Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/OOXA-oZlKp-8uPq_YYVtHL0RC8Y.roa
File: OOXA-oZlKp-8uPq_YYVtHL0RC8Y.roa (raw, json)
Hash identifier: x+79zyLrJ2+BFy+YQ61cEH3/0TGJfkqucDpLJDvO3Fk=
Subject key identifier: 38:E5:C0:FA:86:65:2A:9F:BC:B8:FA:BF:61:85:6D:1C:BD:11:0B:C6
Certificate issuer: /CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Certificate serial: 14F41432
Authority key identifier: 31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/OOXA-oZlKp-8uPq_YYVtHL0RC8Y.roa
Signing time: Sat 01 Jan 2022 14:07:40 +0000
ROA not before: Sat 01 Jan 2022 14:07:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 193.176.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351540274 (0x14f41432)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Validity
Not Before: Jan 1 14:07:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38e5c0fa86652a9fbcb8fabf61856d1cbd110bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:09:a8:e8:89:7f:83:e0:6d:b6:41:7f:2d:4a:
0d:bd:d9:62:81:30:ed:aa:d4:84:8e:e0:10:b1:0a:
aa:ba:b1:5d:e0:cf:e6:8f:a6:16:be:54:2e:19:9c:
2a:c0:32:f6:5e:54:22:1c:80:8e:d0:13:7d:b7:94:
14:88:20:be:6b:3f:49:d4:8a:04:a3:da:e9:1b:98:
40:e3:77:f9:89:f0:7f:f3:ea:83:43:c9:dc:e8:3b:
71:47:37:1c:2b:df:53:7c:a2:31:2d:2a:8a:97:48:
af:81:a0:b5:c0:07:3c:c5:d9:df:ba:7f:a3:e9:52:
86:28:a7:e3:41:ad:b1:b7:6d:27:7d:11:7d:f9:3a:
8e:42:6b:ef:d7:34:37:63:7c:c5:a1:18:5a:69:d5:
bc:59:a8:c3:32:68:2c:80:73:1a:ba:12:be:05:3f:
65:98:23:67:ec:7e:3c:c4:73:63:a0:9c:c4:4c:99:
69:6f:f8:c0:68:cf:03:58:c3:7e:0f:ec:be:28:52:
9d:29:5f:6a:a4:f2:16:17:07:da:8a:5e:2a:e8:07:
44:8d:72:57:fa:c6:d0:64:db:64:86:da:e3:48:a3:
57:95:67:22:9a:9a:bc:66:8b:09:7c:ca:bb:0c:dd:
86:70:3e:a3:51:7d:de:67:7d:8d:28:e3:3b:b6:20:
14:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E5:C0:FA:86:65:2A:9F:BC:B8:FA:BF:61:85:6D:1C:BD:11:0B:C6
X509v3 Authority Key Identifier:
keyid:31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/OOXA-oZlKp-8uPq_YYVtHL0RC8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:04:18:65:4a:e9:83:b6:d8:aa:24:67:1f:41:c7:7d:9a:b7:
9d:73:61:df:6f:f2:80:a0:e7:4a:b6:c0:bd:99:65:80:52:ea:
eb:54:6e:03:b4:22:32:54:ef:a8:1e:54:11:33:93:fb:b5:41:
fa:c2:12:f7:2e:8d:7a:ff:e7:c0:1e:4a:98:6d:43:b9:a2:ad:
9f:31:68:04:d9:81:d8:dc:82:a3:bd:01:c4:ae:9a:e3:19:13:
fb:31:7a:13:94:8f:8a:6c:a1:4b:f0:f3:6a:da:75:52:fc:bf:
69:21:6f:69:9c:1d:d9:d4:10:f2:00:57:38:d5:5f:41:11:cd:
b7:db:74:e6:75:6b:9b:18:ed:15:61:65:da:b2:5a:ce:19:0c:
b3:01:40:bd:95:99:2d:b8:4e:a8:88:e1:42:d7:61:26:7f:4b:
e9:92:2d:fc:55:b1:09:1f:17:11:09:16:13:0a:8a:1a:5e:f8:
6c:6e:59:63:55:3f:aa:b1:1b:3c:8a:cb:d8:fd:40:6e:d6:84:
59:6b:4f:c2:f4:d7:e4:25:1c:e8:b8:6e:b0:40:64:a5:79:98:
4a:98:5b:db:12:f6:66:86:9a:1e:42:ff:93:29:d2:6d:ae:75:
2d:6d:87:5a:ef:c0:a3:02:6a:5e:ad:5e:f4:f7:ab:51:bf:d6:
1a:9e:e7:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFPQUMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MTE3ZmQyMjdlOWRjZTk3ODA1YzAzZTVmMzMwMDJhZWExOGMzN2RkMB4XDTIyMDEw
MTE0MDc0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzhlNWMwZmE4NjY1
MmE5ZmJjYjhmYWJmNjE4NTZkMWNiZDExMGJjNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANAJqOiJf4PgbbZBfy1KDb3ZYoEw7arUhI7gELEKqrqxXeDP
5o+mFr5ULhmcKsAy9l5UIhyAjtATfbeUFIggvms/SdSKBKPa6RuYQON3+Ynwf/Pq
g0PJ3Og7cUc3HCvfU3yiMS0qipdIr4GgtcAHPMXZ37p/o+lShiin40GtsbdtJ30R
ffk6jkJr79c0N2N8xaEYWmnVvFmowzJoLIBzGroSvgU/ZZgjZ+x+PMRzY6CcxEyZ
aW/4wGjPA1jDfg/svihSnSlfaqTyFhcH2opeKugHRI1yV/rG0GTbZIba40ijV5Vn
IpqavGaLCXzKuwzdhnA+o1F93md9jSjjO7YgFNkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ45cD6hmUqn7y4+r9hhW0cvRELxjAfBgNVHSMEGDAWgBQxF/0ifp3Ol4Bc
A+XzMAKuoYw33TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01SZjlJbjZkenBlQVhBUGw4ekFDcnFHTU45MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmEvOWY2MjMzLTc4MmEtNDE0MC1iNTAwLTk5NzE5MDdhOTVhNy8x
L09PWEEtb1psS3AtOHVQcV9ZWVZ0SEwwUkM4WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEv
OWY2MjMzLTc4MmEtNDE0MC1iNTAwLTk5NzE5MDdhOTVhNy8xL01SZjlJbjZkenBl
QVhBUGw4ekFDcnFHTU45MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGw6zANBgkqhkiG9w0BAQsFAAOC
AQEAoQQYZUrpg7bYqiRnH0HHfZq3nXNh32/ygKDnSrbAvZllgFLq61RuA7QiMlTv
qB5UETOT+7VB+sIS9y6Nev/nwB5KmG1DuaKtnzFoBNmB2NyCo70BxK6a4xkT+zF6
E5SPimyhS/Dzatp1Uvy/aSFvaZwd2dQQ8gBXONVfQRHNt9t05nVrmxjtFWFl2rJa
zhkMswFAvZWZLbhOqIjhQtdhJn9L6ZIt/FWxCR8XEQkWEwqKGl74bG5ZY1U/qrEb
PIrL2P1AbtaEWWtPwvTX5CUc6LhusEBkpXmYSphb2xL2ZoaaHkL/kynSba51LW2H
Wu/AowJqXq1e9PerUb/WGp7nUw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:06 2023 by rpki-client on console-ams.rpki-client.org