Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/cox9hys3SNwfXuir35uwGkOxwNU.roa
File: cox9hys3SNwfXuir35uwGkOxwNU.roa (raw, json)
Hash identifier: i+f5UtM4FgQrCVr4F3dqQcMIYfk/PDDogu2xbgzriWg=
Subject key identifier: 72:8C:7D:87:2B:37:48:DC:1F:5E:E8:AB:DF:9B:B0:1A:43:B1:C0:D5
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 02F6916A
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/cox9hys3SNwfXuir35uwGkOxwNU.roa
Signing time: Mon 27 Jun 2022 20:00:32 +0000
ROA not before: Mon 27 Jun 2022 20:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.108.102.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49713514 (0x2f6916a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Jun 27 20:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=728c7d872b3748dc1f5ee8abdf9bb01a43b1c0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e1:dd:4d:b2:55:20:3c:84:d5:35:4e:96:11:
87:59:08:d2:95:26:ac:de:31:14:f3:a2:a4:a3:54:
15:3e:f4:fd:60:cb:9d:55:2b:f5:38:f7:b2:4a:34:
5c:87:5c:8f:2e:62:1d:7a:2c:38:30:e5:fb:c2:5f:
f3:fe:82:90:9e:f2:61:a6:e6:d2:ea:c0:2d:25:2b:
eb:d4:ba:3f:c1:9c:d9:78:1e:ab:54:24:6f:79:51:
2e:9c:f6:7e:69:09:ee:a1:dd:70:20:e3:9c:cf:ee:
c2:0f:aa:02:f2:04:98:43:a8:76:30:02:d3:b5:23:
43:a9:a1:2f:92:59:c5:80:42:32:e3:e0:a7:e3:3f:
e6:9a:e8:95:90:a3:04:5b:a2:36:5b:39:46:d8:cf:
45:02:a6:6e:73:52:86:31:1a:cb:87:54:8e:d3:15:
23:35:da:76:4c:6d:a3:d3:f0:5b:ae:ac:05:b5:13:
23:0b:71:1a:fb:2e:93:a6:64:98:ad:95:70:8b:f4:
18:3b:18:86:1f:78:b9:e1:ec:3f:ab:61:1d:70:b6:
61:3e:5b:51:83:d7:59:bb:9c:b2:88:99:31:82:b8:
2c:b3:b6:e0:cf:ec:ce:77:cd:f1:56:a3:f9:43:6e:
15:ff:de:93:f7:48:a3:e7:ba:43:10:e9:23:64:97:
05:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8C:7D:87:2B:37:48:DC:1F:5E:E8:AB:DF:9B:B0:1A:43:B1:C0:D5
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/cox9hys3SNwfXuir35uwGkOxwNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.102.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:83:6b:11:20:1e:89:54:a9:a1:c9:2b:19:00:e3:a9:2b:0d:
f6:5c:27:bb:ca:a6:d1:8d:97:2e:e5:7e:3a:cb:ac:e0:2e:4b:
6f:9f:d5:96:7f:ac:42:39:05:80:19:0e:63:43:ac:da:8c:8c:
03:ec:af:6e:aa:87:78:16:e0:9f:cc:f6:ce:9c:d5:db:d3:6d:
9a:cf:05:23:44:7e:82:bd:ee:23:5e:f9:5f:89:f3:3b:22:48:
cc:17:63:ef:30:9a:2e:50:61:49:81:a8:f8:64:df:f1:be:a4:
8f:c0:b8:7d:ee:63:2d:46:b6:77:e8:5c:d3:42:47:8b:f6:5f:
2b:c2:9e:5b:b3:fb:48:7b:c4:6b:22:89:67:53:77:c0:27:c5:
34:67:03:05:90:cb:83:a5:93:da:df:b9:6f:3b:0f:f8:fa:66:
2c:19:58:ae:89:1a:f5:5d:36:ec:74:61:53:b2:dd:12:ec:25:
23:b9:56:83:cc:1f:02:95:b1:c9:e3:15:c8:cd:c1:47:79:64:
74:fe:f7:29:40:87:c9:80:9c:fa:33:28:17:5f:c2:76:56:36:
dc:67:5f:73:47:ff:95:c4:18:36:d9:12:42:c7:2c:d5:6f:7f:
f9:e9:20:8c:cd:9c:f1:f2:0c:b2:a6:30:64:23:8f:9a:10:33:
ad:73:2c:31
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAvaRajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YjExNTdlODFiN2M5ZTQzMzYwYTFjYjUwYTMxNDAxMTc1OTIxODA4MB4XDTIyMDYy
NzIwMDAzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzI4YzdkODcyYjM3
NDhkYzFmNWVlOGFiZGY5YmIwMWE0M2IxYzBkNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK7h3U2yVSA8hNU1TpYRh1kI0pUmrN4xFPOipKNUFT70/WDL
nVUr9Tj3sko0XIdcjy5iHXosODDl+8Jf8/6CkJ7yYabm0urALSUr69S6P8Gc2Xge
q1Qkb3lRLpz2fmkJ7qHdcCDjnM/uwg+qAvIEmEOodjAC07UjQ6mhL5JZxYBCMuPg
p+M/5prolZCjBFuiNls5RtjPRQKmbnNShjEay4dUjtMVIzXadkxto9PwW66sBbUT
IwtxGvsuk6ZkmK2VcIv0GDsYhh94ueHsP6thHXC2YT5bUYPXWbucsoiZMYK4LLO2
4M/sznfN8Vaj+UNuFf/ek/dIo+e6QxDpI2SXBVsCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRyjH2HKzdI3B9e6Kvfm7AaQ7HA1TAfBgNVHSMEGDAWgBT7EVfoG3yeQzYK
HLUKMUARdZIYCDAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEteEZYNkJ0OG5rTTJDaHkxQ2pGQUVYV1NHQWcuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzU0LzE5M2M3MS1jOTRhLTQxNmYtYTE4Ni00MTY2NjRmMDFhMmMv
MS9jb3g5aHlzM1NOd2ZYdWlyMzV1d0drT3h3TlUucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU0
LzE5M2M3MS1jOTRhLTQxNmYtYTE4Ni00MTY2NjRmMDFhMmMvMS8xLXhGWDZCdDhu
a00yQ2h5MUNqRkFFWFdTR0FnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwWxmMA0GCSqGSIb3DQEBCwUA
A4IBAQALg2sRIB6JVKmhySsZAOOpKw32XCe7yqbRjZcu5X46y6zgLktvn9WWf6xC
OQWAGQ5jQ6zajIwD7K9uqod4FuCfzPbOnNXb022azwUjRH6Cve4jXvlfifM7IkjM
F2PvMJouUGFJgaj4ZN/xvqSPwLh97mMtRrZ36FzTQkeL9l8rwp5bs/tIe8RrIoln
U3fAJ8U0ZwMFkMuDpZPa37lvOw/4+mYsGViuiRr1XTbsdGFTst0S7CUjuVaDzB8C
lbHJ4xXIzcFHeWR0/vcpQIfJgJz6MygXX8J2VjbcZ19zR/+VxBg22RJCxyzVb3/5
6SCMzZzx8gyypjBkI4+aEDOtcywx
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-fra.rpki-client.org