Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/b22d6e-4c4f-459d-a048-dd347537683e/1/AtuB2LtWaB-toCtC68s89gRFvPY.roa
File: AtuB2LtWaB-toCtC68s89gRFvPY.roa (raw, json)
Hash identifier: 9UGuCLFQhNLkD5yU93VrN0crUZsZ0cIsitznqD06Yt4=
Subject key identifier: 02:DB:81:D8:BB:56:68:1F:AD:A0:2B:42:EB:CB:3C:F6:04:45:BC:F6
Certificate issuer: /CN=f918a5f8b9515017c8d6488a9a947d4820b6fb79
Certificate serial: F306
Authority key identifier: F9:18:A5:F8:B9:51:50:17:C8:D6:48:8A:9A:94:7D:48:20:B6:FB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Ril-LlRUBfI1kiKmpR9SCC2-3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/b22d6e-4c4f-459d-a048-dd347537683e/1/AtuB2LtWaB-toCtC68s89gRFvPY.roa
Signing time: Tue 26 Apr 2022 15:32:49 +0000
ROA not before: Tue 26 Apr 2022 15:32:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.147.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62214 (0xf306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f918a5f8b9515017c8d6488a9a947d4820b6fb79
Validity
Not Before: Apr 26 15:32:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02db81d8bb56681fada02b42ebcb3cf60445bcf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:88:0e:f3:18:67:70:24:8e:38:e2:5e:0c:50:
ba:0e:27:b2:a8:6e:7f:46:b7:38:38:0a:7b:94:ba:
23:4b:08:fb:4d:53:ce:b4:0e:ca:d8:43:e0:e2:b8:
eb:92:5a:72:90:1a:dc:df:f5:d3:04:a5:89:ed:22:
5d:e5:63:4f:23:a2:da:bd:e5:b9:ca:a5:8d:c5:85:
94:76:c5:75:43:37:f3:5e:9b:ca:8b:d4:90:8c:b0:
b3:20:99:31:b5:24:ff:44:cd:38:6c:13:15:8d:3c:
45:25:cc:b5:4c:46:d4:03:89:ca:bc:1b:01:00:90:
c5:ca:7f:6c:36:9b:4e:20:85:dd:ed:f4:a2:a8:32:
91:a0:ce:66:c5:7c:04:e0:d1:b6:a0:cb:30:c5:6f:
1a:7d:bf:2e:48:3a:ad:14:9c:a3:71:6e:5a:6b:32:
02:2d:7b:39:64:3c:ed:af:b9:53:32:75:d5:c8:a8:
0e:ec:cc:fb:74:9a:ea:4d:65:56:25:9a:21:cd:42:
f5:eb:38:dd:12:53:0d:d3:67:c6:a8:24:87:d6:21:
31:75:82:d8:24:99:2a:84:f4:fe:5c:86:a7:0e:7f:
e4:04:12:3d:8b:1d:5d:e2:b2:95:e9:91:48:21:a4:
3c:ae:f5:df:a3:a9:2a:34:cd:21:f9:a9:d9:1d:1f:
8c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DB:81:D8:BB:56:68:1F:AD:A0:2B:42:EB:CB:3C:F6:04:45:BC:F6
X509v3 Authority Key Identifier:
keyid:F9:18:A5:F8:B9:51:50:17:C8:D6:48:8A:9A:94:7D:48:20:B6:FB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Ril-LlRUBfI1kiKmpR9SCC2-3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/b22d6e-4c4f-459d-a048-dd347537683e/1/AtuB2LtWaB-toCtC68s89gRFvPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/b22d6e-4c4f-459d-a048-dd347537683e/1/1-Ril-LlRUBfI1kiKmpR9SCC2-3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.134.0/23
Signature Algorithm: sha256WithRSAEncryption
