Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/xUXi4MhtLlYk4vs7i53TNUbJJ1k.roa
File: xUXi4MhtLlYk4vs7i53TNUbJJ1k.roa (raw, json)
Hash identifier: wp06YwQIdGNJvy5E5oP5Wt0At5ckdRLWwRD1TLkO0uI=
Subject key identifier: C5:45:E2:E0:C8:6D:2E:56:24:E2:FB:3B:8B:9D:D3:35:46:C9:27:59
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 031680A5
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/xUXi4MhtLlYk4vs7i53TNUbJJ1k.roa
Signing time: Sat 01 Jan 2022 13:59:18 +0000
ROA not before: Sat 01 Jan 2022 13:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42960
IP address blocks: 91.238.203.0/24 maxlen: 24
193.200.130.0/24 maxlen: 24
193.200.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51806373 (0x31680a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 13:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c545e2e0c86d2e5624e2fb3b8b9dd33546c92759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4a:3d:07:d1:0a:9f:f6:55:6f:20:30:bb:c1:
7f:17:3b:87:70:ea:f2:e5:f2:04:59:76:33:3e:fd:
70:88:78:f2:c6:2c:d3:f6:42:2e:65:be:32:b4:86:
9c:30:74:cc:c2:30:8a:bf:f5:74:3f:fb:8e:db:a9:
87:1f:33:8d:91:01:1d:1f:4b:99:b0:f3:0e:ab:af:
37:c8:f8:cc:fe:4a:c0:c2:3f:10:8c:b6:cd:a9:de:
8f:4f:44:d9:fe:d0:82:b2:b4:b9:e6:65:dc:69:44:
08:c6:d4:32:f9:a6:eb:a1:42:87:a6:2a:68:2c:4e:
f9:fe:fe:6d:82:bd:7b:40:c8:7f:77:d8:f0:f9:b0:
1f:f0:b0:e9:90:00:b9:9c:34:14:4e:b4:10:c4:07:
34:68:4d:54:74:1b:bd:49:b3:c6:69:d8:da:2d:a6:
bc:cc:ef:44:c0:6d:25:f8:b1:20:21:0c:89:32:49:
5e:7d:ae:5b:5e:4e:5f:0a:d0:c9:3f:1e:4a:88:62:
ab:7b:48:5e:26:30:d8:f0:b8:aa:3b:db:e4:2d:5d:
9b:cf:0d:49:da:ca:ef:01:52:a8:c2:c2:f3:24:d6:
21:60:69:e0:34:47:33:e2:e7:5c:e2:a1:e2:e5:42:
3d:05:8f:80:aa:bc:7e:c2:7e:ab:e1:e8:96:67:15:
98:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:45:E2:E0:C8:6D:2E:56:24:E2:FB:3B:8B:9D:D3:35:46:C9:27:59
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/xUXi4MhtLlYk4vs7i53TNUbJJ1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.203.0/24
193.200.130.0/24
193.200.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:8b:08:25:21:66:a0:2e:ac:04:02:44:25:82:d6:e0:b0:b9:
ba:eb:fe:1a:25:73:c3:32:e0:1a:d4:cd:b4:83:89:b4:8f:a2:
54:af:b5:d7:98:29:ea:5c:41:b3:00:8e:71:10:af:df:10:06:
23:5f:18:23:03:5a:4f:97:b4:43:ef:d2:ec:9d:20:57:b1:c5:
73:92:2f:66:25:23:1f:c4:89:0e:a6:3a:71:3b:03:4c:95:b8:
49:58:0e:89:ae:36:a9:f3:d1:9a:06:e5:1f:87:03:5d:67:60:
3d:70:b3:91:36:ca:f5:a1:d1:0d:34:e2:66:71:98:69:a0:f7:
8a:db:cb:2b:c5:5b:9a:d7:9c:e2:98:aa:76:79:e5:8d:9e:87:
88:bd:7b:85:62:af:f3:22:bb:cc:1b:01:a9:91:66:94:5a:99:
33:ea:cc:5e:62:7b:6d:6c:07:b2:77:7f:5f:f7:11:70:9f:5e:
dd:15:6b:f9:39:4d:5b:e4:10:7f:32:42:03:88:8c:6d:fc:81:
a4:d5:52:45:83:7d:8c:86:f0:36:c5:da:ac:4a:23:08:dd:12:
39:3a:a9:58:9c:af:65:ff:b8:ae:a3:3c:a3:61:a0:02:63:da:
9e:82:09:30:b9:ed:12:cb:90:c9:17:55:5f:10:4c:02:75:b7:
74:bf:68:1b
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEAxaApTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDdiNDg3ODQ4ZmZmNjM1MzNkODdjMzI0ZWNjNTFjMmMzZWEyYWRiMB4XDTIyMDEw
MTEzNTkxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzU0NWUyZTBjODZk
MmU1NjI0ZTJmYjNiOGI5ZGQzMzU0NmM5Mjc1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKNKPQfRCp/2VW8gMLvBfxc7h3Dq8uXyBFl2Mz79cIh48sYs
0/ZCLmW+MrSGnDB0zMIwir/1dD/7jtuphx8zjZEBHR9LmbDzDquvN8j4zP5KwMI/
EIy2zanej09E2f7QgrK0ueZl3GlECMbUMvmm66FCh6YqaCxO+f7+bYK9e0DIf3fY
8PmwH/Cw6ZAAuZw0FE60EMQHNGhNVHQbvUmzxmnY2i2mvMzvRMBtJfixICEMiTJJ
Xn2uW15OXwrQyT8eSohiq3tIXiYw2PC4qjvb5C1dm88NSdrK7wFSqMLC8yTWIWBp
4DRHM+LnXOKh4uVCPQWPgKq8fsJ+q+HolmcVmO8CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTFReLgyG0uViTi+zuLndM1RsknWTAfBgNVHSMEGDAWgBQ0e0h4SP/2NTPY
fDJOzFHCw+oq2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05IdEllRWpfOWpVejJId3lUc3hSd3NQcUt0cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8x
L3hVWGk0TWh0TGxZazR2czdpNTNUTlViSkoxay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8xL05IdEllRWpfOWpV
ejJId3lUc3hSd3NQcUt0cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAFvuywMEAMHIggMEAMHIhjANBgkq
hkiG9w0BAQsFAAOCAQEAPosIJSFmoC6sBAJEJYLW4LC5uuv+GiVzwzLgGtTNtIOJ
tI+iVK+115gp6lxBswCOcRCv3xAGI18YIwNaT5e0Q+/S7J0gV7HFc5IvZiUjH8SJ
DqY6cTsDTJW4SVgOia42qfPRmgblH4cDXWdgPXCzkTbK9aHRDTTiZnGYaaD3itvL
K8Vbmtec4piqdnnljZ6HiL17hWKv8yK7zBsBqZFmlFqZM+rMXmJ7bWwHsnd/X/cR
cJ9e3RVr+TlNW+QQfzJCA4iMbfyBpNVSRYN9jIbwNsXarEojCN0SOTqpWJyvZf+4
rqM8o2GgAmPanoIJMLntEsuQyRdVXxBMAnW3dL9oGw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org