Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/sdrWDId-xgXPDj2gVWIOCCcigm0.roa
File: sdrWDId-xgXPDj2gVWIOCCcigm0.roa (raw, json)
Hash identifier: B8++PYEjs6+viD+j9nebz5tSKup0Y++WR8EF+4InBEk=
Subject key identifier: B1:DA:D6:0C:87:7E:C6:05:CF:0E:3D:A0:55:62:0E:08:27:22:82:6D
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018451B50AF9A3F42BE94C6F3BD9F8002FE3
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/sdrWDId-xgXPDj2gVWIOCCcigm0.roa
Signing time: Mon 07 Nov 2022 10:48:50 +0000
ROA not before: Mon 07 Nov 2022 10:48:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 188.191.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:b5:0a:f9:a3:f4:2b:e9:4c:6f:3b:d9:f8:00:2f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Nov 7 10:48:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1dad60c877ec605cf0e3da055620e082722826d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:a7:2d:85:db:ef:a7:49:0c:b8:f2:08:a2:
a5:c7:f7:38:53:51:4c:c4:d2:b0:42:be:15:f9:6c:
7c:85:df:26:28:2c:53:49:02:34:d2:f0:43:85:a6:
28:67:17:d1:ed:d7:19:11:a0:1a:ef:44:70:fe:ee:
c0:69:c9:d2:a7:a8:99:fe:bf:ba:1e:19:71:c1:01:
7c:fa:39:40:5e:be:96:ee:5d:bb:44:f6:5c:30:80:
bd:74:17:af:a4:92:b3:89:03:61:33:59:7c:95:c5:
80:13:84:85:9c:ff:08:54:4c:71:b5:4d:8f:25:8c:
21:69:19:c2:30:4f:f3:09:64:ef:e0:80:54:36:51:
38:29:00:d4:c7:0d:31:77:8c:b0:58:49:48:bd:28:
e4:07:0f:3c:42:e0:de:84:ad:1a:76:87:68:d3:f8:
78:1c:6e:ac:e2:75:43:42:d6:82:dc:7c:ad:4b:ee:
88:b9:98:9f:24:77:a7:0d:1d:49:e6:2d:14:38:b6:
d2:53:ef:f8:45:4b:a9:df:f4:0e:d1:2e:c7:b4:1d:
66:b8:8d:4e:92:cd:2c:b8:08:32:74:0e:de:36:fd:
7a:e9:64:7e:c6:b0:eb:a3:b9:da:fb:c7:f0:39:07:
8d:2e:d0:89:79:96:ef:7b:6c:c6:a5:1f:98:a9:b8:
07:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:DA:D6:0C:87:7E:C6:05:CF:0E:3D:A0:55:62:0E:08:27:22:82:6D
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/sdrWDId-xgXPDj2gVWIOCCcigm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.108.0/24
Signature Algorithm: sha256WithRSAEncryption
02:03:27:05:8d:78:a4:7e:38:57:76:3a:b7:ce:4a:10:db:cd:
20:e7:97:34:3a:9f:bd:b4:fe:3f:b9:10:fb:dd:ec:2b:dd:3e:
be:c5:91:5d:8f:5c:b6:5a:29:d3:da:c5:73:7d:e2:ad:bb:c1:
21:cb:65:a0:16:c6:4f:6b:e9:15:75:29:5f:63:e6:ea:2e:84:
dd:c5:bb:45:3d:da:18:a2:a0:8c:2e:24:9c:93:3c:2b:23:5a:
4e:32:37:36:86:ca:96:63:db:97:a8:7f:67:3a:20:2a:4a:b2:
b5:83:dd:77:80:6e:5a:14:b5:ca:8e:aa:a6:c0:69:a8:ed:00:
2c:64:00:19:38:18:83:ff:41:2c:15:5e:07:41:9e:06:18:91:
b4:92:bf:85:18:ac:61:6e:52:43:df:ef:1d:f1:ea:69:86:18:
95:04:91:90:e3:21:6d:e1:46:0f:95:07:d8:05:d3:7a:d5:75:
73:84:11:67:dd:8f:88:66:26:a7:0d:46:bc:8f:30:53:a5:f7:
33:72:95:5c:9c:84:4b:19:bf:5b:fc:18:7e:fa:f7:32:58:0f:
56:78:d9:6a:f6:c5:23:d3:23:c3:ba:2a:2e:4c:87:8d:4a:b6:
24:c7:a4:ee:2d:df:a4:c3:6d:b4:64:9e:c8:4b:01:63:d2:43:
5f:eb:42:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRRtQr5o/Qr6UxvO9n4AC/jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjIxMTA3MTA0ODUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWRhZDYwYzg3N2VjNjA1Y2YwZTNkYTA1NTYyMGUwODI3MjI4MjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZSnLYXb76dJDLjyCKKlx/c4U1FM
xNKwQr4V+Wx8hd8mKCxTSQI00vBDhaYoZxfR7dcZEaAa70Rw/u7AacnSp6iZ/r+6
HhlxwQF8+jlAXr6W7l27RPZcMIC9dBevpJKziQNhM1l8lcWAE4SFnP8IVExxtU2P
JYwhaRnCME/zCWTv4IBUNlE4KQDUxw0xd4ywWElIvSjkBw88QuDehK0adodo0/h4
HG6s4nVDQtaC3HytS+6IuZifJHenDR1J5i0UOLbSU+/4RUup3/QO0S7HtB1muI1O
ks0suAgydA7eNv166WR+xrDro7na+8fwOQeNLtCJeZbve2zGpR+YqbgHFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLHa1gyHfsYFzw49oFViDggnIoJtMB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvc2RyV0RJZC14Z1hQRGoyZ1ZXSU9DQ2NpZ20wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvL9sMA0G
CSqGSIb3DQEBCwUAA4IBAQACAycFjXikfjhXdjq3zkoQ280g55c0Op+9tP4/uRD7
3ewr3T6+xZFdj1y2WinT2sVzfeKtu8Ehy2WgFsZPa+kVdSlfY+bqLoTdxbtFPdoY
oqCMLiSckzwrI1pOMjc2hsqWY9uXqH9nOiAqSrK1g913gG5aFLXKjqqmwGmo7QAs
ZAAZOBiD/0EsFV4HQZ4GGJG0kr+FGKxhblJD3+8d8epphhiVBJGQ4yFt4UYPlQfY
BdN61XVzhBFn3Y+IZianDUa8jzBTpfczcpVcnIRLGb9b/Bh++vcyWA9WeNlq9sUj
0yPDuiouTIeNSrYkx6TuLd+kw220ZJ7ISwFj0kNf60I5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:58 2023 by rpki-client on console-fra.rpki-client.org