Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/vQXleqvpazPK5ylWWJkAXcS6g4Y.roa
File: vQXleqvpazPK5ylWWJkAXcS6g4Y.roa (raw, json)
Hash identifier: l25+37/CQawqOraJxyIkkWWYQZFQWbxKDo6caFJ5Dj8=
Subject key identifier: BD:05:E5:7A:AB:E9:6B:33:CA:E7:29:56:58:99:00:5D:C4:BA:83:86
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 01835523C2D212C9A3CB1F6A412A6E8D0D33
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/vQXleqvpazPK5ylWWJkAXcS6g4Y.roa
Signing time: Mon 19 Sep 2022 09:45:50 +0000
ROA not before: Mon 19 Sep 2022 09:45:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 193.57.94.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:55:23:c2:d2:12:c9:a3:cb:1f:6a:41:2a:6e:8d:0d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Sep 19 09:45:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd05e57aabe96b33cae729565899005dc4ba8386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:91:a3:b6:a2:f1:64:13:80:5b:1a:c7:0f:f6:
61:bf:92:cc:80:6b:19:79:7a:35:96:8a:b3:0e:a5:
55:44:55:2e:09:71:6a:9f:d3:f6:fb:f6:f1:ad:c6:
cc:1a:0f:82:db:4a:41:9c:e6:ab:9a:2e:74:c3:1d:
e6:fd:f6:27:83:89:dc:6a:eb:70:ee:b5:72:5c:f9:
6c:20:01:21:25:2b:e6:f3:a6:99:74:bf:ae:1e:17:
02:b0:67:66:91:55:25:af:d3:50:8a:38:7c:48:b5:
a7:19:1b:a3:6d:a4:a2:2c:b4:1d:eb:cd:8c:27:01:
43:aa:bc:2b:55:ab:7d:9c:80:a4:55:ec:cc:4a:0c:
d1:70:49:ac:2c:b8:32:d5:23:a8:98:f7:0f:e2:eb:
86:8c:8e:03:4c:90:33:63:11:eb:77:c9:d1:91:84:
41:53:82:f2:3c:94:a8:e4:47:4e:1e:34:e8:4e:f1:
3a:8f:0e:64:33:e7:9b:c5:cc:e3:92:b1:a1:1c:12:
42:6a:45:59:82:b3:b3:84:e5:7d:4e:2e:a3:e6:2b:
0d:cb:a3:dd:a3:a2:5e:86:6b:bf:ba:c1:bf:c9:ec:
15:3c:9f:7e:82:41:1c:13:b0:e2:74:24:db:d4:4d:
68:30:16:bd:ae:d1:3d:64:1d:e5:43:66:74:cf:5c:
73:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:05:E5:7A:AB:E9:6B:33:CA:E7:29:56:58:99:00:5D:C4:BA:83:86
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/vQXleqvpazPK5ylWWJkAXcS6g4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.94.0/23
Signature Algorithm: sha256WithRSAEncryption
94:71:52:88:8a:3a:d1:6d:64:1a:25:fe:84:20:4a:ff:a5:ec:
26:af:c3:81:97:d2:c3:e1:3a:99:dd:09:a6:06:c8:8c:d8:bf:
ef:e7:ca:b7:b2:75:51:ef:16:2d:fc:80:da:5a:3a:ad:3a:0f:
ec:f8:3c:4f:0a:22:6b:9d:53:f1:57:b7:af:a9:4d:05:2b:cf:
08:d3:55:6e:55:09:d7:e6:9c:34:ee:ef:c3:3f:dd:ed:3b:e7:
8d:9b:8c:a2:da:60:c4:73:d2:ea:b5:a8:8e:83:2b:15:bb:a7:
80:d5:34:10:5f:82:39:78:26:d9:21:fa:02:91:6d:d7:c1:4c:
d5:9d:57:d1:ff:76:9b:2e:b8:bf:a3:c5:06:8c:e5:b0:2e:9a:
48:02:4b:f0:a4:9c:01:2d:94:06:65:90:e5:ca:79:b0:28:f4:
73:f9:73:c7:16:a8:1d:42:0b:da:6f:d2:93:4d:84:fe:7f:05:
66:ad:0b:88:d7:17:94:a6:25:9a:d8:45:46:f2:cb:2c:f1:63:
6f:25:cd:c7:8e:a5:33:00:30:01:c3:12:b2:3c:7c:7b:01:88:
cd:08:84:ce:51:ff:e6:fd:e2:fc:e6:69:8f:ca:62:85:84:85:
95:86:d0:71:9c:73:a5:f8:11:96:f5:8f:cb:f0:fe:e0:b5:99:
06:ec:a7:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNVI8LSEsmjyx9qQSpujQ0zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZjIxMGYxMjk5YTFlMGFlZTcxZGMxZDc5ZTVmYjEyMDky
ZDMwYTkwHhcNMjIwOTE5MDk0NTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDA1ZTU3YWFiZTk2YjMzY2FlNzI5NTY1ODk5MDA1ZGM0YmE4Mzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiJGjtqLxZBOAWxrHD/Zhv5LMgGsZ
eXo1loqzDqVVRFUuCXFqn9P2+/bxrcbMGg+C20pBnOarmi50wx3m/fYng4ncautw
7rVyXPlsIAEhJSvm86aZdL+uHhcCsGdmkVUlr9NQijh8SLWnGRujbaSiLLQd682M
JwFDqrwrVat9nICkVezMSgzRcEmsLLgy1SOomPcP4uuGjI4DTJAzYxHrd8nRkYRB
U4LyPJSo5EdOHjToTvE6jw5kM+ebxczjkrGhHBJCakVZgrOzhOV9Ti6j5isNy6Pd
o6Jehmu/usG/yewVPJ9+gkEcE7DidCTb1E1oMBa9rtE9ZB3lQ2Z0z1xziQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL0F5Xqr6WszyucpVliZAF3EuoOGMB8GA1UdIwQY
MBaAFHPyEPEpmh4K7nHcHXnl+xIJLTCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDkt
Yjk0NjQ3MThiYTM3LzEvdlFYbGVxdnBhelBLNXlsV1dKa0FYY1M2ZzRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDktYjk0NjQ3MThiYTM3
LzEvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwTleMA0G
CSqGSIb3DQEBCwUAA4IBAQCUcVKIijrRbWQaJf6EIEr/pewmr8OBl9LD4TqZ3Qmm
BsiM2L/v58q3snVR7xYt/IDaWjqtOg/s+DxPCiJrnVPxV7evqU0FK88I01VuVQnX
5pw07u/DP93tO+eNm4yi2mDEc9LqtaiOgysVu6eA1TQQX4I5eCbZIfoCkW3XwUzV
nVfR/3abLri/o8UGjOWwLppIAkvwpJwBLZQGZZDlynmwKPRz+XPHFqgdQgvab9KT
TYT+fwVmrQuI1xeUpiWa2EVG8sss8WNvJc3HjqUzADABwxKyPHx7AYjNCITOUf/m
/eL85mmPymKFhIWVhtBxnHOl+BGW9Y/L8P7gtZkG7Kfj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org