Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/d-KsnHHUf9zCoIT8i_ad6HBlyxg.roa
File: d-KsnHHUf9zCoIT8i_ad6HBlyxg.roa (raw, json)
Hash identifier: TYd8F21O7dvprm+xCkunZh0TYyTNl2MztHIqwXlWUm8=
Subject key identifier: 77:E2:AC:9C:71:D4:7F:DC:C2:A0:84:FC:8B:F6:9D:E8:70:65:CB:18
Certificate issuer: /CN=1da81713853c9b18d410d4ff3099ab668e69b3f5
Certificate serial: 0B44FB
Authority key identifier: 1D:A8:17:13:85:3C:9B:18:D4:10:D4:FF:30:99:AB:66:8E:69:B3:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HagXE4U8mxjUENT_MJmrZo5ps_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/d-KsnHHUf9zCoIT8i_ad6HBlyxg.roa
Signing time: Mon 11 Apr 2022 14:17:21 +0000
ROA not before: Mon 11 Apr 2022 14:17:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.131.114.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 738555 (0xb44fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da81713853c9b18d410d4ff3099ab668e69b3f5
Validity
Not Before: Apr 11 14:17:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77e2ac9c71d47fdcc2a084fc8bf69de87065cb18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:7e:79:05:d0:a9:d1:d8:f4:8d:a3:dd:ea:
f8:05:a3:39:22:11:e0:4d:ed:47:94:e6:1e:44:f8:
84:d5:3d:3d:20:8a:6d:92:78:80:c3:e1:d0:89:42:
3e:cd:ea:4f:c2:67:65:b5:c9:a5:ce:c5:c0:1a:5d:
f5:56:49:04:6a:66:8c:fe:27:d0:d7:9b:cc:43:18:
e5:a7:f3:93:4d:36:6a:30:35:83:fd:c1:d9:a4:73:
4c:3f:0e:52:51:0c:f5:c8:f2:8e:ea:3c:4c:8d:e4:
b0:12:a2:ed:68:0b:3a:85:1c:52:0a:b5:88:d9:b7:
10:bf:be:43:34:27:bb:1c:1f:f0:cc:02:48:e2:cf:
f5:d6:c1:ee:92:1f:01:d6:11:72:e9:5f:9d:2b:25:
f3:d9:fc:e2:13:ad:09:6b:0c:84:08:60:d7:d1:0e:
c2:c4:49:32:c4:80:2c:a0:2c:ea:98:d6:bf:c7:bf:
5a:9e:c1:f8:fe:54:f7:99:5a:05:fc:f6:3a:45:8d:
46:37:0b:eb:4b:8c:c6:e8:35:3a:8d:3a:89:ee:85:
01:ab:fd:61:50:e1:7b:80:c0:cf:26:dd:61:f3:e2:
a8:47:9a:31:08:48:42:5e:24:56:a9:8d:91:80:f6:
5b:40:d9:34:2b:00:96:a3:bd:1e:5c:8a:21:92:dd:
98:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E2:AC:9C:71:D4:7F:DC:C2:A0:84:FC:8B:F6:9D:E8:70:65:CB:18
X509v3 Authority Key Identifier:
keyid:1D:A8:17:13:85:3C:9B:18:D4:10:D4:FF:30:99:AB:66:8E:69:B3:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HagXE4U8mxjUENT_MJmrZo5ps_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/d-KsnHHUf9zCoIT8i_ad6HBlyxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/HagXE4U8mxjUENT_MJmrZo5ps_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.131.114.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:d3:7f:f8:5b:56:25:b6:8b:ee:1e:00:99:40:e4:6e:57:58:
