Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ho95pplXrm78vNGY3JpIdFMolh0.roa
File: ho95pplXrm78vNGY3JpIdFMolh0.roa (raw, json)
Hash identifier: w9IGb0KTHNAUPzbQpKKi7w6AzA+LRsFDzoDwPvh8EPw=
Subject key identifier: 86:8F:79:A6:99:57:AE:6E:FC:BC:D1:98:DC:9A:48:74:53:28:96:1D
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 0207FD14
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ho95pplXrm78vNGY3JpIdFMolh0.roa
Signing time: Fri 18 Mar 2022 09:11:21 +0000
ROA not before: Fri 18 Mar 2022 09:11:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.108.102.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34077972 (0x207fd14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Mar 18 09:11:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=868f79a69957ae6efcbcd198dc9a48745328961d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7e:d7:06:51:2a:12:cb:8f:ee:0a:b5:2c:c4:
36:a0:9f:28:0a:b9:b9:24:0c:77:a9:1c:8f:00:3f:
e4:98:3b:75:09:03:7d:41:05:9e:0e:96:d1:1e:8e:
7e:0f:ba:23:60:ee:70:a5:97:04:2a:b8:bd:28:71:
82:f7:2f:7f:09:6f:d5:48:07:61:4c:91:f6:8a:74:
bc:e7:cc:be:88:64:c0:78:36:95:49:c0:ac:cf:11:
88:93:e3:a7:2a:ad:23:b1:89:36:c9:83:40:3c:07:
bd:06:7f:59:d5:2a:fb:3a:93:70:77:db:19:57:45:
d5:2b:83:68:5f:55:10:37:36:9b:ae:13:3d:bf:05:
3b:ee:f2:d1:e2:8e:c3:6d:73:53:85:76:50:37:74:
d6:be:ee:38:83:f4:48:56:e6:05:22:40:ff:7c:1d:
bb:f1:f0:3c:ea:05:9e:b7:49:6d:3c:b1:ba:0a:5a:
30:cd:5b:67:7d:9b:5c:d7:47:9a:97:47:3b:9b:0f:
c4:e5:7a:ee:2f:6f:4c:bd:35:9c:25:21:16:00:ce:
13:f1:c4:03:0b:a2:8b:a2:4a:ca:28:76:05:71:4d:
ac:70:07:fb:ed:ee:1a:d1:fa:b8:d9:2b:58:13:ae:
d5:be:40:8b:da:42:8f:f8:1b:e3:ad:56:49:49:68:
dc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8F:79:A6:99:57:AE:6E:FC:BC:D1:98:DC:9A:48:74:53:28:96:1D
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ho95pplXrm78vNGY3JpIdFMolh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.102.0/23
Signature Algorithm: sha256WithRSAEncryption
69:f4:f8:65:6d:f3:38:30:3c:64:ac:0f:10:ac:3d:db:53:6a:
fb:f2:d3:3d:35:5a:b1:52:9a:82:b5:49:ce:a2:2f:5a:90:4a:
3a:e4:44:b1:24:db:54:04:40:66:da:d3:bd:4e:4e:2f:e3:7c:
4c:ed:57:e6:e5:cc:e3:37:bd:1f:d5:55:63:21:86:30:19:45:
27:fd:5f:84:5d:88:39:f1:af:dd:99:cf:7e:06:75:98:9d:6e:
94:0c:99:3d:13:67:72:b8:d1:05:c5:d7:f5:c7:16:82:9b:27:
d0:fd:66:64:47:44:02:84:da:b1:aa:8d:54:42:72:a9:ce:da:
5a:33:46:aa:b8:0e:bf:fe:48:d1:b6:4a:b3:2e:14:22:ab:9c:
d7:61:39:00:2b:78:ba:60:b5:2b:b8:2c:71:5d:5d:0d:6b:ec:
7b:b9:73:8d:4c:6a:be:d3:e6:71:a4:b1:83:3d:05:97:6f:5a:
af:98:8d:44:ed:43:34:bc:41:e4:17:15:5f:25:b6:56:37:b7:
97:82:04:66:ec:29:2c:8c:3e:13:1b:29:82:c1:1e:c1:9a:31:
29:8a:40:aa:67:61:13:6e:88:4b:f6:8a:b0:8b:ee:e2:d1:d4:
93:0a:14:52:0d:a4:da:6c:02:bf:47:b2:82:83:1b:81:e8:57:
c9:ea:8d:19
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAgf9FDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YjExNTdlODFiN2M5ZTQzMzYwYTFjYjUwYTMxNDAxMTc1OTIxODA4MB4XDTIyMDMx
ODA5MTEyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODY4Zjc5YTY5OTU3
YWU2ZWZjYmNkMTk4ZGM5YTQ4NzQ1MzI4OTYxZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKJ+1wZRKhLLj+4KtSzENqCfKAq5uSQMd6kcjwA/5Jg7dQkD
fUEFng6W0R6Ofg+6I2DucKWXBCq4vShxgvcvfwlv1UgHYUyR9op0vOfMvohkwHg2
lUnArM8RiJPjpyqtI7GJNsmDQDwHvQZ/WdUq+zqTcHfbGVdF1SuDaF9VEDc2m64T
Pb8FO+7y0eKOw21zU4V2UDd01r7uOIP0SFbmBSJA/3wdu/HwPOoFnrdJbTyxugpa
MM1bZ32bXNdHmpdHO5sPxOV67i9vTL01nCUhFgDOE/HEAwuii6JKyih2BXFNrHAH
++3uGtH6uNkrWBOu1b5Ai9pCj/gb461WSUlo3P8CAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSGj3mmmVeubvy80Zjcmkh0UyiWHTAfBgNVHSMEGDAWgBT7EVfoG3yeQzYK
HLUKMUARdZIYCDAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEteEZYNkJ0OG5rTTJDaHkxQ2pGQUVYV1NHQWcuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzU0LzE5M2M3MS1jOTRhLTQxNmYtYTE4Ni00MTY2NjRmMDFhMmMv
MS9obzk1cHBsWHJtNzh2TkdZM0pwSWRGTW9saDAucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU0
LzE5M2M3MS1jOTRhLTQxNmYtYTE4Ni00MTY2NjRmMDFhMmMvMS8xLXhGWDZCdDhu
a00yQ2h5MUNqRkFFWFdTR0FnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwWxmMA0GCSqGSIb3DQEBCwUA
A4IBAQBp9PhlbfM4MDxkrA8QrD3bU2r78tM9NVqxUpqCtUnOoi9akEo65ESxJNtU
BEBm2tO9Tk4v43xM7Vfm5czjN70f1VVjIYYwGUUn/V+EXYg58a/dmc9+BnWYnW6U
DJk9E2dyuNEFxdf1xxaCmyfQ/WZkR0QChNqxqo1UQnKpztpaM0aquA6//kjRtkqz
LhQiq5zXYTkAK3i6YLUruCxxXV0Na+x7uXONTGq+0+ZxpLGDPQWXb1qvmI1E7UM0
vEHkFxVfJbZWN7eXggRm7CksjD4TGymCwR7BmjEpikCqZ2ETbohL9oqwi+7i0dST
ChRSDaTabAK/R7KCgxuB6FfJ6o0Z
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:13 2023 by rpki-client on console-ams.rpki-client.org