Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/9yQCKMA2bgDY2VRfwRP6m0ArOus.roa
File: 9yQCKMA2bgDY2VRfwRP6m0ArOus.roa (raw, json)
Hash identifier: Y+YohhxpgyEe2aj9JNEkrdgS6bCLWCGFrsUJ8zfo1zE=
Subject key identifier: F7:24:02:28:C0:36:6E:00:D8:D9:54:5F:C1:13:FA:9B:40:2B:3A:EB
Certificate issuer: /CN=0d7d3c72802223577880d38f048c81891226403b
Certificate serial: 0184D1C41A8330494B2381300019480E6AEF
Authority key identifier: 0D:7D:3C:72:80:22:23:57:78:80:D3:8F:04:8C:81:89:12:26:40:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX08coAiI1d4gNOPBIyBiRImQDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/9yQCKMA2bgDY2VRfwRP6m0ArOus.roa
Signing time: Fri 02 Dec 2022 07:36:40 +0000
ROA not before: Fri 02 Dec 2022 07:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29240
IP address blocks: 193.142.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d1:c4:1a:83:30:49:4b:23:81:30:00:19:48:0e:6a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7d3c72802223577880d38f048c81891226403b
Validity
Not Before: Dec 2 07:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7240228c0366e00d8d9545fc113fa9b402b3aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:03:24:b6:d8:54:53:62:f6:a8:84:33:c9:2e:
ef:de:f3:11:dd:5d:77:cd:1f:0f:ea:bc:cf:78:78:
64:64:c0:59:2c:00:be:04:ac:6d:47:0c:f6:b7:bc:
cc:0a:c1:d9:0a:52:c1:91:7f:ac:34:a0:6a:6f:3e:
0b:fe:80:88:a8:35:94:29:88:76:59:99:c3:ad:b0:
f8:cf:69:25:06:f0:38:fe:c0:01:ea:62:dc:6e:41:
60:7a:0a:73:47:2d:81:46:33:29:f6:b7:ec:ca:72:
bc:2f:9e:d7:d2:7d:9b:70:b5:32:96:d4:d5:7f:35:
e8:db:c8:1e:92:74:e5:47:6a:8d:ea:87:fb:a0:83:
f4:a7:83:19:47:3e:54:50:6e:47:ef:16:b8:a0:32:
e8:45:0e:1c:9e:19:c2:2f:fe:bd:01:f4:97:f2:1b:
75:a8:eb:61:41:28:8f:81:6f:53:57:f2:6b:44:a1:
71:21:d8:95:6e:e4:90:7c:7f:45:57:be:8a:11:f9:
7c:61:7b:69:e5:fa:d6:98:dc:a7:af:fc:13:7d:02:
8c:6b:60:d8:3a:d4:9d:82:d8:0d:37:2f:02:14:d1:
17:af:cc:cb:22:8f:8d:cf:31:fe:3b:4c:38:fa:5d:
19:6a:4b:10:be:38:d1:6c:5f:86:9e:80:4a:ca:a2:
66:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:24:02:28:C0:36:6E:00:D8:D9:54:5F:C1:13:FA:9B:40:2B:3A:EB
X509v3 Authority Key Identifier:
keyid:0D:7D:3C:72:80:22:23:57:78:80:D3:8F:04:8C:81:89:12:26:40:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX08coAiI1d4gNOPBIyBiRImQDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/9yQCKMA2bgDY2VRfwRP6m0ArOus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/DX08coAiI1d4gNOPBIyBiRImQDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.1.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:04:be:d5:5d:4e:8c:4d:d2:82:13:3b:68:4a:54:ab:b8:89:
