Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/9wN3-HDRG4xxsFBuXJlENNqJVfE.roa
File: 9wN3-HDRG4xxsFBuXJlENNqJVfE.roa (raw, json)
Hash identifier: UQBkS3QOlwOd556/NxBQFL+OMFSprBTrVP+krd3OVLs=
Subject key identifier: F7:03:77:F8:70:D1:1B:8C:71:B0:50:6E:5C:99:44:34:DA:89:55:F1
Certificate issuer: /CN=e46a3f838688843758d28057007dc6cd2898ecca
Certificate serial: 03AAB9C3
Authority key identifier: E4:6A:3F:83:86:88:84:37:58:D2:80:57:00:7D:C6:CD:28:98:EC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Go_g4aIhDdY0oBXAH3GzSiY7Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/9wN3-HDRG4xxsFBuXJlENNqJVfE.roa
Signing time: Sat 01 Jan 2022 06:01:21 +0000
ROA not before: Sat 01 Jan 2022 06:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.243.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61520323 (0x3aab9c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e46a3f838688843758d28057007dc6cd2898ecca
Validity
Not Before: Jan 1 06:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f70377f870d11b8c71b0506e5c994434da8955f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ec:3c:dd:18:35:ee:7d:0d:a1:e7:69:cb:60:
66:ae:a8:d0:09:db:f2:28:e5:f2:d4:60:11:5f:d6:
0e:7e:7e:00:c0:74:8f:ca:4c:3a:f6:a3:20:47:76:
6c:0a:21:a6:87:6e:35:3e:1f:34:47:6f:da:aa:42:
7c:f4:96:1b:af:f9:ec:63:77:a3:6b:59:de:43:dd:
0a:54:b6:80:1f:3e:5a:4d:6a:b4:97:ed:dd:19:be:
54:5c:4a:22:f9:30:82:56:31:bf:38:c4:69:ce:78:
8d:f5:60:46:5f:2c:0f:d5:b2:83:82:7b:ff:f4:ea:
fe:24:66:b1:7f:f5:07:55:f9:a5:91:18:c6:b0:0c:
8d:f6:c9:e8:2e:00:2a:bb:e3:a7:5c:4c:2f:c4:32:
3b:21:ae:56:67:b9:94:ed:b2:36:29:e2:9d:e5:78:
0c:f2:f2:42:52:f4:71:9c:ec:6c:e5:e0:d4:9a:ba:
e8:00:5a:5c:f2:b5:8f:b6:61:1b:e8:f6:3d:9d:46:
37:9e:c5:df:96:fa:f3:04:1b:d4:a2:5b:7c:46:a0:
d5:02:28:b4:fa:91:7b:52:ac:8d:91:f0:81:c6:e6:
2e:7f:fe:85:75:30:85:51:53:12:e8:ad:22:cf:b9:
7f:b7:6f:73:7b:b3:81:13:20:48:72:16:eb:95:91:
01:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:03:77:F8:70:D1:1B:8C:71:B0:50:6E:5C:99:44:34:DA:89:55:F1
X509v3 Authority Key Identifier:
keyid:E4:6A:3F:83:86:88:84:37:58:D2:80:57:00:7D:C6:CD:28:98:EC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Go_g4aIhDdY0oBXAH3GzSiY7Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/9wN3-HDRG4xxsFBuXJlENNqJVfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/5Go_g4aIhDdY0oBXAH3GzSiY7Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.243.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:07:8f:a6:3d:42:02:26:87:a6:0b:cd:31:f3:6c:f0:99:dd:
