Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/sxamqKE2eKPIW0ANePZ0VTOA7PM.roa
File: sxamqKE2eKPIW0ANePZ0VTOA7PM.roa (raw, json)
Hash identifier: UcK7npRWIKd9/0AKjjaYP1cD1fOkxUKk7l9azcnf9JI=
Subject key identifier: B3:16:A6:A8:A1:36:78:A3:C8:5B:40:0D:78:F6:74:55:33:80:EC:F3
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35A25D6E
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/sxamqKE2eKPIW0ANePZ0VTOA7PM.roa
Signing time: Sat 01 Jan 2022 08:54:55 +0000
ROA not before: Sat 01 Jan 2022 08:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44899
IP address blocks: 193.110.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 899833198 (0x35a25d6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b316a6a8a13678a3c85b400d78f674553380ecf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:44:9e:a8:cc:c0:78:94:78:7a:89:43:56:f6:
29:d1:b5:51:30:d2:2e:59:46:51:a5:20:41:77:92:
04:24:ac:c9:ff:57:57:15:31:ba:86:35:fe:04:3b:
d7:05:e1:6d:6e:3a:62:6f:63:45:b6:33:f4:60:38:
d0:bb:17:a5:03:ee:88:3c:0e:5b:70:4e:f8:da:ff:
2e:f6:45:5c:06:27:36:ad:0b:2f:68:df:46:fa:72:
a6:53:ae:a5:9f:8a:b3:3a:ba:c2:52:1f:eb:63:5f:
eb:dd:cf:83:a7:b2:ec:38:2f:07:26:cb:71:6d:3b:
b8:6f:bf:25:66:60:75:dd:ba:62:69:96:6b:a7:33:
ff:6c:5f:ed:f6:06:a6:e1:c7:dc:c0:f4:29:b6:8e:
a9:0d:ad:a5:dc:93:e6:ec:f5:01:a8:75:1d:96:af:
fe:b7:b2:ac:83:31:f7:41:18:43:ec:35:25:48:2b:
c8:89:1f:c1:3f:36:d9:ce:23:2f:75:da:75:5e:b6:
47:1f:b5:43:e5:61:0a:00:3d:40:ff:63:8d:27:5e:
e8:dc:d9:10:07:ee:b5:e5:d7:ed:70:37:af:9f:a1:
a1:e2:62:f0:da:dc:76:5e:94:66:aa:2e:bb:63:07:
39:89:be:28:7f:81:c0:23:cb:ec:05:b2:17:46:e0:
06:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:16:A6:A8:A1:36:78:A3:C8:5B:40:0D:78:F6:74:55:33:80:EC:F3
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/sxamqKE2eKPIW0ANePZ0VTOA7PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.236.0/22
Signature Algorithm: sha256WithRSAEncryption
00:57:99:94:57:88:21:12:a8:6f:6d:30:a2:50:54:90:b2:27:
0f:99:02:ee:ec:6f:65:b9:ac:53:c2:54:5c:e0:a2:aa:44:3e:
1b:6b:ec:3d:8b:77:06:a2:6e:f2:36:66:35:32:ac:a7:31:2b:
76:d1:a2:58:d0:d2:23:7e:07:df:b9:a1:a3:2d:87:8a:a4:37:
8e:3c:4c:81:88:ec:9b:6e:4c:6a:77:10:d6:4b:40:dd:ca:6d:
6b:4e:b7:91:8d:43:ec:ad:b5:42:7b:95:b0:4b:33:82:9c:99:
be:4b:eb:37:96:dc:72:0e:c0:8b:71:e7:ff:d3:15:db:30:5e:
50:ef:15:1a:f2:25:f5:e5:06:e3:62:32:78:cc:68:4b:fa:0c:
13:fe:7c:21:ba:63:60:02:ee:76:25:2e:bf:dc:78:01:85:e7:
d7:4f:c0:b5:44:a4:2b:ef:f5:3f:8b:d0:e8:d3:97:38:4a:59:
85:f4:f8:c7:f6:d6:d7:75:0a:60:2f:6a:57:dd:02:e7:fa:f4:
2d:6c:ed:30:39:d3:37:3f:98:4c:a2:5a:a4:2f:5f:42:3d:3b:
43:d9:7c:89:ac:a2:18:e5:df:b8:3b:02:5c:6a:6b:11:bc:c8:
00:07:05:02:06:33:f0:81:18:a8:a6:58:a7:99:51:9f:2b:70:
79:53:2a:79
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENaJdbjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZWJhNDhjN2UyYzllMDVlZGE1NDZkODk5MTQ2Yjg5Zjc5OWRmODVkMB4XDTIyMDEw
MTA4NTQ1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjMxNmE2YThhMTM2
NzhhM2M4NWI0MDBkNzhmNjc0NTUzMzgwZWNmMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIxEnqjMwHiUeHqJQ1b2KdG1UTDSLllGUaUgQXeSBCSsyf9X
VxUxuoY1/gQ71wXhbW46Ym9jRbYz9GA40LsXpQPuiDwOW3BO+Nr/LvZFXAYnNq0L
L2jfRvpyplOupZ+Kszq6wlIf62Nf693Pg6ey7DgvBybLcW07uG+/JWZgdd26YmmW
a6cz/2xf7fYGpuHH3MD0KbaOqQ2tpdyT5uz1Aah1HZav/reyrIMx90EYQ+w1JUgr
yIkfwT822c4jL3XadV62Rx+1Q+VhCgA9QP9jjSde6NzZEAfuteXX7XA3r5+hoeJi
8Nrcdl6UZqouu2MHOYm+KH+BwCPL7AWyF0bgBjUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSzFqaooTZ4o8hbQA149nRVM4Ds8zAfBgNVHSMEGDAWgBS+ukjH4sngXtpU
bYmRRrifeZ34XTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZycEl4LUxKNEY3YVZHMkprVWE0bjNtZC1GMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvN2Y4ODIxLTE1NjYtNDNmNC1hYjI2LTNkNTIyMTgxYTJjNC8x
L3N4YW1xS0UyZUtQSVcwQU5lUFowVlRPQTdQTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
N2Y4ODIxLTE1NjYtNDNmNC1hYjI2LTNkNTIyMTgxYTJjNC8xL3ZycEl4LUxKNEY3
YVZHMkprVWE0bjNtZC1GMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsFu7DANBgkqhkiG9w0BAQsFAAOC
AQEAAFeZlFeIIRKob20wolBUkLInD5kC7uxvZbmsU8JUXOCiqkQ+G2vsPYt3BqJu
8jZmNTKspzErdtGiWNDSI34H37mhoy2HiqQ3jjxMgYjsm25MancQ1ktA3cpta063
kY1D7K21QnuVsEszgpyZvkvrN5bccg7Ai3Hn/9MV2zBeUO8VGvIl9eUG42IyeMxo
S/oME/58IbpjYALudiUuv9x4AYXn10/AtUSkK+/1P4vQ6NOXOEpZhfT4x/bW13UK
YC9qV90C5/r0LWztMDnTNz+YTKJapC9fQj07Q9l8iayiGOXfuDsCXGprEbzIAAcF
AgYz8IEYqKZYp5lRnytweVMqeQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:07 2024 by rpki-client on console-fra.rpki-client.org