Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/90QVBcHfeTn8kKMyo8T2U7EAevc.roa
File: 90QVBcHfeTn8kKMyo8T2U7EAevc.roa (raw, json)
Hash identifier: D3jYfAW3AF7vjy7PmE6FBVZhssjwiBkrkjd6uoqws8k=
Subject key identifier: F7:44:15:05:C1:DF:79:39:FC:90:A3:32:A3:C4:F6:53:B1:00:7A:F7
Certificate issuer: /CN=f353c73f1fbf4bfb46d06750e25660cda1d801b1
Certificate serial: 018B2A32DC95861477AD4BBACDD657D8E601
Authority key identifier: F3:53:C7:3F:1F:BF:4B:FB:46:D0:67:50:E2:56:60:CD:A1:D8:01:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81PHPx-_S_tG0GdQ4lZgzaHYAbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/90QVBcHfeTn8kKMyo8T2U7EAevc.roa
Signing time: Fri 13 Oct 2023 18:00:58 +0000
ROA not before: Fri 13 Oct 2023 18:00:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 193.162.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2a:32:dc:95:86:14:77:ad:4b:ba:cd:d6:57:d8:e6:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f353c73f1fbf4bfb46d06750e25660cda1d801b1
Validity
Not Before: Oct 13 18:00:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7441505c1df7939fc90a332a3c4f653b1007af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c4:fb:6f:dc:db:ff:9e:2a:c5:58:ef:17:9b:
5c:3e:8a:13:c9:f1:8d:bd:58:b1:2c:93:e7:30:5c:
8a:f6:a5:15:00:0a:2c:a2:b3:3d:79:70:f1:34:51:
14:ce:a6:f6:c7:7d:f8:29:ea:44:9f:a6:f5:4e:cb:
05:0a:e8:9b:b4:af:23:f6:9b:ab:d0:8b:d8:04:e3:
76:d5:4c:8b:90:80:d2:be:1a:9d:7a:58:63:9b:cb:
cd:e8:dc:cc:87:ba:54:4a:4a:7f:bb:2e:25:7e:49:
72:52:95:ee:ac:f6:97:50:7a:4b:67:0f:ec:39:16:
1c:0e:39:8b:ad:1d:13:d0:69:aa:2e:54:97:ac:e8:
75:4f:9c:1a:bc:f3:b7:78:66:a9:57:a1:7d:94:96:
cc:05:20:d0:e4:f8:ab:75:9e:df:50:c3:45:f1:ee:
7a:97:06:88:16:7c:37:14:9c:77:b6:9d:84:69:99:
c1:19:0e:51:d1:1f:0d:fc:c7:28:a5:47:24:4f:e3:
1a:c4:c2:1a:a8:93:8f:8b:c4:05:44:1f:94:85:47:
bf:fe:61:57:8c:18:fa:c0:26:77:02:b4:95:96:85:
a1:2b:1b:e7:e5:cd:25:6e:29:0f:9c:3e:69:a3:25:
8d:0c:c8:73:d3:60:2d:c9:cd:97:65:b7:0a:5b:e7:
ce:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:44:15:05:C1:DF:79:39:FC:90:A3:32:A3:C4:F6:53:B1:00:7A:F7
X509v3 Authority Key Identifier:
keyid:F3:53:C7:3F:1F:BF:4B:FB:46:D0:67:50:E2:56:60:CD:A1:D8:01:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81PHPx-_S_tG0GdQ4lZgzaHYAbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/90QVBcHfeTn8kKMyo8T2U7EAevc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/31a837-952b-4341-bf6c-5e13ff3ef3e9/1/81PHPx-_S_tG0GdQ4lZgzaHYAbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.35.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4d:7c:0c:0f:f9:a2:05:47:0c:ff:db:9a:85:45:82:31:40:
