Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/bojZubpohRSEC0QRuI53Q_axp68.roa
File: bojZubpohRSEC0QRuI53Q_axp68.roa (raw, json)
Hash identifier: fKhqPeVaL0cB0biVC/Of0VXxCQHv1VrHcVsn9WCJz2k=
Subject key identifier: 6E:88:D9:B9:BA:68:85:14:84:0B:44:11:B8:8E:77:43:F6:B1:A7:AF
Certificate issuer: /CN=fe54ab2d481cf1622a2c52183ab4f5a930a4ae41
Certificate serial: 043413DC
Authority key identifier: FE:54:AB:2D:48:1C:F1:62:2A:2C:52:18:3A:B4:F5:A9:30:A4:AE:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lSrLUgc8WIqLFIYOrT1qTCkrkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/bojZubpohRSEC0QRuI53Q_axp68.roa
Signing time: Sat 01 Jan 2022 06:03:09 +0000
ROA not before: Sat 01 Jan 2022 06:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25717
IP address blocks: 193.221.70.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70521820 (0x43413dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe54ab2d481cf1622a2c52183ab4f5a930a4ae41
Validity
Not Before: Jan 1 06:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e88d9b9ba688514840b4411b88e7743f6b1a7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:1f:a1:50:d5:e2:04:3c:fe:5b:b0:c9:b7:
ef:0b:a7:a3:86:a6:09:0d:70:e9:b6:00:89:63:a3:
88:3a:70:4f:f1:36:d3:2d:48:8f:ee:a8:da:7b:df:
31:d4:c9:28:a5:97:1f:76:7d:0e:8e:58:81:f1:9a:
fa:75:e1:bf:a7:9f:d1:ac:da:c6:04:70:dd:a8:99:
25:86:30:a5:a4:b4:c1:b6:03:88:0a:7a:21:77:e3:
67:71:30:67:5f:fe:3c:1f:7d:9b:f5:6d:2c:19:df:
49:9d:0a:27:3d:75:28:b5:59:39:e2:ce:41:a6:94:
37:49:5a:fe:45:ca:4f:89:44:c4:00:85:92:49:0c:
16:71:30:22:b9:df:ef:c9:45:43:73:66:f7:37:a7:
9e:c7:09:6f:83:03:0b:6e:99:44:08:40:84:da:a6:
5a:20:a8:70:d3:23:d1:00:88:b4:58:f3:86:83:bf:
f2:48:b1:cc:9c:c3:a3:6f:9a:c4:3b:a3:ee:9b:c9:
7a:c7:2f:d5:48:5a:10:5a:f0:1d:e6:92:1f:38:13:
fc:e1:cf:47:da:dc:a5:b5:8a:e0:df:77:d0:68:d1:
29:e8:8c:a6:2a:fb:63:fe:e0:da:f1:82:8e:64:29:
4c:39:5b:ff:72:c8:5e:23:00:be:b1:ba:bb:4c:64:
df:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:88:D9:B9:BA:68:85:14:84:0B:44:11:B8:8E:77:43:F6:B1:A7:AF
X509v3 Authority Key Identifier:
keyid:FE:54:AB:2D:48:1C:F1:62:2A:2C:52:18:3A:B4:F5:A9:30:A4:AE:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lSrLUgc8WIqLFIYOrT1qTCkrkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/bojZubpohRSEC0QRuI53Q_axp68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/_lSrLUgc8WIqLFIYOrT1qTCkrkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.70.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:99:33:50:3b:a9:a2:50:eb:4a:18:20:55:0e:57:d8:94:dd:
