Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/_-2UXKK1nEFJofMMXlmVPExYfTk.roa
File: _-2UXKK1nEFJofMMXlmVPExYfTk.roa (raw, json)
Hash identifier: acVYT4SvK8hexHa3CAzRjeu0aEVhfNHNMq1qHlOIOmQ=
Subject key identifier: FF:ED:94:5C:A2:B5:9C:41:49:A1:F3:0C:5E:59:95:3C:4C:58:7D:39
Certificate issuer: /CN=cd0cc7fd8898b0f7df4b9df0b99319bcb29ec243
Certificate serial: 09925941
Authority key identifier: CD:0C:C7:FD:88:98:B0:F7:DF:4B:9D:F0:B9:93:19:BC:B2:9E:C2:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQzH_YiYsPffS53wuZMZvLKewkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/_-2UXKK1nEFJofMMXlmVPExYfTk.roa
Signing time: Sat 01 Jan 2022 02:56:02 +0000
ROA not before: Sat 01 Jan 2022 02:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39748
IP address blocks: 193.93.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160586049 (0x9925941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0cc7fd8898b0f7df4b9df0b99319bcb29ec243
Validity
Not Before: Jan 1 02:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffed945ca2b59c4149a1f30c5e59953c4c587d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3d:a3:a4:f0:32:49:07:42:10:ab:10:ad:d1:
f3:1a:11:70:96:63:de:d5:2c:cf:84:e9:4f:28:af:
92:a0:47:c0:f0:96:97:19:de:69:ff:a0:32:36:f7:
a4:91:f3:44:ad:1b:fb:68:dd:10:e7:24:81:72:5e:
a6:7b:8e:d4:0f:71:67:80:79:f5:1a:12:f7:63:61:
02:38:5d:fc:66:24:c0:64:ea:f4:1a:19:df:ff:7d:
dc:ca:71:e4:9e:bb:83:bb:74:74:d4:0f:93:cd:bc:
91:48:22:46:57:88:ff:62:cd:5d:6f:37:eb:86:9a:
83:6f:ed:17:bb:7c:20:6f:c0:97:ab:e1:d8:0f:54:
6e:9f:02:eb:1e:a2:a5:56:fb:b1:29:49:04:56:4e:
d8:7b:80:8c:cb:ab:54:8a:ee:6d:75:f4:0d:e5:0b:
db:1a:cd:c8:de:46:da:2c:0b:1e:47:5a:53:21:76:
3c:eb:b7:33:c8:a9:d0:8c:13:06:bd:b4:e9:74:89:
8c:d1:5d:db:5e:73:aa:3d:e2:c7:6d:12:8a:20:17:
60:9c:2d:8e:d3:3f:e3:4d:0c:0c:27:b4:78:2f:e8:
aa:f6:05:9b:00:d0:55:a3:c6:c4:e7:cc:50:41:e1:
b0:a0:aa:14:f9:52:06:31:4b:5a:48:67:ad:58:08:
0b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:ED:94:5C:A2:B5:9C:41:49:A1:F3:0C:5E:59:95:3C:4C:58:7D:39
X509v3 Authority Key Identifier:
keyid:CD:0C:C7:FD:88:98:B0:F7:DF:4B:9D:F0:B9:93:19:BC:B2:9E:C2:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQzH_YiYsPffS53wuZMZvLKewkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/_-2UXKK1nEFJofMMXlmVPExYfTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/zQzH_YiYsPffS53wuZMZvLKewkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.188.0/22
Signature Algorithm: sha256WithRSAEncryption
