Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a9f81e-79b2-4c2e-9f3e-7c24ef0259db/1/1-mxkueK5Aby1gj-XJvwYuwklM-o.roa
File: 1-mxkueK5Aby1gj-XJvwYuwklM-o.roa (raw, json)
Hash identifier: MAsl8dTv87/+JQDQWLxD1+aW5VrdA4hCCT/ZYXVTydg=
Subject key identifier: FA:6C:64:B9:E2:B9:01:BC:B5:82:3F:97:26:FC:18:BB:09:25:33:EA
Certificate issuer: /CN=128fde2bfc63efe3d132ddac7837e15c7f4b49f4
Certificate serial: 06A39789
Authority key identifier: 12:8F:DE:2B:FC:63:EF:E3:D1:32:DD:AC:78:37:E1:5C:7F:4B:49:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eo_eK_xj7-PRMt2seDfhXH9LSfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a9f81e-79b2-4c2e-9f3e-7c24ef0259db/1/1-mxkueK5Aby1gj-XJvwYuwklM-o.roa
Signing time: Sat 01 Jan 2022 09:58:27 +0000
ROA not before: Sat 01 Jan 2022 09:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136907
IP address blocks: 193.105.244.0/23 maxlen: 23
193.84.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111384457 (0x6a39789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=128fde2bfc63efe3d132ddac7837e15c7f4b49f4
Validity
Not Before: Jan 1 09:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa6c64b9e2b901bcb5823f9726fc18bb092533ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:62:45:89:bb:07:f3:de:6d:76:f2:34:fd:08:
68:97:f0:93:bc:0f:26:3f:e6:0e:2a:99:59:d8:9b:
9e:c5:ec:76:8d:06:eb:90:68:29:0d:6e:0b:7b:dd:
90:ba:a6:10:9e:62:42:b9:a3:b6:8e:04:54:c0:65:
10:63:ea:e4:15:e3:55:03:de:4e:6e:93:55:c9:51:
3a:66:fe:03:db:00:e6:d4:23:c4:d1:88:91:d6:06:
31:b4:0e:32:3a:be:5f:40:49:cd:a4:3f:2b:92:08:
68:d7:59:39:a2:60:42:ca:96:14:54:a1:70:25:6f:
40:f7:91:b0:d1:ff:a1:c5:c0:43:e8:94:ad:6c:ef:
39:97:cf:41:aa:e0:60:bc:d4:44:3c:ef:bd:a5:d0:
2c:fa:96:06:46:11:aa:e6:9c:08:22:8e:fc:5f:f6:
65:53:f9:bd:c8:80:0b:f0:f9:c6:c9:68:e2:2c:5e:
d4:f6:19:5c:f6:21:57:34:cb:de:5f:fe:5e:66:7f:
96:cb:2f:bb:f4:da:8d:c0:9d:fd:16:ea:ef:db:92:
84:e6:2a:d8:07:a2:55:72:e8:e9:81:b4:69:4f:f6:
c2:fa:35:91:6b:d1:05:63:d3:e8:2f:00:6b:e5:21:
6c:54:de:92:a6:7e:d6:26:0e:b6:fe:cd:b8:46:dd:
ea:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6C:64:B9:E2:B9:01:BC:B5:82:3F:97:26:FC:18:BB:09:25:33:EA
X509v3 Authority Key Identifier:
keyid:12:8F:DE:2B:FC:63:EF:E3:D1:32:DD:AC:78:37:E1:5C:7F:4B:49:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eo_eK_xj7-PRMt2seDfhXH9LSfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a9f81e-79b2-4c2e-9f3e-7c24ef0259db/1/1-mxkueK5Aby1gj-XJvwYuwklM-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a9f81e-79b2-4c2e-9f3e-7c24ef0259db/1/Eo_eK_xj7-PRMt2seDfhXH9LSfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.248.0/23
