Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/bxpiY9Sc0hAuQcWi644BbkyPXrY.roa
File: bxpiY9Sc0hAuQcWi644BbkyPXrY.roa (raw, json)
Hash identifier: HkOhvMv5R4zoe14Sxe3EFykp1kTsnZU+dE/BNvosi1A=
Subject key identifier: 6F:1A:62:63:D4:9C:D2:10:2E:41:C5:A2:EB:8E:01:6E:4C:8F:5E:B6
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 05D9DCA2
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/bxpiY9Sc0hAuQcWi644BbkyPXrY.roa
Signing time: Sat 01 Jan 2022 11:02:54 +0000
ROA not before: Sat 01 Jan 2022 11:02:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 194.35.38.0/23 maxlen: 23
93.191.173.0/24 maxlen: 24
2a02:2370:fe::/47 maxlen: 48
2a0b:35c0::/29 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98163874 (0x5d9dca2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 11:02:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f1a6263d49cd2102e41c5a2eb8e016e4c8f5eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b5:b7:e8:cf:66:96:ae:80:e8:b3:42:fa:53:
83:98:16:1f:7e:52:d1:90:11:1a:84:20:2c:a8:fc:
75:a9:50:f5:29:8f:a3:89:07:07:c2:77:77:98:81:
4e:40:60:59:e4:40:08:6c:d8:24:14:51:42:77:15:
80:05:1c:da:ac:9d:71:e1:9d:90:b4:d0:a4:aa:76:
a7:d5:eb:9c:3f:e4:09:17:04:df:35:b0:f6:ea:4c:
69:4a:f1:cf:2f:34:b3:c9:ac:bf:dd:97:7e:af:25:
4b:da:b5:03:ef:ee:c0:ed:0a:98:b1:05:bc:d8:b4:
06:b0:d1:ab:5b:57:7d:c9:96:d8:39:47:bf:c4:cf:
b3:3a:6a:a4:60:70:48:0d:a9:f8:62:f7:10:ad:97:
d8:be:dc:30:ef:52:f5:52:9a:7a:ff:21:b4:93:6f:
7e:5f:9b:4f:90:b8:d9:bc:e8:79:cc:1b:db:87:9f:
cb:19:85:2f:e6:78:8c:b7:b4:91:c4:db:d5:e0:91:
6b:55:27:bf:77:55:56:58:a2:81:08:a6:3f:97:30:
fa:f6:d9:4b:dd:e5:bc:21:a3:bf:d8:c8:83:e4:8e:
20:cd:1d:f5:06:df:34:25:e6:be:2d:bf:d4:da:19:
9c:4d:c3:c3:60:13:cc:75:18:a8:1b:b7:07:5e:81:
18:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1A:62:63:D4:9C:D2:10:2E:41:C5:A2:EB:8E:01:6E:4C:8F:5E:B6
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/bxpiY9Sc0hAuQcWi644BbkyPXrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.173.0/24
194.35.38.0/23
IPv6:
2a02:2370:fe::/47
2a0b:35c0::/29
Signature Algorithm: sha256WithRSAEncryption
48:fc:7b:e2:26:51:58:4d:96:31:28:c0:68:32:8e:7b:64:ae:
d4:60:22:dd:ff:f9:bb:ac:88:1e:43:1b:ea:61:63:7a:8f:7c:
72:0c:37:63:a7:62:d7:a7:e4:d8:b8:cc:b7:73:4b:eb:c1:7d:
4b:5f:40:10:5d:c4:88:d0:8b:35:27:e2:3d:8f:ee:fa:9d:49:
32:26:e8:33:42:28:b5:44:33:60:df:af:8e:c0:87:aa:80:03:
4d:ec:cb:d0:7d:62:c5:59:c6:cf:21:c7:55:ae:db:58:48:4d:
5b:70:96:44:81:80:f1:04:8d:1b:af:e7:47:0c:61:5b:0f:c7:
c6:cf:57:0c:38:2e:43:21:2d:6c:9b:4c:2a:6e:90:8b:d5:12:
90:9a:a9:9e:a5:f4:c6:de:64:40:97:a7:52:d2:ba:0c:bf:ff:
a5:db:d5:95:91:f6:58:b2:29:c2:de:a9:68:a6:9b:82:a3:d9:
36:a1:3f:86:0b:91:da:dc:f3:cc:d1:fe:7a:20:de:c9:ee:e5:
bb:74:1f:17:00:c8:06:45:32:ec:2c:7e:7e:27:04:c4:11:fc:
d5:0a:e8:bc:91:ee:c3:7e:89:09:88:4c:f4:f7:6a:2f:26:04:
79:f2:ac:75:bb:72:53:ac:57:ba:7c:f4:a0:20:c9:1b:cd:ab:
f0:a9:68:d3
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgIEBdncojANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YjVmY2JiZWE0ODkzN2E0NDJiYWJkYjMzMDIxMzJjNGJjOWJkNmFhMB4XDTIyMDEw
MTExMDI1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmYxYTYyNjNkNDlj
ZDIxMDJlNDFjNWEyZWI4ZTAxNmU0YzhmNWViNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMq1t+jPZpaugOizQvpTg5gWH35S0ZARGoQgLKj8dalQ9SmP
o4kHB8J3d5iBTkBgWeRACGzYJBRRQncVgAUc2qydceGdkLTQpKp2p9XrnD/kCRcE
3zWw9upMaUrxzy80s8msv92Xfq8lS9q1A+/uwO0KmLEFvNi0BrDRq1tXfcmW2DlH
v8TPszpqpGBwSA2p+GL3EK2X2L7cMO9S9VKaev8htJNvfl+bT5C42bzoecwb24ef
yxmFL+Z4jLe0kcTb1eCRa1Unv3dVVliigQimP5cw+vbZS93lvCGjv9jIg+SOIM0d
9QbfNCXmvi2/1NoZnE3Dw2ATzHUYqBu3B16BGAECAwEAAaOCAicwggIjMB0GA1Ud
DgQWBBRvGmJj1JzSEC5BxaLrjgFuTI9etjAfBgNVHSMEGDAWgBRrX8u+pIk3pEK6
vbMwITLEvJvWqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ExX0x2cVNKTjZSQ3VyMnpNQ0V5eEx5YjFxby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvMDQyMTg4LWRmYjYtNGFkNC05MWE0LTg4ZDFjYWM5ZTRmMS8x
L2J4cGlZOVNjMGhBdVFjV2k2NDRCYmt5UFhyWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
MDQyMTg4LWRmYjYtNGFkNC05MWE0LTg4ZDFjYWM5ZTRmMS8xL2ExX0x2cVNKTjZS
Q3VyMnpNQ0V5eEx5YjFxby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA9
BggrBgEFBQcBBwEB/wQuMCwwEgQCAAEwDAMEAF2/rQMEAcIjJjAWBAIAAjAQAwcB
KgIjcAD+AwUDKgs1wDANBgkqhkiG9w0BAQsFAAOCAQEASPx74iZRWE2WMSjAaDKO
e2Su1GAi3f/5u6yIHkMb6mFjeo98cgw3Y6di16fk2LjMt3NL68F9S19AEF3EiNCL
NSfiPY/u+p1JMiboM0IotUQzYN+vjsCHqoADTezL0H1ixVnGzyHHVa7bWEhNW3CW
RIGA8QSNG6/nRwxhWw/Hxs9XDDguQyEtbJtMKm6Qi9USkJqpnqX0xt5kQJenUtK6
DL//pdvVlZH2WLIpwt6paKabgqPZNqE/hguR2tzzzNH+eiDeye7lu3QfFwDIBkUy
7Cx+ficExBH81QrovJHuw36JCYhM9PdqLyYEefKsdbtyU6xXunz0oCDJG82r8Klo
0w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:23 2023 by rpki-client on console-ams.rpki-client.org