Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/suMk6JV2cRyshdCdyUE5--GfS2Y.roa
File: suMk6JV2cRyshdCdyUE5--GfS2Y.roa (raw, json)
Hash identifier: S1GkNvhy31xevrU+afWMhlOES+X4+R5oRGO5r06CVLY=
Subject key identifier: B2:E3:24:E8:95:76:71:1C:AC:85:D0:9D:C9:41:39:FB:E1:9F:4B:66
Certificate issuer: /CN=9ff33d4f3ac0a887840a284cdc1abeb7dd642f01
Certificate serial: D5DEA6
Authority key identifier: 9F:F3:3D:4F:3A:C0:A8:87:84:0A:28:4C:DC:1A:BE:B7:DD:64:2F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/suMk6JV2cRyshdCdyUE5--GfS2Y.roa
Signing time: Sat 01 Jan 2022 00:57:13 +0000
ROA not before: Sat 01 Jan 2022 00:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 92.63.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14016166 (0xd5dea6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ff33d4f3ac0a887840a284cdc1abeb7dd642f01
Validity
Not Before: Jan 1 00:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2e324e89576711cac85d09dc94139fbe19f4b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4d:b6:93:ff:f5:fa:9a:ec:27:bf:5a:b3:c7:
31:ed:c6:14:c7:7b:62:fd:3c:71:2f:5e:a9:6c:f2:
4b:0b:bb:8b:00:9f:97:b0:4b:d1:80:a9:11:ab:b8:
40:e2:c0:40:c4:1f:e2:44:82:cf:fd:15:2d:6f:25:
87:c8:54:07:11:f8:93:97:84:0a:c9:c9:f9:1f:01:
b0:be:b8:47:fb:34:23:d1:f5:71:af:d3:97:fd:1f:
13:c2:67:59:e1:bd:66:05:e5:51:f4:65:66:d5:a2:
f9:bf:b1:87:84:54:e4:8f:6a:e8:e9:bd:cd:27:de:
a4:18:97:81:cd:0c:8e:25:b6:e7:d5:20:0c:cf:9b:
a5:0a:ab:e6:b8:ec:66:5c:85:4c:29:ec:86:54:8a:
82:5c:43:7a:e8:7b:1f:45:42:c7:1c:05:3c:5b:19:
b9:be:97:cd:51:c4:2c:c3:6a:ad:4b:f0:02:f3:c3:
de:99:b2:f1:56:72:62:5a:c2:77:61:47:cf:b2:2f:
cc:9e:3b:64:93:ab:f9:28:57:1a:8b:01:63:93:90:
53:73:47:2f:95:95:a1:46:ba:5d:2d:a3:8e:b6:7b:
80:20:54:00:15:c8:7f:d7:3b:ac:a3:d9:aa:da:95:
f9:91:10:cc:93:97:45:e9:84:56:ea:e9:3b:c3:1a:
68:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E3:24:E8:95:76:71:1C:AC:85:D0:9D:C9:41:39:FB:E1:9F:4B:66
X509v3 Authority Key Identifier:
keyid:9F:F3:3D:4F:3A:C0:A8:87:84:0A:28:4C:DC:1A:BE:B7:DD:64:2F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/suMk6JV2cRyshdCdyUE5--GfS2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/n_M9TzrAqIeECihM3Bq-t91kLwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.56.0/22
Signature Algorithm: sha256WithRSAEncryption
64:d0:d1:64:59:2e:74:0a:5f:97:e2:44:e8:ca:0f:db:55:be:
9a:c2:9d:a8:ed:fa:c8:7d:62:4c:68:12:dc:e3:bd:6d:88:73:
