Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/cw_tQn2yJeL9CN1fdIH4VqVFsH8.roa
File: cw_tQn2yJeL9CN1fdIH4VqVFsH8.roa (raw, json)
Hash identifier: cqaoXmnoOStrRConkV7OVo6enPOZ2fqEzIl3WQHqRDo=
Subject key identifier: 73:0F:ED:42:7D:B2:25:E2:FD:08:DD:5F:74:81:F8:56:A5:45:B0:7F
Certificate issuer: /CN=34eaf4fe82d4ba7b26f08c3972f3b956ade56d49
Certificate serial: 1D7BF5
Authority key identifier: 34:EA:F4:FE:82:D4:BA:7B:26:F0:8C:39:72:F3:B9:56:AD:E5:6D:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOr0_oLUunsm8Iw5cvO5Vq3lbUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/cw_tQn2yJeL9CN1fdIH4VqVFsH8.roa
Signing time: Sat 01 Jan 2022 02:56:20 +0000
ROA not before: Sat 01 Jan 2022 02:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50057
IP address blocks: 193.150.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1932277 (0x1d7bf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34eaf4fe82d4ba7b26f08c3972f3b956ade56d49
Validity
Not Before: Jan 1 02:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=730fed427db225e2fd08dd5f7481f856a545b07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6a:1c:d0:ba:67:84:8a:fa:49:63:57:b1:46:
d2:8d:e0:64:b0:3a:bf:01:0f:12:66:22:35:b3:26:
f7:b4:71:7d:40:de:bb:37:53:f4:ac:d1:84:f7:38:
43:d3:63:0d:6c:d1:0a:03:39:bc:52:27:56:61:20:
ca:fc:ac:f7:75:58:4f:23:f3:4d:ae:ba:24:fe:48:
04:98:eb:fb:38:61:18:2b:a7:bb:06:8f:59:9d:55:
c2:42:b6:cf:4d:a7:0e:75:d3:86:81:e0:23:97:a2:
c8:56:b7:45:76:46:0d:5a:d7:40:33:68:3c:2e:0f:
4e:2f:95:b9:e6:2f:2d:d1:50:21:47:e1:50:65:fa:
21:5a:1c:49:3d:83:61:34:f6:d8:bd:a2:ec:a8:b3:
9d:0f:ae:bc:34:e0:36:a4:22:95:8f:45:c9:9f:25:
20:b0:6f:e3:ad:f2:5f:cd:6c:8a:e8:cb:85:cb:8d:
74:20:81:22:a7:da:0f:69:91:bb:9f:9b:3a:c3:53:
fc:39:1a:15:5d:17:2b:d5:64:3b:4b:e0:d4:03:18:
73:0c:83:06:99:99:9b:08:f4:21:68:7c:bf:49:90:
ac:7b:52:74:76:35:08:3b:3a:78:ba:cf:7f:0d:4b:
a8:c4:75:05:05:98:95:39:55:16:c1:f8:49:af:ad:
68:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0F:ED:42:7D:B2:25:E2:FD:08:DD:5F:74:81:F8:56:A5:45:B0:7F
X509v3 Authority Key Identifier:
keyid:34:EA:F4:FE:82:D4:BA:7B:26:F0:8C:39:72:F3:B9:56:AD:E5:6D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOr0_oLUunsm8Iw5cvO5Vq3lbUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/cw_tQn2yJeL9CN1fdIH4VqVFsH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/NOr0_oLUunsm8Iw5cvO5Vq3lbUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.66.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:ef:a7:a5:2b:40:cb:e8:7b:83:39:e7:60:26:01:f4:82:b2:
3c:2c:9d:33:f7:07:74:d3:6e:44:06:35:bc:d2:25:be:29:8f:
a6:d0:4f:12:34:1b:e8:f4:26:cd:fa:3a:31:f1:9d:7a:f1:a9:
48:30:23:43:1c:b9:d2:5b:f4:4c:ed:99:f0:9c:6c:90:9c:78:
18:6f:1e:6d:6e:34:ec:9b:b3:d3:00:0d:92:9a:3a:d0:d5:e0:
d9:8f:c7:03:67:38:78:7a:cd:57:aa:b1:45:ce:5d:4d:3b:ec:
5a:ff:30:8b:99:cd:eb:32:ce:80:ac:d4:3a:8e:c0:58:f2:54:
26:47:6a:65:89:5f:91:fa:1c:c6:3a:c7:92:2f:12:da:38:29:
a5:0b:d1:45:cb:80:dc:db:51:a9:82:e6:bd:d1:24:c9:32:49:
cf:93:de:50:a8:c6:ff:5f:4e:f1:00:d5:51:89:f3:e5:0f:c1:
f0:01:87:41:5b:14:28:0c:4c:d6:bd:45:ef:2e:ff:39:2e:d7:
2b:83:6b:ac:c8:ef:9c:23:a8:2b:5e:b6:62:9d:f6:43:09:35:
5a:ab:bd:2c:89:7e:8b:c2:c2:56:c4:a7:36:e5:44:f8:3e:ce:
89:d0:fb:82:2b:88:c5:0b:76:ff:d3:ef:7d:27:b5:52:fd:15:
f0:0b:ff:bd
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDHXv1MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM0
ZWFmNGZlODJkNGJhN2IyNmYwOGMzOTcyZjNiOTU2YWRlNTZkNDkwHhcNMjIwMTAx
MDI1NjIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3MzBmZWQ0MjdkYjIy
NWUyZmQwOGRkNWY3NDgxZjg1NmE1NDViMDdmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwmoc0LpnhIr6SWNXsUbSjeBksDq/AQ8SZiI1syb3tHF9QN67
N1P0rNGE9zhD02MNbNEKAzm8UidWYSDK/Kz3dVhPI/NNrrok/kgEmOv7OGEYK6e7
Bo9ZnVXCQrbPTacOddOGgeAjl6LIVrdFdkYNWtdAM2g8Lg9OL5W55i8t0VAhR+FQ
ZfohWhxJPYNhNPbYvaLsqLOdD668NOA2pCKVj0XJnyUgsG/jrfJfzWyK6MuFy410
IIEip9oPaZG7n5s6w1P8ORoVXRcr1WQ7S+DUAxhzDIMGmZmbCPQhaHy/SZCse1J0
djUIOzp4us9/DUuoxHUFBZiVOVUWwfhJr61oSQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFHMP7UJ9siXi/QjdX3SB+FalRbB/MB8GA1UdIwQYMBaAFDTq9P6C1Lp7JvCM
OXLzuVat5W1JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Tk9yMF9vTFV1bnNtOEl3NWN2TzVWcTNsYlVrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zOS9kM2ZhYzgtY2MwYy00NWM0LTliNDQtYjZlMmM5NTllZGZjLzEv
Y3dfdFFuMnlKZUw5Q04xZmRJSDRWcVZGc0g4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9k
M2ZhYzgtY2MwYy00NWM0LTliNDQtYjZlMmM5NTllZGZjLzEvTk9yMF9vTFV1bnNt
OEl3NWN2TzVWcTNsYlVrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwZZCMA0GCSqGSIb3DQEBCwUAA4IB
AQAd76elK0DL6HuDOedgJgH0grI8LJ0z9wd0025EBjW80iW+KY+m0E8SNBvo9CbN
+jox8Z168alIMCNDHLnSW/RM7ZnwnGyQnHgYbx5tbjTsm7PTAA2SmjrQ1eDZj8cD
Zzh4es1XqrFFzl1NO+xa/zCLmc3rMs6ArNQ6jsBY8lQmR2pliV+R+hzGOseSLxLa
OCmlC9FFy4Dc21Gpgua90STJMknPk95QqMb/X07xANVRifPlD8HwAYdBWxQoDEzW
vUXvLv85Ltcrg2usyO+cI6grXrZinfZDCTVaq70siX6LwsJWxKc25UT4Ps6J0PuC
K4jFC3b/0+99J7VS/RXwC/+9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org