82:dd:d2:cf:98:f6:d2:a9:fe:04:ed:ba:4c:de:8d:cd:a8:78:
fd:d0:84:8c:21:bf:d1:bb:30:b1:26:b9:3e:3f:73:6c:16:aa:
67:5d:9e:2b:14:41:fd:5b:47:1d:3c:97:04:ae:11:ac:b9:52:
6a:b9:bc:f9:7d:78:f9:0d:65:02:8c:5d:08:8b:41:1b:76:d4:
78:96:96:a7:db:bf:53:e4:54:f1:ff:0e:ee:51:d4:54:79:f8:
b1:f9:24:ae:c6:62:99:8e:06:71:05:ce:d2:fe:70:fd:af:0e:
30:77:d7:0b:37:11:29:7a:16:8e:8e:ab:4b:e7:82:6b:e1:1b:
22:9a:f3:9e:46:da:3a:33:aa:83:90:9f:24:16:b4:9f:fc:a4:
26:8b:72:19:16:2f:aa:97:5a:39:40:b1:a6:be:cc:4e:84:c9:
07:2d:0a:7f:f4:d6:bf:b1:62:bd:19:8c:0f:5b:1a:48:26:b1:
12:40:82:3b:30:f5:ab:ec:f1:4a:13:a0:2d:41:76:7a:77:a7:
f0:eb:64:59:36:76:43:c5:28:c9:bc:2a:f5:78:72:0e:3b:87:
80:42:bc:bb:c0:2c:49:63:fd:ce:e2:80:58:1b:32:7d:43:a5:
69:a2:a5:67
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDQT3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTU0YWIyZDQ4MWNmMTYyMmEyYzUyMTgzYWI0ZjVhOTMwYTRhZTQxMB4XDTIyMDEw
MTA2MDMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmU4OGQ5YjliYTY4
ODUxNDg0MGI0NDExYjg4ZTc3NDNmNmIxYTdhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMEJH6FQ1eIEPP5bsMm37wuno4amCQ1w6bYAiWOjiDpwT/E2
0y1Ij+6o2nvfMdTJKKWXH3Z9Do5YgfGa+nXhv6ef0azaxgRw3aiZJYYwpaS0wbYD
iAp6IXfjZ3EwZ1/+PB99m/VtLBnfSZ0KJz11KLVZOeLOQaaUN0la/kXKT4lExACF
kkkMFnEwIrnf78lFQ3Nm9zennscJb4MDC26ZRAhAhNqmWiCocNMj0QCItFjzhoO/
8kixzJzDo2+axDuj7pvJescv1UhaEFrwHeaSHzgT/OHPR9rcpbWK4N930GjRKeiM
pir7Y/7g2vGCjmQpTDlb/3LIXiMAvrG6u0xk3w8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRuiNm5umiFFIQLRBG4jndD9rGnrzAfBgNVHSMEGDAWgBT+VKstSBzxYios
Uhg6tPWpMKSuQTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19sU3JMVWdjOFdJcUxGSVlPclQxcVRDa3JrRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvNGQ1ZTRhLThhMTYtNDUzNy1iZTFmLTFiMTM2MmI5YjZhMi8x
L2Jvalp1YnBvaFJTRUMwUVJ1STUzUV9heHA2OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
NGQ1ZTRhLThhMTYtNDUzNy1iZTFmLTFiMTM2MmI5YjZhMi8xL19sU3JMVWdjOFdJ
cUxGSVlPclQxcVRDa3JrRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcHdRjANBgkqhkiG9w0BAQsFAAOC
AQEAOpkzUDupolDrShggVQ5X2JTdgt3Sz5j20qn+BO26TN6Nzah4/dCEjCG/0bsw
sSa5Pj9zbBaqZ12eKxRB/VtHHTyXBK4RrLlSarm8+X14+Q1lAoxdCItBG3bUeJaW
p9u/U+RU8f8O7lHUVHn4sfkkrsZimY4GcQXO0v5w/a8OMHfXCzcRKXoWjo6rS+eC
a+EbIprznkbaOjOqg5CfJBa0n/ykJotyGRYvqpdaOUCxpr7MToTJBy0Kf/TWv7Fi
vRmMD1saSCaxEkCCOzD1q+zxShOgLUF2enen8OtkWTZ2Q8Uoybwq9XhyDjuHgEK8
u8AsSWP9zuKAWBsyfUOlaaKlZw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-fra.rpki-client.org