Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/x4MExjovGFunjwfaY3OONdeziUc.roa
File: x4MExjovGFunjwfaY3OONdeziUc.roa (raw, json)
Hash identifier: 3rd3exQ2VA+vLvWCPymND5MZj34MsgVW9noZZeZ5PM8=
Subject key identifier: C7:83:04:C6:3A:2F:18:5B:A7:8F:07:DA:63:73:8E:35:D7:B3:89:47
Certificate issuer: /CN=375fc21163596a51472c0ff184a64991dc83a6c1
Certificate serial: 0273EF
Authority key identifier: 37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/x4MExjovGFunjwfaY3OONdeziUc.roa
Signing time: Sat 05 Feb 2022 10:04:25 +0000
ROA not before: Sat 05 Feb 2022 10:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51074
IP address blocks: 193.0.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160751 (0x273ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375fc21163596a51472c0ff184a64991dc83a6c1
Validity
Not Before: Feb 5 10:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c78304c63a2f185ba78f07da63738e35d7b38947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5d:a6:e1:fd:5b:05:0f:20:ef:a7:2c:a4:23:
81:7d:f6:d9:88:95:f1:ac:cf:35:69:8a:d9:4b:1c:
10:19:b3:ac:4f:86:9d:a2:58:67:9b:99:9f:23:3e:
e2:39:03:db:48:4c:46:77:f5:38:a3:e3:48:04:b7:
3d:22:64:50:3a:96:94:41:4f:03:b0:d7:53:20:35:
23:0e:5e:9a:0b:a0:b2:e5:13:d5:5c:fa:bc:13:11:
93:68:77:9c:48:e2:82:50:be:cd:52:7e:b8:d0:ea:
27:06:fe:28:c8:d9:1d:0b:43:5c:73:0e:44:ef:69:
bc:bf:11:d0:0a:0c:a9:e5:da:15:63:6d:2a:3d:17:
37:85:d8:4a:b7:4c:d0:d4:d3:0b:1e:d4:b5:e6:2e:
9a:86:43:2d:ea:70:b9:7f:20:40:bb:62:8b:b8:f8:
45:8b:73:5b:ed:8c:8e:f3:ec:67:33:d3:dc:ca:7d:
c8:0c:f5:90:8c:bd:0f:7f:8d:6e:32:0c:36:d7:17:
cf:07:5b:57:fe:8e:72:9d:3b:b2:07:a5:3a:ee:35:
64:11:c8:a7:46:26:19:be:91:f9:1c:0e:52:1e:4d:
6f:a1:f5:27:78:71:8b:78:c0:97:93:07:35:12:9a:
1f:74:c0:eb:82:14:a9:6c:b4:56:e8:bc:53:cb:41:
ec:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:83:04:C6:3A:2F:18:5B:A7:8F:07:DA:63:73:8E:35:D7:B3:89:47
X509v3 Authority Key Identifier:
keyid:37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/x4MExjovGFunjwfaY3OONdeziUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.156.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:9f:69:89:ee:80:5d:25:7e:ba:79:f3:0e:e0:02:63:c9:f6:
28:fa:c9:b5:cd:b2:5c:30:59:7a:89:ea:03:5c:26:18:6f:ca:
5a:35:cf:40:f4:e0:ef:ed:b5:ac:c8:4e:20:2e:57:bc:ef:7f:
eb:00:41:6b:34:17:71:f6:53:d6:f2:3c:86:6d:91:9b:04:60:
f0:87:fa:35:c0:fe:6f:20:dd:d4:85:41:0e:33:a2:47:d6:f1:
33:c7:79:e0:24:0d:86:29:4c:af:2e:ef:f5:cf:06:1f:11:8b:
1e:96:d3:60:0e:c1:0f:d4:4f:76:ff:92:8c:e6:2e:db:21:a5:
20:15:f8:b6:43:a1:06:e9:c4:a5:06:45:1c:0a:ed:03:42:4f:
19:e6:fc:f0:47:af:dc:49:5d:31:0a:1d:36:43:f0:24:d7:22:
2d:e7:3d:61:19:5d:21:b4:41:05:bf:b2:d8:2d:50:1c:30:db:
a6:dc:e0:84:fa:81:8b:a6:86:41:f0:e3:79:52:1a:49:69:15:
8b:d6:3d:25:3e:f6:c5:3b:45:8d:10:d0:ee:86:07:cc:c8:34:
5b:b2:8e:e5:26:b3:e5:39:e1:81:7f:50:83:fd:68:23:ab:5b:
f3:de:3f:6b:b5:1a:3a:35:3c:75:c2:27:21:29:60:a3:25:50:
98:41:1e:bf
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAnPvMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM3
NWZjMjExNjM1OTZhNTE0NzJjMGZmMTg0YTY0OTkxZGM4M2E2YzEwHhcNMjIwMjA1
MTAwNDI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhjNzgzMDRjNjNhMmYx
ODViYTc4ZjA3ZGE2MzczOGUzNWQ3YjM4OTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA5F2m4f1bBQ8g76cspCOBffbZiJXxrM81aYrZSxwQGbOsT4ad
olhnm5mfIz7iOQPbSExGd/U4o+NIBLc9ImRQOpaUQU8DsNdTIDUjDl6aC6Cy5RPV
XPq8ExGTaHecSOKCUL7NUn640OonBv4oyNkdC0Nccw5E72m8vxHQCgyp5doVY20q
PRc3hdhKt0zQ1NMLHtS15i6ahkMt6nC5fyBAu2KLuPhFi3Nb7YyO8+xnM9Pcyn3I
DPWQjL0Pf41uMgw21xfPB1tX/o5ynTuyB6U67jVkEcinRiYZvpH5HA5SHk1vofUn
eHGLeMCXkwc1EpofdMDrghSpbLRW6LxTy0HsVwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFMeDBMY6Lxhbp48H2mNzjjXXs4lHMB8GA1UdIwQYMBaAFDdfwhFjWWpRRywP
8YSmSZHcg6bBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
TjFfQ0VXTlphbEZITEFfeGhLWkprZHlEcHNFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80OC9hMmQ0N2UtZDExNC00M2ExLWJkY2EtNTkwMDViMjk4MWQzLzEv
eDRNRXhqb3ZHRnVuandmYVkzT09OZGV6aVVjLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9h
MmQ0N2UtZDExNC00M2ExLWJkY2EtNTkwMDViMjk4MWQzLzEvTjFfQ0VXTlphbEZI
TEFfeGhLWkprZHlEcHNFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQCcMA0GCSqGSIb3DQEBCwUAA4IB
AQCgn2mJ7oBdJX66efMO4AJjyfYo+sm1zbJcMFl6ieoDXCYYb8paNc9A9ODv7bWs
yE4gLle873/rAEFrNBdx9lPW8jyGbZGbBGDwh/o1wP5vIN3UhUEOM6JH1vEzx3ng
JA2GKUyvLu/1zwYfEYseltNgDsEP1E92/5KM5i7bIaUgFfi2Q6EG6cSlBkUcCu0D
Qk8Z5vzwR6/cSV0xCh02Q/Ak1yIt5z1hGV0htEEFv7LYLVAcMNum3OCE+oGLpoZB
8ON5UhpJaRWL1j0lPvbFO0WNENDuhgfMyDRbso7lJrPlOeGBf1CD/Wgjq1vz3j9r
tRo6NTx1wichKWCjJVCYQR6/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:56 2024 by rpki-client on console-fra.rpki-client.org