Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b05268-8d18-4521-abb6-4b29e9dc74c5/1/nTCc2T7KaS1zGL5CN8GglRar8nU.roa
File: nTCc2T7KaS1zGL5CN8GglRar8nU.roa (raw, json)
Hash identifier: 95nyXhtp5Nm0Gro7D9jgg7NXKihAKeAX1WLLu+a1uLs=
Subject key identifier: 9D:30:9C:D9:3E:CA:69:2D:73:18:BE:42:37:C1:A0:95:16:AB:F2:75
Certificate issuer: /CN=6b4aa1e3d8cf43a36b41bbb25dc8fa2ba71c3584
Certificate serial: 1293C709
Authority key identifier: 6B:4A:A1:E3:D8:CF:43:A3:6B:41:BB:B2:5D:C8:FA:2B:A7:1C:35:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0qh49jPQ6NrQbuyXcj6K6ccNYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b05268-8d18-4521-abb6-4b29e9dc74c5/1/nTCc2T7KaS1zGL5CN8GglRar8nU.roa
Signing time: Sat 01 Jan 2022 06:55:23 +0000
ROA not before: Sat 01 Jan 2022 06:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16075
IP address blocks: 193.104.220.0/24 maxlen: 24
2001:67c:13c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311674633 (0x1293c709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b4aa1e3d8cf43a36b41bbb25dc8fa2ba71c3584
Validity
Not Before: Jan 1 06:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d309cd93eca692d7318be4237c1a09516abf275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d6:aa:49:2b:72:cb:57:db:d8:9d:c0:a7:50:
17:89:c3:21:21:52:71:1e:11:45:55:11:fc:ff:11:
a7:7b:b5:81:3b:15:22:b7:8c:09:84:ca:ac:78:21:
c3:86:e5:e9:9e:ec:94:b2:33:c8:a9:8e:3b:13:2f:
3b:e9:1f:f7:3c:09:f3:cc:0f:84:b5:2a:de:07:b4:
66:f0:c4:91:19:e9:bf:d5:6f:47:cf:e7:8b:59:56:
25:b8:6e:77:2a:13:c2:c7:76:bd:34:d6:f5:0c:4a:
89:c1:80:53:73:53:45:14:2f:87:19:fc:8c:86:1d:
5c:ac:5e:2e:17:30:26:5c:4d:d0:a4:53:9b:f7:6d:
77:dc:9b:61:9f:63:c2:eb:23:31:55:2f:05:51:ac:
81:65:19:6e:5a:7b:13:e6:1f:6e:6d:e3:cf:0d:0d:
88:8b:28:6a:e6:3f:d5:f5:0a:59:6f:c1:d2:da:96:
76:c5:36:56:98:51:bf:fb:5b:af:c6:85:ed:b7:90:
f6:6a:3c:20:17:5b:9e:24:98:2c:11:48:fe:b6:0c:
9e:9b:49:d4:8b:16:2f:90:61:ac:4c:3b:e9:a8:c7:
13:0d:25:47:98:0c:b5:98:f5:7a:65:25:f8:25:b4:
c3:ca:9e:01:45:51:82:58:94:6f:de:b8:12:c3:d2:
3e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:30:9C:D9:3E:CA:69:2D:73:18:BE:42:37:C1:A0:95:16:AB:F2:75
X509v3 Authority Key Identifier:
keyid:6B:4A:A1:E3:D8:CF:43:A3:6B:41:BB:B2:5D:C8:FA:2B:A7:1C:35:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0qh49jPQ6NrQbuyXcj6K6ccNYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b05268-8d18-4521-abb6-4b29e9dc74c5/1/nTCc2T7KaS1zGL5CN8GglRar8nU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b05268-8d18-4521-abb6-4b29e9dc74c5/1/a0qh49jPQ6NrQbuyXcj6K6ccNYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.220.0/24
