Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/1J8CYgSJ6-X4GsDHi5slV_7LZoI.roa
File: 1J8CYgSJ6-X4GsDHi5slV_7LZoI.roa (raw, json)
Hash identifier: ikHlev/j3FCrBHp/xHjrTTkzhA4MDkyanlz5S+A0eUc=
Subject key identifier: D4:9F:02:62:04:89:EB:E5:F8:1A:C0:C7:8B:9B:25:57:FE:CB:66:82
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 150C3FFC
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/1J8CYgSJ6-X4GsDHi5slV_7LZoI.roa
Signing time: Sat 01 Jan 2022 15:54:51 +0000
ROA not before: Sat 01 Jan 2022 15:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.30.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353124348 (0x150c3ffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 1 15:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d49f02620489ebe5f81ac0c78b9b2557fecb6682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:14:59:ee:1b:15:ab:26:67:e0:48:cb:83:e0:
fc:fe:8b:69:44:ab:50:62:69:9c:43:a0:9d:56:4d:
78:1f:fb:1b:d5:0d:33:7c:24:ed:55:15:00:60:c0:
38:f0:9e:99:27:c1:be:fc:6a:5a:40:c1:b5:b0:d1:
9d:6e:35:93:07:db:d4:12:5f:1b:46:11:57:b9:da:
cf:36:03:74:3a:3a:45:c3:36:91:3a:55:9b:73:48:
ae:18:61:48:cd:58:a9:93:4c:fa:4b:76:4b:51:0d:
be:8a:e5:ff:54:fb:8d:02:17:dd:e9:b3:44:22:61:
04:a7:b2:ee:fe:e6:8b:72:ed:13:c6:81:02:29:db:
96:c0:7c:2a:67:3b:a8:06:e9:9c:2d:92:18:c7:70:
d1:8b:56:cb:b7:04:8e:ca:1d:d7:40:80:8f:23:8b:
ad:de:4f:ef:0b:35:a8:87:6a:8d:d9:4d:ba:b5:2a:
1c:b8:12:d1:c5:55:59:b0:a0:b9:76:a2:7a:df:82:
3c:e0:90:5b:64:b8:59:ce:65:55:c1:b3:3c:75:69:
5b:0b:10:9f:2f:18:30:58:79:26:17:6b:60:94:41:
ec:0b:40:d4:8d:64:60:29:17:3a:b8:5e:d1:b3:6a:
85:4b:25:51:d7:f3:eb:87:3f:c9:58:37:0c:58:99:
7d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9F:02:62:04:89:EB:E5:F8:1A:C0:C7:8B:9B:25:57:FE:CB:66:82
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/1J8CYgSJ6-X4GsDHi5slV_7LZoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.84.0/24
Signature Algorithm: sha256WithRSAEncryption
10:16:03:45:66:cc:b3:8e:94:e2:49:e6:63:b9:bf:13:04:7a:
79:3e:4b:4a:b6:6d:2b:1e:0e:57:8e:65:95:09:dc:03:10:85:
3a:39:17:95:ca:ae:c3:db:99:33:1a:8c:54:78:76:5e:2e:e3:
4b:79:2a:c9:7f:0b:d9:ba:e4:e5:8c:50:a8:3e:ce:cf:f6:d1:
c0:5e:99:20:53:50:d8:6a:a0:1e:3c:9c:4a:9d:a3:6a:09:3f:
4a:32:69:e5:ea:13:05:63:3f:14:97:ec:5f:38:b9:a7:b2:9f:
12:e3:2d:e8:75:7d:04:7f:d8:fe:9c:be:9c:53:5d:fd:ff:bb:
9c:f4:c0:e0:41:98:d1:07:dd:4b:2a:b3:a2:10:67:18:ee:b7:
88:3c:91:f2:1e:b1:5c:c8:99:23:93:e6:e3:5b:22:44:50:d5:
df:ac:38:8f:5d:01:61:cb:a7:6f:a9:5f:d9:a1:86:e7:3d:6a:
36:10:c5:43:af:57:c1:84:8e:1d:f0:29:d6:48:e8:fc:19:9c:
e2:52:53:bc:43:60:74:42:17:55:4d:ff:fd:0e:23:95:e0:95:
82:08:b9:62:50:ca:7a:47:76:ae:25:8f:d3:0d:19:a3:2f:f7:
0c:63:44:2c:6c:59:7f:c6:15:1e:fa:89:62:cf:3d:7d:11:4c:
f2:1e:59:d8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFQw//DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NzE4MmFhYjVhZDllZmEzODBhNmM2ZjA2YzAxNmUxNThiZTk3N2JjMB4XDTIyMDEw
MTE1NTQ1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDQ5ZjAyNjIwNDg5
ZWJlNWY4MWFjMGM3OGI5YjI1NTdmZWNiNjY4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL8UWe4bFasmZ+BIy4Pg/P6LaUSrUGJpnEOgnVZNeB/7G9UN
M3wk7VUVAGDAOPCemSfBvvxqWkDBtbDRnW41kwfb1BJfG0YRV7nazzYDdDo6RcM2
kTpVm3NIrhhhSM1YqZNM+kt2S1ENvorl/1T7jQIX3emzRCJhBKey7v7mi3LtE8aB
AinblsB8Kmc7qAbpnC2SGMdw0YtWy7cEjsod10CAjyOLrd5P7ws1qIdqjdlNurUq
HLgS0cVVWbCguXaiet+CPOCQW2S4Wc5lVcGzPHVpWwsQny8YMFh5JhdrYJRB7AtA
1I1kYCkXOrhe0bNqhUslUdfz64c/yVg3DFiZfbsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTUnwJiBInr5fgawMeLmyVX/stmgjAfBgNVHSMEGDAWgBRXGCqrWtnvo4Cm
xvBsAW4Vi+l3vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Z4Z3FxMXJaNzZPQXBzYndiQUZ1Rll2cGQ3dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTYvOGM1MWNiLWEzYmQtNDc2ZC04ODBmLWE5NmM2MjY2YWJkYi8x
LzFKOENZZ1NKNi1YNEdzREhpNXNsVl83TFpvSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTYv
OGM1MWNiLWEzYmQtNDc2ZC04ODBmLWE5NmM2MjY2YWJkYi8xL1Z4Z3FxMXJaNzZP
QXBzYndiQUZ1Rll2cGQ3dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEeVDANBgkqhkiG9w0BAQsFAAOC
AQEAEBYDRWbMs46U4knmY7m/EwR6eT5LSrZtKx4OV45llQncAxCFOjkXlcquw9uZ
MxqMVHh2Xi7jS3kqyX8L2brk5YxQqD7Oz/bRwF6ZIFNQ2GqgHjycSp2jagk/SjJp
5eoTBWM/FJfsXzi5p7KfEuMt6HV9BH/Y/py+nFNd/f+7nPTA4EGY0QfdSyqzohBn
GO63iDyR8h6xXMiZI5Pm41siRFDV36w4j10BYcunb6lf2aGG5z1qNhDFQ69XwYSO
HfAp1kjo/Bmc4lJTvENgdEIXVU3//Q4jleCVggi5YlDKekd2riWP0w0Zoy/3DGNE
LGxZf8YVHvqJYs89fRFM8h5Z2A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org