Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/gI8I1tUk6F8vQcClS1HavXdc_Hc.roa
File: gI8I1tUk6F8vQcClS1HavXdc_Hc.roa (raw, json)
Hash identifier: WIHFspWsvXchFoFMQIZkpwZ0XVJOxN6hseFj937esj8=
Subject key identifier: 80:8F:08:D6:D5:24:E8:5F:2F:41:C0:A5:4B:51:DA:BD:77:5C:FC:77
Certificate issuer: /CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Certificate serial: 0C334CBC
Authority key identifier: 17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/gI8I1tUk6F8vQcClS1HavXdc_Hc.roa
Signing time: Sat 01 Jan 2022 12:03:56 +0000
ROA not before: Sat 01 Jan 2022 12:03:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24882
IP address blocks: 193.111.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204688572 (0xc334cbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Validity
Not Before: Jan 1 12:03:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=808f08d6d524e85f2f41c0a54b51dabd775cfc77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c5:4c:10:39:35:36:19:c8:3c:fd:c3:ae:58:
7e:a0:bc:5c:01:c3:a4:3b:f1:20:bf:64:eb:db:90:
8d:e6:cd:93:e5:a0:a0:3b:bc:22:69:71:59:a3:87:
7a:6d:38:e5:28:df:0c:77:8e:76:69:7b:d6:f0:a7:
6c:ae:c0:97:e0:ac:c1:e3:6d:49:2d:66:03:8a:a9:
07:fc:6c:e3:58:cd:57:f7:bf:a0:fd:25:2c:8a:f0:
16:d3:e0:10:29:6a:e1:7f:5e:2d:39:1e:72:7c:fd:
e1:1f:e2:2e:8e:bf:2b:56:ec:f6:34:68:d9:31:f0:
3f:82:fd:bb:e1:ea:b5:0a:4e:36:df:99:2e:50:73:
7c:fa:4b:e5:2d:32:6b:10:b9:5d:48:18:31:30:f4:
1f:01:cd:ee:a8:f7:e3:79:fb:fa:ce:a5:a9:d1:6b:
ef:f8:bb:bf:94:d2:d8:f9:aa:5a:c9:28:bc:53:06:
c5:e1:fa:29:cf:97:8b:fa:78:26:3e:6d:76:c6:f8:
c4:2d:f4:7a:45:53:d8:e6:64:cd:56:f2:5a:41:7d:
35:4d:35:89:63:c9:36:c5:91:98:7c:b2:9f:dd:27:
26:f9:05:11:4c:51:62:14:37:f3:e9:9f:80:4a:a5:
dd:b9:38:6a:ba:d8:2d:83:04:17:1c:ba:66:f0:e1:
cc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8F:08:D6:D5:24:E8:5F:2F:41:C0:A5:4B:51:DA:BD:77:5C:FC:77
X509v3 Authority Key Identifier:
keyid:17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/gI8I1tUk6F8vQcClS1HavXdc_Hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/F6b6gLLRxD7J6oJOfoOV95KU44o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.173.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:12:38:35:79:73:e3:57:f4:b5:01:d1:9d:dd:7d:29:de:b3:
26:8e:fe:9c:70:f6:16:67:c9:ad:7f:b7:82:41:dd:97:e2:80:
b1:44:1a:94:26:3c:a6:a4:57:41:bc:b8:9a:65:da:0e:8b:1e:
0b:c8:b9:21:43:f5:ed:00:a9:96:ec:e5:07:b8:5a:f2:3c:86:
3f:57:b8:5f:74:b3:0d:d4:fe:c3:5b:d3:ce:53:ef:ed:ea:76:
d1:41:0a:c7:3d:1c:44:7b:79:9b:37:45:f5:04:bc:27:4b:36:
14:73:8b:12:98:b3:a5:e8:30:ac:39:59:d4:6a:41:d0:03:90:
73:ca:06:7a:34:4e:1e:e2:e1:88:03:dc:49:36:88:d4:51:1b:
fa:0a:7d:f7:03:77:b3:b9:a7:d6:9b:66:8a:1e:8a:f7:8a:d5:
2e:37:04:f4:e4:09:99:1c:e2:4d:87:45:5f:29:d1:3c:5a:12:
a3:52:c8:13:ef:24:92:0e:76:2d:9c:b0:e8:f2:dd:00:c8:bd:
4f:de:9c:df:16:e1:45:84:9b:0c:bc:7e:6e:cf:d5:fe:8f:af:
4e:89:24:f7:1f:1a:04:f8:b8:f0:9e:f7:da:f8:96:3a:77:3a:
66:e9:b7:19:9c:dc:b0:ee:8d:ca:c2:33:a3:31:61:a9:5d:a5:
e3:af:04:c8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDDNMvDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
N2E2ZmE4MGIyZDFjNDNlYzllYTgyNGU3ZTgzOTVmNzkyOTRlMzhhMB4XDTIyMDEw
MTEyMDM1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODA4ZjA4ZDZkNTI0
ZTg1ZjJmNDFjMGE1NGI1MWRhYmQ3NzVjZmM3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJXFTBA5NTYZyDz9w65YfqC8XAHDpDvxIL9k69uQjebNk+Wg
oDu8ImlxWaOHem045SjfDHeOdml71vCnbK7Al+CsweNtSS1mA4qpB/xs41jNV/e/
oP0lLIrwFtPgEClq4X9eLTkecnz94R/iLo6/K1bs9jRo2THwP4L9u+HqtQpONt+Z
LlBzfPpL5S0yaxC5XUgYMTD0HwHN7qj343n7+s6lqdFr7/i7v5TS2PmqWskovFMG
xeH6Kc+Xi/p4Jj5tdsb4xC30ekVT2OZkzVbyWkF9NU01iWPJNsWRmHyyn90nJvkF
EUxRYhQ38+mfgEql3bk4arrYLYMEFxy6ZvDhzCsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSAjwjW1SToXy9BwKVLUdq9d1z8dzAfBgNVHSMEGDAWgBQXpvqAstHEPsnq
gk5+g5X3kpTjijAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y2YjZnTExSeEQ3SjZvSk9mb09WOTVLVTQ0by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvYmJmZTQ4LWYxNGQtNDBkMS05ZjFhLWNiOWU0NWJiMGM2My8x
L2dJOEkxdFVrNkY4dlFjQ2xTMUhhdlhkY19IYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
YmJmZTQ4LWYxNGQtNDBkMS05ZjFhLWNiOWU0NWJiMGM2My8xL0Y2YjZnTExSeEQ3
SjZvSk9mb09WOTVLVTQ0by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFvrTANBgkqhkiG9w0BAQsFAAOC
AQEAoBI4NXlz41f0tQHRnd19Kd6zJo7+nHD2FmfJrX+3gkHdl+KAsUQalCY8pqRX
Qby4mmXaDoseC8i5IUP17QCpluzlB7ha8jyGP1e4X3SzDdT+w1vTzlPv7ep20UEK
xz0cRHt5mzdF9QS8J0s2FHOLEpizpegwrDlZ1GpB0AOQc8oGejROHuLhiAPcSTaI
1FEb+gp99wN3s7mn1ptmih6K94rVLjcE9OQJmRziTYdFXynRPFoSo1LIE+8kkg52
LZyw6PLdAMi9T96c3xbhRYSbDLx+bs/V/o+vTokk9x8aBPi48J732viWOnc6Zum3
GZzcsO6NysIzozFhqV2l468EyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:24 2024 by rpki-client on console-fra.rpki-client.org