a9:ac:aa:72:49:aa:6f:3f:0b:7b:15:19:2e:e9:3b:94:5d:c1:
6c:da:7f:bd:88:15:12:f8:e3:f1:75:6d:01:90:23:64:a4:83:
08:3f:cb:2e:92:8a:ed:14:a5:62:6d:ce:d2:f8:97:db:88:99:
20:5e:59:eb:f0:91:39:a1:80:ed:83:66:b6:42:82:95:11:1b:
31:dd:c9:a3:a6:3f:f6:e8:ca:f7:11:76:4f:e2:a6:5c:0a:55:
64:ae:6a:6e:86:bd:cd:6e:b7:88:c4:c1:1f:2f:59:e7:45:42:
1c:4a:df:6c:6e:74:aa:a7:00:a6:b0:f3:4f:1e:92:2b:1c:f4:
3f:12:ac:47:3c:bd:1b:da:27:03:9d:87:c0:7c:1e:45:ab:6a:
7f:01:e6:0c:70:30:4c:08:8a:64:42:4b:99:e0:8a:a0:73:d0:
dc:1e:5c:73:e7:d9:4c:63:3b:97:71:96:5a:49:97:50:ca:de:
08:44:48:f1:8d:a0:18:19:14:71:47:a3:33:ee:e9:2e:b4:d4:
ef:75:04:80:4d:98:31:e3:ab:be:9f:ca:c0:f2:79:d5:43:db:
68:66:42:10:e7:45:53:33:7a:ee:cd:37:b5:bb:ef:a7:29:8b:
43:2f:d9:f1
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDC0T7MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFk
YTgxNzEzODUzYzliMThkNDEwZDRmZjMwOTlhYjY2OGU2OWIzZjUwHhcNMjIwNDEx
MTQxNzIxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3N2UyYWM5YzcxZDQ3
ZmRjYzJhMDg0ZmM4YmY2OWRlODcwNjVjYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAuuh+eQXQqdHY9I2j3er4BaM5IhHgTe1HlOYeRPiE1T09IIpt
kniAw+HQiUI+zepPwmdltcmlzsXAGl31VkkEamaM/ifQ15vMQxjlp/OTTTZqMDWD
/cHZpHNMPw5SUQz1yPKO6jxMjeSwEqLtaAs6hRxSCrWI2bcQv75DNCe7HB/wzAJI
4s/11sHukh8B1hFy6V+dKyXz2fziE60JawyECGDX0Q7CxEkyxIAsoCzqmNa/x79a
nsH4/lT3mVoF/PY6RY1GNwvrS4zG6DU6jTqJ7oUBq/1hUOF7gMDPJt1h8+KoR5ox
CEhCXiRWqY2RgPZbQNk0KwCWo70eXIohkt2YBwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFHfirJxx1H/cwqCE/Iv2nehwZcsYMB8GA1UdIwQYMBaAFB2oFxOFPJsY1BDU
/zCZq2aOabP1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SGFnWEU0VThteGpVRU5UX01KbXJabzVwc19VLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84My9kMjlmZTctOGMyMi00YWFhLWI4ZDYtNjYwZjM5ZjY0MzE2LzEv
ZC1Lc25ISFVmOXpDb0lUOGlfYWQ2SEJseXhnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9k
MjlmZTctOGMyMi00YWFhLWI4ZDYtNjYwZjM5ZjY0MzE2LzEvSGFnWEU0VThteGpV
RU5UX01KbXJabzVwc19VLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwYNyMA0GCSqGSIb3DQEBCwUAA4IB
AQCf03/4W1YltovuHgCZQORuV1iprKpySapvPwt7FRku6TuUXcFs2n+9iBUS+OPx
dW0BkCNkpIMIP8sukortFKVibc7S+JfbiJkgXlnr8JE5oYDtg2a2QoKVERsx3cmj
pj/26Mr3EXZP4qZcClVkrmpuhr3NbreIxMEfL1nnRUIcSt9sbnSqpwCmsPNPHpIr
HPQ/EqxHPL0b2icDnYfAfB5Fq2p/AeYMcDBMCIpkQkuZ4Iqgc9DcHlxz59lMYzuX
cZZaSZdQyt4IREjxjaAYGRRxR6Mz7ukutNTvdQSATZgx46u+n8rA8nnVQ9toZkIQ
50VTM3ruzTe1u++nKYtDL9nx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:07 2024 by rpki-client on console-ams.rpki-client.org