Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/e1b018-4711-44ef-8688-596e29bf7efe/1/M8_82W9cjKNx15iQZHd5HD7rC_Y.roa
File: M8_82W9cjKNx15iQZHd5HD7rC_Y.roa (raw, json)
Hash identifier: FCkfOBn4oYvMwrBv7hics4bOAVW2dM0vCHGbqSUBSvo=
Subject key identifier: 33:CF:FC:D9:6F:5C:8C:A3:71:D7:98:90:64:77:79:1C:3E:EB:0B:F6
Certificate issuer: /CN=e72861d1c9e90835ea9416f0593d063d149a53e2
Certificate serial: EE2217
Authority key identifier: E7:28:61:D1:C9:E9:08:35:EA:94:16:F0:59:3D:06:3D:14:9A:53:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5yhh0cnpCDXqlBbwWT0GPRSaU-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/e1b018-4711-44ef-8688-596e29bf7efe/1/M8_82W9cjKNx15iQZHd5HD7rC_Y.roa
Signing time: Sat 01 Jan 2022 07:57:27 +0000
ROA not before: Sat 01 Jan 2022 07:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 193.162.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15606295 (0xee2217)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e72861d1c9e90835ea9416f0593d063d149a53e2
Validity
Not Before: Jan 1 07:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33cffcd96f5c8ca371d798906477791c3eeb0bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8d:77:b6:67:08:d0:6e:c4:4f:b7:66:1c:ee:
3a:95:d8:d7:ab:83:bf:dc:1a:51:94:5f:2e:66:c1:
94:06:da:cb:aa:34:f1:70:91:43:25:dd:3b:20:85:
1f:b8:db:16:3a:71:14:f2:61:ea:1e:84:6c:5b:86:
b4:17:80:51:c0:76:fb:aa:12:65:fa:ee:4f:e8:6a:
ec:ed:18:7e:8a:b6:8d:ac:64:8f:11:52:16:05:2f:
f3:ee:e5:65:63:be:a0:0a:6f:a0:87:f8:45:55:17:
b3:ec:96:d9:52:1b:d1:fc:bc:05:df:b2:3a:b3:02:
be:0d:71:47:99:d9:be:9f:d5:6a:b8:2c:6e:52:3a:
69:44:15:50:6a:bf:57:a0:1f:08:de:f4:d5:8f:3f:
ca:ff:8c:bf:47:0e:ca:b0:0e:49:64:69:0e:fe:9a:
eb:bd:1e:f7:64:5b:81:1f:4d:3b:94:e6:1d:5a:29:
ec:f0:70:23:ec:db:ce:45:bd:5d:9b:77:68:2c:dc:
77:fe:75:b6:22:d2:32:a4:ce:d6:26:a1:82:d7:c6:
20:f8:2e:5c:f4:19:a2:a4:9a:09:78:89:36:3a:3e:
53:ce:2a:b1:b8:6d:09:a8:aa:55:64:6e:bb:13:a6:
db:40:de:c0:44:6a:a8:0b:a1:53:c1:b2:12:6c:e2:
51:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CF:FC:D9:6F:5C:8C:A3:71:D7:98:90:64:77:79:1C:3E:EB:0B:F6
X509v3 Authority Key Identifier:
keyid:E7:28:61:D1:C9:E9:08:35:EA:94:16:F0:59:3D:06:3D:14:9A:53:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5yhh0cnpCDXqlBbwWT0GPRSaU-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e1b018-4711-44ef-8688-596e29bf7efe/1/M8_82W9cjKNx15iQZHd5HD7rC_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e1b018-4711-44ef-8688-596e29bf7efe/1/5yhh0cnpCDXqlBbwWT0GPRSaU-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.132.0/24
