Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e14aad-600d-472c-8259-67503ff7bb4d/1/IGpSNVdyc0iBr1Da8o2Zrk0CQpY.roa
File: IGpSNVdyc0iBr1Da8o2Zrk0CQpY.roa (raw, json)
Hash identifier: BeIlzLIr1TfY+6I4+ohMoW/JYzMvov2hxksDL/ACWJA=
Subject key identifier: 20:6A:52:35:57:72:73:48:81:AF:50:DA:F2:8D:99:AE:4D:02:42:96
Certificate issuer: /CN=fb6a66ebc384d6277aeb8687efc03dff399ab370
Certificate serial: ECA6C0
Authority key identifier: FB:6A:66:EB:C3:84:D6:27:7A:EB:86:87:EF:C0:3D:FF:39:9A:B3:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-2pm68OE1id664aH78A9_zmas3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e14aad-600d-472c-8259-67503ff7bb4d/1/IGpSNVdyc0iBr1Da8o2Zrk0CQpY.roa
Signing time: Sat 01 Jan 2022 04:51:43 +0000
ROA not before: Sat 01 Jan 2022 04:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 193.17.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15509184 (0xeca6c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb6a66ebc384d6277aeb8687efc03dff399ab370
Validity
Not Before: Jan 1 04:51:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=206a52355772734881af50daf28d99ae4d024296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:70:25:df:54:bf:be:a7:5d:ec:7e:64:04:cd:
bf:f8:40:dc:d5:be:6c:21:a0:74:df:a6:28:fc:0b:
01:4e:58:5e:f0:05:17:ee:77:54:41:9f:bd:9e:bc:
c6:07:16:7e:62:f6:02:a2:75:0b:32:f2:40:0d:32:
74:2a:8e:ef:25:96:a8:a8:c0:21:62:68:f5:9c:36:
3c:7c:18:1e:b5:7e:af:3f:34:a1:ae:9a:91:58:c7:
53:2f:bb:93:85:9f:60:f8:91:c6:6b:ed:c5:78:e1:
d6:94:0a:ea:d1:fe:a4:07:d3:99:48:71:99:ca:59:
d1:5c:cf:26:5f:e6:79:f1:bd:3d:19:8b:24:5c:e7:
b3:05:a2:d3:09:3a:00:42:5a:d7:51:20:67:35:b1:
30:ad:fe:a7:96:8b:e9:be:07:e6:bf:46:33:6b:1f:
ad:4e:61:93:db:44:74:c2:c7:b5:7b:37:c6:7b:80:
0b:ba:5e:06:da:53:41:89:59:35:a9:61:48:ca:6a:
26:e7:b9:6e:d7:f0:7d:fc:85:9f:7d:a3:cc:c2:32:
6c:72:bf:be:03:27:42:fb:40:fa:88:5a:32:11:a4:
fd:6f:ef:68:31:33:f3:ee:f0:ed:15:bc:f2:0a:6c:
1b:e6:a6:76:82:34:f0:da:69:48:89:5f:de:19:ad:
09:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6A:52:35:57:72:73:48:81:AF:50:DA:F2:8D:99:AE:4D:02:42:96
X509v3 Authority Key Identifier:
keyid:FB:6A:66:EB:C3:84:D6:27:7A:EB:86:87:EF:C0:3D:FF:39:9A:B3:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-2pm68OE1id664aH78A9_zmas3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e14aad-600d-472c-8259-67503ff7bb4d/1/IGpSNVdyc0iBr1Da8o2Zrk0CQpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e14aad-600d-472c-8259-67503ff7bb4d/1/1-2pm68OE1id664aH78A9_zmas3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.88.0/24
