Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/Y2167gV3pfo93EssJczno7O_hho.roa
File: Y2167gV3pfo93EssJczno7O_hho.roa (raw, json)
Hash identifier: 0i0ueEj+w59Pu9+5D2mdMlvfCK2c3wgKiA0BLOb5C40=
Subject key identifier: 63:6D:7A:EE:05:77:A5:FA:3D:DC:4B:2C:25:CC:E7:A3:B3:BF:86:1A
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 17438778
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/Y2167gV3pfo93EssJczno7O_hho.roa
Signing time: Sat 01 Jan 2022 11:54:26 +0000
ROA not before: Sat 01 Jan 2022 11:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41992
IP address blocks: 193.34.152.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390301560 (0x17438778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Jan 1 11:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=636d7aee0577a5fa3ddc4b2c25cce7a3b3bf861a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c7:5e:4d:78:35:55:6c:89:25:ae:2a:2e:a1:
a1:3a:5b:87:89:bd:a6:62:4b:f5:51:83:fe:4c:9f:
92:3c:8d:68:5d:67:71:25:24:7e:04:3a:14:d9:75:
86:e8:41:3f:ba:8a:73:88:54:41:91:0f:d1:d0:98:
72:61:7c:be:4b:d4:f5:e8:2d:7d:22:0a:6e:c8:18:
7a:8b:b5:5f:87:e1:83:dc:e4:6e:80:9b:40:c3:1d:
8e:f9:66:82:a9:f7:e1:24:8d:23:e4:b4:c1:85:13:
46:f8:79:5c:f9:71:9d:cd:f6:1e:e9:55:09:27:73:
06:8b:34:6b:60:f7:0c:5d:c3:47:bd:fd:9b:2c:3a:
b8:a7:76:f7:eb:96:63:d1:33:85:23:e7:e3:44:b0:
af:cb:24:9b:de:a0:a5:e7:d5:34:45:40:b9:31:b9:
c6:2c:34:4a:95:83:12:21:01:82:dc:92:36:20:07:
1a:62:66:ba:bd:40:5b:c2:09:ea:05:85:4c:87:33:
a0:1e:fb:3f:e9:62:73:24:d3:6d:c3:2e:02:f3:ce:
9b:c3:9b:d6:51:ec:53:99:93:dd:9e:93:15:08:50:
69:97:35:fd:97:1f:19:d7:64:d7:6a:85:ea:ab:9a:
b3:d6:a7:1f:8a:65:21:f5:83:ed:fa:cb:be:5c:de:
c6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6D:7A:EE:05:77:A5:FA:3D:DC:4B:2C:25:CC:E7:A3:B3:BF:86:1A
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/Y2167gV3pfo93EssJczno7O_hho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.152.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:93:e5:1b:ab:7e:da:bc:30:42:13:b0:bd:53:f8:11:06:f9:
6c:1d:18:c0:8d:e1:19:56:57:cf:ce:8d:08:95:c9:9a:5e:41:
af:4d:03:9b:49:73:cd:21:ba:40:3a:16:4f:0a:72:b0:70:ac:
d6:d8:cc:4a:4f:55:74:42:62:9e:8e:36:19:09:ad:b7:d2:a5:
7c:d0:05:fe:64:d4:bc:31:b8:10:55:0d:d7:7c:22:66:d7:d1:
4c:62:ab:41:37:35:b6:bd:fc:c4:c5:e2:1e:a7:5d:cf:68:83:
3c:71:46:e3:32:35:3c:db:23:74:40:d9:7e:5c:93:a9:03:f5:
40:b8:42:de:45:73:ac:8b:61:c9:8a:55:2d:d3:e1:42:3e:e7:
f3:2e:2a:51:c2:06:fe:19:fb:92:bc:2f:b7:e1:0f:f8:b7:f5:
00:4d:87:b0:7d:42:07:b1:b6:66:fc:b2:71:9c:14:bb:f3:95:
e7:aa:2c:4d:74:8e:ea:ed:5e:4d:74:94:c5:19:3f:6a:14:32:
07:b4:01:a3:40:96:fc:03:71:2c:1c:64:6c:7b:c4:18:08:70:
16:51:8f:41:48:21:5d:d2:65:8b:23:ee:11:37:25:38:61:ae:
15:6c:cc:d2:2a:7f:56:e0:48:bf:d3:1c:63:2c:26:5e:2c:30:
db:52:c8:c9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF0OHeDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YzMyOWYzMzMxZjUzNDNmMjkwZWI0YTQxZjE2YzQzNjNhMjgyYzkwMB4XDTIyMDEw
MTExNTQyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjM2ZDdhZWUwNTc3
YTVmYTNkZGM0YjJjMjVjY2U3YTNiM2JmODYxYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAObHXk14NVVsiSWuKi6hoTpbh4m9pmJL9VGD/kyfkjyNaF1n
cSUkfgQ6FNl1huhBP7qKc4hUQZEP0dCYcmF8vkvU9egtfSIKbsgYeou1X4fhg9zk
boCbQMMdjvlmgqn34SSNI+S0wYUTRvh5XPlxnc32HulVCSdzBos0a2D3DF3DR739
myw6uKd29+uWY9EzhSPn40Swr8skm96gpefVNEVAuTG5xiw0SpWDEiEBgtySNiAH
GmJmur1AW8IJ6gWFTIczoB77P+licyTTbcMuAvPOm8Ob1lHsU5mT3Z6TFQhQaZc1
/ZcfGddk12qF6quas9anH4plIfWD7frLvlzexqMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjbXruBXel+j3cSywlzOejs7+GGjAfBgNVHSMEGDAWgBScMp8zMfU0PykO
tKQfFsQ2OigskDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25ES2ZNekgxTkQ4cERyU2tIeGJFTmpvb0xKQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDIvNjI0MjIwLWMwNzYtNGExZC1hZWZiLWI3ZjVkNDM5NWNjMC8x
L1kyMTY3Z1YzcGZvOTNFc3NKY3pubzdPX2hoby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDIv
NjI0MjIwLWMwNzYtNGExZC1hZWZiLWI3ZjVkNDM5NWNjMC8xL25ES2ZNekgxTkQ4
cERyU2tIeGJFTmpvb0xKQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcEimDANBgkqhkiG9w0BAQsFAAOC
AQEATpPlG6t+2rwwQhOwvVP4EQb5bB0YwI3hGVZXz86NCJXJml5Br00Dm0lzzSG6
QDoWTwpysHCs1tjMSk9VdEJino42GQmtt9KlfNAF/mTUvDG4EFUN13wiZtfRTGKr
QTc1tr38xMXiHqddz2iDPHFG4zI1PNsjdEDZflyTqQP1QLhC3kVzrIthyYpVLdPh
Qj7n8y4qUcIG/hn7krwvt+EP+Lf1AE2HsH1CB7G2ZvyycZwUu/OV56osTXSO6u1e
TXSUxRk/ahQyB7QBo0CW/ANxLBxkbHvEGAhwFlGPQUghXdJliyPuETclOGGuFWzM
0ip/VuBIv9McYywmXiww21LIyQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:52 2023 by rpki-client on console-ams.rpki-client.org