Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/oKlCQTfniyxurc4RoZ1xTafAITA.roa
File: oKlCQTfniyxurc4RoZ1xTafAITA.roa (raw, json)
Hash identifier: lXXz09wz/h+a/GglqToKTLYCKNW+tolFGNIs6sCHjFw=
Subject key identifier: A0:A9:42:41:37:E7:8B:2C:6E:AD:CE:11:A1:9D:71:4D:A7:C0:21:30
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0183D7C070ACAA333620FC8ACA9EF089A3A6
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/oKlCQTfniyxurc4RoZ1xTafAITA.roa
Signing time: Fri 14 Oct 2022 18:27:36 +0000
ROA not before: Fri 14 Oct 2022 18:27:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50635
IP address blocks: 217.113.10.0/24 maxlen: 24
217.113.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d7:c0:70:ac:aa:33:36:20:fc:8a:ca:9e:f0:89:a3:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 14 18:27:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0a9424137e78b2c6eadce11a19d714da7c02130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:de:b2:94:1c:9d:ab:c2:d7:33:3f:8a:21:3b:
47:a8:68:6e:1f:ce:56:35:24:d6:00:58:d3:2e:a3:
4d:57:31:85:22:e4:b4:6f:2c:3f:d8:53:89:f4:5d:
45:d6:50:ac:51:66:38:da:80:37:85:8f:af:00:52:
06:b9:1c:c4:cd:cc:b8:39:66:7f:dd:c2:b2:f2:5c:
99:39:b4:0f:42:9c:11:ab:dd:df:e1:72:41:fc:ee:
31:d1:61:11:5f:42:a9:48:02:a2:2a:c4:58:4f:63:
d4:3c:72:15:f4:5d:46:06:a8:53:ed:23:db:f6:13:
12:1d:13:2e:c1:9f:55:b2:f5:09:f5:29:23:1b:e8:
94:bf:1d:ba:5f:2c:2d:ae:2d:d4:3d:84:da:17:3f:
46:30:78:c7:0e:1d:bc:01:f2:12:a5:b3:7d:0f:c4:
cc:0d:5e:91:e3:fd:30:b6:8d:53:bb:e6:d8:68:07:
b4:02:6e:f6:86:91:30:af:1d:bf:29:43:1d:de:cd:
39:cc:b7:92:83:9e:f5:73:a3:74:24:ae:44:d2:97:
06:3a:71:6e:75:3d:21:61:06:61:70:5f:96:51:fb:
f2:e7:db:2f:8d:61:77:0d:8a:47:ef:f2:56:54:fe:
a6:dc:b5:cb:f7:54:e5:c7:18:bf:40:f5:c4:d6:d7:
02:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A9:42:41:37:E7:8B:2C:6E:AD:CE:11:A1:9D:71:4D:A7:C0:21:30
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/oKlCQTfniyxurc4RoZ1xTafAITA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.10.0/23
Signature Algorithm: sha256WithRSAEncryption
27:e3:fe:de:96:d1:f5:52:8c:7c:6b:66:2c:ff:3d:2b:88:ed:
d6:5a:00:3f:e0:26:c6:3d:62:cc:01:a2:f4:c5:76:09:7b:2f:
28:c9:1c:19:4f:12:d0:cd:7c:cc:41:b1:df:1e:3e:b3:13:79:
61:ee:e2:bc:e2:18:d5:e3:7c:7c:1e:5a:cc:a9:9a:eb:42:2f:
5f:07:37:b9:68:53:d4:a4:43:e2:ee:81:1a:2f:2a:cc:0d:cd:
86:c3:3b:02:33:55:92:c3:41:d8:7e:79:29:f4:70:3b:e7:89:
68:93:69:df:02:b7:63:f7:04:91:f4:99:61:c3:0f:54:8b:4e:
18:5f:e0:3f:69:da:fb:a8:13:d3:2c:1e:95:f8:9a:72:d7:bc:
b4:cc:df:48:05:77:d5:62:70:aa:19:5a:2a:4f:cd:2e:c3:15:
1e:54:6f:7e:af:b6:ca:df:c9:79:42:40:ac:de:5d:4d:11:f1:
5b:e9:c8:c5:2b:86:1a:57:00:4f:8e:47:e9:e8:a1:39:c7:fc:
9d:26:a0:6e:01:e0:86:77:87:75:58:80:da:5a:a5:9c:92:b2:
ea:66:31:20:2b:ca:86:3c:8e:d9:7d:5e:bf:b7:ac:93:25:8e:
c5:d2:5c:fc:ba:56:f7:2c:d4:72:f8:6a:b1:33:02:ec:6a:79:
8b:29:aa:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPXwHCsqjM2IPyKyp7wiaOmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjIxMDE0MTgyNzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGE5NDI0MTM3ZTc4YjJjNmVhZGNlMTFhMTlkNzE0ZGE3YzAyMTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2N6ylBydq8LXMz+KITtHqGhuH85W
NSTWAFjTLqNNVzGFIuS0byw/2FOJ9F1F1lCsUWY42oA3hY+vAFIGuRzEzcy4OWZ/
3cKy8lyZObQPQpwRq93f4XJB/O4x0WERX0KpSAKiKsRYT2PUPHIV9F1GBqhT7SPb
9hMSHRMuwZ9VsvUJ9SkjG+iUvx26Xywtri3UPYTaFz9GMHjHDh28AfISpbN9D8TM
DV6R4/0wto1Tu+bYaAe0Am72hpEwrx2/KUMd3s05zLeSg571c6N0JK5E0pcGOnFu
dT0hYQZhcF+WUfvy59svjWF3DYpH7/JWVP6m3LXL91Tlxxi/QPXE1tcCLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKCpQkE354ssbq3OEaGdcU2nwCEwMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvb0tsQ1FUZm5peXh1cmM0Um9aMXhUYWZBSVRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2XEKMA0G
CSqGSIb3DQEBCwUAA4IBAQAn4/7eltH1Uox8a2Ys/z0riO3WWgA/4CbGPWLMAaL0
xXYJey8oyRwZTxLQzXzMQbHfHj6zE3lh7uK84hjV43x8HlrMqZrrQi9fBze5aFPU
pEPi7oEaLyrMDc2GwzsCM1WSw0HYfnkp9HA754lok2nfArdj9wSR9Jlhww9Ui04Y
X+A/adr7qBPTLB6V+Jpy17y0zN9IBXfVYnCqGVoqT80uwxUeVG9+r7bK38l5QkCs
3l1NEfFb6cjFK4YaVwBPjkfp6KE5x/ydJqBuAeCGd4d1WIDaWqWckrLqZjEgK8qG
PI7ZfV6/t6yTJY7F0lz8ulb3LNRy+GqxMwLsanmLKaqE
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org