Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/KYMtrY6ZH0yLJMpRw-M1-7dnGqs.roa
File: KYMtrY6ZH0yLJMpRw-M1-7dnGqs.roa (raw, json)
Hash identifier: 2vQBrIKk0qfbAhdxkoeDA7BLOw/KYb2vS+aetLyBS70=
Subject key identifier: 29:83:2D:AD:8E:99:1F:4C:8B:24:CA:51:C3:E3:35:FB:B7:67:1A:AB
Certificate issuer: /CN=b0dfafd36730396fe338e772dadbe4c3c85cd952
Certificate serial: 09275EBF
Authority key identifier: B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/KYMtrY6ZH0yLJMpRw-M1-7dnGqs.roa
Signing time: Sat 01 Jan 2022 14:05:01 +0000
ROA not before: Sat 01 Jan 2022 14:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42295
IP address blocks: 93.152.232.0/24 maxlen: 24
93.152.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153575103 (0x9275ebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0dfafd36730396fe338e772dadbe4c3c85cd952
Validity
Not Before: Jan 1 14:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29832dad8e991f4c8b24ca51c3e335fbb7671aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:94:e2:8e:41:7c:6a:05:04:dc:93:6b:6f:fb:
58:42:81:b8:b7:4b:02:cb:d8:6a:6a:3c:3b:7e:29:
74:eb:38:96:2e:b6:dd:aa:2e:f1:21:ae:89:80:4f:
cb:dc:ab:09:81:8b:87:78:9b:79:77:b9:ff:bb:bf:
bd:c7:8d:a0:78:fb:ef:7c:9a:7f:4f:bc:e5:8f:8c:
23:3b:34:29:d3:16:b4:39:00:b4:2a:79:0b:7d:f5:
30:a8:fb:90:f0:b1:c6:fa:1d:d4:52:57:34:64:6c:
3c:fc:51:c5:48:be:38:5a:3d:ea:97:2a:5f:70:03:
e8:77:79:1e:f9:a9:91:74:1b:cd:9b:52:57:2e:d6:
33:96:13:1d:af:11:71:0b:d0:ec:a8:1f:a6:6b:a7:
ca:36:14:fa:87:95:7e:95:20:49:e8:0e:99:65:e9:
43:89:a2:0a:24:dc:3d:35:eb:96:7a:30:cc:d0:24:
f1:7d:51:b2:53:2b:30:6a:c4:81:34:9b:13:76:c1:
51:08:31:99:c6:63:18:75:6e:08:e1:04:8f:2b:17:
a4:3d:13:b6:d9:3e:44:32:28:f1:5d:0e:1f:49:1c:
10:7a:24:a9:28:60:1d:46:fb:9b:d2:0a:ab:e2:24:
5f:0d:53:ba:e5:5a:18:d3:b1:34:98:dd:aa:92:7a:
3a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:83:2D:AD:8E:99:1F:4C:8B:24:CA:51:C3:E3:35:FB:B7:67:1A:AB
X509v3 Authority Key Identifier:
keyid:B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/KYMtrY6ZH0yLJMpRw-M1-7dnGqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/sN-v02cwOW_jOOdy2tvkw8hc2VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.231.0-93.152.232.255
Signature Algorithm: sha256WithRSAEncryption
2b:67:96:45:68:32:93:0a:cc:92:f8:25:60:e4:48:92:6f:65:
06:2d:23:05:4d:10:a3:ed:2b:9f:62:55:62:4e:b2:0a:83:6d:
