Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/41Ktp8zqj9rou2t390sRwKgz6GU.roa
File: 41Ktp8zqj9rou2t390sRwKgz6GU.roa (raw, json)
Hash identifier: l2FwJ27r8cODYuPPi4RrK8FaBOo/iTzXjuI5/8KKxZM=
Subject key identifier: E3:52:AD:A7:CC:EA:8F:DA:E8:BB:6B:77:F7:4B:11:C0:A8:33:E8:65
Certificate issuer: /CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Certificate serial: 016BC165
Authority key identifier: 80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/41Ktp8zqj9rou2t390sRwKgz6GU.roa
Signing time: Sat 01 Jan 2022 04:58:00 +0000
ROA not before: Sat 01 Jan 2022 04:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209732
IP address blocks: 193.151.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23839077 (0x16bc165)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Validity
Not Before: Jan 1 04:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e352ada7ccea8fdae8bb6b77f74b11c0a833e865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6f:83:f4:3b:bf:86:54:c2:8f:56:69:75:64:
ed:e9:ae:42:1b:d1:93:d8:ee:e4:8f:64:fa:d6:8b:
a4:90:e6:0e:14:d1:d0:e4:40:6d:c4:4a:d4:46:a9:
69:10:3a:f3:d0:e3:7d:6d:87:a7:18:e6:57:5b:3a:
7a:6f:ff:71:61:68:5f:3d:8c:ed:12:03:8f:72:7c:
88:f8:a1:1e:de:f6:ac:4f:0a:24:52:6b:53:ca:a8:
da:a1:c3:bf:cd:2f:4d:aa:1a:19:bc:e6:65:b9:fb:
fb:75:ec:2d:a9:c1:a8:9f:a2:79:99:99:35:90:8f:
fd:31:1c:99:cd:36:19:b7:15:92:66:b5:ed:a1:1b:
5f:dd:57:76:8a:99:57:b3:53:43:f8:e3:e1:a5:dc:
77:82:a2:8e:9b:3f:44:c6:45:0c:13:f1:ce:ae:18:
72:b3:bc:fc:a0:c9:b4:41:07:c9:ae:b2:61:6b:67:
78:d1:dc:75:70:5b:44:b1:9a:a3:2c:95:e0:97:b0:
26:39:b2:99:13:cf:37:7d:5a:55:be:3c:a7:87:5e:
bf:dd:9c:f6:cd:3c:ec:2f:05:c2:e8:96:4e:c0:52:
05:00:2b:35:be:29:07:6e:c1:96:6c:7d:b5:d0:57:
c8:54:d7:17:bd:7b:17:7b:86:46:4d:07:5e:66:93:
74:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:52:AD:A7:CC:EA:8F:DA:E8:BB:6B:77:F7:4B:11:C0:A8:33:E8:65
X509v3 Authority Key Identifier:
keyid:80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/41Ktp8zqj9rou2t390sRwKgz6GU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/gOSEhc6bDkJWQIBO3A7SumuPS48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.165.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:8c:3b:b4:f1:45:3f:19:5b:3e:57:a9:90:96:d1:94:55:99:
75:10:07:3c:c5:f2:fe:57:1f:e4:df:b5:86:52:1e:3a:5a:d1:
a4:cd:27:c1:33:80:a2:01:44:2c:e1:e1:4e:e4:44:4d:6b:04:
36:e9:e6:99:71:4f:37:f4:39:e1:ba:a6:98:57:75:36:4e:8c:
7c:0b:64:8e:6b:95:d8:2e:86:9c:0c:7b:13:dd:05:25:6b:00:
5c:3b:89:32:fa:af:39:2a:d0:ce:c9:2d:be:d4:7d:f1:65:72:
cb:d6:13:ef:57:e4:cf:d3:7b:ba:cb:da:4e:a4:3d:dd:82:24:
42:ad:6d:fc:b5:52:bf:95:3b:b4:41:c4:eb:b9:5c:fe:4d:df:
f8:39:35:5f:3c:8c:fb:9c:75:27:6f:f3:e4:78:63:ae:44:ef:
1a:83:f6:2d:25:03:6a:d4:e5:4c:4d:f1:d2:5f:2f:a5:5d:52:
28:00:38:47:d7:2e:cf:68:53:a1:37:18:f4:4f:31:d4:fb:96:
e1:31:91:11:07:83:95:e1:aa:06:14:8b:82:7c:ae:72:86:c5:
33:1b:6a:2c:f7:a6:3d:7f:4b:2e:ff:27:4f:3b:49:0f:43:fa:
a5:af:30:78:fd:08:26:90:4e:7f:a2:c2:27:bc:dd:49:f5:01:
8c:ab:07:4f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAWvBZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MGU0ODQ4NWNlOWIwZTQyNTY0MDgwNGVkYzBlZDJiYTZiOGY0YjhmMB4XDTIyMDEw
MTA0NTgwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTM1MmFkYTdjY2Vh
OGZkYWU4YmI2Yjc3Zjc0YjExYzBhODMzZTg2NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALJvg/Q7v4ZUwo9WaXVk7emuQhvRk9ju5I9k+taLpJDmDhTR
0ORAbcRK1EapaRA689DjfW2HpxjmV1s6em//cWFoXz2M7RIDj3J8iPihHt72rE8K
JFJrU8qo2qHDv80vTaoaGbzmZbn7+3XsLanBqJ+ieZmZNZCP/TEcmc02GbcVkma1
7aEbX91XdoqZV7NTQ/jj4aXcd4Kijps/RMZFDBPxzq4YcrO8/KDJtEEHya6yYWtn
eNHcdXBbRLGaoyyV4JewJjmymRPPN31aVb48p4dev92c9s087C8FwuiWTsBSBQAr
Nb4pB27Blmx9tdBXyFTXF717F3uGRk0HXmaTdP0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTjUq2nzOqP2ui7a3f3SxHAqDPoZTAfBgNVHSMEGDAWgBSA5ISFzpsOQlZA
gE7cDtK6a49LjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dPU0VoYzZiRGtKV1FJQk8zQTdTdW11UFM0OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvNmRjOTc4LWJmZDYtNDFlYy04YTNhLWMwMzAxN2U5OGM1My8x
LzQxS3RwOHpxajlyb3UydDM5MHNSd0tnejZHVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
NmRjOTc4LWJmZDYtNDFlYy04YTNhLWMwMzAxN2U5OGM1My8xL2dPU0VoYzZiRGtK
V1FJQk8zQTdTdW11UFM0OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGXpTANBgkqhkiG9w0BAQsFAAOC
AQEAa4w7tPFFPxlbPlepkJbRlFWZdRAHPMXy/lcf5N+1hlIeOlrRpM0nwTOAogFE
LOHhTuRETWsENunmmXFPN/Q54bqmmFd1Nk6MfAtkjmuV2C6GnAx7E90FJWsAXDuJ
MvqvOSrQzsktvtR98WVyy9YT71fkz9N7usvaTqQ93YIkQq1t/LVSv5U7tEHE67lc
/k3f+Dk1XzyM+5x1J2/z5HhjrkTvGoP2LSUDatTlTE3x0l8vpV1SKAA4R9cuz2hT
oTcY9E8x1PuW4TGREQeDleGqBhSLgnyucobFMxtqLPemPX9LLv8nTztJD0P6pa8w
eP0IJpBOf6LCJ7zdSfUBjKsHTw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-ams.rpki-client.org