Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/_a4-mUtkAvbGqGQFHeU_DnvWqLY.roa
File: _a4-mUtkAvbGqGQFHeU_DnvWqLY.roa (raw, json)
Hash identifier: ed+sOyMp+vZssTOcXxVKoYWxFxUG7tKJz4IMzsMxLBc=
Subject key identifier: FD:AE:3E:99:4B:64:02:F6:C6:A8:64:05:1D:E5:3F:0E:7B:D6:A8:B6
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: FE399B
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/_a4-mUtkAvbGqGQFHeU_DnvWqLY.roa
Signing time: Wed 11 May 2022 08:10:39 +0000
ROA not before: Wed 11 May 2022 08:10:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43598
IP address blocks: 193.187.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16660891 (0xfe399b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: May 11 08:10:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdae3e994b6402f6c6a864051de53f0e7bd6a8b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:75:f6:9a:05:b8:5e:61:f6:d1:39:e4:c9:11:
74:db:85:2c:6e:34:f8:1f:53:e6:9b:07:ae:8f:f3:
54:1e:e8:22:a4:81:28:5a:2d:26:d3:79:85:a9:08:
48:3a:0e:95:71:52:be:33:11:1e:cb:4a:b9:c7:cc:
9c:ee:ac:3a:45:41:f0:58:a8:ba:f7:36:ab:03:70:
3f:dc:73:22:3c:bd:83:70:1e:1d:5f:22:ba:1d:ad:
03:aa:16:5e:a0:6f:ed:b6:e0:a6:d0:47:ed:ff:40:
b9:39:b5:06:58:24:90:f5:ed:4e:5a:39:f6:0a:b9:
41:44:32:a0:43:2a:c0:6c:ea:1a:f1:a7:50:41:d8:
8e:09:f3:39:66:84:54:d2:e8:32:24:5d:1a:35:32:
d7:c6:b6:79:d6:cf:d0:84:f8:43:3b:33:1c:f2:37:
fa:3e:fa:0a:e3:58:e1:2f:9c:a1:c8:d1:7d:6e:f5:
5a:7a:66:63:58:b3:51:e4:bd:ca:15:04:41:1b:50:
39:eb:6d:c7:3a:3f:95:bb:d7:fe:cd:b6:ed:49:c5:
9b:81:4c:b9:b3:bc:03:88:d2:d4:22:8f:86:71:8f:
5e:47:6f:a9:fe:36:68:48:db:f3:66:7c:94:3f:84:
61:34:23:bf:ac:13:0f:a9:12:c4:05:53:2b:55:c8:
b2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AE:3E:99:4B:64:02:F6:C6:A8:64:05:1D:E5:3F:0E:7B:D6:A8:B6
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/_a4-mUtkAvbGqGQFHeU_DnvWqLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.187.192.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:98:08:51:00:4c:08:3e:c6:d8:43:65:2c:90:81:9a:eb:2c:
6b:8a:6d:a8:41:ae:a0:aa:0a:41:93:5d:10:50:da:4d:57:f3:
d2:a9:47:c1:bf:c1:86:c4:5f:ec:8b:67:00:4b:d8:fa:91:17:
83:ce:fc:03:42:4b:9b:8a:6e:76:fe:c1:b8:9a:76:ff:77:f3:
fe:81:2f:ec:aa:fa:18:c3:2f:0b:55:63:40:64:30:21:74:01:
a9:e0:a5:b3:7a:8d:96:77:6a:67:6a:f6:a9:66:39:17:83:aa:
22:69:4a:6d:1d:39:22:45:c3:6c:a0:a6:2d:1f:c8:2b:dd:85:
0e:a1:56:3a:bd:a5:fd:a6:00:6d:d8:91:dd:c2:ee:ab:29:96:
be:d9:19:b6:06:7c:73:7b:37:d5:ef:50:98:ff:14:88:9e:4c:
00:7b:17:6d:24:09:cf:67:23:21:8b:20:48:e0:67:dd:0c:20:
ba:52:a1:4d:05:52:38:00:fa:59:67:ff:9a:fb:dd:e4:fc:c5:
20:a2:a7:c1:9c:a2:f6:4d:cd:eb:ca:1f:ef:04:86:39:71:6e:
bf:a0:db:fe:5d:89:2a:83:88:87:5a:8f:96:1e:a0:13:8f:2d:
69:b8:67:b5:04:af:d0:a7:6b:f2:95:f7:d1:cb:23:85:8c:70:
81:9e:aa:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAP45mzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDNjMTEwZGZkNzdmNTc3NTczOTFjMGZhZWRlZWJlMzYwODY1NzFkMB4XDTIyMDUx
MTA4MTAzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmRhZTNlOTk0YjY0
MDJmNmM2YTg2NDA1MWRlNTNmMGU3YmQ2YThiNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKd19poFuF5h9tE55MkRdNuFLG40+B9T5psHro/zVB7oIqSB
KFotJtN5hakISDoOlXFSvjMRHstKucfMnO6sOkVB8Fiouvc2qwNwP9xzIjy9g3Ae
HV8iuh2tA6oWXqBv7bbgptBH7f9AuTm1BlgkkPXtTlo59gq5QUQyoEMqwGzqGvGn
UEHYjgnzOWaEVNLoMiRdGjUy18a2edbP0IT4QzszHPI3+j76CuNY4S+cocjRfW71
WnpmY1izUeS9yhUEQRtQOettxzo/lbvX/s227UnFm4FMubO8A4jS1CKPhnGPXkdv
qf42aEjb82Z8lD+EYTQjv6wTD6kSxAVTK1XIsjcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT9rj6ZS2QC9saoZAUd5T8Oe9aotjAfBgNVHSMEGDAWgBTNPBEN/Xf1d1c5
HA+u3uvjYIZXHTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pUd1JEZjEzOVhkWE9Sd1BydDdyNDJDR1Z4MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvMjBlNWEyLTBlNjQtNGVhMy04Yzg2LTZjMDJlYzE5YjgwOS8x
L19hNC1tVXRrQXZiR3FHUUZIZVVfRG52V3FMWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
MjBlNWEyLTBlNjQtNGVhMy04Yzg2LTZjMDJlYzE5YjgwOS8xL3pUd1JEZjEzOVhk
WE9Sd1BydDdyNDJDR1Z4MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsG7wDANBgkqhkiG9w0BAQsFAAOC
AQEAfZgIUQBMCD7G2ENlLJCBmussa4ptqEGuoKoKQZNdEFDaTVfz0qlHwb/BhsRf
7ItnAEvY+pEXg878A0JLm4pudv7BuJp2/3fz/oEv7Kr6GMMvC1VjQGQwIXQBqeCl
s3qNlndqZ2r2qWY5F4OqImlKbR05IkXDbKCmLR/IK92FDqFWOr2l/aYAbdiR3cLu
qymWvtkZtgZ8c3s31e9QmP8UiJ5MAHsXbSQJz2cjIYsgSOBn3QwgulKhTQVSOAD6
WWf/mvvd5PzFIKKnwZyi9k3N68of7wSGOXFuv6Db/l2JKoOIh1qPlh6gE48tabhn
tQSv0Kdr8pX30csjhYxwgZ6qQg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-ams.rpki-client.org