Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/SIwBQzEb15pav3HLUN0f12wMj1E.roa
File: SIwBQzEb15pav3HLUN0f12wMj1E.roa (raw, json)
Hash identifier: vHSSzZ82x59piPB3oNIBZIjOFdo2C6XSIuqefj4WZ2U=
Subject key identifier: 48:8C:01:43:31:1B:D7:9A:5A:BF:71:CB:50:DD:1F:D7:6C:0C:8F:51
Certificate issuer: /CN=e5fe02f2aa76c402b7d76a114dc7735d5f935b88
Certificate serial: 0A807033
Authority key identifier: E5:FE:02:F2:AA:76:C4:02:B7:D7:6A:11:4D:C7:73:5D:5F:93:5B:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5f4C8qp2xAK312oRTcdzXV-TW4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/SIwBQzEb15pav3HLUN0f12wMj1E.roa
Signing time: Sat 01 Jan 2022 06:01:12 +0000
ROA not before: Sat 01 Jan 2022 06:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47331
IP address blocks: 178.217.236.0/22 maxlen: 24
93.155.0.0/17 maxlen: 24
2a00:1d30::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176189491 (0xa807033)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5fe02f2aa76c402b7d76a114dc7735d5f935b88
Validity
Not Before: Jan 1 06:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488c0143311bd79a5abf71cb50dd1fd76c0c8f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:be:b2:1d:a6:ee:ca:46:52:27:38:65:61:ec:
18:19:b5:46:5b:c5:17:76:65:e5:13:05:d4:80:62:
cc:c5:2c:c3:15:68:77:29:11:7e:c7:d2:98:68:72:
2f:44:61:a7:d0:f4:bb:76:12:cb:2e:01:d9:cc:36:
88:a1:7e:13:a0:ba:ad:4b:21:45:ea:af:47:a8:d9:
a8:42:7a:1c:e2:4c:c3:e5:f1:88:31:16:05:dc:25:
00:54:8a:a9:69:ee:ee:3d:c0:a6:eb:8d:28:bd:a3:
f1:3a:fb:a5:b0:e1:d9:55:22:ce:eb:aa:aa:52:8e:
9c:41:6a:12:c5:b9:68:fd:97:d6:2d:27:ad:49:0a:
08:ff:c6:65:07:8b:ed:31:e1:06:84:bd:09:6d:7d:
41:3a:b0:7c:5e:d5:fb:2c:f9:ab:0b:85:4a:ce:88:
40:03:51:dd:73:cc:78:63:5c:a4:d0:70:db:d1:49:
c7:2a:b2:c0:ad:88:85:6c:30:1b:74:db:dd:fd:c4:
9f:80:f6:9a:5d:ec:15:51:ef:6b:02:0c:b9:1f:06:
b6:ec:35:0d:e9:e7:0d:47:91:e5:ed:0e:70:c2:b3:
49:27:75:6b:df:76:72:e3:70:1e:e3:2a:98:4a:22:
8d:a2:2b:ab:e5:68:57:30:7f:72:8c:5c:a4:ea:f5:
d1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8C:01:43:31:1B:D7:9A:5A:BF:71:CB:50:DD:1F:D7:6C:0C:8F:51
X509v3 Authority Key Identifier:
keyid:E5:FE:02:F2:AA:76:C4:02:B7:D7:6A:11:4D:C7:73:5D:5F:93:5B:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f4C8qp2xAK312oRTcdzXV-TW4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/SIwBQzEb15pav3HLUN0f12wMj1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/5f4C8qp2xAK312oRTcdzXV-TW4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.155.0.0/17
178.217.236.0/22
IPv6:
2a00:1d30::/29
Signature Algorithm: sha256WithRSAEncryption