193.105.244.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:34:c9:4f:6a:9f:8d:3e:6f:86:02:8e:75:6f:5c:2a:ae:62:
03:9f:20:d9:39:e4:b7:81:d6:ee:d1:6d:84:f4:33:f4:96:02:
21:42:f2:0e:d2:64:72:dc:36:e8:9d:9e:ca:d0:02:69:57:cc:
6c:e4:89:16:b2:d9:65:4c:ae:57:e8:a7:d7:fb:e2:55:03:17:
09:22:fb:52:06:a7:c8:16:f9:d3:fb:92:33:07:98:f2:02:3e:
37:82:18:24:08:2d:50:37:6e:33:c4:23:32:87:f5:54:85:2c:
cd:d6:1f:92:08:5e:dd:cb:20:6f:23:10:55:ca:f7:a5:fd:6e:
a8:76:1e:be:20:10:89:c4:08:02:48:7c:6b:e3:45:7b:42:75:
7f:99:b9:31:9e:45:6e:b8:8e:46:69:5f:5a:25:93:1b:c5:b6:
6c:bd:5c:f4:df:2c:e9:74:62:cb:81:4b:ba:d6:2a:04:4d:0d:
7c:40:cd:be:1e:93:36:c5:9c:55:30:3f:cb:c7:17:b9:d5:da:
63:d4:92:be:79:fa:5a:8b:65:ac:80:91:0d:85:c1:a3:01:cd:
a9:e2:4c:af:e1:07:ed:98:82:65:5f:10:54:3f:d8:f8:fc:32:
df:d4:91:24:47:ec:06:09:a6:18:e1:a6:77:d1:c0:99:df:3e:
9b:9f:d0:3f
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIEBqOXiTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjhmZGUyYmZjNjNlZmUzZDEzMmRkYWM3ODM3ZTE1YzdmNGI0OWY0MB4XDTIyMDEw
MTA5NTgyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmE2YzY0YjllMmI5
MDFiY2I1ODIzZjk3MjZmYzE4YmIwOTI1MzNlYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNiRYm7B/PebXbyNP0IaJfwk7wPJj/mDiqZWdibnsXsdo0G
65BoKQ1uC3vdkLqmEJ5iQrmjto4EVMBlEGPq5BXjVQPeTm6TVclROmb+A9sA5tQj
xNGIkdYGMbQOMjq+X0BJzaQ/K5IIaNdZOaJgQsqWFFShcCVvQPeRsNH/ocXAQ+iU
rWzvOZfPQargYLzURDzvvaXQLPqWBkYRquacCCKO/F/2ZVP5vciAC/D5xslo4ixe
1PYZXPYhVzTL3l/+XmZ/lssvu/TajcCd/Rbq79uShOYq2AeiVXLo6YG0aU/2wvo1
kWvRBWPT6C8Aa+UhbFTekqZ+1iYOtv7NuEbd6m8CAwEAAaOCAhAwggIMMB0GA1Ud
DgQWBBT6bGS54rkBvLWCP5cm/Bi7CSUz6jAfBgNVHSMEGDAWgBQSj94r/GPv49Ey
3ax4N+Fcf0tJ9DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VvX2VLX3hqNy1QUk10MnNlRGZoWEg5TFNmUS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTMvYTlmODFlLTc5YjItNGMyZS05ZjNlLTdjMjRlZjAyNTlkYi8x
LzEtbXhrdWVLNUFieTFnai1YSnZ3WXV3a2xNLW8ucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUz
L2E5ZjgxZS03OWIyLTRjMmUtOWYzZS03YzI0ZWYwMjU5ZGIvMS9Fb19lS194ajct
UFJNdDJzZURmaFhIOUxTZlEuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
JQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAHBVPgDBAHBafQwDQYJKoZIhvcN
AQELBQADggEBAEs0yU9qn40+b4YCjnVvXCquYgOfINk55LeB1u7RbYT0M/SWAiFC
8g7SZHLcNuidnsrQAmlXzGzkiRay2WVMrlfop9f74lUDFwki+1IGp8gW+dP7kjMH
mPICPjeCGCQILVA3bjPEIzKH9VSFLM3WH5IIXt3LIG8jEFXK96X9bqh2Hr4gEInE
CAJIfGvjRXtCdX+ZuTGeRW64jkZpX1olkxvFtmy9XPTfLOl0YsuBS7rWKgRNDXxA
zb4ekzbFnFUwP8vHF7nV2mPUkr55+lqLZayAkQ2FwaMBzaniTK/hB+2YgmVfEFQ/
2Pj8Mt/UkSRH7AYJphjhpnfRwJnfPpuf0D8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:28 2023 by rpki-client on console-fra.rpki-client.org