Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/tRPurQiFHSQRWiFzGjwAsanS9N0.roa
File: tRPurQiFHSQRWiFzGjwAsanS9N0.roa (raw, json)
Hash identifier: 2JnBiO8PVF1+CzAMYhJJHCx2Md6UR3u0kCshIKysmEk=
Subject key identifier: B5:13:EE:AD:08:85:1D:24:11:5A:21:73:1A:3C:00:B1:A9:D2:F4:DD
Certificate issuer: /CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Certificate serial: 0A9790F6
Authority key identifier: 9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/tRPurQiFHSQRWiFzGjwAsanS9N0.roa
Signing time: Sat 01 Jan 2022 00:54:50 +0000
ROA not before: Sat 01 Jan 2022 00:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 193.84.116.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177705206 (0xa9790f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Validity
Not Before: Jan 1 00:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b513eead08851d24115a21731a3c00b1a9d2f4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:18:64:d5:d6:05:a5:c4:4a:de:1f:45:05:ca:
ad:36:8a:b7:af:05:22:da:6b:d3:fa:48:89:95:76:
b5:16:49:29:7e:44:4e:7a:db:58:aa:b1:ee:2a:f1:
f3:30:e8:b1:dc:09:92:f8:c4:35:54:a5:28:83:92:
63:53:54:0f:83:ea:12:f9:c1:fb:6c:4c:9c:fb:a6:
6a:ac:c1:aa:4b:3f:5c:37:a3:b6:40:27:3f:ba:69:
42:8d:7d:96:e7:49:1f:c1:76:c0:a3:87:2b:06:dc:
ce:4c:5d:c2:35:ef:d3:55:e4:bb:35:36:6a:00:8b:
f5:ba:be:e9:5e:c8:23:6d:25:fe:1a:2b:14:5b:ad:
b9:87:1b:a6:0a:a9:97:5a:3a:cf:23:d2:44:b2:f5:
90:71:a6:1f:09:34:9a:03:69:95:57:99:6f:83:21:
7d:03:3c:e1:da:81:75:15:77:91:c3:3b:fd:fd:88:
6a:ad:0b:06:80:86:06:f8:21:61:53:f2:ff:42:2b:
03:1b:a0:f1:da:60:7e:05:45:53:d2:b2:d6:14:f3:
7a:c3:1a:12:7a:81:0c:e4:a1:59:52:d0:01:59:53:
05:92:bd:5b:ca:ad:65:ab:b3:eb:92:ce:63:96:65:
e6:9e:4f:1f:69:40:f4:4f:b3:7c:86:fb:4a:39:07:
d7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:13:EE:AD:08:85:1D:24:11:5A:21:73:1A:3C:00:B1:A9:D2:F4:DD
X509v3 Authority Key Identifier:
keyid:9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/tRPurQiFHSQRWiFzGjwAsanS9N0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.116.0/23
Signature Algorithm: sha256WithRSAEncryption
84:7e:99:b0:dc:06:d5:8f:8d:eb:94:56:07:79:62:53:9d:4b:
51:ae:64:94:6a:38:23:22:1c:85:1c:8a:a8:55:07:8c:9a:c2:
c4:5e:40:9e:7a:c8:8c:67:33:11:08:f3:af:6c:87:67:c9:4c:
b7:0c:cf:d1:b9:31:24:08:cc:d5:3e:74:4d:4a:eb:f3:70:bc:
51:88:bd:8d:cf:c5:3f:cf:a2:83:d1:17:83:28:f3:d1:90:b2:
5b:02:4f:36:e0:b4:28:c4:ac:e5:72:5c:f4:98:17:d2:49:0e:
78:30:3d:36:7d:7a:8a:c3:2b:21:b7:d0:2b:60:55:bb:20:24:
02:22:b9:d2:6b:7d:f7:13:72:87:4d:a8:45:6d:b9:9d:df:b3:
d1:d3:52:6f:35:38:0b:7f:ff:70:3d:70:cf:bd:9d:7d:5a:ca:
f0:b3:a4:27:cd:91:67:a5:78:85:5e:d3:99:54:44:11:e8:df:
b7:a6:28:01:5c:5c:05:86:54:dc:9a:3c:a8:c5:95:27:36:d9:
cc:5c:14:2f:25:ba:f1:6f:75:0a:40:78:73:74:61:1a:71:03:
f8:c0:15:c6:a1:05:fa:2d:9c:41:b2:69:8c:2e:1a:c1:e3:64:
01:a0:ba:f6:02:00:45:6e:45:8c:f9:b0:a8:a5:35:ba:3e:97:
ad:4f:d3:6d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECpeQ9jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZTc0MTM1YmIwN2M2NTQwY2QzMDdiZGEwOGNhMDY3NGJjODRjOTM5MB4XDTIyMDEw
MTAwNTQ1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjUxM2VlYWQwODg1
MWQyNDExNWEyMTczMWEzYzAwYjFhOWQyZjRkZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQYZNXWBaXESt4fRQXKrTaKt68FItpr0/pIiZV2tRZJKX5E
TnrbWKqx7irx8zDosdwJkvjENVSlKIOSY1NUD4PqEvnB+2xMnPumaqzBqks/XDej
tkAnP7ppQo19ludJH8F2wKOHKwbczkxdwjXv01XkuzU2agCL9bq+6V7II20l/hor
FFutuYcbpgqpl1o6zyPSRLL1kHGmHwk0mgNplVeZb4MhfQM84dqBdRV3kcM7/f2I
aq0LBoCGBvghYVPy/0IrAxug8dpgfgVFU9Ky1hTzesMaEnqBDOShWVLQAVlTBZK9
W8qtZauz65LOY5Zl5p5PH2lA9E+zfIb7SjkH1/kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS1E+6tCIUdJBFaIXMaPACxqdL03TAfBgNVHSMEGDAWgBSedBNbsHxlQM0w
e9oIygZ0vITJOTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25uUVRXN0I4WlVETk1IdmFDTW9HZEx5RXlUay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvNWU3OGY2LTI1M2EtNDExNS1hZTVkLTVkYzgwZmFlZDJkYy8x
L3RSUHVyUWlGSFNRUldpRnpHandBc2FuUzlOMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
NWU3OGY2LTI1M2EtNDExNS1hZTVkLTVkYzgwZmFlZDJkYy8xL25uUVRXN0I4WlVE
Tk1IdmFDTW9HZEx5RXlUay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcFUdDANBgkqhkiG9w0BAQsFAAOC
AQEAhH6ZsNwG1Y+N65RWB3liU51LUa5klGo4IyIchRyKqFUHjJrCxF5AnnrIjGcz
EQjzr2yHZ8lMtwzP0bkxJAjM1T50TUrr83C8UYi9jc/FP8+ig9EXgyjz0ZCyWwJP
NuC0KMSs5XJc9JgX0kkOeDA9Nn16isMrIbfQK2BVuyAkAiK50mt99xNyh02oRW25
nd+z0dNSbzU4C3//cD1wz72dfVrK8LOkJ82RZ6V4hV7TmVREEejft6YoAVxcBYZU
3Jo8qMWVJzbZzFwULyW68W91CkB4c3RhGnED+MAVxqEF+i2cQbJpjC4aweNkAaC6
9gIARW5FjPmwqKU1uj6XrU/TbQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:45 2024 by rpki-client on console-ams.rpki-client.org