62:63:af:1e:cb:ba:99:da:88:03:65:2b:81:8e:06:00:dd:a7:
79:83:2e:42:50:d6:7b:f3:49:15:81:41:f4:9f:46:29:1e:c6:
4c:cf:db:26:34:48:2a:40:c3:24:ba:b2:08:55:14:54:e8:ba:
15:e7:cb:3f:db:e5:f4:f3:ac:5e:c0:a9:91:d7:fc:bd:f9:2d:
9d:14:1a:f9:4a:16:66:d1:6d:16:c7:12:bf:53:50:3c:67:21:
7a:3a:c1:36:c1:44:82:78:ce:8b:d7:31:d8:4f:72:29:cd:82:
c6:9e:ea:e8:4c:a6:ef:1c:1e:06:0d:27:76:00:2f:69:c2:4d:
cd:f2:50:d8:dd:8c:8a:0d:ee:20:1f:20:58:cb:a1:cc:6e:6e:
e5:e2:38:e7:49:a5:9e:12:c8:ee:28:a3:bf:2c:c6:8c:d7:32:
2c:9e:5f:8f:64:d9:d7:c7:c9:3c:f0:cb:5c:34:42:e6:cf:4e:
fa:c1:09:90:b2:df:4c:e1:09:c4:49:b1:e5:29:e7:b6:96:38:
50:f1:9b:97:7c:f2:c0:cf:fe:fd:b2:83:4f:c3:42:45:54:da:
ce:89:0b:b5:e0:d5:16:a9:da:21:13:8d:08:80:af:01:b0:13:
7d:8f:50:e8:8b:45:ec:ac:50:35:8d:2a:67:e7:45:d4:76:c2:
ad:a2:5c:e1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECZJZQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDBjYzdmZDg4OThiMGY3ZGY0YjlkZjBiOTkzMTliY2IyOWVjMjQzMB4XDTIyMDEw
MTAyNTYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmZlZDk0NWNhMmI1
OWM0MTQ5YTFmMzBjNWU1OTk1M2M0YzU4N2QzOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJo9o6TwMkkHQhCrEK3R8xoRcJZj3tUsz4TpTyivkqBHwPCW
lxneaf+gMjb3pJHzRK0b+2jdEOckgXJepnuO1A9xZ4B59RoS92NhAjhd/GYkwGTq
9BoZ3/993Mpx5J67g7t0dNQPk828kUgiRleI/2LNXW8364aag2/tF7t8IG/Al6vh
2A9Ubp8C6x6ipVb7sSlJBFZO2HuAjMurVIrubXX0DeUL2xrNyN5G2iwLHkdaUyF2
POu3M8ip0IwTBr206XSJjNFd215zqj3ix20SiiAXYJwtjtM/400MDCe0eC/oqvYF
mwDQVaPGxOfMUEHhsKCqFPlSBjFLWkhnrVgIC78CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT/7ZRcorWcQUmh8wxeWZU8TFh9OTAfBgNVHSMEGDAWgBTNDMf9iJiw999L
nfC5kxm8sp7CQzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pRekhfWWlZc1BmZlM1M3d1Wk1adkxLZXdrTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvMjk5ZmU3LTlhYjctNDczYS1iNjJhLWFiMDYzOTM4ZjFjZS8x
L18tMlVYS0sxbkVGSm9mTU1YbG1WUEV4WWZUay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
Mjk5ZmU3LTlhYjctNDczYS1iNjJhLWFiMDYzOTM4ZjFjZS8xL3pRekhfWWlZc1Bm
ZlM1M3d1Wk1adkxLZXdrTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsFdvDANBgkqhkiG9w0BAQsFAAOC
AQEAYmOvHsu6mdqIA2UrgY4GAN2neYMuQlDWe/NJFYFB9J9GKR7GTM/bJjRIKkDD
JLqyCFUUVOi6FefLP9vl9POsXsCpkdf8vfktnRQa+UoWZtFtFscSv1NQPGchejrB
NsFEgnjOi9cx2E9yKc2Cxp7q6Eym7xweBg0ndgAvacJNzfJQ2N2Mig3uIB8gWMuh
zG5u5eI450mlnhLI7iijvyzGjNcyLJ5fj2TZ18fJPPDLXDRC5s9O+sEJkLLfTOEJ
xEmx5SnntpY4UPGbl3zywM/+/bKDT8NCRVTazokLteDVFqnaIRONCICvAbATfY9Q
6ItF7KxQNY0qZ+dF1HbCraJc4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:21 2024 by rpki-client on console-ams.rpki-client.org