Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/bLU9Mm8lmgjoBxlOW0QjXsD7DEg.roa
File: bLU9Mm8lmgjoBxlOW0QjXsD7DEg.roa (raw, json)
Hash identifier: kDD/aVMscukqQpUXJsfoKR4pjxWKt9kgSCxreE4U45w=
Subject key identifier: 6C:B5:3D:32:6F:25:9A:08:E8:07:19:4E:5B:44:23:5E:C0:FB:0C:48
Certificate issuer: /CN=327519fc8684d3a9442df69619142228279a4f57
Certificate serial: 0184C236C3A6EDFB17181B84567325DC604B
Authority key identifier: 32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/bLU9Mm8lmgjoBxlOW0QjXsD7DEg.roa
Signing time: Tue 29 Nov 2022 07:07:59 +0000
ROA not before: Tue 29 Nov 2022 07:07:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 146.19.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:36:c3:a6:ed:fb:17:18:1b:84:56:73:25:dc:60:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327519fc8684d3a9442df69619142228279a4f57
Validity
Not Before: Nov 29 07:07:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cb53d326f259a08e807194e5b44235ec0fb0c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:88:4d:b7:5e:5d:2c:42:74:ad:92:57:89:72:
86:b4:b2:bc:a7:56:b3:74:ec:d5:d6:c1:1c:89:fd:
5d:c9:21:cc:a6:7e:49:38:be:d4:8e:64:be:17:89:
5c:a6:2d:ce:85:5c:b3:29:9c:2a:fe:1b:3b:64:64:
ee:f4:72:15:96:05:35:ab:ca:0d:5e:eb:97:6f:94:
dc:30:89:60:1b:15:4d:39:de:32:10:9b:5e:de:9a:
be:f4:0e:b1:18:42:0d:52:27:7a:fa:fa:52:18:9b:
19:08:8b:a7:56:76:b2:f4:c5:1f:f3:7c:53:52:eb:
c0:4f:94:06:48:3c:df:1a:5a:ea:54:ae:5b:bc:06:
46:33:7b:4f:dd:27:fb:ea:35:9c:bb:96:5c:e8:96:
fc:19:cf:ae:de:f1:9c:fc:99:09:bb:a9:30:00:47:
07:82:89:9f:51:64:b0:45:b8:31:c7:a8:68:9a:dc:
90:4f:a1:ac:84:a3:4c:71:c3:8d:96:ba:04:7b:c9:
18:74:93:6b:85:c8:7e:2b:53:2b:17:c3:dc:8a:32:
07:55:16:d3:3f:14:00:cb:4a:04:fa:c2:1d:69:84:
f3:32:97:d8:11:34:45:a0:32:fb:6d:97:5b:41:9d:
19:86:52:ee:6a:77:34:be:2d:dc:c5:41:76:fc:ef:
e6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B5:3D:32:6F:25:9A:08:E8:07:19:4E:5B:44:23:5E:C0:FB:0C:48
X509v3 Authority Key Identifier:
keyid:32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/bLU9Mm8lmgjoBxlOW0QjXsD7DEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/MnUZ_IaE06lELfaWGRQiKCeaT1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b5:c9:92:16:5d:d7:db:f5:ad:a6:51:6d:73:8d:ab:98:2b:
26:c9:8c:34:d4:c5:49:1d:eb:31:8e:d1:e0:31:14:71:41:2f:
fd:a0:3f:7c:b7:29:f8:89:3c:85:73:36:03:9e:e6:b7:55:de:
66:58:0f:c0:78:b9:0f:ea:14:5d:7c:9c:e7:59:13:19:dc:cb:
f8:56:8d:de:6a:39:26:6d:fc:2b:d2:8a:0a:de:0c:1a:16:4d:
5e:5e:f8:f4:24:3c:55:c8:e2:ea:2f:30:09:f9:6d:ca:db:78:
b0:30:d5:3b:e0:97:b5:39:24:5a:84:15:a6:07:49:9f:c3:3e:
7b:4c:95:cd:57:8c:be:4c:a0:47:d1:c0:dc:78:30:d2:0a:20:
8c:7a:cd:61:1d:8c:f8:58:1e:f6:46:f0:9f:bc:d2:a3:21:ff:
25:3b:69:39:f1:ba:e4:2c:03:bd:ae:ca:8c:c0:48:3e:bf:f5:
71:97:b0:a2:47:14:5d:4c:85:be:46:12:ba:90:11:6b:b4:0e:
8e:7a:1f:68:60:6d:a3:84:5b:38:5c:23:be:13:97:99:6c:af:
a9:3a:27:fe:66:14:de:94:c0:e9:ff:9e:65:fd:ce:46:6a:70:
52:fd:19:3e:77:e8:ee:61:5d:21:01:3f:7e:46:e7:8d:9c:75:
df:51:70:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTCNsOm7fsXGBuEVnMl3GBLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNzUxOWZjODY4NGQzYTk0NDJkZjY5NjE5MTQyMjI4Mjc5
YTRmNTcwHhcNMjIxMTI5MDcwNzU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2I1M2QzMjZmMjU5YTA4ZTgwNzE5NGU1YjQ0MjM1ZWMwZmIwYzQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4hNt15dLEJ0rZJXiXKGtLK8p1az
dOzV1sEcif1dySHMpn5JOL7UjmS+F4lcpi3OhVyzKZwq/hs7ZGTu9HIVlgU1q8oN
XuuXb5TcMIlgGxVNOd4yEJte3pq+9A6xGEINUid6+vpSGJsZCIunVnay9MUf83xT
UuvAT5QGSDzfGlrqVK5bvAZGM3tP3Sf76jWcu5Zc6Jb8Gc+u3vGc/JkJu6kwAEcH
gomfUWSwRbgxx6homtyQT6GshKNMccONlroEe8kYdJNrhch+K1MrF8PcijIHVRbT
PxQAy0oE+sIdaYTzMpfYETRFoDL7bZdbQZ0ZhlLuanc0vi3cxUF2/O/mLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGy1PTJvJZoI6AcZTltEI17A+wxIMB8GA1UdIwQY
MBaAFDJ1GfyGhNOpRC32lhkUIignmk9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW5VWl9JYUUwNmxFTGZhV0dSUWlLQ2VhVDFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9kM2E2ZDMtMzBjYy00YzIxLTk3ODkt
OTY3MWY4OGE3N2UyLzEvYkxVOU1tOGxtZ2pvQnhsT1cwUWpYc0Q3REVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9kM2E2ZDMtMzBjYy00YzIxLTk3ODktOTY3MWY4OGE3N2Uy
LzEvTW5VWl9JYUUwNmxFTGZhV0dSUWlLQ2VhVDFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNdMA0G
CSqGSIb3DQEBCwUAA4IBAQB9tcmSFl3X2/WtplFtc42rmCsmyYw01MVJHesxjtHg
MRRxQS/9oD98tyn4iTyFczYDnua3Vd5mWA/AeLkP6hRdfJznWRMZ3Mv4Vo3eajkm
bfwr0ooK3gwaFk1eXvj0JDxVyOLqLzAJ+W3K23iwMNU74Je1OSRahBWmB0mfwz57
TJXNV4y+TKBH0cDceDDSCiCMes1hHYz4WB72RvCfvNKjIf8lO2k58brkLAO9rsqM
wEg+v/Vxl7CiRxRdTIW+RhK6kBFrtA6Oeh9oYG2jhFs4XCO+E5eZbK+pOif+ZhTe
lMDp/55l/c5GanBS/Rk+d+juYV0hAT9+RueNnHXfUXCI
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:26 2023 by rpki-client on console-fra.rpki-client.org