Signature Algorithm: sha256WithRSAEncryption
64:51:49:8b:2a:33:17:60:ee:47:c6:ef:3c:d9:dd:01:09:2f:
1a:2f:9e:8e:18:38:cb:f4:39:ee:c6:9c:a3:7a:9c:4f:75:15:
27:47:7c:45:9e:f9:b7:00:d0:01:d0:e2:0d:41:cb:6f:a2:53:
56:99:a6:85:bb:0c:9c:68:38:41:3b:3b:1c:7e:e9:db:e7:e8:
eb:30:3a:ba:c3:7e:30:08:ad:d7:20:b9:c9:4a:f0:a2:b0:73:
13:94:44:17:3f:eb:33:2c:bd:1e:40:83:de:2c:4d:b4:48:36:
88:6f:e0:2f:e5:22:3f:b2:3a:96:ef:58:d0:16:9f:ae:15:3f:
8d:4f:af:bc:b4:ae:5e:bd:c9:94:a5:b1:2c:ad:8f:17:0d:10:
c6:de:16:1a:f2:26:ad:85:01:8a:e5:3f:48:aa:e1:87:d6:e2:
b1:fb:35:57:28:8b:69:29:77:af:39:5d:81:a9:41:c0:17:3d:
90:88:3a:b2:0f:77:fc:fc:57:5e:c6:b1:be:ef:ef:ae:e6:85:
a8:e4:47:d5:81:f4:b4:43:0b:b8:f0:fa:7a:03:52:18:1d:fd:
ec:6e:0d:06:6c:30:43:bf:f2:92:6f:9a:53:10:f3:d9:2c:bf:
a2:bb:20:77:44:e8:2a:d0:eb:2e:52:b4:64:4f:7f:83:18:ab:
d8:e2:2b:95
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAO4iFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzI4NjFkMWM5ZTkwODM1ZWE5NDE2ZjA1OTNkMDYzZDE0OWE1M2UyMB4XDTIyMDEw
MTA3NTcyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzNjZmZjZDk2ZjVj
OGNhMzcxZDc5ODkwNjQ3Nzc5MWMzZWViMGJmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKyNd7ZnCNBuxE+3ZhzuOpXY16uDv9waUZRfLmbBlAbay6o0
8XCRQyXdOyCFH7jbFjpxFPJh6h6EbFuGtBeAUcB2+6oSZfruT+hq7O0Yfoq2jaxk
jxFSFgUv8+7lZWO+oApvoIf4RVUXs+yW2VIb0fy8Bd+yOrMCvg1xR5nZvp/Vargs
blI6aUQVUGq/V6AfCN701Y8/yv+Mv0cOyrAOSWRpDv6a670e92RbgR9NO5TmHVop
7PBwI+zbzkW9XZt3aCzcd/51tiLSMqTO1iahgtfGIPguXPQZoqSaCXiJNjo+U84q
sbhtCaiqVWRuuxOm20DewERqqAuhU8GyEmziUdsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQzz/zZb1yMo3HXmJBkd3kcPusL9jAfBgNVHSMEGDAWgBTnKGHRyekINeqU
FvBZPQY9FJpT4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzV5aGgwY25wQ0RYcWxCYndXVDBHUFJTYVUtSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvZTFiMDE4LTQ3MTEtNDRlZi04Njg4LTU5NmUyOWJmN2VmZS8x
L004XzgyVzljaktOeDE1aVFaSGQ1SEQ3ckNfWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
ZTFiMDE4LTQ3MTEtNDRlZi04Njg4LTU5NmUyOWJmN2VmZS8xLzV5aGgwY25wQ0RY
cWxCYndXVDBHUFJTYVUtSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGihDANBgkqhkiG9w0BAQsFAAOC
AQEAZFFJiyozF2DuR8bvPNndAQkvGi+ejhg4y/Q57saco3qcT3UVJ0d8RZ75twDQ
AdDiDUHLb6JTVpmmhbsMnGg4QTs7HH7p2+fo6zA6usN+MAit1yC5yUrworBzE5RE
Fz/rMyy9HkCD3ixNtEg2iG/gL+UiP7I6lu9Y0BafrhU/jU+vvLSuXr3JlKWxLK2P
Fw0Qxt4WGvImrYUBiuU/SKrhh9bisfs1VyiLaSl3rzldgalBwBc9kIg6sg93/PxX
Xsaxvu/vruaFqORH1YH0tEMLuPD6egNSGB397G4NBmwwQ7/ykm+aUxDz2Sy/orsg
d0ToKtDrLlK0ZE9/gxir2OIrlQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:30 2023 by rpki-client on console-fra.rpki-client.org