Signature Algorithm: sha256WithRSAEncryption
65:3e:94:a8:99:16:72:6f:06:ab:17:86:21:18:ea:56:1d:15:
f5:bc:f9:8b:18:11:7a:98:3a:22:17:aa:4f:e2:a7:9d:69:54:
a8:fa:15:bf:56:96:c0:af:3a:05:0a:48:37:fb:8b:69:bc:9f:
81:97:f9:05:35:17:a3:8a:dd:89:9f:f3:cd:1e:f5:0f:81:88:
69:0b:d9:0b:8e:ca:38:99:1b:78:e4:8f:50:80:55:2f:3b:38:
a9:28:d2:fb:fd:ab:85:a1:fd:36:fc:f7:04:70:58:b2:5d:79:
ed:7f:5c:d8:60:32:f6:47:89:1d:8f:e3:8a:c4:1f:3f:c6:b4:
d4:f7:49:b8:93:df:20:26:d4:0b:53:f9:71:68:48:c9:3f:2b:
e1:f4:d5:2e:d0:20:6d:14:1c:d0:5b:37:16:ea:8f:77:6c:ff:
4f:3e:1f:6f:81:f9:f3:48:83:7c:fe:68:2e:09:0e:99:1a:86:
60:8e:74:20:f9:f8:cb:a0:b8:ea:31:4e:6e:1f:a2:74:35:53:
10:16:ca:f7:47:b7:b4:93:7c:e5:da:4f:7a:c5:2a:6b:97:d1:
4b:7b:1c:cf:69:c6:2b:d6:34:f8:b7:a1:08:58:d5:eb:6a:69:
96:dc:57:9e:4a:19:17:e3:61:3d:14:6c:2c:d1:fd:ee:57:d3:
51:93:74:c6
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAOymwDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YjZhNjZlYmMzODRkNjI3N2FlYjg2ODdlZmMwM2RmZjM5OWFiMzcwMB4XDTIyMDEw
MTA0NTE0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjA2YTUyMzU1Nzcy
NzM0ODgxYWY1MGRhZjI4ZDk5YWU0ZDAyNDI5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI1wJd9Uv76nXex+ZATNv/hA3NW+bCGgdN+mKPwLAU5YXvAF
F+53VEGfvZ68xgcWfmL2AqJ1CzLyQA0ydCqO7yWWqKjAIWJo9Zw2PHwYHrV+rz80
oa6akVjHUy+7k4WfYPiRxmvtxXjh1pQK6tH+pAfTmUhxmcpZ0VzPJl/mefG9PRmL
JFznswWi0wk6AEJa11EgZzWxMK3+p5aL6b4H5r9GM2sfrU5hk9tEdMLHtXs3xnuA
C7peBtpTQYlZNalhSMpqJue5btfwffyFn32jzMIybHK/vgMnQvtA+ohaMhGk/W/v
aDEz8+7w7RW88gpsG+amdoI08NppSIlf3hmtCWcCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBQgalI1V3JzSIGvUNryjZmuTQJCljAfBgNVHSMEGDAWgBT7ambrw4TWJ3rr
hofvwD3/OZqzcDAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtMnBtNjhPRTFpZDY2NGFINzhBOV96bWFzM0EuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzYwL2UxNGFhZC02MDBkLTQ3MmMtODI1OS02NzUwM2ZmN2JiNGQv
MS9JR3BTTlZkeWMwaUJyMURhOG8yWnJrMENRcFkucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYw
L2UxNGFhZC02MDBkLTQ3MmMtODI1OS02NzUwM2ZmN2JiNGQvMS8xLTJwbTY4T0Ux
aWQ2NjRhSDc4QTlfem1hczNBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRFYMA0GCSqGSIb3DQEBCwUA
A4IBAQBlPpSomRZybwarF4YhGOpWHRX1vPmLGBF6mDoiF6pP4qedaVSo+hW/VpbA
rzoFCkg3+4tpvJ+Bl/kFNRejit2Jn/PNHvUPgYhpC9kLjso4mRt45I9QgFUvOzip
KNL7/auFof02/PcEcFiyXXntf1zYYDL2R4kdj+OKxB8/xrTU90m4k98gJtQLU/lx
aEjJPyvh9NUu0CBtFBzQWzcW6o93bP9PPh9vgfnzSIN8/mguCQ6ZGoZgjnQg+fjL
oLjqMU5uH6J0NVMQFsr3R7e0k3zl2k96xSprl9FLexzPacYr1jT4t6EIWNXrammW
3FeeShkX42E9FGws0f3uV9NRk3TG
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:39 2023 by rpki-client on console-ams.rpki-client.org