Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/frQmQ_UI6lZU9W8mzEvIbEhn0qg.roa
File: frQmQ_UI6lZU9W8mzEvIbEhn0qg.roa (raw, json)
Hash identifier: HWvSOph0V+27RYeYlPKfnBzeqSQYlpjj+7YwKtW3yx4=
Subject key identifier: 7E:B4:26:43:F5:08:EA:56:54:F5:6F:26:CC:4B:C8:6C:48:67:D2:A8
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 0185710C0DC3CE8E14BB9A207924F3CB8983
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/frQmQ_UI6lZU9W8mzEvIbEhn0qg.roa
Signing time: Mon 02 Jan 2023 05:54:53 +0000
ROA not before: Mon 02 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58010
IP address blocks: 193.56.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:0d:c3:ce:8e:14:bb:9a:20:79:24:f3:cb:89:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Jan 2 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7eb42643f508ea5654f56f26cc4bc86c4867d2a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d6:aa:76:85:2f:43:dd:36:75:41:8f:a7:e3:
31:a3:1a:95:f5:a5:e5:b0:1e:e4:16:83:d3:fa:e6:
05:e8:4a:6a:2e:42:d5:7b:f0:e2:3a:a9:51:2d:e5:
7f:b7:52:2d:e1:4e:9e:4d:51:18:27:6d:40:d6:7f:
84:24:74:a4:a1:c6:3b:c1:c3:2b:e8:c3:35:c7:f7:
55:70:d2:2f:e5:92:f3:63:13:d3:26:00:05:63:fc:
d1:99:09:d6:56:8a:e9:70:80:75:f8:74:79:35:94:
3b:8b:7a:ea:b1:ba:11:86:86:b3:1b:4e:35:5d:fa:
ec:32:1e:c8:07:bc:86:55:e8:b8:ec:d9:b5:04:81:
06:7e:99:b5:ef:a3:97:e6:f5:3d:22:bf:bf:2a:7f:
de:93:b6:98:60:84:2e:f3:6e:65:c2:30:f4:28:32:
bf:62:f4:a5:57:bc:ae:75:88:0a:15:0b:b1:4f:c9:
61:16:4d:8b:f6:44:85:f1:40:de:80:64:0a:0a:39:
60:57:26:dd:89:4f:9a:a2:9e:47:ae:6f:dc:d2:72:
28:f7:7c:2a:15:1f:a3:a1:c9:a5:f7:e0:d3:79:14:
e3:f6:f5:fc:8b:18:37:11:df:bc:75:2b:d6:2a:60:
bf:53:49:37:d0:64:fc:7f:40:45:20:62:04:14:dd:
03:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B4:26:43:F5:08:EA:56:54:F5:6F:26:CC:4B:C8:6C:48:67:D2:A8
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/frQmQ_UI6lZU9W8mzEvIbEhn0qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.173.0/24
Signature Algorithm: sha256WithRSAEncryption
40:b0:ea:31:9f:f6:c8:7e:01:da:c9:c5:39:64:b6:fa:13:c8:
e6:10:fc:35:19:c2:54:08:bc:4a:c2:72:66:61:4a:06:dd:00:
89:dc:69:43:cb:11:33:8c:13:87:90:cf:7a:d8:a4:39:57:59:
dc:8f:ec:1a:1c:ff:f9:df:d9:40:45:e0:53:c3:bd:07:cd:69:
e6:53:d5:ec:83:c7:7a:14:66:10:f9:7d:1c:45:45:b2:b2:75:
0c:ae:69:b7:9f:8d:a4:e2:85:dc:67:44:59:4c:37:73:59:90:
6b:06:a2:2d:5e:4e:25:12:03:3f:63:60:ab:30:46:04:ca:8f:
22:1e:32:c8:ce:f3:78:14:ba:a4:99:dd:39:e4:36:f5:1d:e1:
d2:a8:66:24:65:ff:84:3a:8a:65:cd:42:90:bf:c5:b7:53:1c:
ef:e7:56:3d:69:f0:4e:b7:53:0c:56:27:13:6a:d4:f5:c2:cc:
15:2c:52:40:b2:47:3a:be:37:64:9a:62:e1:b8:d9:d9:90:d5:
91:ee:46:f0:0c:7a:af:b5:2f:3c:2c:7b:f1:6e:04:6c:da:99:
37:b6:c2:52:4a:96:70:75:c5:c5:14:45:ee:30:b8:56:74:c5:
aa:9b:9e:fc:86:21:ae:ab:bb:fb:e6:6d:ed:69:63:ff:76:d6:
c1:4e:e6:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxDA3Dzo4Uu5ogeSTzy4mDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZDE4MTk2YjI5ZjYwZTg1ZDg3MTJkZTQwMzlhNTMxY2Zj
MWFiMzEwHhcNMjMwMTAyMDU1NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZWI0MjY0M2Y1MDhlYTU2NTRmNTZmMjZjYzRiYzg2YzQ4NjdkMmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdaqdoUvQ902dUGPp+MxoxqV9aXl
sB7kFoPT+uYF6EpqLkLVe/DiOqlRLeV/t1It4U6eTVEYJ21A1n+EJHSkocY7wcMr
6MM1x/dVcNIv5ZLzYxPTJgAFY/zRmQnWVorpcIB1+HR5NZQ7i3rqsboRhoazG041
XfrsMh7IB7yGVei47Nm1BIEGfpm176OX5vU9Ir+/Kn/ek7aYYIQu825lwjD0KDK/
YvSlV7yudYgKFQuxT8lhFk2L9kSF8UDegGQKCjlgVybdiU+aop5Hrm/c0nIo93wq
FR+jocml9+DTeRTj9vX8ixg3Ed+8dSvWKmC/U0k30GT8f0BFIGIEFN0DuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH60JkP1COpWVPVvJsxLyGxIZ9KoMB8GA1UdIwQY
MBaAFFDRgZayn2DoXYcS3kA5pTHPwasxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU5HQmxyS2ZZT2hkaHhMZVFEbWxNY19CcXpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9jYmVjZjQtYmNlZC00ZDgzLWJmY2Et
YjRhMTgxY2Q0MGY2LzEvZnJRbVFfVUk2bFpVOVc4bXpFdkliRWhuMHFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9jYmVjZjQtYmNlZC00ZDgzLWJmY2EtYjRhMTgxY2Q0MGY2
LzEvVU5HQmxyS2ZZT2hkaHhMZVFEbWxNY19CcXpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTitMA0G
CSqGSIb3DQEBCwUAA4IBAQBAsOoxn/bIfgHaycU5ZLb6E8jmEPw1GcJUCLxKwnJm
YUoG3QCJ3GlDyxEzjBOHkM962KQ5V1ncj+waHP/539lAReBTw70HzWnmU9Xsg8d6
FGYQ+X0cRUWysnUMrmm3n42k4oXcZ0RZTDdzWZBrBqItXk4lEgM/Y2CrMEYEyo8i
HjLIzvN4FLqkmd055Db1HeHSqGYkZf+EOoplzUKQv8W3Uxzv51Y9afBOt1MMVicT
atT1wswVLFJAskc6vjdkmmLhuNnZkNWR7kbwDHqvtS88LHvxbgRs2pk3tsJSSpZw
dcXFFEXuMLhWdMWqm578hiGuq7v75m3taWP/dtbBTuY7
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:45 2025 by rpki-client