e5:aa:dd:72:86:17:5b:6a:aa:34:f9:f6:91:a0:66:3c:b2:2e:
4f:90:6e:8a:35:64:38:23:eb:b0:8b:c8:1c:4b:cc:bc:0f:d8:
0c:f2:62:36:06:08:47:7a:35:da:6a:c8:50:50:5d:3d:fd:84:
73:6d:0a:43:fd:1e:86:c5:f2:9e:5f:c6:67:79:af:e6:51:77:
e8:6f:56:4b:e6:77:f7:01:84:61:cb:35:bf:2e:7b:a1:b0:ee:
1e:59:b1:ef:39:19:75:0a:07:6c:94:c8:6d:5b:58:5c:29:68:
d3:f9:b4:87:e4:52:4a:22:42:ff:48:36:ed:4f:63:6b:26:a1:
04:de:6c:a0:14:8a:85:dd:29:52:de:d0:e5:d6:d1:b8:c2:05:
fa:93:e8:2d:50:8c:d5:13:01:c0:2c:f3:8b:fe:f6:22:33:d9:
6b:76:2a:96:5c:8b:af:c2:60:0a:9d:78:5f:3f:57:e0:1d:ef:
de:a8:82:bc:f4:ea:d2:a9:27:93:c8:24:ff:63:1a:e4:cf:fd:
9d:f1:45:ed:e8:64:0e:c0:9d:83:0a:9c:cd:da:c0:a3:88:1b:
9d:0a:d3:09:04:e3:9d:6b:41:80:15:6f:42:7b:e9:ea:1c:67:
0e:01:0b:c0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsqMtyVhhR3rUu6zdZX2OYBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzNTNjNzNmMWZiZjRiZmI0NmQwNjc1MGUyNTY2MGNkYTFk
ODAxYjEwHhcNMjMxMDEzMTgwMDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzQ0MTUwNWMxZGY3OTM5ZmM5MGEzMzJhM2M0ZjY1M2IxMDA3YWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8T7b9zb/54qxVjvF5tcPooTyfGN
vVixLJPnMFyK9qUVAAosorM9eXDxNFEUzqb2x334KepEn6b1TssFCuibtK8j9pur
0IvYBON21UyLkIDSvhqdelhjm8vN6NzMh7pUSkp/uy4lfklyUpXurPaXUHpLZw/s
ORYcDjmLrR0T0GmqLlSXrOh1T5wavPO3eGapV6F9lJbMBSDQ5PirdZ7fUMNF8e56
lwaIFnw3FJx3tp2EaZnBGQ5R0R8N/McopUckT+MaxMIaqJOPi8QFRB+UhUe//mFX
jBj6wCZ3ArSVloWhKxvn5c0lbikPnD5poyWNDMhz02Atyc2XZbcKW+fOvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPdEFQXB33k5/JCjMqPE9lOxAHr3MB8GA1UdIwQY
MBaAFPNTxz8fv0v7RtBnUOJWYM2h2AGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvODFQSFB4LV9TX3RHMEdkUTRsWmd6YUhZQWJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy8zMWE4MzctOTUyYi00MzQxLWJmNmMt
NWUxM2ZmM2VmM2U5LzEvOTBRVkJjSGZlVG44a0tNeW84VDJVN0VBZXZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy8zMWE4MzctOTUyYi00MzQxLWJmNmMtNWUxM2ZmM2VmM2U5
LzEvODFQSFB4LV9TX3RHMEdkUTRsWmd6YUhZQWJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaIjMA0G
CSqGSIb3DQEBCwUAA4IBAQAYTXwMD/miBUcM/9uahUWCMUDlqt1yhhdbaqo0+faR
oGY8si5PkG6KNWQ4I+uwi8gcS8y8D9gM8mI2BghHejXaashQUF09/YRzbQpD/R6G
xfKeX8Znea/mUXfob1ZL5nf3AYRhyzW/LnuhsO4eWbHvORl1CgdslMhtW1hcKWjT
+bSH5FJKIkL/SDbtT2NrJqEE3mygFIqF3SlS3tDl1tG4wgX6k+gtUIzVEwHALPOL
/vYiM9lrdiqWXIuvwmAKnXhfP1fgHe/eqIK89OrSqSeTyCT/Yxrkz/2d8UXt6GQO
wJ2DCpzN2sCjiBudCtMJBOOda0GAFW9Ce+nqHGcOAQvA
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:14 2025 by rpki-client