Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/bkbjuEM5fpIx1w_mnO2uwhkjv9E.roa
File: bkbjuEM5fpIx1w_mnO2uwhkjv9E.roa (raw, json)
Hash identifier: ivsa3mEQS39wzXhTkV5xPZqXE/EjVxcjdlWQvO82120=
Subject key identifier: 6E:46:E3:B8:43:39:7E:92:31:D7:0F:E6:9C:ED:AE:C2:19:23:BF:D1
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0183194FCC90ABFECB397FB77387348E7CDF
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/bkbjuEM5fpIx1w_mnO2uwhkjv9E.roa
Signing time: Wed 07 Sep 2022 18:56:43 +0000
ROA not before: Wed 07 Sep 2022 18:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10538
IP address blocks: 193.35.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:19:4f:cc:90:ab:fe:cb:39:7f:b7:73:87:34:8e:7c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Sep 7 18:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e46e3b843397e9231d70fe69cedaec21923bfd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:68:a6:2c:44:33:1e:49:39:47:d7:e6:c5:24:
5a:71:c8:3b:47:d5:c0:f0:af:d9:e5:aa:19:53:b3:
ce:2c:65:56:d3:89:48:6f:e3:21:cb:b4:9d:a8:29:
d4:85:5f:96:a1:f2:e7:63:51:07:4c:69:8b:ad:90:
18:b4:d6:ce:e2:65:d1:d2:b3:a4:68:20:59:99:04:
7f:3f:15:96:6f:49:08:c0:08:8e:b7:07:b7:25:55:
6c:77:92:25:5f:5a:02:29:80:c1:14:46:8b:23:86:
3d:0d:c2:b5:e4:42:28:d9:17:ce:de:23:18:9d:85:
e9:ef:77:9d:ec:aa:c1:cc:72:1d:6b:36:89:fc:28:
76:f2:7d:09:8e:37:ce:bd:5a:75:92:ab:ea:db:0a:
1a:2e:88:da:66:9f:37:ca:25:1d:f2:7f:9a:23:ae:
15:d6:4b:9b:fa:7a:b6:88:8f:e0:75:ac:fc:9a:b2:
18:d0:38:7a:3b:6a:86:cc:b0:04:4d:0d:ea:bd:57:
2d:93:dd:45:b6:be:9b:53:46:25:cc:75:d7:ff:a8:
6e:aa:c0:6a:ba:fc:f6:11:d8:e8:c8:18:43:24:86:
e1:d5:cc:25:9b:03:53:61:74:b9:91:20:d8:e0:c8:
40:ba:2b:69:e1:72:5b:de:32:c6:a5:57:01:45:9c:
1a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:46:E3:B8:43:39:7E:92:31:D7:0F:E6:9C:ED:AE:C2:19:23:BF:D1
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/bkbjuEM5fpIx1w_mnO2uwhkjv9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.154.0/24
Signature Algorithm: sha256WithRSAEncryption
57:da:ff:f3:de:59:2e:48:d4:bf:cc:02:e0:9f:fc:9d:c4:6a:
06:70:4f:12:3f:93:f6:fe:4f:9e:fd:e2:7f:7c:15:e7:10:75:
0a:1b:e8:19:73:92:cb:33:28:5e:8d:d5:fe:30:ce:d9:5d:ea:
46:53:cd:f6:a8:1d:77:18:24:b6:c2:40:75:57:f3:5f:a7:08:
67:d0:05:d6:26:dd:f7:ba:7f:b2:a7:c8:db:19:09:ff:6b:a5:
e4:f3:a2:ba:1b:3d:32:26:e5:1f:22:e4:77:61:a3:15:42:09:
d1:a7:b2:b5:4a:f0:f9:ca:07:b0:9e:9a:5e:81:16:fa:e1:5d:
72:73:cd:af:47:4a:39:b9:59:1a:fb:00:6b:46:5a:d8:ca:cb:
53:2d:7c:06:2d:c8:9d:55:f5:32:c7:be:e3:ea:b2:de:d8:3c:
b3:21:49:77:ad:51:8f:8f:46:66:20:0e:46:55:ff:9d:98:85:
27:3a:98:5b:57:46:0e:48:44:56:ce:91:8d:11:61:11:79:04:
3c:a8:c0:2a:48:61:74:ff:03:fb:e4:d8:60:9d:22:32:99:91:
0f:75:1d:36:50:2b:57:ca:68:95:f2:8c:fc:e3:2d:82:6b:8c:
31:9b:ea:71:6f:c9:1d:85:e4:0c:ba:36:43:08:3a:17:75:f8:
d2:70:9c:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMZT8yQq/7LOX+3c4c0jnzfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MTZjNDE5NTE1MmVmZmVkYmY3YjNhZmVlMmFhNzJlMTkw
OTBlNGQwHhcNMjIwOTA3MTg1NjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTQ2ZTNiODQzMzk3ZTkyMzFkNzBmZTY5Y2VkYWVjMjE5MjNiZmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGimLEQzHkk5R9fmxSRaccg7R9XA
8K/Z5aoZU7POLGVW04lIb+Mhy7SdqCnUhV+WofLnY1EHTGmLrZAYtNbO4mXR0rOk
aCBZmQR/PxWWb0kIwAiOtwe3JVVsd5IlX1oCKYDBFEaLI4Y9DcK15EIo2RfO3iMY
nYXp73ed7KrBzHIdazaJ/Ch28n0JjjfOvVp1kqvq2woaLojaZp83yiUd8n+aI64V
1kub+nq2iI/gdaz8mrIY0Dh6O2qGzLAETQ3qvVctk91Ftr6bU0YlzHXX/6huqsBq
uvz2EdjoyBhDJIbh1cwlmwNTYXS5kSDY4MhAuitp4XJb3jLGpVcBRZwaaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG5G47hDOX6SMdcP5pztrsIZI7/RMB8GA1UdIwQY
MBaAFMYWxBlRUu/+2/ezr+4qpy4ZCQ5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjkt
MzlmZGI5ODZmMDU5LzEvYmtianVFTTVmcEl4MXdfbW5PMnV3aGtqdjlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjktMzlmZGI5ODZmMDU5
LzEveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSOaMA0G
CSqGSIb3DQEBCwUAA4IBAQBX2v/z3lkuSNS/zALgn/ydxGoGcE8SP5P2/k+e/eJ/
fBXnEHUKG+gZc5LLMyhejdX+MM7ZXepGU832qB13GCS2wkB1V/Nfpwhn0AXWJt33
un+yp8jbGQn/a6Xk86K6Gz0yJuUfIuR3YaMVQgnRp7K1SvD5ygewnppegRb64V1y
c82vR0o5uVka+wBrRlrYystTLXwGLcidVfUyx77j6rLe2DyzIUl3rVGPj0ZmIA5G
Vf+dmIUnOphbV0YOSERWzpGNEWEReQQ8qMAqSGF0/wP75NhgnSIymZEPdR02UCtX
ymiV8oz84y2Ca4wxm+pxb8kdheQMujZDCDoXdfjScJx+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org