Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/BTOD7QJjNu7x7UXctc52rVdpzL4.roa
File: BTOD7QJjNu7x7UXctc52rVdpzL4.roa (raw, json)
Hash identifier: DYZ0MCA4VGZfKWhHqjYCUc7K8Nxg+GNVYcsvbu1wbOg=
Subject key identifier: 05:33:83:ED:02:63:36:EE:F1:ED:45:DC:B5:CE:76:AD:57:69:CC:BE
Certificate issuer: /CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Certificate serial: 01100CAD
Authority key identifier: 02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/BTOD7QJjNu7x7UXctc52rVdpzL4.roa
Signing time: Tue 15 Mar 2022 18:21:41 +0000
ROA not before: Tue 15 Mar 2022 18:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 146.19.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17829037 (0x1100cad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Validity
Not Before: Mar 15 18:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=053383ed026336eef1ed45dcb5ce76ad5769ccbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4d:14:2f:d4:c6:4a:e9:d5:98:2a:95:ea:0c:
6c:2e:72:d8:b7:3e:c9:b7:38:3f:72:d8:33:fe:16:
3d:51:fd:a4:a1:a0:08:c3:c4:d3:3a:72:e6:68:b4:
a4:8d:d7:f4:4d:8f:9b:c3:76:f4:21:67:10:4c:a4:
52:c8:1d:8a:24:14:e6:b0:7c:b7:51:06:de:f8:8d:
b3:bb:2b:cf:64:93:b6:8e:4d:ee:1d:20:85:64:07:
8d:00:df:87:1d:cf:82:be:c4:21:f3:09:8c:63:ba:
c5:41:69:66:ef:2b:b9:12:1d:27:6b:42:1f:58:0a:
e9:02:b8:fa:07:4d:25:fa:21:4b:9f:fe:b9:2f:9a:
6c:02:56:73:19:81:fd:44:92:19:55:2f:3b:49:f8:
50:43:f9:3d:32:9a:ee:68:94:42:13:94:31:90:79:
8c:f5:08:56:df:c5:26:a7:29:86:84:4c:e7:24:6d:
23:24:80:90:13:f9:e0:03:2b:d3:d4:1d:d9:e7:92:
36:86:95:fb:72:b2:db:4d:c4:da:56:09:ca:51:c3:
28:b3:c9:54:91:8a:61:e6:8d:6a:85:60:6d:c4:5b:
c0:8d:7d:39:ef:01:5a:25:58:92:81:1a:14:ec:99:
97:d5:6c:fe:c7:55:18:cd:84:a1:06:35:14:ff:f4:
57:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:33:83:ED:02:63:36:EE:F1:ED:45:DC:B5:CE:76:AD:57:69:CC:BE
X509v3 Authority Key Identifier:
keyid:02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/BTOD7QJjNu7x7UXctc52rVdpzL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/Au38-zNcnXaIjYG3Ps2KQLr-z_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.204.0/24
Signature Algorithm: sha256WithRSAEncryption
92:43:dd:67:9b:86:09:50:22:35:c4:18:b7:52:6f:77:31:10:
3e:a9:c3:b7:bd:dc:d6:b9:60:58:b6:91:ad:9c:a1:98:7b:e6:
5b:cb:3a:eb:f0:b3:84:40:fc:94:17:54:e4:9f:af:16:c9:d9:
92:d3:6c:f2:40:83:bc:a0:28:3a:30:47:1a:c1:95:61:f0:52:
56:49:7a:12:10:51:45:48:94:c6:82:6e:ba:76:b1:5d:8c:1f:
30:e5:a5:25:2f:9a:6b:de:2c:6a:8e:a9:60:8e:de:78:29:9e:
e2:62:21:3b:48:7f:a1:20:1a:dd:07:42:57:5d:64:ad:91:ea:
b1:d9:59:59:d2:eb:5e:52:6e:7e:92:61:02:f7:de:7b:79:5a:
77:93:d6:f6:91:65:7b:8d:6b:43:27:ec:bb:42:68:ae:62:d4:
51:98:46:dc:5b:dd:4a:61:a6:aa:57:6c:25:48:91:66:5f:14:
24:9e:53:f9:11:99:2a:f4:f2:ac:bf:30:40:49:e7:35:1d:ca:
2b:b4:2c:94:43:7c:ed:19:5e:d6:74:88:55:0a:69:ec:14:21:
c8:01:70:4d:48:34:84:b4:fb:ce:47:c9:ac:32:85:03:35:22:
16:5e:93:7a:97:47:42:4a:8e:76:27:3d:04:1c:2a:d3:f9:ea:
52:f2:f7:5f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEARAMrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MmVkZmNmYjMzNWM5ZDc2ODg4ZDgxYjczZWNkOGE0MGJhZmVjZmZjMB4XDTIyMDMx
NTE4MjE0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDUzMzgzZWQwMjYz
MzZlZWYxZWQ0NWRjYjVjZTc2YWQ1NzY5Y2NiZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJJNFC/Uxkrp1ZgqleoMbC5y2Lc+ybc4P3LYM/4WPVH9pKGg
CMPE0zpy5mi0pI3X9E2Pm8N29CFnEEykUsgdiiQU5rB8t1EG3viNs7srz2STto5N
7h0ghWQHjQDfhx3Pgr7EIfMJjGO6xUFpZu8ruRIdJ2tCH1gK6QK4+gdNJfohS5/+
uS+abAJWcxmB/USSGVUvO0n4UEP5PTKa7miUQhOUMZB5jPUIVt/FJqcphoRM5yRt
IySAkBP54AMr09Qd2eeSNoaV+3Ky203E2lYJylHDKLPJVJGKYeaNaoVgbcRbwI19
Oe8BWiVYkoEaFOyZl9Vs/sdVGM2EoQY1FP/0VwsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQFM4PtAmM27vHtRdy1znatV2nMvjAfBgNVHSMEGDAWgBQC7fz7M1yddoiN
gbc+zYpAuv7P/DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0F1Mzgtek5jblhhSWpZRzNQczJLUUxyLXpfdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTQvN2RlMjIxLWUzYmUtNDU2ZC05MWY0LWIxNGI3Y2Y3MGQyZi8x
L0JUT0Q3UUpqTnU3eDdVWGN0YzUyclZkcHpMNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQv
N2RlMjIxLWUzYmUtNDU2ZC05MWY0LWIxNGI3Y2Y3MGQyZi8xL0F1Mzgtek5jblhh
SWpZRzNQczJLUUxyLXpfdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJITzDANBgkqhkiG9w0BAQsFAAOC
AQEAkkPdZ5uGCVAiNcQYt1JvdzEQPqnDt73c1rlgWLaRrZyhmHvmW8s66/CzhED8
lBdU5J+vFsnZktNs8kCDvKAoOjBHGsGVYfBSVkl6EhBRRUiUxoJuunaxXYwfMOWl
JS+aa94sao6pYI7eeCme4mIhO0h/oSAa3QdCV11krZHqsdlZWdLrXlJufpJhAvfe
e3lad5PW9pFle41rQyfsu0JormLUUZhG3FvdSmGmqldsJUiRZl8UJJ5T+RGZKvTy
rL8wQEnnNR3KK7QslEN87Rle1nSIVQpp7BQhyAFwTUg0hLT7zkfJrDKFAzUiFl6T
epdHQkqOdic9BBwq0/nqUvL3Xw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:37 2023 by rpki-client on console-fra.rpki-client.org