30:30:85:f7:8d:aa:e0:09:8a:0e:18:09:89:a1:ab:88:63:eb:
d5:88:fd:e1:f0:4e:fa:36:95:a9:f1:33:cf:02:4a:70:7b:5e:
b6:55:46:a2:5c:9b:99:d8:dc:fd:38:14:11:2e:7b:a0:b4:5b:
ae:ab:9a:6a:50:76:82:da:2e:7c:8a:4f:09:c7:19:17:61:8f:
52:32:72:d5:6c:b5:23:82:f9:ac:08:ba:26:4d:77:5e:0c:d6:
50:b7:fc:86:30:05:de:fd:54:00:94:3e:dd:1e:41:c5:cf:0a:
41:4b:a8:66:49:40:fe:05:b2:b9:cb:db:9c:f7:f6:c1:06:68:
b5:91:98:59:1c:bc:46:03:76:6a:7b:7f:8c:c3:34:40:eb:be:
6e:2a:39:dd:d7:7e:41:c6:42:4e:27:e9:22:c0:b5:57:32:51:
1e:bc:c5:41:cc:18:96:2e:62:8b:e8:5a:b4:6c:08:ba:17:c2:
ad:f3:d6:d7:dd:45:e0:d2:b1:80:0f:50:c2:0c:67:e3:8c:e6:
20:b4:8b:54:92:7e:16:da:25:72:81:7d:4f:c8:e9:da:1e:11:
3f:87:e0:66:bc:e0:dd:bb:4f:98:85:2b:41:74:fc:3d:fd:b0:
b5:b0:6a:09:9b:1a:56:2e:22:72:be:c9:fa:49:bd:39:aa:59:
0f:b4:92:d6
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIDAPMGMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGY5
MThhNWY4Yjk1MTUwMTdjOGQ2NDg4YTlhOTQ3ZDQ4MjBiNmZiNzkwHhcNMjIwNDI2
MTUzMjQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMmRiODFkOGJiNTY2
ODFmYWRhMDJiNDJlYmNiM2NmNjA0NDViY2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzogO8xhncCSOOOJeDFC6DieyqG5/Rrc4OAp7lLojSwj7TVPO
tA7K2EPg4rjrklpykBrc3/XTBKWJ7SJd5WNPI6LaveW5yqWNxYWUdsV1QzfzXpvK
i9SQjLCzIJkxtST/RM04bBMVjTxFJcy1TEbUA4nKvBsBAJDFyn9sNptOIIXd7fSi
qDKRoM5mxXwE4NG2oMswxW8afb8uSDqtFJyjcW5aazICLXs5ZDztr7lTMnXVyKgO
7Mz7dJrqTWVWJZohzUL16zjdElMN02fGqCSH1iExdYLYJJkqhPT+XIanDn/kBBI9
ix1d4rKV6ZFIIaQ8rvXfo6kqNM0h+anZHR+MSwIDAQABo4ICCzCCAgcwHQYDVR0O
BBYEFALbgdi7VmgfraArQuvLPPYERbz2MB8GA1UdIwQYMBaAFPkYpfi5UVAXyNZI
ipqUfUggtvt5MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEFBQcBAQRZMFcwVQYIKwYB
BQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MS1SaWwtTGxSVUJmSTFraUttcFI5U0NDMi0zay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYjIyZDZlLTRjNGYtNDU5ZC1hMDQ4LWRkMzQ3NTM3NjgzZS8x
L0F0dUIyTHRXYUItdG9DdEM2OHM4OWdSRnZQWS5yb2EwgYIGA1UdHwR7MHkwd6B1
oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YjIyZDZlLTRjNGYtNDU5ZC1hMDQ4LWRkMzQ3NTM3NjgzZS8xLzEtUmlsLUxsUlVC
Zkkxa2lLbXBSOVNDQzItM2suY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHCk4YwDQYJKoZIhvcNAQELBQAD
ggEBADAwhfeNquAJig4YCYmhq4hj69WI/eHwTvo2lanxM88CSnB7XrZVRqJcm5nY
3P04FBEue6C0W66rmmpQdoLaLnyKTwnHGRdhj1IyctVstSOC+awIuiZNd14M1lC3
/IYwBd79VACUPt0eQcXPCkFLqGZJQP4FsrnL25z39sEGaLWRmFkcvEYDdmp7f4zD
NEDrvm4qOd3XfkHGQk4n6SLAtVcyUR68xUHMGJYuYovoWrRsCLoXwq3z1tfdReDS
sYAPUMIMZ+OM5iC0i1SSfhbaJXKBfU/I6doeET+H4Ga84N27T5iFK0F0/D39sLWw
agmbGlYuInK+yfpJvTmqWQ+0ktY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:19 2023 by rpki-client on console-ams.rpki-client.org