1c2xiQm5GLURvbDQzTnNaNGw4REZvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8z
YjQzM2UtNGM4OC00M2YyLThiZjItMjQ2ODgzNmYxNTRiLzEvREJhN1VucFNoWjRQ
YWJpTkwtM3Q0YjNwX3kwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWlfMA0GCSqGSIb3DQEBCwUAA4IB
AQDI/y93I9R/kOwRHRMDxk+zqR6wL7hXVXi/90zRPgZIiDPT+aZcASq0aF1ulWM6
2cyivAB7Gne0/vc2VzA+7VP4QL7wsFu+xl7zKIqD6xFG1rK8HFPpzh25GpINSaD+
n5o1OAtMLGCzAPS6By5PnGYIviP5p+LMgBzKA7XjPUL9dd8eFO8kENQtTNxAuxVZ
ralhshEhZOqH0O5O3gTAedRA6evAJSKTsYi3PFAjmg1AqldnOpPn25R4q0HXtxMw
hRTKkIvIJkxuG53TJ+NL/Yh0ogpc5fP9BnyQxM0rDRQsdmB1JKi1q2RtOw4GPaPW
ceZkcFz8KJqTrRyLseGDSoNZ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org