3e:59:ff:a6:f5:9d:98:8b:61:92:f3:84:e7:09:fe:1b:2d:15:
eb:71:06:b0:78:71:91:d2:b4:a9:db:ff:cf:1d:1e:eb:00:3a:
ae:ed:a6:26:36:72:65:aa:af:9a:22:75:fa:01:90:ad:98:67:
f4:58:4c:b9:a0:f4:0c:99:8b:10:f8:5e:f6:c0:5b:ed:bc:f2:
9c:ca:74:2a:30:76:4b:aa:25:9f:60:8f:f3:06:69:ee:a0:8c:
3f:ec:66:89:59:5c:9f:33:36:60:f9:7f:44:29:ec:62:1f:34:
96:27:29:89:74:15:19:b3:a7:20:18:59:11:e9:25:8f:fc:8e:
74:e0:6f:c5:85:1c:37:d2:c0:96:88:44:3a:56:6d:ba:8d:10:
45:f6:1e:5e:d5:01:53:8c:f4:48:a7:e8:20:44:80:cd:93:4c:
a9:97:d7:ff:fe:cb:a1:dc:fa:4d:72:9a:c7:43:3e:8c:83:f1:
d4:e1:d9:2e:47:2a:e9:37:7e:6e:ef:cb:ab:86:0d:00:36:1f:
ed:79:cd:7c:8b:08:1e:0e:0e:c4:16:e6:72:b6:18:6f:f4:dd:
80:93:8c:8f:cb:e6:81:ac:17:e9:e7:c0:8a:84:6b:13:89:f5:
7d:a2:c2:b7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA6q5wzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NDZhM2Y4Mzg2ODg4NDM3NThkMjgwNTcwMDdkYzZjZDI4OThlY2NhMB4XDTIyMDEw
MTA2MDEyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjcwMzc3Zjg3MGQx
MWI4YzcxYjA1MDZlNWM5OTQ0MzRkYTg5NTVmMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK/sPN0YNe59DaHnactgZq6o0Anb8ijl8tRgEV/WDn5+AMB0
j8pMOvajIEd2bAohpoduNT4fNEdv2qpCfPSWG6/57GN3o2tZ3kPdClS2gB8+Wk1q
tJft3Rm+VFxKIvkwglYxvzjEac54jfVgRl8sD9Wyg4J7//Tq/iRmsX/1B1X5pZEY
xrAMjfbJ6C4AKrvjp1xML8QyOyGuVme5lO2yNinineV4DPLyQlL0cZzsbOXg1Jq6
6ABaXPK1j7ZhG+j2PZ1GN57F35b68wQb1KJbfEag1QIotPqRe1KsjZHwgcbmLn/+
hXUwhVFTEuitIs+5f7dvc3uzgRMgSHIW65WRAWsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT3A3f4cNEbjHGwUG5cmUQ02olV8TAfBgNVHSMEGDAWgBTkaj+DhoiEN1jS
gFcAfcbNKJjsyjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVHb19nNGFJaERkWTBvQlhBSDNHelNpWTdNby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTQvNTJjZjk5LWU3OTgtNGNhYi1hMzAzLWEzYjA2ZDRlNDc3NS8x
Lzl3TjMtSERSRzR4eHNGQnVYSmxFTk5xSlZmRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQv
NTJjZjk5LWU3OTgtNGNhYi1hMzAzLWEzYjA2ZDRlNDc3NS8xLzVHb19nNGFJaERk
WTBvQlhBSDNHelNpWTdNby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHzgTANBgkqhkiG9w0BAQsFAAOC
AQEA0gePpj1CAiaHpgvNMfNs8JndPln/pvWdmIthkvOE5wn+Gy0V63EGsHhxkdK0
qdv/zx0e6wA6ru2mJjZyZaqvmiJ1+gGQrZhn9FhMuaD0DJmLEPhe9sBb7bzynMp0
KjB2S6oln2CP8wZp7qCMP+xmiVlcnzM2YPl/RCnsYh80licpiXQVGbOnIBhZEekl
j/yOdOBvxYUcN9LAlohEOlZtuo0QRfYeXtUBU4z0SKfoIESAzZNMqZfX//7Lodz6
TXKax0M+jIPx1OHZLkcq6Td+bu/Lq4YNADYf7XnNfIsIHg4OxBbmcrYYb/TdgJOM
j8vmgawX6efAioRrE4n1faLCtw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:04 2024 by rpki-client on console-ams.rpki-client.org