Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/4e0201-4a04-415f-a5f2-f21b66de9b56/1/xWN3XcqP1F5DU7xRowHgyROthPs.roa
File: xWN3XcqP1F5DU7xRowHgyROthPs.roa (raw, json)
Hash identifier: 5X52PIcPu6558J+sOb8vDiV+AZU6kvD74peAv05IoVY=
Subject key identifier: C5:63:77:5D:CA:8F:D4:5E:43:53:BC:51:A3:01:E0:C9:13:AD:84:FB
Certificate issuer: /CN=84d1dc613d74e6c32dcb9814ce126bd61b52aaa7
Certificate serial: 068F88DD
Authority key identifier: 84:D1:DC:61:3D:74:E6:C3:2D:CB:98:14:CE:12:6B:D6:1B:52:AA:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNHcYT105sMty5gUzhJr1htSqqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/4e0201-4a04-415f-a5f2-f21b66de9b56/1/xWN3XcqP1F5DU7xRowHgyROthPs.roa
Signing time: Sat 01 Jan 2022 02:57:45 +0000
ROA not before: Sat 01 Jan 2022 02:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 193.247.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110069981 (0x68f88dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d1dc613d74e6c32dcb9814ce126bd61b52aaa7
Validity
Not Before: Jan 1 02:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c563775dca8fd45e4353bc51a301e0c913ad84fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8a:9a:82:36:19:42:08:a8:81:27:72:af:88:
1a:09:a8:d3:00:4f:b3:55:d8:d5:34:47:0c:60:61:
38:36:ef:e9:9e:96:c2:57:2d:f6:8c:9f:5c:a6:8b:
fe:e2:f6:d4:9d:7e:1a:e2:d4:94:4f:d3:ac:52:e4:
28:55:33:bf:f3:88:91:5e:d2:6b:89:7a:99:ce:cc:
82:c2:93:8b:49:92:de:d9:36:65:8e:b3:18:6e:0a:
bc:cb:fe:e5:ae:65:9d:a8:90:b7:63:21:91:d1:55:
75:cc:03:2a:53:57:e4:12:67:3c:68:28:64:ca:00:
75:d4:a6:44:78:fa:52:c8:80:37:37:db:ff:12:ca:
cf:92:95:b1:9b:6b:59:6e:3d:78:8e:b7:a5:31:eb:
55:5d:dd:3b:d7:26:58:36:d2:54:01:db:f7:1d:fa:
9f:30:21:7e:e1:b9:b5:d6:f3:f0:fa:20:bb:95:28:
f5:15:f4:63:e6:f0:57:a0:54:fc:b8:52:f9:d5:21:
0f:f0:52:c0:1f:bc:c8:09:de:da:eb:61:cc:02:66:
d0:10:a6:02:a0:70:d8:2e:17:bf:64:c6:e5:60:88:
69:df:e2:fc:0f:fd:4a:f1:7b:ed:6e:b7:2e:63:23:
0b:90:f1:44:cd:b7:90:36:97:56:0e:84:8e:ab:c8:
ff:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:63:77:5D:CA:8F:D4:5E:43:53:BC:51:A3:01:E0:C9:13:AD:84:FB
X509v3 Authority Key Identifier:
keyid:84:D1:DC:61:3D:74:E6:C3:2D:CB:98:14:CE:12:6B:D6:1B:52:AA:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNHcYT105sMty5gUzhJr1htSqqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/4e0201-4a04-415f-a5f2-f21b66de9b56/1/xWN3XcqP1F5DU7xRowHgyROthPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/4e0201-4a04-415f-a5f2-f21b66de9b56/1/hNHcYT105sMty5gUzhJr1htSqqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.248.0/23
