Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5iW7tROeFnpayl1JjjDAsvtJDEw.roa
File: 5iW7tROeFnpayl1JjjDAsvtJDEw.roa (raw, json)
Hash identifier: aTTK/k0MNlqq8MF45boaN6iy90aT/hdCJJTXwBMKioo=
Subject key identifier: E6:25:BB:B5:13:9E:16:7A:5A:CA:5D:49:8E:30:C0:B2:FB:49:0C:4C
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 08DFDEE7
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5iW7tROeFnpayl1JjjDAsvtJDEw.roa
Signing time: Sat 01 Jan 2022 07:01:28 +0000
ROA not before: Sat 01 Jan 2022 07:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399029
IP address blocks: 193.107.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148889319 (0x8dfdee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 1 07:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e625bbb5139e167a5aca5d498e30c0b2fb490c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f4:a8:71:f6:c2:52:74:d3:d4:ca:43:44:f7:
aa:e1:82:2a:1e:cd:2a:25:b3:ea:b8:51:ca:90:f0:
cd:72:f7:1e:50:9a:d0:3f:97:45:e6:33:37:52:96:
14:78:15:ea:ec:f7:15:01:ce:7a:22:f4:1d:4e:6c:
7e:1c:82:2b:b6:dd:66:dd:3c:02:60:5d:01:5e:26:
07:74:e0:32:2e:a8:76:49:99:9b:52:bf:7d:71:78:
1f:05:10:59:b6:b9:9c:d0:77:fd:a2:58:d4:d1:37:
09:89:8d:89:e0:6a:6e:57:3e:e7:a7:8e:ad:12:ba:
24:78:50:11:1b:42:9b:d2:6e:88:a8:e4:04:73:23:
21:9e:ce:ea:bc:8d:a9:4f:98:6d:c7:ab:0c:18:1b:
e3:73:65:a8:79:3a:88:6b:e4:99:3b:36:20:30:bd:
3e:89:a1:f7:5e:75:1d:78:26:04:e9:fa:0a:71:c5:
75:cd:b4:f6:5c:93:2b:bc:e8:ab:5e:f0:4f:0d:d7:
b5:c1:60:ec:34:82:39:5b:78:4f:c6:7c:25:5e:9b:
fd:e6:6f:af:a4:88:2c:6b:6e:23:69:0f:c4:76:e9:
ca:07:37:e9:35:83:40:24:8f:03:bd:05:8b:e1:c3:
c5:f6:36:9a:da:03:3d:30:eb:f9:a4:f0:9e:6d:ea:
ca:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:25:BB:B5:13:9E:16:7A:5A:CA:5D:49:8E:30:C0:B2:FB:49:0C:4C
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5iW7tROeFnpayl1JjjDAsvtJDEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.217.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:1d:62:10:ab:7b:53:c8:04:a8:01:ac:3b:a7:d7:79:c0:11:
b3:c0:2f:75:0a:1d:d0:82:bd:46:79:59:ee:b8:72:49:70:1b:
cb:3c:03:df:6c:27:15:cb:f0:ee:64:36:5f:95:d8:fc:a7:d5:
ad:27:4e:11:30:3c:1b:26:ca:98:e0:31:46:48:6a:40:3e:98:
b5:cb:cb:67:9a:1d:27:06:dd:0a:31:8b:b7:6c:3a:b1:21:9c:
cc:7a:09:cf:a3:0b:59:82:5b:60:12:48:d5:18:17:ad:16:27:
36:7e:7a:50:58:22:6f:45:0b:3c:09:c0:1c:cf:68:fd:ff:a3:
32:1b:8e:91:b6:58:0b:ce:60:a9:6c:44:5b:94:e6:63:5b:e4:
b2:1b:78:20:52:fe:84:ff:77:b9:a1:62:09:61:75:3a:ee:eb:
bf:68:b9:93:81:c0:f7:44:94:61:6c:8c:23:12:ed:d7:0d:6a:
c5:ce:25:e9:ce:7c:84:b6:e6:24:59:b0:71:33:f3:0b:4d:b6:
e8:03:2c:55:89:d5:e2:5d:5a:6e:1b:98:83:0b:1a:4b:da:e4:
40:06:98:b2:50:89:6b:65:29:1f:46:12:52:1e:f1:a4:a9:72:
70:4c:d6:d4:e4:87:0d:84:23:30:99:fb:26:d7:34:be:af:c0:
3c:83:f9:e2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECN/e5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
N2QwM2YyOTgxODBjYzEwOWYxOWQ0YjE5OTJjN2Q3MWM1NmM4ZGNjMB4XDTIyMDEw
MTA3MDEyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTYyNWJiYjUxMzll
MTY3YTVhY2E1ZDQ5OGUzMGMwYjJmYjQ5MGM0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALT0qHH2wlJ009TKQ0T3quGCKh7NKiWz6rhRypDwzXL3HlCa
0D+XReYzN1KWFHgV6uz3FQHOeiL0HU5sfhyCK7bdZt08AmBdAV4mB3TgMi6odkmZ
m1K/fXF4HwUQWba5nNB3/aJY1NE3CYmNieBqblc+56eOrRK6JHhQERtCm9JuiKjk
BHMjIZ7O6ryNqU+YbcerDBgb43NlqHk6iGvkmTs2IDC9Pomh9151HXgmBOn6CnHF
dc209lyTK7zoq17wTw3XtcFg7DSCOVt4T8Z8JV6b/eZvr6SILGtuI2kPxHbpygc3
6TWDQCSPA70Fi+HDxfY2mtoDPTDr+aTwnm3qyhMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTmJbu1E54WelrKXUmOMMCy+0kMTDAfBgNVHSMEGDAWgBQX0D8pgYDMEJ8Z
1LGZLH1xxWyNzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y5QV9LWUdBekJDZkdkU3htU3g5Y2NWc2pjdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvODJlMjUzLTAxNzctNGEyMC1iZWZlLTkxOGFjNjQ2MjY3OS8x
LzVpVzd0Uk9lRm5wYXlsMUpqakRBc3Z0SkRFdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
ODJlMjUzLTAxNzctNGEyMC1iZWZlLTkxOGFjNjQ2MjY3OS8xL0Y5QV9LWUdBekJD
ZkdkU3htU3g5Y2NWc2pjdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFr2TANBgkqhkiG9w0BAQsFAAOC
AQEAvx1iEKt7U8gEqAGsO6fXecARs8AvdQod0IK9RnlZ7rhySXAbyzwD32wnFcvw
7mQ2X5XY/KfVrSdOETA8GybKmOAxRkhqQD6YtcvLZ5odJwbdCjGLt2w6sSGczHoJ
z6MLWYJbYBJI1RgXrRYnNn56UFgib0ULPAnAHM9o/f+jMhuOkbZYC85gqWxEW5Tm
Y1vksht4IFL+hP93uaFiCWF1Ou7rv2i5k4HA90SUYWyMIxLt1w1qxc4l6c58hLbm
JFmwcTPzC0226AMsVYnV4l1abhuYgwsaS9rkQAaYslCJa2UpH0YSUh7xpKlycEzW
1OSHDYQjMJn7Jtc0vq/APIP54g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:03 2023 by rpki-client on console-fra.rpki-client.org