Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/cbVTF13UhbgmvpO-x2vUVxRpQew.roa
File: cbVTF13UhbgmvpO-x2vUVxRpQew.roa (raw, json)
Hash identifier: tHBP7Yy7thXmfhV4xyOIvmrDUkI7YMLRixM6QBLigHM=
Subject key identifier: 71:B5:53:17:5D:D4:85:B8:26:BE:93:BE:C7:6B:D4:57:14:69:41:EC
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 1768468B
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/cbVTF13UhbgmvpO-x2vUVxRpQew.roa
Signing time: Mon 03 Jan 2022 14:49:20 +0000
ROA not before: Mon 03 Jan 2022 14:49:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212830
IP address blocks: 193.57.146.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392709771 (0x1768468b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jan 3 14:49:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71b553175dd485b826be93bec76bd457146941ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e0:59:e9:b0:50:d1:42:d5:d5:b6:88:ed:d6:
fc:9c:ff:0a:70:49:07:67:17:98:82:a0:95:30:43:
83:1b:ac:cd:8e:1a:43:c0:51:1c:8b:c3:c6:75:ce:
36:52:51:80:6b:2c:a2:44:6a:fe:e5:e2:2a:db:fb:
b7:bc:1e:7d:81:dd:51:68:68:fd:a1:f5:37:af:f2:
95:f0:19:18:f7:e7:0f:a1:2e:e3:83:13:66:47:4e:
b5:3c:12:d7:6c:0b:b9:1b:66:c4:c3:8e:c0:3c:97:
e9:e4:c0:43:16:11:85:c9:61:31:2d:46:d8:23:5b:
87:46:65:16:c9:d2:75:84:0d:c8:a1:de:60:9f:c5:
84:40:87:b8:ba:e5:59:bf:cc:ef:12:f5:a8:b1:27:
01:aa:66:83:58:c5:99:52:24:d9:2c:1e:bd:aa:63:
fc:0a:27:2a:d4:8d:7a:c8:77:4d:be:48:6d:9b:03:
53:21:2a:9f:9a:dc:3f:ae:10:24:89:5a:03:bc:70:
21:2b:6a:b8:74:1d:53:a1:d1:ec:ae:86:a0:44:58:
09:d1:d4:94:e7:82:8c:de:11:b6:5f:b1:f4:6c:f0:
df:c3:71:f8:d0:b0:5c:27:73:16:b9:ca:70:16:b2:
2a:bc:35:66:fc:5b:3f:d0:89:69:31:12:fd:42:ee:
87:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B5:53:17:5D:D4:85:B8:26:BE:93:BE:C7:6B:D4:57:14:69:41:EC
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/cbVTF13UhbgmvpO-x2vUVxRpQew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.146.0/23
Signature Algorithm: sha256WithRSAEncryption
77:b9:06:44:d4:35:d4:27:a5:42:a8:ea:7e:8c:9d:78:5c:ff:
9b:4d:cb:3c:00:0d:cb:e2:76:96:d4:71:ac:be:e4:19:5b:b1:
f3:54:b3:bf:99:60:4e:42:16:f2:9c:62:31:65:ed:08:e1:04:
2c:e1:75:f2:25:0b:b0:ad:60:9a:98:c1:4e:85:ea:ca:38:c3:
fd:03:40:a1:1b:80:75:e9:c0:7a:e9:a6:2c:cc:ac:36:1c:85:
a9:11:33:19:cd:da:c1:5d:d8:89:aa:d6:b2:0a:e9:36:2a:f7:
57:87:8f:cf:1f:9d:14:ec:4d:9a:ae:da:f1:9b:25:80:be:83:
4b:68:e0:2c:5c:9a:3e:50:3a:68:e5:ee:89:b2:bc:2c:d0:ac:
52:80:d0:20:12:7d:f4:cd:5c:55:8e:92:54:fc:ec:0a:c0:c5:
e2:1a:9e:ee:53:91:a1:23:dc:0b:9d:0a:75:7d:98:94:95:4f:
a2:8e:65:62:74:e5:ac:f5:c5:10:9f:ac:b7:54:c1:a3:90:0b:
03:4e:63:62:3a:a2:b7:4c:53:a6:47:d3:f0:ba:fa:91:b1:3d:
3f:cf:cb:13:76:bd:34:34:b8:b4:8d:3e:71:11:e9:91:1d:56:
2a:c8:c9:fe:3f:9e:ee:d5:95:40:3a:2d:19:e1:c8:a2:67:f3:
c0:d1:07:cf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF2hGizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWJhMTE3MjQ3MmVhODAyNjVkMTI5ODI5NjdkZTBhOGIwYmM1OTAxMB4XDTIyMDEw
MzE0NDkyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzFiNTUzMTc1ZGQ0
ODViODI2YmU5M2JlYzc2YmQ0NTcxNDY5NDFlYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANfgWemwUNFC1dW2iO3W/Jz/CnBJB2cXmIKglTBDgxuszY4a
Q8BRHIvDxnXONlJRgGssokRq/uXiKtv7t7wefYHdUWho/aH1N6/ylfAZGPfnD6Eu
44MTZkdOtTwS12wLuRtmxMOOwDyX6eTAQxYRhclhMS1G2CNbh0ZlFsnSdYQNyKHe
YJ/FhECHuLrlWb/M7xL1qLEnAapmg1jFmVIk2Swevapj/AonKtSNesh3Tb5IbZsD
UyEqn5rcP64QJIlaA7xwIStquHQdU6HR7K6GoERYCdHUlOeCjN4Rtl+x9Gzw38Nx
+NCwXCdzFrnKcBayKrw1ZvxbP9CJaTES/ULuhzkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRxtVMXXdSFuCa+k77Ha9RXFGlB7DAfBgNVHSMEGDAWgBQ6uhFyRy6oAmXR
KYKWfeCosLxZATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09yb1Jja2N1cUFKbDBTbUNsbjNncUxDOFdRRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvN2IxYzU1LWRkZDAtNDI4MS04Mzc4LTRkZDA0MzQ2YWJjMy8x
L2NiVlRGMTNVaGJnbXZwTy14MnZVVnhScFFldy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
N2IxYzU1LWRkZDAtNDI4MS04Mzc4LTRkZDA0MzQ2YWJjMy8xL09yb1Jja2N1cUFK
bDBTbUNsbjNncUxDOFdRRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcE5kjANBgkqhkiG9w0BAQsFAAOC
AQEAd7kGRNQ11CelQqjqfoydeFz/m03LPAANy+J2ltRxrL7kGVux81Szv5lgTkIW
8pxiMWXtCOEELOF18iULsK1gmpjBToXqyjjD/QNAoRuAdenAeummLMysNhyFqREz
Gc3awV3YiarWsgrpNir3V4ePzx+dFOxNmq7a8ZslgL6DS2jgLFyaPlA6aOXuibK8
LNCsUoDQIBJ99M1cVY6SVPzsCsDF4hqe7lORoSPcC50KdX2YlJVPoo5lYnTlrPXF
EJ+st1TBo5ALA05jYjqit0xTpkfT8Lr6kbE9P8/LE3a9NDS4tI0+cRHpkR1WKsjJ
/j+e7tWVQDotGeHIomfzwNEHzw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org