Signature Algorithm: sha256WithRSAEncryption
48:1b:47:76:29:99:6a:bc:0d:08:cd:0e:92:8d:a3:fb:fc:51:
d6:d3:a0:7c:5d:97:3b:b6:1c:d5:4b:c2:24:9a:07:e0:0c:62:
58:df:eb:a0:6b:ae:46:5d:7d:6b:f7:05:35:94:19:aa:ef:e7:
66:e1:ae:44:0b:c2:50:4a:f0:52:70:76:4d:4d:52:3a:77:3f:
99:46:83:a1:f6:5f:f7:13:86:72:e5:4f:37:56:45:ae:cd:94:
0e:e7:59:5e:f1:5d:71:af:0d:eb:94:bf:6f:e4:46:66:2b:71:
f2:bf:1d:06:5b:d5:bd:b5:f2:9f:c1:6e:5b:6b:0d:92:31:42:
a8:a4:a3:bc:38:31:66:36:59:c7:29:64:d0:e0:c2:50:5f:f7:
65:69:7d:5c:d4:28:a5:55:ab:4b:07:d8:55:e1:2a:e7:fe:2a:
eb:07:cb:5f:df:ad:e3:c4:e6:d2:09:5d:10:25:24:87:a0:65:
3e:8e:87:de:3b:c3:a4:69:55:09:a5:ef:a8:ee:cc:ea:73:b5:
0a:c8:4a:5c:70:e8:45:88:fc:23:9d:0f:52:ba:35:18:49:a3:
1b:b0:ad:79:b1:9a:80:e5:f9:51:bc:3d:5e:46:02:4a:cf:c4:
18:43:a1:e6:d6:2c:71:4c:cc:52:cb:45:08:47:d1:2b:2f:47:
33:60:69:d6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBo+I3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGQxZGM2MTNkNzRlNmMzMmRjYjk4MTRjZTEyNmJkNjFiNTJhYWE3MB4XDTIyMDEw
MTAyNTc0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzU2Mzc3NWRjYThm
ZDQ1ZTQzNTNiYzUxYTMwMWUwYzkxM2FkODRmYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJuKmoI2GUIIqIEncq+IGgmo0wBPs1XY1TRHDGBhODbv6Z6W
wlct9oyfXKaL/uL21J1+GuLUlE/TrFLkKFUzv/OIkV7Sa4l6mc7MgsKTi0mS3tk2
ZY6zGG4KvMv+5a5lnaiQt2MhkdFVdcwDKlNX5BJnPGgoZMoAddSmRHj6UsiANzfb
/xLKz5KVsZtrWW49eI63pTHrVV3dO9cmWDbSVAHb9x36nzAhfuG5tdbz8Pogu5Uo
9RX0Y+bwV6BU/LhS+dUhD/BSwB+8yAne2uthzAJm0BCmAqBw2C4Xv2TG5WCIad/i
/A/9SvF77W63LmMjC5DxRM23kDaXVg6EjqvI/70CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTFY3ddyo/UXkNTvFGjAeDJE62E+zAfBgNVHSMEGDAWgBSE0dxhPXTmwy3L
mBTOEmvWG1KqpzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hOSGNZVDEwNXNNdHk1Z1V6aEpyMWh0U3FxYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmMvNGUwMjAxLTRhMDQtNDE1Zi1hNWYyLWYyMWI2NmRlOWI1Ni8x
L3hXTjNYY3FQMUY1RFU3eFJvd0hneVJPdGhQcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmMv
NGUwMjAxLTRhMDQtNDE1Zi1hNWYyLWYyMWI2NmRlOWI1Ni8xL2hOSGNZVDEwNXNN
dHk1Z1V6aEpyMWh0U3FxYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcH3+DANBgkqhkiG9w0BAQsFAAOC
AQEASBtHdimZarwNCM0Oko2j+/xR1tOgfF2XO7Yc1UvCJJoH4AxiWN/roGuuRl19
a/cFNZQZqu/nZuGuRAvCUErwUnB2TU1SOnc/mUaDofZf9xOGcuVPN1ZFrs2UDudZ
XvFdca8N65S/b+RGZitx8r8dBlvVvbXyn8FuW2sNkjFCqKSjvDgxZjZZxylk0ODC
UF/3ZWl9XNQopVWrSwfYVeEq5/4q6wfLX9+t48Tm0gldECUkh6BlPo6H3jvDpGlV
CaXvqO7M6nO1CshKXHDoRYj8I50PUro1GEmjG7CtebGagOX5Ubw9XkYCSs/EGEOh
5tYscUzMUstFCEfRKy9HM2Bp1g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:59 2024 by rpki-client on console-fra.rpki-client.org