Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/3aNORgQcJxBzo2xXrc-9HFa1aos.roa
File: 3aNORgQcJxBzo2xXrc-9HFa1aos.roa (raw, json)
Hash identifier: n4XiYyvbbwF/ujTBXYrUXNqQrbqyXqKELnBXAy/Ctpk=
Subject key identifier: DD:A3:4E:46:04:1C:27:10:73:A3:6C:57:AD:CF:BD:1C:56:B5:6A:8B
Certificate issuer: /CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Certificate serial: 173CAD42
Authority key identifier: 05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/3aNORgQcJxBzo2xXrc-9HFa1aos.roa
Signing time: Sat 01 Jan 2022 07:53:06 +0000
ROA not before: Sat 01 Jan 2022 07:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1257
IP address blocks: 193.241.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389852482 (0x173cad42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Validity
Not Before: Jan 1 07:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dda34e46041c271073a36c57adcfbd1c56b56a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bc:44:84:96:44:31:07:ef:30:04:d0:84:9f:
98:85:b3:80:06:10:30:52:9c:fe:93:3c:ec:04:16:
0f:23:b6:b8:4d:d5:26:10:e9:67:b2:1c:5a:b7:f1:
8d:0c:79:d4:52:29:82:2a:64:14:86:15:bc:48:7b:
cc:9d:48:4c:ed:08:f4:01:60:a4:3a:9c:8f:9d:2d:
62:7a:0f:a9:80:75:f5:73:e1:2f:cf:65:65:06:2d:
34:76:22:34:72:84:d1:ac:c9:50:03:b0:a1:95:5e:
be:24:7e:41:8d:02:ac:d2:20:09:24:ab:46:a9:57:
56:06:b2:b8:69:7c:dc:5f:97:2c:51:ab:43:18:e5:
06:d2:35:82:71:23:f0:35:33:43:97:b2:17:a5:3f:
4a:d1:b0:0e:59:34:48:67:d8:7f:a0:9d:60:0a:c6:
f8:d3:f9:d1:f3:ce:6d:3b:5c:dc:5f:0b:9c:c6:78:
45:94:38:7a:61:1b:24:f2:d0:32:6d:77:b5:e6:d4:
40:c0:a9:5b:11:3c:58:99:18:21:fc:2b:cf:bd:92:
cd:a0:46:0a:9b:e0:ec:47:a0:a7:ef:aa:bf:f3:2c:
34:37:c5:94:f9:10:4b:9e:44:b1:bb:65:fb:09:cc:
eb:9f:a4:e6:19:f7:22:10:d9:8e:3e:63:3f:0f:c2:
36:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A3:4E:46:04:1C:27:10:73:A3:6C:57:AD:CF:BD:1C:56:B5:6A:8B
X509v3 Authority Key Identifier:
keyid:05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/3aNORgQcJxBzo2xXrc-9HFa1aos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/BeuMu6ryWnG_L8q24RBX6_kfAeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.241.250.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:53:4f:7c:d1:04:53:9b:e9:11:ed:84:fa:19:df:16:d3:a6:
0a:a4:79:01:ea:f9:1c:d4:a8:76:b0:4f:97:5b:d4:2e:14:dc:
4a:94:a6:ca:40:92:80:f6:f0:22:6f:59:aa:91:6b:08:df:9a:
e1:d9:58:36:8f:f4:59:21:c1:56:6f:56:f4:76:9d:de:60:17:
a9:3c:86:cd:92:c4:4c:42:aa:1a:92:b3:ce:0f:da:06:35:75:
39:08:b8:a8:bd:8f:93:5f:b7:97:ad:13:7b:f3:30:00:5d:90:
12:0d:25:93:a9:2b:ad:8d:33:77:38:83:52:49:fc:ef:b2:55:
4d:1b:c1:7b:0f:db:c1:32:d0:ec:6b:91:48:fc:33:7f:c4:73:
c1:7c:7f:85:bd:b8:4f:f9:1b:03:41:04:24:72:5b:a4:65:01:
a7:b4:37:de:e4:5e:53:18:30:bc:24:ed:ac:2b:ea:9d:d2:ba:
22:f4:c5:7a:72:18:95:fc:33:67:5d:0c:15:db:a5:20:61:bd:
b5:15:a2:43:13:71:d5:1b:cf:40:64:7e:78:63:6e:97:ae:25:
f3:04:f9:06:3f:84:d2:26:b6:6f:20:51:59:4c:4a:c4:f8:0d:
01:74:8a:b3:67:fc:d0:bb:4a:ab:a9:8d:9b:a7:f5:5c:98:fd:
62:73:b4:d7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFzytQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NWViOGNiYmFhZjI1YTcxYmYyZmNhYjZlMTEwNTdlYmY5MWYwMWUzMB4XDTIyMDEw
MTA3NTMwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGRhMzRlNDYwNDFj
MjcxMDczYTM2YzU3YWRjZmJkMWM1NmI1NmE4YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOe8RISWRDEH7zAE0ISfmIWzgAYQMFKc/pM87AQWDyO2uE3V
JhDpZ7IcWrfxjQx51FIpgipkFIYVvEh7zJ1ITO0I9AFgpDqcj50tYnoPqYB19XPh
L89lZQYtNHYiNHKE0azJUAOwoZVeviR+QY0CrNIgCSSrRqlXVgayuGl83F+XLFGr
QxjlBtI1gnEj8DUzQ5eyF6U/StGwDlk0SGfYf6CdYArG+NP50fPObTtc3F8LnMZ4
RZQ4emEbJPLQMm13tebUQMCpWxE8WJkYIfwrz72SzaBGCpvg7Eegp++qv/MsNDfF
lPkQS55Esbtl+wnM65+k5hn3IhDZjj5jPw/CNhECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTdo05GBBwnEHOjbFetz70cVrVqizAfBgNVHSMEGDAWgBQF64y7qvJacb8v
yrbhEFfr+R8B4zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JldU11NnJ5V25HX0w4cTI0UkJYNl9rZkFlTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTEvZGNjODZhLTVmNTEtNGQxMi05NjNkLWYyN2M2MjhiODM1My8x
LzNhTk9SZ1FjSnhCem8yeFhyYy05SEZhMWFvcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEv
ZGNjODZhLTVmNTEtNGQxMi05NjNkLWYyN2M2MjhiODM1My8xL0JldU11NnJ5V25H
X0w4cTI0UkJYNl9rZkFlTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHx+jANBgkqhkiG9w0BAQsFAAOC
AQEAblNPfNEEU5vpEe2E+hnfFtOmCqR5Aer5HNSodrBPl1vULhTcSpSmykCSgPbw
Im9ZqpFrCN+a4dlYNo/0WSHBVm9W9Had3mAXqTyGzZLETEKqGpKzzg/aBjV1OQi4
qL2Pk1+3l60Te/MwAF2QEg0lk6krrY0zdziDUkn877JVTRvBew/bwTLQ7GuRSPwz
f8RzwXx/hb24T/kbA0EEJHJbpGUBp7Q33uReUxgwvCTtrCvqndK6IvTFenIYlfwz
Z10MFdulIGG9tRWiQxNx1RvPQGR+eGNul64l8wT5Bj+E0ia2byBRWUxKxPgNAXSK
s2f80LtKq6mNm6f1XJj9YnO01w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:29 2023 by rpki-client on console-fra.rpki-client.org