e1:96:25:7e:67:f3:64:32:c0:5b:eb:53:88:b6:60:9a:88:e1:
32:b7:4b:f0:c4:ee:1c:68:64:83:ad:65:03:1e:fc:a9:8b:83:
35:e6:b9:94:8b:3c:8f:e3:62:c4:df:62:5a:79:54:6a:af:55:
bb:55:63:8d:2f:e3:23:08:d6:94:5a:59:fe:a2:73:ae:84:27:
34:64:c9:44:08:c5:61:6e:2c:20:53:22:9f:87:3b:5f:12:2c:
03:48:a2:e8:3c:41:5a:c2:74:f8:78:19:5d:d9:95:b4:d5:2a:
6b:0f:c6:ec:96:d4:3b:11:95:b4:3c:65:d4:db:88:f9:b2:c5:
4d:94:21:6c:fe:d2:ee:01:09:5b:97:f1:bb:33:3f:e6:f6:77:
1b:2c:63:df:43:0b:25:02:db:a2:1b:7c:f8:d8:29:4b:6d:3f:
2e:0f:d8:67:95:87:3b:31:2e:db:68:9e:6e:ca:4d:06:2f:99:
62:b4:ed:22:a2:54:9b:5c:9d:9a:88:fb:da:a9:31:38:c6:25:
80:db:ca:94:65:4a:91:55:6e:74:0b:d5:82:79:6f:26:2b:20:
ac:28:08:f1:8f:36:f7:17:54:a4:28:90:3c:d2:00:38:07:48:
bf:2b:b4:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTRxBqDMElLI4EwABlIDmrvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkN2QzYzcyODAyMjIzNTc3ODgwZDM4ZjA0OGM4MTg5MTIy
NjQwM2IwHhcNMjIxMjAyMDczNjQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzI0MDIyOGMwMzY2ZTAwZDhkOTU0NWZjMTEzZmE5YjQwMmIzYWViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQMktthUU2L2qIQzyS7v3vMR3V13
zR8P6rzPeHhkZMBZLAC+BKxtRwz2t7zMCsHZClLBkX+sNKBqbz4L/oCIqDWUKYh2
WZnDrbD4z2klBvA4/sAB6mLcbkFgegpzRy2BRjMp9rfsynK8L57X0n2bcLUyltTV
fzXo28geknTlR2qN6of7oIP0p4MZRz5UUG5H7xa4oDLoRQ4cnhnCL/69AfSX8ht1
qOthQSiPgW9TV/JrRKFxIdiVbuSQfH9FV76KEfl8YXtp5frWmNynr/wTfQKMa2DY
OtSdgtgNNy8CFNEXr8zLIo+NzzH+O0w4+l0ZaksQvjjRbF+GnoBKyqJmkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPckAijANm4A2NlUX8ET+ptAKzrrMB8GA1UdIwQY
MBaAFA19PHKAIiNXeIDTjwSMgYkSJkA7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFgwOGNvQWlJMWQ0Z05PUEJJeUJpUkltUURzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80MGU2NTUtYTJhYy00MjUyLTk0Mzct
ODY0ZmRiYzc5NzcwLzEvOXlRQ0tNQTJiZ0RZMlZSZndSUDZtMEFyT3VzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80MGU2NTUtYTJhYy00MjUyLTk0MzctODY0ZmRiYzc5Nzcw
LzEvRFgwOGNvQWlJMWQ0Z05PUEJJeUJpUkltUURzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwY4BMA0G
CSqGSIb3DQEBCwUAA4IBAQBcBL7VXU6MTdKCEztoSlSruInhliV+Z/NkMsBb61OI
tmCaiOEyt0vwxO4caGSDrWUDHvypi4M15rmUizyP42LE32JaeVRqr1W7VWONL+Mj
CNaUWln+onOuhCc0ZMlECMVhbiwgUyKfhztfEiwDSKLoPEFawnT4eBld2ZW01Spr
D8bsltQ7EZW0PGXU24j5ssVNlCFs/tLuAQlbl/G7Mz/m9ncbLGPfQwslAtuiG3z4
2ClLbT8uD9hnlYc7MS7baJ5uyk0GL5litO0iolSbXJ2aiPvaqTE4xiWA28qUZUqR
VW50C9WCeW8mKyCsKAjxjzb3F1SkKJA80gA4B0i/K7Sb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-ams.rpki-client.org