4d:37:16:09:f9:eb:1c:36:e6:10:8e:d9:a6:9c:77:af:00:2b:
3d:32:95:88:7d:ea:0d:df:72:17:15:23:9d:c0:3f:b5:7b:2d:
63:68:66:9e:62:9e:2a:de:1f:03:81:47:a3:3b:93:53:3f:c9:
a7:61:c8:24:51:18:ff:0a:e9:f1:2a:c5:84:21:4d:47:99:bc:
59:64:83:5e:dc:2e:2b:98:0d:86:79:5a:31:40:12:3a:54:2f:
68:38:91:f3:2c:95:73:b6:4f:53:23:3c:25:17:4d:76:1b:ee:
1b:3a:39:5f:da:b4:44:7d:74:1f:27:53:40:57:e8:fb:12:22:
fa:48:ef:0a:34:2b:8f:1c:3d:fd:c8:dc:8b:30:5a:60:ac:64:
b2:32:a7:04:d3:62:2b:04:33:cc:86:9a:68:46:e8:9e:98:56:
18:0c:f3:34:cb:2d:41:77:03:13:a5:c3:bf:8f:04:1e:b0:05:
69:e8:a6:d1:78:9c:72:65:1f:8d:4f:0f:d4:83:37:f1:b2:b6:
d6:f7:b3:32:0c:94:33:1e:5f:e8:02:23:0f:c0:f8:f7:b4:e7:
38:6f:a3:62:83:5e:4b:ca:47:60:9c:56:20:a8:3c:62:be:4f:
b7:59:24:a6:6c:ef:e9:50:74:1f:18:19:ce:1d:1a:fa:ba:fa:
5f:91:9f:65
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIECoBwMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NWZlMDJmMmFhNzZjNDAyYjdkNzZhMTE0ZGM3NzM1ZDVmOTM1Yjg4MB4XDTIyMDEw
MTA2MDExMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDg4YzAxNDMzMTFi
ZDc5YTVhYmY3MWNiNTBkZDFmZDc2YzBjOGY1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPG+sh2m7spGUic4ZWHsGBm1RlvFF3Zl5RMF1IBizMUswxVo
dykRfsfSmGhyL0Rhp9D0u3YSyy4B2cw2iKF+E6C6rUshReqvR6jZqEJ6HOJMw+Xx
iDEWBdwlAFSKqWnu7j3ApuuNKL2j8Tr7pbDh2VUizuuqqlKOnEFqEsW5aP2X1i0n
rUkKCP/GZQeL7THhBoS9CW19QTqwfF7V+yz5qwuFSs6IQANR3XPMeGNcpNBw29FJ
xyqywK2IhWwwG3Tb3f3En4D2ml3sFVHvawIMuR8Gtuw1DennDUeR5e0OcMKzSSd1
a992cuNwHuMqmEoijaIrq+VoVzB/coxcpOr10asCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBRIjAFDMRvXmlq/cctQ3R/XbAyPUTAfBgNVHSMEGDAWgBTl/gLyqnbEArfX
ahFNx3NdX5NbiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVmNEM4cXAyeEFLMzEyb1JUY2R6WFYtVFc0Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTMvMzFjM2JkLWUzNWMtNDgxZC04NTg4LWZjNjBmYjEyNTU3My8x
L1NJd0JRekViMTVwYXYzSExVTjBmMTJ3TWoxRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMv
MzFjM2JkLWUzNWMtNDgxZC04NTg4LWZjNjBmYjEyNTU3My8xLzVmNEM4cXAyeEFL
MzEyb1JUY2R6WFYtVFc0Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEB12bAAMEArLZ7DANBAIAAjAHAwUD
KgAdMDANBgkqhkiG9w0BAQsFAAOCAQEATTcWCfnrHDbmEI7Zppx3rwArPTKViH3q
Dd9yFxUjncA/tXstY2hmnmKeKt4fA4FHozuTUz/Jp2HIJFEY/wrp8SrFhCFNR5m8
WWSDXtwuK5gNhnlaMUASOlQvaDiR8yyVc7ZPUyM8JRdNdhvuGzo5X9q0RH10HydT
QFfo+xIi+kjvCjQrjxw9/cjcizBaYKxksjKnBNNiKwQzzIaaaEbonphWGAzzNMst
QXcDE6XDv48EHrAFaeim0XiccmUfjU8P1IM38bK21vezMgyUMx5f6AIjD8D497Tn
OG+jYoNeS8pHYJxWIKg8Yr5Pt1kkpmzv6VB0HxgZzh0a+rr6X5GfZQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:11 2023 by rpki-client on console-ams.rpki-client.org