IPv6:
2001:67c:13c::/48
Signature Algorithm: sha256WithRSAEncryption
40:0d:e9:fd:ee:47:e6:77:60:51:94:ad:4a:19:7e:98:78:c2:
40:a9:6f:be:42:5a:71:19:a8:80:b6:b6:c4:f3:40:b2:eb:56:
9d:45:ce:65:c5:4b:04:15:37:e9:fe:c5:63:e7:53:dd:42:f3:
8c:80:b0:d0:83:67:76:f0:57:e7:df:4e:07:00:41:20:4a:f4:
f9:ed:7e:ae:f8:7e:81:af:cb:58:d1:90:f3:11:30:ed:78:8b:
33:60:ee:03:5e:58:ab:b5:c8:03:61:a4:26:4d:ab:a9:10:a5:
34:97:30:40:d6:e8:77:61:c3:e0:50:be:29:8d:40:96:5b:ac:
aa:4e:b7:7a:fb:ff:ad:42:bb:e2:38:da:a9:be:00:1e:10:2d:
b3:a5:07:ba:8d:7d:6d:d9:db:8e:e6:0f:d7:cc:c3:4d:a4:de:
7b:87:64:de:26:bb:4a:c7:ff:d1:34:00:c7:59:b1:62:1b:7f:
02:b8:1a:92:69:01:11:07:c6:08:16:96:96:5e:3b:67:f3:fd:
91:32:4f:cb:f5:74:87:4f:1d:a9:93:66:7d:6d:0b:90:ae:2a:
84:9c:6b:4a:94:aa:80:02:a6:db:e9:83:16:91:91:ce:33:4f:
fe:2e:20:46:0b:79:db:b1:72:f1:ce:67:63:7f:e6:5f:fd:09:
f0:59:08:3e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEEpPHCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YjRhYTFlM2Q4Y2Y0M2EzNmI0MWJiYjI1ZGM4ZmEyYmE3MWMzNTg0MB4XDTIyMDEw
MTA2NTUyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWQzMDljZDkzZWNh
NjkyZDczMThiZTQyMzdjMWEwOTUxNmFiZjI3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKrWqkkrcstX29idwKdQF4nDISFScR4RRVUR/P8Rp3u1gTsV
IreMCYTKrHghw4bl6Z7slLIzyKmOOxMvO+kf9zwJ88wPhLUq3ge0ZvDEkRnpv9Vv
R8/ni1lWJbhudyoTwsd2vTTW9QxKicGAU3NTRRQvhxn8jIYdXKxeLhcwJlxN0KRT
m/dtd9ybYZ9jwusjMVUvBVGsgWUZblp7E+Yfbm3jzw0NiIsoauY/1fUKWW/B0tqW
dsU2VphRv/tbr8aF7beQ9mo8IBdbniSYLBFI/rYMnptJ1IsWL5BhrEw76ajHEw0l
R5gMtZj1emUl+CW0w8qeAUVRgliUb964EsPSPrkCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSdMJzZPsppLXMYvkI3waCVFqvydTAfBgNVHSMEGDAWgBRrSqHj2M9Do2tB
u7JdyPorpxw1hDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2EwcWg0OWpQUTZOclFidXlYY2o2SzZjY05ZUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzcvYjA1MjY4LThkMTgtNDUyMS1hYmI2LTRiMjllOWRjNzRjNS8x
L25UQ2MyVDdLYVMxekdMNUNOOEdnbFJhcjhuVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcv
YjA1MjY4LThkMTgtNDUyMS1hYmI2LTRiMjllOWRjNzRjNS8xL2EwcWg0OWpQUTZO
clFidXlYY2o2SzZjY05ZUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMFo3DAPBAIAAjAJAwcAIAEGfAE8
MA0GCSqGSIb3DQEBCwUAA4IBAQBADen97kfmd2BRlK1KGX6YeMJAqW++QlpxGaiA
trbE80Cy61adRc5lxUsEFTfp/sVj51PdQvOMgLDQg2d28Ffn304HAEEgSvT57X6u
+H6Br8tY0ZDzETDteIszYO4DXlirtcgDYaQmTaupEKU0lzBA1uh3YcPgUL4pjUCW
W6yqTrd6+/+tQrviONqpvgAeEC2zpQe6jX1t2duO5g/XzMNNpN57h2TeJrtKx//R
NADHWbFiG38CuBqSaQERB8YIFpaWXjtn8/2RMk/L9XSHTx2pk2Z9bQuQriqEnGtK
lKqAAqbb6YMWkZHOM0/+LiBGC3nbsXLxzmdjf+Zf/QnwWQg+
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-ams.rpki-client.org