Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/18a2fd-15f5-43e6-b786-c6d9f915bd8b/1/w7KTksGC7gfPqEPeq1HJwPgmaHQ.roa
File: w7KTksGC7gfPqEPeq1HJwPgmaHQ.roa (raw, json)
Hash identifier: t2srT+AveawYEOiZocuf/+MlcQFm8WHhaGP4yU1GLfQ=
Subject key identifier: C3:B2:93:92:C1:82:EE:07:CF:A8:43:DE:AB:51:C9:C0:F8:26:68:74
Certificate issuer: /CN=494a8565276b4a251ba573dd6d5f5f878238ebd2
Certificate serial: 027D4408
Authority key identifier: 49:4A:85:65:27:6B:4A:25:1B:A5:73:DD:6D:5F:5F:87:82:38:EB:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SUqFZSdrSiUbpXPdbV9fh4I469I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/18a2fd-15f5-43e6-b786-c6d9f915bd8b/1/w7KTksGC7gfPqEPeq1HJwPgmaHQ.roa
Signing time: Sat 01 Jan 2022 12:54:23 +0000
ROA not before: Sat 01 Jan 2022 12:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211607
IP address blocks: 193.3.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41763848 (0x27d4408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494a8565276b4a251ba573dd6d5f5f878238ebd2
Validity
Not Before: Jan 1 12:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3b29392c182ee07cfa843deab51c9c0f8266874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d0:d4:35:c8:22:8b:1e:b0:12:cc:cb:52:0e:
b2:d5:10:31:3c:2a:70:95:20:91:7b:d6:1b:4b:ed:
d9:2a:64:f1:a4:7d:2f:c7:d0:ee:8e:b9:91:b9:de:
dd:68:eb:79:73:48:de:2a:a1:14:05:4a:95:fb:3c:
71:1c:19:7d:7e:f8:02:d7:99:8d:b2:a7:b3:33:0f:
c7:d1:f5:3a:27:b9:8f:33:c9:9e:39:35:80:d0:fd:
f5:d0:2b:ba:19:99:b8:75:92:c1:8e:49:e6:cf:eb:
e6:ae:1c:36:32:f5:ca:f1:31:7c:67:aa:7a:08:b8:
fd:ac:b9:01:e9:7f:44:b4:54:9e:55:c8:94:89:1d:
6c:f2:84:0c:d7:41:68:10:27:32:a2:f9:99:75:b9:
76:4a:d7:b1:cd:46:16:b9:8d:29:3f:24:c6:f9:93:
9a:88:b3:d3:ee:3d:2d:cb:95:70:fd:4c:64:fe:85:
40:f2:00:24:d5:9f:a1:34:71:a8:0b:9a:2e:a9:de:
3f:64:34:81:96:f8:e5:08:47:28:b7:2f:12:d7:aa:
6b:b1:c2:64:60:62:a8:4f:70:4d:a8:e0:e4:bd:1e:
ca:d7:c8:7e:fe:24:bc:2e:c7:89:c4:00:94:be:84:
aa:74:7d:30:58:db:b6:c3:bd:bf:6e:92:43:e5:11:
bd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B2:93:92:C1:82:EE:07:CF:A8:43:DE:AB:51:C9:C0:F8:26:68:74
X509v3 Authority Key Identifier:
keyid:49:4A:85:65:27:6B:4A:25:1B:A5:73:DD:6D:5F:5F:87:82:38:EB:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SUqFZSdrSiUbpXPdbV9fh4I469I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/18a2fd-15f5-43e6-b786-c6d9f915bd8b/1/w7KTksGC7gfPqEPeq1HJwPgmaHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/18a2fd-15f5-43e6-b786-c6d9f915bd8b/1/SUqFZSdrSiUbpXPdbV9fh4I469I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.53.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c4:11:ce:5b:b8:a5:97:81:3b:a3:c0:a8:ee:23:35:df:43:
7b:94:bd:04:8a:0f:77:7d:58:80:0b:be:72:11:e7:15:1a:e0:
be:7b:98:1c:7c:01:8f:85:bf:91:7e:1f:30:7d:90:ed:17:23:
5a:88:11:28:0e:de:1f:2b:b9:e2:28:51:c9:f8:76:3f:f9:13:
11:5c:a3:bb:89:c7:a0:bb:54:b4:91:ca:6b:81:3f:b3:f3:8f:
a7:1d:06:28:86:38:7e:da:b8:b1:4a:28:96:de:9c:96:9c:2c:
45:9f:4e:3a:b7:cd:1e:55:87:3c:62:a0:9f:81:99:3c:48:36:
5a:55:ed:4b:db:41:2d:51:53:2e:86:fe:a3:5a:ce:c7:a9:76:
06:5d:81:60:fa:0c:55:7f:a9:e5:99:58:56:2b:8e:6b:c5:45:
3c:9d:05:a5:25:6e:f5:b0:2b:1a:20:c2:5e:5b:d4:fd:ee:a4:
0f:4b:4b:66:62:9d:f3:c8:1d:59:3f:3c:2b:a6:b2:b8:51:4a:
3e:a6:8a:fe:91:76:cc:19:a8:df:3f:33:6d:5d:52:7d:5b:3b:
22:de:9f:c5:99:1f:d3:21:a1:d3:45:96:0a:ef:c7:4e:22:70:
da:bc:d5:4a:bb:e5:cd:5f:3c:08:fa:62:71:48:f8:cd:98:49:
5f:99:28:91
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAn1ECDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OTRhODU2NTI3NmI0YTI1MWJhNTczZGQ2ZDVmNWY4NzgyMzhlYmQyMB4XDTIyMDEw
MTEyNTQyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzNiMjkzOTJjMTgy
ZWUwN2NmYTg0M2RlYWI1MWM5YzBmODI2Njg3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN/Q1DXIIosesBLMy1IOstUQMTwqcJUgkXvWG0vt2Spk8aR9
L8fQ7o65kbne3WjreXNI3iqhFAVKlfs8cRwZfX74AteZjbKnszMPx9H1Oie5jzPJ
njk1gND99dAruhmZuHWSwY5J5s/r5q4cNjL1yvExfGeqegi4/ay5Ael/RLRUnlXI
lIkdbPKEDNdBaBAnMqL5mXW5dkrXsc1GFrmNKT8kxvmTmoiz0+49LcuVcP1MZP6F
QPIAJNWfoTRxqAuaLqneP2Q0gZb45QhHKLcvEteqa7HCZGBiqE9wTajg5L0eytfI
fv4kvC7HicQAlL6EqnR9MFjbtsO9v26SQ+URvTsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTDspOSwYLuB8+oQ96rUcnA+CZodDAfBgNVHSMEGDAWgBRJSoVlJ2tKJRul
c91tX1+Hgjjr0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NVcUZaU2RyU2lVYnBYUGRiVjlmaDRJNDY5SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzYvMThhMmZkLTE1ZjUtNDNlNi1iNzg2LWM2ZDlmOTE1YmQ4Yi8x
L3c3S1Rrc0dDN2dmUHFFUGVxMUhKd1BnbWFIUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYv
MThhMmZkLTE1ZjUtNDNlNi1iNzg2LWM2ZDlmOTE1YmQ4Yi8xL1NVcUZaU2RyU2lV
YnBYUGRiVjlmaDRJNDY5SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEDNTANBgkqhkiG9w0BAQsFAAOC
AQEAQMQRzlu4pZeBO6PAqO4jNd9De5S9BIoPd31YgAu+chHnFRrgvnuYHHwBj4W/
kX4fMH2Q7RcjWogRKA7eHyu54ihRyfh2P/kTEVyju4nHoLtUtJHKa4E/s/OPpx0G
KIY4ftq4sUoolt6clpwsRZ9OOrfNHlWHPGKgn4GZPEg2WlXtS9tBLVFTLob+o1rO
x6l2Bl2BYPoMVX+p5ZlYViuOa8VFPJ0FpSVu9bArGiDCXlvU/e6kD0tLZmKd88gd
WT88K6ayuFFKPqaK/pF2zBmo3z8zbV1SfVs7It6fxZkf0yGh00WWCu/HTiJw2rzV
SrvlzV88CPpicUj4zZhJX5kokQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:04 2023 by rpki-client on console-fra.rpki-client.org