Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/jSHbhYziCxSNM-7NJhHQLUDUM5U.roa
File: jSHbhYziCxSNM-7NJhHQLUDUM5U.roa (raw, json)
Hash identifier: HGXgWzCxa6A1hnVwssC/0r9AaQ/DstFETmZYPwpdHK4=
Subject key identifier: 8D:21:DB:85:8C:E2:0B:14:8D:33:EE:CD:26:11:D0:2D:40:D4:33:95
Certificate issuer: /CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79
Certificate serial: 062D60A9
Authority key identifier: C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/jSHbhYziCxSNM-7NJhHQLUDUM5U.roa
Signing time: Sat 01 Jan 2022 11:00:55 +0000
ROA not before: Sat 01 Jan 2022 11:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207629
IP address blocks: 193.111.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103637161 (0x62d60a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79
Validity
Not Before: Jan 1 11:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d21db858ce20b148d33eecd2611d02d40d43395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:82:fe:c3:a2:63:b6:4d:b7:dd:3a:6d:99:c0:
f7:3d:46:b9:9f:f9:12:95:c5:9b:81:fa:da:d1:ba:
d6:46:9b:c9:9e:90:61:7d:ac:1b:30:8a:27:45:11:
a9:0c:ee:55:8e:b7:0c:c0:39:69:36:00:8d:7e:f8:
8a:75:a1:99:f2:23:82:84:c1:9b:5c:fd:3c:ee:60:
f9:71:5a:92:f6:a1:76:2f:2e:9e:99:39:f0:99:86:
1e:41:c6:8f:90:c5:cc:ab:ea:83:5b:38:00:19:1c:
6d:10:15:59:f8:7a:56:70:7c:c4:c1:86:01:7a:75:
73:0a:5a:8e:7e:4e:05:b1:cb:3e:ca:09:00:d8:4f:
1d:9b:40:97:a5:87:7b:c2:df:62:32:4f:69:8a:f7:
b9:f0:92:62:58:9e:69:f5:8a:e2:f9:99:05:e3:83:
8d:85:9a:5a:62:ff:c1:14:3c:84:de:7c:8f:cb:61:
01:ce:5f:90:09:8d:90:2b:e4:51:81:71:e7:0c:e5:
e0:6d:b9:87:55:aa:ce:32:7e:1d:cd:2b:55:e0:72:
77:cd:00:7c:15:49:76:26:17:16:ee:38:dd:1a:dc:
b4:13:81:41:f9:c5:88:e8:a3:50:76:5d:0f:63:6e:
af:9e:5d:d1:f7:a8:ac:fd:4f:a0:d3:01:ca:0a:27:
2d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:21:DB:85:8C:E2:0B:14:8D:33:EE:CD:26:11:D0:2D:40:D4:33:95
X509v3 Authority Key Identifier:
keyid:C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/jSHbhYziCxSNM-7NJhHQLUDUM5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.73.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:93:66:89:81:7d:5a:02:59:2c:1a:fd:46:65:ed:d0:9d:51:
52:81:b6:42:75:31:de:cf:50:f3:68:22:80:40:e2:32:bb:30:
9d:88:56:44:bf:7c:93:f2:e1:cc:60:5c:54:06:65:f8:97:97:
97:52:b4:a3:46:3f:7e:2f:bf:71:a9:7e:50:fb:a4:38:e7:9b:
66:de:37:62:af:90:37:3d:c0:85:ac:b9:d2:dc:91:20:6e:f6:
e8:c9:4b:9c:93:c5:f1:83:73:63:bd:4a:46:f4:54:92:f4:91:
0b:f9:b1:83:f9:03:7e:cd:72:36:be:d5:f8:6c:8b:8a:5c:17:
1b:65:58:6c:78:ec:b0:78:b2:21:2d:34:66:5b:21:2f:96:ff:
a7:a4:81:11:54:f0:82:61:cb:fb:47:46:5c:f8:c9:ea:f3:0a:
47:84:6c:35:af:f1:06:7b:de:d7:57:2d:70:dd:ee:40:05:af:
a9:c1:6c:13:26:52:89:4b:38:5e:56:a5:d2:09:da:51:71:ca:
15:36:98:f7:23:5d:28:9e:3c:4d:04:26:df:99:92:f5:0f:5e:
4d:87:a0:d3:12:15:1a:ef:74:99:4a:43:cb:14:7a:d6:06:3e:
e2:df:92:41:de:24:82:a4:ba:f9:73:ed:e3:34:96:8d:40:75:
b3:c6:14:91
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBi1gqTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWE5NDg0Y2E3MDhhYjc3MWViMWRiOTBiYWZjOGExMTRjMmMzZDc5MB4XDTIyMDEw
MTExMDA1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQyMWRiODU4Y2Uy
MGIxNDhkMzNlZWNkMjYxMWQwMmQ0MGQ0MzM5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6C/sOiY7ZNt906bZnA9z1GuZ/5EpXFm4H62tG61kabyZ6Q
YX2sGzCKJ0URqQzuVY63DMA5aTYAjX74inWhmfIjgoTBm1z9PO5g+XFakvahdi8u
npk58JmGHkHGj5DFzKvqg1s4ABkcbRAVWfh6VnB8xMGGAXp1cwpajn5OBbHLPsoJ
ANhPHZtAl6WHe8LfYjJPaYr3ufCSYlieafWK4vmZBeODjYWaWmL/wRQ8hN58j8th
Ac5fkAmNkCvkUYFx5wzl4G25h1WqzjJ+Hc0rVeByd80AfBVJdiYXFu443RrctBOB
QfnFiOijUHZdD2Nur55d0feorP1PoNMBygonLcsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSNIduFjOILFI0z7s0mEdAtQNQzlTAfBgNVHSMEGDAWgBTJqUhMpwirdx6x
25C6/IoRTCw9eTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lhbElUS2NJcTNjZXNkdVF1dnlLRVV3c1BYay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvMjVlNjYwLTQwNTYtNDJjYy1hOGIwLWQwNTE3ZGIyNmRhZC8x
L2pTSGJoWXppQ3hTTk0tN05KaEhRTFVEVU01VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
MjVlNjYwLTQwNTYtNDJjYy1hOGIwLWQwNTE3ZGIyNmRhZC8xL3lhbElUS2NJcTNj
ZXNkdVF1dnlLRVV3c1BYay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFvSTANBgkqhkiG9w0BAQsFAAOC
AQEAppNmiYF9WgJZLBr9RmXt0J1RUoG2QnUx3s9Q82gigEDiMrswnYhWRL98k/Lh
zGBcVAZl+JeXl1K0o0Y/fi+/cal+UPukOOebZt43Yq+QNz3Ahay50tyRIG726MlL
nJPF8YNzY71KRvRUkvSRC/mxg/kDfs1yNr7V+GyLilwXG2VYbHjssHiyIS00Zlsh
L5b/p6SBEVTwgmHL+0dGXPjJ6vMKR4RsNa/xBnve11ctcN3uQAWvqcFsEyZSiUs4
Xlal0gnaUXHKFTaY9yNdKJ48TQQm35mS9Q9eTYeg0xIVGu90mUpDyxR61gY+4t+S
Qd4kgqS6+XPt4zSWjUB1s8YUkQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:22 2023 by rpki-client on console-ams.rpki-client.org