4d:2e:68:65:1d:bf:cd:55:9b:d4:ad:14:92:94:49:cb:44:81:
fd:d4:e8:83:52:84:96:06:75:13:15:86:b7:cf:98:cd:f1:58:
d0:df:82:6e:ec:82:f1:79:3c:da:5e:6a:2d:73:63:8b:40:fb:
f9:d8:23:ff:3a:c1:de:54:73:00:3c:94:dd:f7:42:c3:17:7b:
b6:44:99:b6:2c:aa:2c:c3:25:7a:36:a0:92:49:53:70:ca:74:
e4:2a:d4:15:7b:8c:6e:f4:45:42:b5:b8:02:dc:6b:fc:33:14:
1d:36:9a:08:4f:0d:01:a6:ac:b1:7a:8d:37:b0:6e:38:3b:bb:
1d:6e:88:22:57:bb:b5:93:0b:1c:78:3c:59:e6:a0:a4:7f:e5:
fe:5d:0c:6d:1e:92:e3:02:37:0c:53:ee:d6:8c:33:23:94:e8:
30:db:fe:d0:8d:80:e4:96:c8:8b:be:0d:90:14:a2:8f:73:52:
4f:65:1e:ca:c4:9e:37:f9:8d:d6:2e:2f:dd:27:b4:ca:4a:53:
2f:61:60:ff:6e:75:b2:23:9e:c2:cf:3d:41:f7:1c:ac:9e:84:
67:82:a6:34
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIECSdevzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MGRmYWZkMzY3MzAzOTZmZTMzOGU3NzJkYWRiZTRjM2M4NWNkOTUyMB4XDTIyMDEw
MTE0MDUwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjk4MzJkYWQ4ZTk5
MWY0YzhiMjRjYTUxYzNlMzM1ZmJiNzY3MWFhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOyU4o5BfGoFBNyTa2/7WEKBuLdLAsvYamo8O34pdOs4li62
3aou8SGuiYBPy9yrCYGLh3ibeXe5/7u/vceNoHj773yaf0+85Y+MIzs0KdMWtDkA
tCp5C331MKj7kPCxxvod1FJXNGRsPPxRxUi+OFo96pcqX3AD6Hd5HvmpkXQbzZtS
Vy7WM5YTHa8RcQvQ7KgfpmunyjYU+oeVfpUgSegOmWXpQ4miCiTcPTXrlnowzNAk
8X1RslMrMGrEgTSbE3bBUQgxmcZjGHVuCOEEjysXpD0Tttk+RDIo8V0OH0kcEHok
qShgHUb7m9IKq+IkXw1TuuVaGNOxNJjdqpJ6OvECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQpgy2tjpkfTIskylHD4zX7t2caqzAfBgNVHSMEGDAWgBSw36/TZzA5b+M4
53La2+TDyFzZUjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NOLXYwMmN3T1dfak9PZHkydHZrdzhoYzJWSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvZjY5NmZkLTRkOWQtNGUyOC05MjZlLTBhYTViNDZiZjhhYS8x
L0tZTXRyWTZaSDB5TEpNcFJ3LU0xLTdkbkdxcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
ZjY5NmZkLTRkOWQtNGUyOC05MjZlLTBhYTViNDZiZjhhYS8xL3NOLXYwMmN3T1df
ak9PZHkydHZrdzhoYzJWSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAXZjnAwQAXZjoMA0GCSqGSIb3
DQEBCwUAA4IBAQArZ5ZFaDKTCsyS+CVg5EiSb2UGLSMFTRCj7SufYlViTrIKg21N
LmhlHb/NVZvUrRSSlEnLRIH91OiDUoSWBnUTFYa3z5jN8VjQ34Ju7ILxeTzaXmot
c2OLQPv52CP/OsHeVHMAPJTd90LDF3u2RJm2LKoswyV6NqCSSVNwynTkKtQVe4xu
9EVCtbgC3Gv8MxQdNpoITw0Bpqyxeo03sG44O7sdbogiV7u1kwsceDxZ5qCkf+X+
XQxtHpLjAjcMU+7WjDMjlOgw2/7QjYDklsiLvg2QFKKPc1JPZR7KxJ43+Y3WLi/d
J7TKSlMvYWD/bnWyI57Czz1B9xysnoRngqY0
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org