6a:51:d0:8d:42:4d:01:1e:aa:56:f6:a1:e5:da:d2:88:2a:ce:
f5:41:ef:0d:b0:d7:56:33:2d:11:46:eb:12:4a:fd:bc:5b:e4:
55:19:4f:ff:c6:36:e3:7d:b2:c6:ce:fa:8a:cd:eb:5e:5e:75:
11:5c:a9:4c:d1:53:69:4f:5b:a3:68:fb:d6:ee:b1:de:4d:bc:
72:3b:ba:85:59:6c:06:90:55:d2:15:30:a8:72:4b:96:27:1e:
3f:7d:90:86:9a:d8:60:0a:f4:cb:32:83:51:b7:c8:75:d8:4e:
16:b2:d7:ea:7b:ff:31:d4:74:92:b2:dd:47:78:28:2c:88:0b:
e1:0e:89:82:41:9f:1b:4c:15:a1:57:5b:ac:3a:1e:da:5e:f4:
27:4e:6c:44:f2:83:37:89:58:eb:ab:e5:ca:79:56:f7:93:33:
cd:81:3c:94:04:fd:db:88:41:ca:d4:24:fd:3d:95:99:92:be:
3a:29:2b:75:a7:5d:e9:2a:3d:61:8c:4f:d0:7e:45:fb:61:91:
97:c2:1b:41:3d:ac:4e:a8:ed:43:b4:46:69:48:49:c4:eb:d3:
17:16:66:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEANXepjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZmYzM2Q0ZjNhYzBhODg3ODQwYTI4NGNkYzFhYmViN2RkNjQyZjAxMB4XDTIyMDEw
MTAwNTcxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjJlMzI0ZTg5NTc2
NzExY2FjODVkMDlkYzk0MTM5ZmJlMTlmNGI2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMhNtpP/9fqa7Ce/WrPHMe3GFMd7Yv08cS9eqWzySwu7iwCf
l7BL0YCpEau4QOLAQMQf4kSCz/0VLW8lh8hUBxH4k5eECsnJ+R8BsL64R/s0I9H1
ca/Tl/0fE8JnWeG9ZgXlUfRlZtWi+b+xh4RU5I9q6Om9zSfepBiXgc0MjiW259Ug
DM+bpQqr5rjsZlyFTCnshlSKglxDeuh7H0VCxxwFPFsZub6XzVHELMNqrUvwAvPD
3pmy8VZyYlrCd2FHz7IvzJ47ZJOr+ShXGosBY5OQU3NHL5WVoUa6XS2jjrZ7gCBU
ABXIf9c7rKPZqtqV+ZEQzJOXRemEVurpO8MaaJcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSy4yTolXZxHKyF0J3JQTn74Z9LZjAfBgNVHSMEGDAWgBSf8z1POsCoh4QK
KEzcGr633WQvATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25fTTlUenJBcUllRUNpaE0zQnEtdDkxa0x3RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvMTI3Njg0LTVhZmUtNGYxOC1iOTVkLTMwNzI1MDNkODYwNy8x
L3N1TWs2SlYyY1J5c2hkQ2R5VUU1LS1HZlMyWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
MTI3Njg0LTVhZmUtNGYxOC1iOTVkLTMwNzI1MDNkODYwNy8xL25fTTlUenJBcUll
RUNpaE0zQnEtdDkxa0x3RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlw/ODANBgkqhkiG9w0BAQsFAAOC
AQEAZNDRZFkudApfl+JE6MoP21W+msKdqO36yH1iTGgS3OO9bYhzalHQjUJNAR6q
Vvah5drSiCrO9UHvDbDXVjMtEUbrEkr9vFvkVRlP/8Y2432yxs76is3rXl51EVyp
TNFTaU9bo2j71u6x3k28cju6hVlsBpBV0hUwqHJLliceP32QhprYYAr0yzKDUbfI
ddhOFrLX6nv/MdR0krLdR3goLIgL4Q6JgkGfG0wVoVdbrDoe2l70J05sRPKDN4lY
66vlynlW95MzzYE8lAT924hBytQk/T2VmZK+Oikrdadd6So9YYxP0H5F+2GRl8Ib
QT2sTqjtQ7RGaUhJxOvTFxZmrQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org