Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/4BwHYmcuJn4W7Eo6aljWtL6Ickc.roa
File: 4BwHYmcuJn4W7Eo6aljWtL6Ickc.roa (raw, json)
Hash identifier: z98L7dc+9ddj4+ttrpONSIkck0id3lHJ9+DK6HgKZY0=
Subject key identifier: E0:1C:07:62:67:2E:26:7E:16:EC:4A:3A:6A:58:D6:B4:BE:88:72:47
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 01848A76DC5F23256F8C3446CA7AF52B26BE
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/4BwHYmcuJn4W7Eo6aljWtL6Ickc.roa
Signing time: Fri 18 Nov 2022 11:19:16 +0000
ROA not before: Fri 18 Nov 2022 11:19:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46852
IP address blocks: 193.118.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:76:dc:5f:23:25:6f:8c:34:46:ca:7a:f5:2b:26:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Nov 18 11:19:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e01c0762672e267e16ec4a3a6a58d6b4be887247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d8:4d:ab:51:d9:5e:4c:1e:01:f2:e0:c7:bf:
3f:f5:fa:0d:06:6f:07:6a:cb:66:24:fe:6b:a5:0f:
11:10:bb:f3:cc:fb:72:cf:5d:00:6c:77:1a:29:0e:
4b:43:30:5e:e5:f8:19:90:a4:bb:6a:89:a2:8a:da:
38:db:80:98:1b:a2:de:27:48:8a:dc:f7:e7:7e:7f:
38:35:45:1b:fd:a3:57:5b:4a:1c:69:ef:58:e9:62:
67:d7:f1:06:67:8b:44:15:76:3d:b8:8a:0d:df:ab:
b1:50:3d:31:2a:7f:52:a2:b7:e6:f5:10:ad:65:11:
df:c0:3b:21:0f:1c:92:81:85:af:49:b5:24:48:08:
e8:ca:f7:77:59:d9:8f:b4:55:ed:df:ce:05:8c:83:
7a:8b:62:b6:3b:53:c6:01:4e:17:27:54:09:8b:56:
fc:8e:c5:59:a4:e6:4c:9b:ad:0c:04:c8:cc:09:98:
14:ee:d7:d9:0d:5e:ad:a5:1f:bf:62:00:ab:26:d9:
af:c3:ef:b8:dc:0d:09:ee:6e:35:6f:e9:54:cd:83:
53:e1:c9:75:fb:ca:d3:87:51:de:14:ac:96:0a:0d:
89:91:cd:cc:39:69:5a:c0:3f:9d:9b:eb:de:99:b4:
66:36:cf:c4:5f:45:b1:94:42:eb:a1:02:7b:6b:c1:
dc:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1C:07:62:67:2E:26:7E:16:EC:4A:3A:6A:58:D6:B4:BE:88:72:47
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/4BwHYmcuJn4W7Eo6aljWtL6Ickc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.118.167.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:02:61:bf:54:79:f4:0e:82:ff:18:52:d4:e6:5c:91:cc:ef:
9b:16:bc:3d:63:29:f6:53:40:ae:62:35:8f:0d:69:8a:31:ca:
8f:69:14:ee:a6:f8:4b:e6:ea:88:0d:c4:c1:74:8d:81:ae:ba:
c8:df:2e:a8:46:b9:bd:e0:c8:4c:c8:86:f0:9b:29:4d:8e:6a:
a6:e5:cd:f7:d8:69:98:b1:43:7b:a8:16:68:ef:0e:74:20:58:
f5:a7:f9:35:82:93:1b:7a:df:0e:f4:29:bf:6d:33:b1:2b:13:
ac:5b:57:48:ca:24:e5:4d:04:2b:0b:f4:f4:c2:68:41:09:e4:
4f:85:71:c0:6a:01:26:e4:d0:ae:e3:c0:71:5c:ee:76:f3:81:
78:8f:bc:31:6d:c1:54:7c:95:d5:68:ff:5b:1f:b6:8a:d6:b9:
c7:af:f4:0c:91:bc:11:0b:93:46:88:ff:f8:8d:c2:c1:a8:0a:
eb:4f:d5:c8:54:c2:57:62:b5:fa:11:92:88:cf:5d:d5:b6:6d:
c4:f1:40:84:78:93:41:5e:48:54:5b:fb:33:b5:28:d2:d0:19:
d2:7f:29:3e:ea:8d:5b:7b:06:d9:0d:51:98:aa:ad:b2:6e:9f:
9e:2c:61:d6:7d:de:b2:aa:ec:fe:34:9c:25:f2:98:35:be:d3:
0b:35:17:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSKdtxfIyVvjDRGynr1Kya+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz
NjYwMjYwHhcNMjIxMTE4MTExOTE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDFjMDc2MjY3MmUyNjdlMTZlYzRhM2E2YTU4ZDZiNGJlODg3MjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNhNq1HZXkweAfLgx78/9foNBm8H
astmJP5rpQ8RELvzzPtyz10AbHcaKQ5LQzBe5fgZkKS7aomiito424CYG6LeJ0iK
3Pfnfn84NUUb/aNXW0ocae9Y6WJn1/EGZ4tEFXY9uIoN36uxUD0xKn9Sorfm9RCt
ZRHfwDshDxySgYWvSbUkSAjoyvd3WdmPtFXt384FjIN6i2K2O1PGAU4XJ1QJi1b8
jsVZpOZMm60MBMjMCZgU7tfZDV6tpR+/YgCrJtmvw++43A0J7m41b+lUzYNT4cl1
+8rTh1HeFKyWCg2Jkc3MOWlawD+dm+vembRmNs/EX0WxlELroQJ7a8HcvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOAcB2JnLiZ+FuxKOmpY1rS+iHJHMB8GA1UdIwQY
MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt
YjNiNzhiMGI2NmVhLzEvNEJ3SFltY3VKbjRXN0VvNmFsald0TDZJY2tjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh
LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwXanMA0G
CSqGSIb3DQEBCwUAA4IBAQB/AmG/VHn0DoL/GFLU5lyRzO+bFrw9Yyn2U0CuYjWP
DWmKMcqPaRTupvhL5uqIDcTBdI2BrrrI3y6oRrm94MhMyIbwmylNjmqm5c332GmY
sUN7qBZo7w50IFj1p/k1gpMbet8O9Cm/bTOxKxOsW1dIyiTlTQQrC/T0wmhBCeRP
hXHAagEm5NCu48BxXO5284F4j7wxbcFUfJXVaP9bH7aK1rnHr/QMkbwRC5NGiP/4
jcLBqArrT9XIVMJXYrX6EZKIz13Vtm3E8UCEeJNBXkhUW/sztSjS0BnSfyk+6o1b
ewbZDVGYqq2ybp+eLGHWfd6yquz+NJwl8pg1vtMLNReU
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:27 2024 by rpki-client on console-ams.rpki-client.org